RogueKiller V12.9.0.0 (x64) [Dec 26 2016] (Gratuit) par Adlice Software email : http://www.adlice.com/contact/ Remontées : http://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com Système d'exploitation : Windows 10 (10.0.14393) 64 bits version Démarré en : Mode normal Utilisateur : fernand [Administrateur] Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 12/27/2016 10:31:43 (Durée : 00:37:17) ¤¤¤ Processus : 5 ¤¤¤ [Proc.Injected] iexplore.exe(7460) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe[7] -> Trouvé(e) [Proc.Injected] firefox.exe(11076) -- c:\Program Files (x86)\Mozilla Firefox\firefox.exe[7] -> Trouvé(e) [Suspicious.Path] Counaty.dll(3268) -- C:\Users\fernand\AppData\Roaming\Clesuleplosaward\Counaty.dll[x] -> Trouvé(e) [Suspicious.Path|VT.Atros4.BLBG] 144635077d16t7092303.dll(11356) -- C:\ProgramData\144635077d16t7092303\144635077d16t7092303.dll[-] -> Trouvé(e) [Suspicious.Path] Counaty.dll(10572) -- C:\Users\fernand\AppData\Roaming\Clesuleplosaward\Counaty.dll[x] -> Trouvé(e) ¤¤¤ Registre : 95 ¤¤¤ [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{2FB831EA-DA68-4A66-8E31-A2D976A6296C} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{3DCCD550-7586-40D2-A51D-D2F98EC06B3C} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{62AE4CDC-C688-11E6-814C-64006A5CFC23} (C:\Users\fernand\AppData\Roaming\Clesuleplosaward\Counaty.dll) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{C9487131-EF4C-40D9-BA70-E85356CAF67E} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\BrowserAir -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\SearchModule -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\BrowserAir -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\ORBTR -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\OtherSearch -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SearchModule -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\trotuxSoftware -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\UCBrowserPID -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\.DEFAULT\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\.DEFAULT\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\AutoTime -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\BrowserAir -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Installer -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZip -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZipSFX -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\SNDA -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowserPID -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\AutoTime -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\BrowserAir -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Installer -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZip -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZipSFX -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\SNDA -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowserPID -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-18\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-18\Software\UCBrowser -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\vnlgp -> Trouvé(e) [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search module -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserAir -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserAir -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\KzShlobj | (default) : {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} (C:\Program Files\¿ìѹ\X64\KZipShell.dll) -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks | {62AE4CDC-C688-11E6-814C-64006A5CFC23} : (C:\Users\fernand\AppData\Roaming\Clesuleplosaward\Counaty.dll) [x] -> Trouvé(e) [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | gplyra : C:\Users\fernand\AppData\Roaming\gplyra\gplyra.exe [x] -> Trouvé(e) [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | vnlgp : C:\Users\fernand\AppData\Roaming\vnlgp\vnlgp.exe [x] -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | WINCOMQR3 : "C:\Program Files (x86)\mpck\wincom_QR3.exe" [x] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | ELUOJRR6VG : "C:\Program Files\LVUP20E65U\LVUP20E65.exe" [-] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | O7PQFMC1JT : "C:\Program Files\OD15ZS3HZS\OD15ZS3HZ.exe" [-] -> Trouvé(e) [PUP.Gen0] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | ZERASVCNRZ : "C:\Program Files (x86)\BestCleaner\A9GDR93TO2.exe" [x] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | MAEW6FOB14 : "C:\Program Files\SPIXNZO5HH\SPIXNZO5H.exe" [-] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | K256E9VO3V : "C:\Users\fernand\AppData\Local\Temp\AT6VXKPMYM\caster.exe" [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | 4MMHIH4IKP : "C:\Users\fernand\AppData\Local\Temp\AFWF77Y1Z4.exe" [x] -> Trouvé(e) [PUP.Gen0|Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | DXJL2NG0M1 : "C:\Program Files (x86)\DPower\ZXYHJA8Z84.exe" [-] -> Trouvé(e) [PUP.Gen0] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | 69XW81KBIU : "C:\Program Files (x86)\BestCleaner\ABZ3Q6PLCF.exe" [x] -> Trouvé(e) [Suspicious.Path|VT.Adware.Agent] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | msiql : C:\Users\fernand\AppData\Local\Temp\00020257\msiql.exe /RUNNING [-] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | CHCRKAJF3S : "C:\Users\fernand\AppData\Local\Temp\1TET2PCCGO.exe" [x] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | ELUOJRR6VG : "C:\Program Files\LVUP20E65U\LVUP20E65.exe" [-] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | O7PQFMC1JT : "C:\Program Files\OD15ZS3HZS\OD15ZS3HZ.exe" [-] -> Trouvé(e) [PUP.Gen0] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | ZERASVCNRZ : "C:\Program Files (x86)\BestCleaner\A9GDR93TO2.exe" [x] -> Trouvé(e) [Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | MAEW6FOB14 : "C:\Program Files\SPIXNZO5HH\SPIXNZO5H.exe" [-] -> Trouvé(e) [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | K256E9VO3V : "C:\Users\fernand\AppData\Local\Temp\AT6VXKPMYM\caster.exe" [x] -> Trouvé(e) [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | 4MMHIH4IKP : "C:\Users\fernand\AppData\Local\Temp\AFWF77Y1Z4.exe" [x] -> Trouvé(e) [PUP.Gen0|Adw.Wizzcaster|VT.PUP.Optional.Tuto4PC] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | DXJL2NG0M1 : "C:\Program Files (x86)\DPower\ZXYHJA8Z84.exe" [-] -> Trouvé(e) [PUP.Gen0] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | 69XW81KBIU : "C:\Program Files (x86)\BestCleaner\ABZ3Q6PLCF.exe" [x] -> Trouvé(e) [Suspicious.Path|VT.Adware.Agent] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | msiql : C:\Users\fernand\AppData\Local\Temp\00020257\msiql.exe /RUNNING [-] -> Trouvé(e) [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run | CHCRKAJF3S : "C:\Users\fernand\AppData\Local\Temp\1TET2PCCGO.exe" [x] -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | OMEWPRODUCT_L7RFI : "C:\Program Files (x86)\BestCleaner\CQJWEV.exe" [x] -> Trouvé(e) [PUP.Gen0|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | IDSCPRODUCT : "C:\Program Files (x86)\Max Driver Updater\RT98Q3.exe" [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | wd : C:\Users\fernand\AppData\Local\Temp\g2BDC.tmp.exe [x] -> Trouvé(e) [PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | OTUTPRODUCT_2KMJB : "C:\Program Files (x86)\mpck\J7I9SY.exe" [x] -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | OMEWPRODUCT_LEM7W : "C:\Program Files (x86)\DPower\8ZD5ZH.exe" [x] -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | OMEWPRODUCT_GX6NE : "C:\Program Files (x86)\BestCleaner\AV6722.exe" [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce | OMEWPRODUCT_581VB : "C:\Users\fernand\AppData\Local\Temp\XQQ0Z8S108.exe" [x] -> Trouvé(e) [PUP.Gen0|Adw.Elex|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GoogleChromeUpService (C:\ProgramData\service.exe /s GoogleChromeUpService /uid:51477 /local:br) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\KuaiZipDrive (\??\C:\WINDOWS\system32\drivers\KuaiZipDrive.sys) -> Trouvé(e) [PUP.Gen0|VT.Gen:Variant.Razy.111537] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mehugosi (C:\Program Files (x86)\A776EEAB-1482753468-96F7-1A43-74D02B99725F\knskCB5A.tmpfs) -> Trouvé(e) [PUP.Gen0|Suspicious.Path|VT.PUP.Optional.Linkury] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Nettrans (C:\ProgramData\NetworkPacketManitor\Nettrans.exe) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NetUtils2016 (\??\C:\WINDOWS\system32\drivers\NetUtils2016.sys) -> Trouvé(e) [PUP.Gen0|VT.not-a-virus:WebToolbar.Win32.Agent.aeat] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ProntSpooler (C:\Program Files (x86)\Tumutypavo Renew\RcKD5ca5QcZEtTlAMsh6\CLnqtVCk.exe) -> Trouvé(e) [PUP.Gen0|PUP.SearchModule|VT.PUP.Optional.SearchModule] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SMUpd (C:\Program Files\Common Files\Noobzo\GNUpdate\smu.exe /service) -> Trouvé(e) [PUP.Gen0|PUP.SearchModule|VT.Generic.569] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SMUpdd (\??\C:\Program Files\Common Files\Noobzo\GNUpdate\smw.sys) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\zdwfp (\??\C:\WINDOWS\system32\Drivers\zdwfp64.sys) -> Trouvé(e) [PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main | Search Page : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main | Search Page : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main | Search Page : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main | Search Page : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main | Search Bar : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main | Search Bar : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main | Search Bar : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main | Search Bar : http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrtx89rr3wg4wEhaOZjB6LD8QbCMkpZBWzRm9Bov0TdET_77v-Mqp297VAFn9Ng_Bvax7TuvnkBsUZYB21kNZoiqtp--zW1b5is6C4A4jaY-0qxGlbzxO_q3X0t49fqd0g34vfgkUiQ,,&q={searchTerms} -> Trouvé(e) [PUP.Gen0|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {FDD163B7-F61D-4D16-812B-F5CADCC6CEB3} : v2.26|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Max Driver Updater\maxdu.exe|Name=MaxDriverUpdater| [x] -> Trouvé(e) [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {BA3B96E5-7693-4598-964B-FAE8713FD4B1} : v2.26|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\fernand\AppData\Local\BrowserAir\Application\BrowserairExec.exe|Name=BrowserAir (mDNS-In)|Desc=Inbound rule for BrowserAir to allow mDNS traffic.|EmbedCtxt=BrowserAir| [-] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : C:\ProgramData\Hotfresh\Greenlax.dll [x] -> Trouvé(e) [Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : C:\ProgramData\Hotfresh\Kay-Lux.dll [x] -> Trouvé(e) ¤¤¤ Tâches : 5 ¤¤¤ [Suspicious.Path|VT.Atros4.BLBG] \144635077d16t7092303 -- C:\WINDOWS\system32\rundll32.exe ("C:\ProgramData\144635077d16t7092303\144635077d16t7092303.dll",DMT) -> Trouvé(e) [PUP.Gen1|Suspicious.Path|VT.not-a-virus:AdWare.Win32.Shopper.xlp] \IBUpd -- C:\Users\fernand\AppData\Local\BrowserAir\48.0.0.0\updater.exe -> Trouvé(e) [PUP.Gen1|Suspicious.Path|VT.not-a-virus:AdWare.Win32.Shopper.xlp] \IBUpd2 -- C:\Users\fernand\AppData\Local\BrowserAir\48.0.0.0\updater.exe -> Trouvé(e) [Suspicious.Path|VT.Heur.Advml.Gen!c] \SMW_P -- C:\ProgramData\smp2.exe (install1 "http://www%2dsearching.com/?prd=set_epf&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b," Search) -> Trouvé(e) [PUP.SearchModule] \SMW_UpdateTask_Time_3438303737353231382d3755556c415a505757414a34 -- wscript.exe (//B "C:\ProgramData\SearchModule\smhe.js" smu.exe /invoke /f:check_services /l:0) -> Trouvé(e) ¤¤¤ Fichiers : 72 ¤¤¤ [PUP.Gen0][Répertoire] C:\ProgramData\NetworkPacketManitor -> Trouvé(e) [PUP.Gen1][Répertoire] C:\ProgramData\SearchModule -> Trouvé(e) [Tr.Gen0][Fichier] C:\ProgramData\vCore\VCore.exe -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\BrowserAir.lnk [LNK@] C:\Users\fernand\AppData\Local\BROWSE~1\APPLIC~1\BROWSE~1.EXE -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\Gmail.lnk [LNK@] C:\Users\fernand\AppData\Local\BrowserAir\Application\BrowserAir.exe http://mail.google.com -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\Hotmail.lnk [LNK@] C:\Users\fernand\AppData\Local\BrowserAir\Application\BrowserAir.exe http://live.com -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe http://www%2dsearching.com/?prd=set_epc&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b, -> Trouvé(e) [PUP.Gen0][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Int?rnet Explorer.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEERO~1.BAT -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserAir -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BrowserAir.lnk [LNK@] C:\Users\fernand\AppData\Local\BROWSE~1\APPLIC~1\BROWSE~1.EXE -> Trouvé(e) [PUP.Gen0][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\?r?th?r Utilities.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEREH~1.BAT -> Trouvé(e) [PUP.Gen0][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\?ozill? Firefox.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEXOF~1.BAT -> Trouvé(e) [PUP.Gen0][Fichier] C:\Windows\System32\zdengineOff.ini -> Trouvé(e) [PUP.Gen0][Fichier] C:\Windows\syswow64\zdengineOff.ini -> Trouvé(e) [Hidden.ADS][Flux] C:\Windows\System32\drivers:ucdrv-x64.sys -> Trouvé(e) [Hidden.ADS][Flux] C:\Windows\System32\drivers:x64 -> Trouvé(e) [Ads.Generic|Hidden.ADS][Flux] C:\Windows\System32\drivers:x86 -> Trouvé(e) [PUP.Gen0][Fichier] C:\Windows\System32\drivers\NetUtils2016.sys -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Windows\syswow64\config\systemprofile\AppData\Local\zdengine -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Users\fernand\AppData\Roaming\Browsers -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Users\fernand\AppData\Roaming\KuaiZip -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Users\fernand\AppData\Roaming\Note-UP -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Users\fernand\AppData\Roaming\SPI -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Users\fernand\AppData\Local\BrowserAir -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\Users\fernand\AppData\Local\Temp\IKMINDQNES\uninmodule.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\Users\fernand\AppData\Local\Temp\is-VAB8O.tmp\installer.exe -> Trouvé(e) [PUP.Gen0][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\?roth?r Utilities.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEREH~1.BAT -> Trouvé(e) [PUP.Gen1][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [LNK@] C:\PROGRA~2\MOZILL~1\firefox.exe http://www-searching.com/?prd=set_epc&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b, -> Trouvé(e) [PUP.Gen0][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\??zilla Fir?fox.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEXOF~1.BAT -> Trouvé(e) [PUP.Gen0][Répertoire] C:\ProgramData\NetworkPacketManitor -> Trouvé(e) [PUP.Gen1][Répertoire] C:\ProgramData\SearchModule -> Trouvé(e) [Tr.Gen0][Fichier] C:\ProgramData\vCore\VCore.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R2KQNQ7\uninmodule.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R42BSOM\appsoft.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R5I88KQ\TYU1AU9FW.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R62DLSG.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R6ANDZP.exe -> Trouvé(e) [PUP.Gen1][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R70BERL.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe http://www%2dsearching.com/?prd=set_epe&s=GCQzftptn095001AU,5ca14dc1-7240-491b-9663-0da1949fe38b, -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R86KJ06.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$R8WFALY\UZZO5C7LY.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RAK6L3D\advise.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RAK6L3D\caster.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RBI9GS5\testnextversion.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RBNWMIN.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RCY6KPI.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RJHG0VJ.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RLJJMY9\appsoft.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RNN2DT4\appsoft.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RQ4M8L3\uninstaller.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RQBTJ6X\FSOOQ8ERT.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RQHK9F3.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RX4LBLT\5ZYXVBCYW.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RZA90EZ\ZCXRS83SC.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\$Recycle.Bin\S-1-5-21-2388257860-2033325751-358006991-1001\$RZE2SRY.exe -> Trouvé(e) [PUP.SearchModule][Répertoire] C:\Program Files\Common Files\Noobzo -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\Program Files\LVUP20E65U\LVUP20E65.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\Program Files\OD15ZS3HZS\OD15ZS3HZ.exe -> Trouvé(e) [Adw.Wizzcaster][Fichier] C:\Program Files\SPIXNZO5HH\SPIXNZO5H.exe -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Program Files (x86)\A776EEAB-1482753468-96F7-1A43-74D02B99725F -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Program Files (x86)\CleanBrowser -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Program Files (x86)\DPower -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Program Files (x86)\HDWallPaper -> Trouvé(e) [PUP.Gen0|PUP.Gen1][Répertoire] C:\Program Files (x86)\Max Driver Updater -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Program Files (x86)\mpck -> Trouvé(e) [PUP.Gen0][Répertoire] C:\Program Files (x86)\MyMemory -> Trouvé(e) [PUP.Gen0|PUP.Gen1][Répertoire] C:\Program Files (x86)\ORBTR -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\BrowserAir.lnk [LNK@] C:\Users\fernand\AppData\Local\BROWSE~1\APPLIC~1\BROWSE~1.EXE -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\Gmail.lnk [LNK@] C:\Users\fernand\AppData\Local\BrowserAir\Application\BrowserAir.exe http://mail.google.com -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\Desktop\Hotmail.lnk [LNK@] C:\Users\fernand\AppData\Local\BrowserAir\Application\BrowserAir.exe http://live.com -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe http://www%2dsearching.com/?prd=set_epc&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b, -> Trouvé(e) [PUP.Gen0][Fichier] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Int?rnet Explorer.lnk [LNK@] C:\Users\fernand\AppData\Roaming\Browsers\EXEERO~1.BAT -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserAir -> Trouvé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 8 ¤¤¤ [PUP.Gen1][Firefox:Addon] 04iduxuy.default-1481252859664 : Add-ons Manager Context Menu [amcontextmenu@loucypher] -> Trouvé(e) [PUM.HomePage][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.startup.homepage", "http://www-searching.com/?site=shyosffdefault&prd=set_ff&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b,"); -> Trouvé(e) [PUP.Gen1|PUM.NewTab][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.newtab.url", "http://www-searching.com/?site=shyosffdefault&prd=set_ff&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b,"); -> Trouvé(e) [PUM.SearchEngine][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.search.selectedEngine", "Search Module"); -> Trouvé(e) [PUM.SearchEngine][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.search.defaultenginename", "Search Module"); -> Trouvé(e) [PUP.Gen1|PUM.SearchEngine][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.search.searchengine.hp", "http://www.trotux.com/?z=d3d12680e93a75cf67c3846gazab6o3m2wcc7w9c5c&from=clc&uid=SanDiskXSSDXU100X256GB_130554400800&type=hp"); -> Trouvé(e) [PUP.Gen1|PUM.SearchEngine][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.search.searchengine.sp", "http://www.trotux.com/search/?from=clc&q={searchTerms}&type=sp&uid=SanDiskXSSDXU100X256GB_130554400800&z=d3d12680e93a75cf67c3846gazab6o3m2wcc7w9c5c"); -> Trouvé(e) [PUP.Gen1|PUM.SearchEngine][Firefox:Config] 04iduxuy.default-1481252859664 : user_pref("browser.search.searchengine.url", "http://www.trotux.com/search/?from=clc&q={searchTerms}&type=sp&uid=SanDiskXSSDXU100X256GB_130554400800&z=d3d12680e93a75cf67c3846gazab6o3m2wcc7w9c5c"); -> Trouvé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: SanDisk SSD U100 256GB +++++ --- User --- [MBR] 7ecf343f52abcec114c82442d4259f00 [BSP] 84499f32461b26e80854f09d112a3179 : Empty|VT.Unknown MBR Code Partition table: 0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 800 MB 1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 1640448 | Size: 260 MB 2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 2172928 | Size: 128 MB 3 - Basic data partition | Offset (sectors): 2435072 | Size: 221070 MB 4 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 455186432 | Size: 350 MB 5 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 455903232 | Size: 21589 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: TOSHIBA DT01ACA200 +++++ --- User --- [MBR] 0086f36f0b7bc8b257f89fc226376c3d [BSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows Vista/7/8 MBR Code Partition table: 0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB 1 - Basic data partition | Offset (sectors): 264192 | Size: 1907600 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive2: USB DISK 2.0 USB Device +++++ --- User --- [MBR] a48f0df0d99d68e190b3857d597dd0f8 [BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 8064 | Size: 30540 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive3: Seagate Expansion Desk SCSI Disk Device +++++ --- User --- [MBR] 0cfab4fa24dbc36c739bfcd5149b9b13 [BSP] b48cdc2d8f76ec524b01dd6ef355252c : Empty|VT.Unknown MBR Code Partition table: 0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB 1 - Basic data partition | Offset (sectors): 264192 | Size: 4769178 MB User = LL1 ... OK Error reading LL2 MBR! ([1] Fonction incorrecte. ) +++++ PhysicalDrive4: SAMSUNG HD103SI USB Device +++++ --- User --- [MBR] b5d94c9558c2d42166bb538f910b9f13 [BSP] 1968992dc6a86051db06523b64f92323 : Legit.Unknown|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive5: ST2000DL 001-9VT156 USB Device +++++ --- User --- [MBR] d7b10f528bbe53be3293c472d9c6db5f [BSP] 9c474a243145af28ea5b3391de1319a8 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive6: Seagate Backup+ Desk USB Device +++++ Error reading User MBR! ([57] Paramètre incorrect. ) Error reading LL1 MBR! ([79] Le délai de temporisation de sémaphore a expiré. ) Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive7: WD My Book 1230 USB Device +++++ Error reading User MBR! ([57] Paramètre incorrect. ) Error reading LL1 MBR! ([79] Le délai de temporisation de sémaphore a expiré. ) Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive8: Samsung D3 Station USB Device +++++ Error reading User MBR! ([57] Paramètre incorrect. ) Error reading LL1 MBR! ([79] Le délai de temporisation de sémaphore a expiré. ) Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive9: Generic- SD/MMC +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive10: Generic- Compact Flash +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive11: Generic- SM/xD Picture +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive12: Generic- MS/MS-Pro +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive13: Seagate Backup+ Desk SCSI Disk Device +++++ Error reading User MBR! ([57] Paramètre incorrect. ) Error reading LL1 MBR! ([45d] Impossible de satisfaire à la demande en raison d?une erreur de périphérique d?E/S. ) Error reading LL2 MBR! ([1] Fonction incorrecte. )