RogueKiller V12.11.0.0 (x64) [May 29 2017] (Gratuit) par Adlice Software email : http://www.adlice.com/contact/ Remontées : https://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com Système d'exploitation : Windows 8.1 (6.3.9600) 64 bits version Démarré en : Mode normal Utilisateur : Marcel [Administrateur] Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 06/04/2017 16:14:02 (Durée : 00:47:01) ¤¤¤ Processus : 0 ¤¤¤ ¤¤¤ Registre : 9 ¤¤¤ [PUP.Boxore|Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\AppId_Catalog\1370C0EE | AppFullPath : C:\ProgramData\Boxore\LSP\MediaStreamingService.exe [x] -> Trouvé(e) [PUP.Boxore|Suspicious.Path|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\AppId_Catalog\1370C0EE | AppFullPath : C:\ProgramData\Boxore\LSP\MediaStreamingService.exe [x] -> Trouvé(e) [PUP.Gen1] (X64) HKEY_CLASSES_ROOT\CLSID\{6968357A-9092-4B44-9EF3-D048D9BB1B25} (C:\Program Files (x86)\SeeSimilar\ButtonSite64.dll) -> Trouvé(e) [PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4} -> Trouvé(e) [PUP.Boxore|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Boxore -> Trouvé(e) [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-629588990-3439970172-2009497181-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://apps.facebook.com/super_city_game/?fb_source=rightcolumn -> Trouvé(e) [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-629588990-3439970172-2009497181-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://apps.facebook.com/super_city_game/?fb_source=rightcolumn -> Trouvé(e) [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e) [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e) ¤¤¤ Tâches : 0 ¤¤¤ ¤¤¤ Fichiers : 1 ¤¤¤ [Hj.Shortcut][Fichier] C:\Users\Marcel\AppData\Local\Microsoft\Windows\Application Shortcuts\Microsoft.InternetExplorer.Default\14941087000.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe -contentTile -formatVersion 0x00000002 -pinnedTimeLow 0xa3d08c80 -pinnedTimeHigh 0x01ceaa3f -securityFlags 0x00000000 -url 0x0000003c http://windows.microsoft.com/fr-fr/internet-explorer/browser -> Trouvé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 3 ¤¤¤ [PUP.Gen2][Firefox:Addon] ctqidn8g.default : Search and New Tab by Yahoo [jid1-16aeif9OQIRKxA@jetpack] -> Trouvé(e) [PUM.SearchEngine][Firefox:Config] ctqidn8g.default : user_pref("browser.search.selectedEngine", "Google (avast)"); -> Trouvé(e) [PUM.SearchEngine][Firefox:Config] ctqidn8g.default : user_pref("browser.search.defaultenginename", "Google (avast)"); -> Trouvé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: TOSHIBA MK5075GSX +++++ --- User --- [MBR] a84dd93b5b19931ceaddbccc47850486 [BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code Partition table: 0 - [SYSTEM] Basic data partition | Offset (sectors): 2048 | Size: 450 MB 1 - Basic data partition | Offset (sectors): 923648 | Size: 260 MB 2 - Basic data partition | Offset (sectors): 1456128 | Size: 128 MB 3 - Basic data partition | Offset (sectors): 1718272 | Size: 466112 MB 4 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 956315648 | Size: 350 MB 5 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 957032448 | Size: 9639 MB User = LL1 ... OK User = LL2 ... OK