ÿþRogueKiller V12.11.6.0 (x64) [Jul 10 2017] (Gratuit) par Adlice Software email : http://www.adlice.com/fr/contact/ Remontées : https://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com/fr/ Système d'exploitation : Windows 8.1 (6.3.9600) 64 bits version Démarré en : Mode normal Utilisateur : User [Administrateur] Démarré depuis : C:\Users\User\Logiciels_portables\RogueKiller\RogueKiller_portable64.exe Mode : Scan -- Date : 07/12/2017 21:13:24 (Durée : 01:16:10) ¤¤¤ Processus : 0 ¤¤¤ ¤¤¤ Registre : 10 ¤¤¤ [PUP.SweetLabs|PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\SweetLabs App Platform -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\SweetLabs App Platform -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP -> Trouvé(e) [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP -> Trouvé(e) [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu -> Trouvé(e) [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://acer13.msn.com/?pc=ACJB -> Trouvé(e) [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://acer13.msn.com/?pc=ACJB -> Trouvé(e) [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer13.msn.com/?pc=ACJB -> Trouvé(e) [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-136990079-966958138-3870760089-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer13.msn.com/?pc=ACJB -> Trouvé(e) ¤¤¤ Tâches : 0 ¤¤¤ ¤¤¤ Fichiers : 11 ¤¤¤ [PUP.Pokki|PUP.Gen1][Répertoire] C:\ProgramData\Pokki -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\Public\Desktop\Booking.com.lnk [LNK@] C:\PROGRA~1\Booking.COM\StartURL.exe http://www.booking.com/index.html?aid=379334 -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Fichier] C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk [LNK@] C:\Users\User\AppData\Local\SWEETL~1\Engine\SERVIC~1.EXE /OPEN"f22abfeae27a67446927d078890381efc546d3e1" -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Fichier] C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk [LNK@] C:\Users\User\AppData\Local\SWEETL~1\Engine\SERVIC~1.EXE /OPEN"menu" -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Fichier] C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Pokki Start Menu.lnk [LNK@] C:\Users\User\AppData\Local\SWEETL~1\Engine\SERVIC~1.EXE /OPEN"menu" -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Répertoire] C:\Users\User\AppData\Local\SweetLabs App Platform -> Trouvé(e) [PUP.Pokki|PUP.Gen1][Répertoire] C:\ProgramData\Pokki -> Trouvé(e) [PUP.Gen1][Répertoire] C:\Program Files\Booking.COM -> Trouvé(e) [PUP.Gen1][Fichier] C:\Users\Public\Desktop\Booking.com.lnk [LNK@] C:\PROGRA~1\Booking.COM\StartURL.exe http://www.booking.com/index.html?aid=379334 -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Fichier] C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk [LNK@] C:\Users\User\AppData\Local\SWEETL~1\Engine\SERVIC~1.EXE /OPEN"f22abfeae27a67446927d078890381efc546d3e1" -> Trouvé(e) [PUP.SweetLabs|PUP.Gen1][Fichier] C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk [LNK@] C:\Users\User\AppData\Local\SWEETL~1\Engine\SERVIC~1.EXE /OPEN"menu" -> Trouvé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 1 ¤¤¤ [PUM.HomePage][Firefox:Config] zcjf4bug.default : user_pref("browser.startup.homepage", "https://search.lilo.org"); -> Trouvé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++ --- User --- [MBR] 555c1ac1da331dc8b0f29826456cc5c2 [BSP] 9bd6e6dc4c525ac5b18da20321c16b0f : Empty|VT.Unknown MBR Code Partition table: 0 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 2048 | Size: 600 MB 1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 1230848 | Size: 300 MB 2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1845248 | Size: 128 MB 3 - Basic data partition | Offset (sectors): 2107392 | Size: 464658 MB 4 - Basic data partition | Offset (sectors): 953726976 | Size: 464658 MB 5 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 1905346560 | Size: 23524 MB User = LL1 ... OK User = LL2 ... OK