RogueKiller V12.12.3.0 (x64) [Feb 5 2018] (Gratuit) par Adlice Software email : http://www.adlice.com/fr/contact/ Remontées : https://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com/fr/ Système d'exploitation : Windows 10 (10.0.16299) 64 bits version Démarré en : Mode normal Utilisateur : Raymond [Administrateur] Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 02/09/2018 19:14:03 (Durée : 00:54:12) ¤¤¤ Processus : 0 ¤¤¤ ¤¤¤ Registre : 4 ¤¤¤ [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-976551006-3039632739-1132508307-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate -> Trouvé(e) [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-976551006-3039632739-1132508307-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate -> Trouvé(e) [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e) [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e) ¤¤¤ Tâches : 2 ¤¤¤ [Hj.Shortcut] \{3C8B9B8C-A66C-4A2D-A805-1D38BA5886AE} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (http://ui.skype.com/ui/0/6.10.0.104/fr/abandoninstall?page=tsPlugin) -> Trouvé(e) [Hj.Shortcut] \{DC74A359-6782-47C0-9AAF-FBFAD3AA2C1B} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (http://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=404) -> Trouvé(e) ¤¤¤ Fichiers : 10 ¤¤¤ [Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk [LNK@] C:\PROGRA~2\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e) [Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 2 ¤¤¤ [PUM.HomePage][Firefox:Config] arzsw02y.default-1506669055859 : user_pref("browser.startup.homepage", "https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate"); -> Trouvé(e) [PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.keyword [google.fr] -> Trouvé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: ST500DM002-1BD142 +++++ --- User --- [MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e [BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB [Error reading VBR! ([1] Fonction incorrecte. )] 1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB 2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB 3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB User != LL1 ... KO! --- LL1 --- [MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e [BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB [Error reading VBR! ([45d] Impossible de satisfaire à la demande en raison d?une erreur de périphérique d?E/S. )] 1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB 2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB 3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB User != LL2 ... KO! --- LL2 --- [MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e [BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB[Invalid] 1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB 2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB 3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB +++++ PhysicalDrive1: WDC WD5003AZEX-00MK2A0 +++++ --- User --- [MBR] 03978f9abd1e6f30b2e2d23005634755 [BSP] b311e9ff1f2c1e1ca5f752e8137056c9 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 198786 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 407834624 | Size: 862 MB 3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 409600000 | Size: 206919 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive2: SanDisk Cruzer Slice USB Device +++++ --- User --- [MBR] 7e4df6c2c6c876d51074f42ec7d778ea [BSP] e82c3869941bbae21df9386f516ded2e : Empty|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 7633 MB User = LL1 ... OK Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )