ÿþRogueKiller V12.8.4.0 (x64) [Dec 5 2016] (Gratuit) par Adlice Software email : http://www.adlice.com/contact/ Remontées : http://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com Système d'exploitation : Windows 8.1 (6.3.9600) 64 bits version Démarré en : Mode normal Utilisateur : Flow [Administrateur] Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 12/11/2016 13:50:27 (Durée : 00:21:30) ¤¤¤ Processus : 0 ¤¤¤ ¤¤¤ Registre : 47 ¤¤¤ [PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} -> Trouvé(e) [PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} (C:\Program Files (x86)\Oasis Space\bin\6a8d64.dll) -> Trouvé(e) [PUP] (X64) HKEY_CLASSES_ROOT\.qmgc -> Trouvé(e) [PUP] (X64) HKEY_CLASSES_ROOT\metnsd -> Trouvé(e) [PUP] (X64) HKEY_CLASSES_ROOT\qmgcfiles -> Trouvé(e) [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1322611863-1416653012-1987639108-1001\Software\Microsoft\Windows\CurrentVersion\Run | YoukuMediaCenter : "C:\Users\Flow\AppData\Roaming\ytmediacenter\YoukuMediaCenter.exe" iku://|start| --sr=r_hklm [x] -> Trouvé(e) [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1322611863-1416653012-1987639108-1001\Software\Microsoft\Windows\CurrentVersion\Run | YoukuMediaCenter : "C:\Users\Flow\AppData\Roaming\ytmediacenter\YoukuMediaCenter.exe" iku://|start| --sr=r_hklm [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {1D4C417A-0987-4AFD-9E10-6E860EF33FA3} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {EDD377BD-5A01-418B-9FDD-72B85FCF3FEE} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{5825E3E7-1BA8-4FBD-AC72-EB5D9687B765}C:\users\flow\appdata\local\temp\gw2.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\flow\appdata\local\temp\gw2.exe|Name=Guild Wars 2 Game Client|Desc=Guild Wars 2 Game Client|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{58153363-16C8-4F21-80BB-D9A999DA6F77}C:\users\flow\appdata\local\temp\gw2.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\flow\appdata\local\temp\gw2.exe|Name=Guild Wars 2 Game Client|Desc=Guild Wars 2 Game Client|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {D227E9F5-FEE0-43F4-A84D-F001435B3ECD} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {07468EE0-5F94-4E43-A509-99AC7FE0353D} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {CE3661F4-0DAE-40C2-83FA-01B13007F867} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {D722ADAB-988E-4AFA-A041-0CB928AA624D} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {069F6B48-B1AF-4CB7-BDCE-B09CACDF39A6} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {EB4C93ED-D6C0-40E1-BAFD-6A1798D2EFD2} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {647D0B1A-BD91-4E09-B34E-2B86D3A0048B} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {FB17B1F1-3364-406E-B3CD-996CA39688D0} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {10FFE9E9-360E-4F5D-A7DD-EBCF63C14EBA} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {AF249E20-507F-4666-B1F9-83840AB3B765} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{D5793643-E72B-4D24-9C95-9657C7C0A313}C:\programdata\battle.net\agent\agent.3668\agent.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\programdata\battle.net\agent\agent.3668\agent.exe|Name=Battle.net Update Agent|Desc=Battle.net Update Agent|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{5D6B5048-16AE-46EA-9624-283A0B61ACFC}C:\programdata\battle.net\agent\agent.3668\agent.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\programdata\battle.net\agent\agent.3668\agent.exe|Name=Battle.net Update Agent|Desc=Battle.net Update Agent|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {17402F77-5B59-4B4E-B55B-F24AF261F16E} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {7B58DD51-F6F4-4287-9B01-AC79BC567ABD} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {D64168FD-171A-4CC7-AF5F-6B9033236D19} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C6F12390-A98D-4A6A-AF24-8CDC252593A0} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {A24AE28B-7256-4876-894C-312F25D0E669} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {FFC8039C-39B4-4BB0-90F6-6792ACDF8870} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {6E9F6866-6380-41E3-A5FC-943A0CAF7B7C} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {4774B432-114C-414B-B592-6BED4182CBDE} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe|Name=Battle.net Update Agent| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{F4657ADB-9F4E-4D16-8A7F-3BC4A5EE2F6C}C:\users\flow\appdata\local\popcorn time\nw.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\flow\appdata\local\popcorn time\nw.exe|Name=nw.exe|Desc=nw.exe|Defer=User| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{AF399BF6-A582-4358-AC1D-CFC9EB49EC7F}C:\users\flow\appdata\local\popcorn time\nw.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\flow\appdata\local\popcorn time\nw.exe|Name=nw.exe|Desc=nw.exe|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {BD404964-86D6-485F-AB8E-798CD12FD97B} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Flow\AppData\Local\Temp\QQVipDownloader\mhfc_1456545385_88212\MiniQQDL.exe|Name=ÌÚѶ²úÆ·ÏÂÔØ×é¼þ| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {BB997F4E-CE64-4602-922B-1A435C4AE403} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Flow\AppData\Local\Temp\QQVipDownloader\mhfc_1456545385_88212\MiniQQDL.exe|Name=ÌÚѶ²úÆ·ÏÂÔØ×é¼þ| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{D01A4B30-E0C3-41F3-8C6A-A285F0BD43F8}C:\users\flow\appdata\local\temp\qqvipdownloader\mhfc_1456545385_88212\teniodl.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\flow\appdata\local\temp\qqvipdownloader\mhfc_1456545385_88212\teniodl.exe|Name=teniodl.exe|Desc=teniodl.exe|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{5AE7D27B-2755-49AD-A515-622CAC34C0F6}C:\users\flow\appdata\local\temp\qqvipdownloader\mhfc_1456545385_88212\teniodl.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\flow\appdata\local\temp\qqvipdownloader\mhfc_1456545385_88212\teniodl.exe|Name=teniodl.exe|Desc=teniodl.exe|Defer=User| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {42D60E07-422B-4D74-ACA7-F0E94D9A21F8} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Flow\AppData\Roaming\Tencent\????Online\7F51B5ABF0B2ABF69723BBC738800B7B\TenioDL\teniodl.exe|Name=TenioDL??????| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {BB86212D-7210-4D0D-9F0C-88419BFCBE67} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Flow\AppData\Roaming\Tencent\????Online\7F51B5ABF0B2ABF69723BBC738800B7B\TenioDL\teniodl.exe|Name=TenioDL??????| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {B6BF354D-A2E6-47F5-92AC-3219B42492A7} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|Profile=Public|App=c:\users\flow\appdata\roaming\tencent\????online\7f51b5abf0b2abf69723bbc738800b7b\teniodl\teniodl.exe|Name=TenioDL??????|Desc=TenioDL??????|Edge=TRUE| [x] -> Trouvé(e) [PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {FDD353A3-6A21-41EB-8752-11CE45EF2C9E} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|Profile=Public|App=c:\users\flow\appdata\roaming\tencent\????online\7f51b5abf0b2abf69723bbc738800b7b\teniodl\teniodl.exe|Name=TenioDL??????|Desc=TenioDL??????|Edge=TRUE| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {61DB528A-0124-44C5-B090-7E3A3DB146E6} : v2.22|Action=Allow|Active=TRUE|Dir=In|App=C:\Users\Flow\AppData\Roaming\youku\..\ytmediacenter\ikuacc.exe|Name=ikuacc| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {82FB0B36-4C6D-4285-A49B-3176FC68BFD1} : v2.22|Action=Allow|Active=TRUE|Dir=In|App=C:\Users\Flow\AppData\Roaming\youku\..\ytmediacenter\ikuacc.exe|Name=ikuacc| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {73677B9C-6742-4B33-AA6A-37694A9869C5} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Flow\AppData\Local\Temp\QQGameDownloader\mhfc_1456323158_82630\MiniQQDL.exe|Name=ÌÚѶ²úÆ·ÏÂÔØ×é¼þ| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {CD6DED27-A5AC-4A8B-A27C-84BE99A63BF4} : v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Flow\AppData\Local\Temp\QQGameDownloader\mhfc_1456323158_82630\MiniQQDL.exe|Name=ÌÚѶ²úÆ·ÏÂÔØ×é¼þ| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{38602D6B-DEDD-4573-8473-AC2E6B336D7A}C:\users\flow\appdata\local\temp\qqgamedownloader\mhfc_1456323158_82630\teniodl.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\flow\appdata\local\temp\qqgamedownloader\mhfc_1456323158_82630\teniodl.exe|Name=teniodl.exe|Desc=teniodl.exe|Defer=User| [x] -> Trouvé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{529ACF34-9233-45E3-843A-6D7B8B222F1A}C:\users\flow\appdata\local\temp\qqgamedownloader\mhfc_1456323158_82630\teniodl.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\flow\appdata\local\temp\qqgamedownloader\mhfc_1456323158_82630\teniodl.exe|Name=teniodl.exe|Desc=teniodl.exe|Defer=User| [x] -> Trouvé(e) ¤¤¤ Tâches : 0 ¤¤¤ ¤¤¤ Fichiers : 13 ¤¤¤ [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41073\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.9_42923\utorrentie.exe -> Trouvé(e) [Tr.Generic][Fichier] C:\Users\Flow\AppData\Roaming\uTorrent\updates\3.4.9_42973\utorrentie.exe -> Trouvé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 4 ¤¤¤ [PUM.SearchEngine][Firefox:Config] pw2pogpa.default : user_pref("browser.search.selectedEngine", "Google (avast)"); -> Trouvé(e) [PUM.SearchEngine][Firefox:Config] pw2pogpa.default : user_pref("browser.search.defaultenginename", "Google (avast)"); -> Trouvé(e) [PUM.HomePage][Chrome:Config] Default [SecurePrefs] : homepage [http://houmpage.com/?src=hp&ssid=1449275590&a=1003364&uuid=7203598b-00d8-43c4-97b2-c55d23e82911] -> Trouvé(e) [PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.keyword [google.fr] -> Trouvé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: Samsung SSD 840 EVO 250GB +++++ --- User --- [MBR] e033f0ca78b51f1f46cd548fa6e1fe13 [BSP] 7e108cb67e7967c77305c365c29a74c5 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 238123 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: ST2000DM001-1CH164 +++++ --- User --- [MBR] 58d3f2f18b71ac7b704c6e72aca5d91b [BSP] a3430b45411a43cb4f0cdf9893078ce2 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK