RogueKiller V12.9.4.0 (x64) [Jan 16 2017] (Premium) by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 10 (10.0.14393) 64 bits version Started in : Normal mode User : I [Administrator] Started from : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 01/22/2017 14:48:53 (Duration : 00:55:41) ¤¤¤ Processes : 0 ¤¤¤ ¤¤¤ Registry : 4 ¤¤¤ [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{F51D31C6-6425-438B-A011-9348BE542CF2}C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe|Name=ace_engine.exe|Desc=ace_engine.exe|Defer=User| [x] -> Found [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{0FED17E5-CF04-4AE2-9F31-48BE4D48DBE9}C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe|Name=ace_engine.exe|Desc=ace_engine.exe|Defer=User| [x] -> Found [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{FBE52FC8-7314-4F06-93AB-CC48F6B26399}C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe|Name=ace_engine.exe|Desc=ace_engine.exe|Defer=User| [x] -> Found [PUP.Gen1|Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{AF5FD8C7-6BE7-49F7-B267-1DD46A4C51E9}C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\i\appdata\roaming\acestream\engine\ace_engine.exe|Name=ace_engine.exe|Desc=ace_engine.exe|Defer=User| [x] -> Found ¤¤¤ Tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Hosts File : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++ --- User --- [MBR] 1d36f0378d6dd5fce609b94316a1fa2d [BSP] abc2b096351977b764e329806d5eb372 : HP|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 889608 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 1822124032 | Size: 450 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: Generic- Multi-Card USB Device +++++ Error reading User MBR! ([15] The device is not ready. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] The request is not supported. )