ÿþRogueKiller V12.11.13.0 [Sep 4 2017] (Premium) (H'37) (1F'E, Adlice 'D(1J/ 'D%DC*1HFJ : http://www.adlice.com/contact/ Feedback : https://forum.adlice.com 'DEHB9 : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com F8'E 'D*4:JD : Windows 7 (6.1.7600) 32 bits version J(/# AJ : 'DH69 'D7(J9J 'DE3*./E : PCki [E3$HD] Started from : C:\Program Files\RogueKiller\RogueKiller.exe 'DH69 : -0A -- 'DJHE : 09/10/2017 17:59:40 (Duration : 00:20:58) 'DEA'*J- : -refid ¤¤¤ 'D9EDJ) : 0 ¤¤¤ ¤¤¤ 'DE3,D : 2 ¤¤¤ [Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{4E120188-0CAC-468C-B2D9-9D1F079EBC25} (C:\Users\PCki\AppData\Local\Temp\HYD10F.tmp.1483466019\HTA\3rdparty\FS.ocx) -> ????? [PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> ??????? (2) ¤¤¤ 'DEG'E : 0 ¤¤¤ ¤¤¤ 'DEDA'* : 7 ¤¤¤ [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_42973\utorrentie.exe -> ????? [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_43085\utorrentie.exe -> ????? [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_43295\utorrentie.exe -> ????? [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe -> ????? [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe -> ????? [Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43916\utorrentie.exe -> ????? [PUP.Ghokswa][EDA] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox -> ????? [PUP.Ghokswa][EDA] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox\Firefox.lnk -> ????? ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ EDA 'DGH3* : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: E-ED) ¤¤¤ ¤¤¤ 'DE*5A- : 1 ¤¤¤ [PUP.Gen2][Firefox:Addon] zd10fdzz.default-1485434394478 : Freemake Video Converter Plugin [fmconverter@gmail.com] -> ????? ¤¤¤ A-5 'D MBR : ¤¤¤ +++++ PhysicalDrive0: Hitachi HDS721050CLA362 ATA Device +++++ --- User --- [MBR] be80b6792b1db84779b85d14d9383754 [BSP] 65871fa74f4cc42430169de39c57e543 : Windows Vista/7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 149997 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 307194930 | Size: 326932 MB User = LL1 ... OK User = LL2 ... OK