RogueKiller V9.2.10.0 [Jul 11 2014] by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : susannah [Admin rights] Mode : Remove -- Date : 09/17/2014 14:19:33 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 22 ¤¤¤ [PUM.Proxy] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> REPLACED (0) [PUM.Proxy] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> REPLACED (0) [PUM.Proxy] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:13081 -> DELETED [PUM.Proxy] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:13081 -> DELETED [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : -> DELETED [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : -> ERROR [2] [PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NOT SELECTED [PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NOT SELECTED [PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NOT SELECTED [PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NOT SELECTED [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NOT SELECTED [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NOT SELECTED [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NOT SELECTED [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NOT SELECTED [PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NOT SELECTED [PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NOT SELECTED [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NOT SELECTED [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NOT SELECTED [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://www.yahoo.com/ -> NOT SELECTED [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://www.yahoo.com/ -> NOT SELECTED [PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Internet Explorer\Main | Search Page : www.google.com -> NOT SELECTED [PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-3700250420-1079645339-1157384645-1001\Software\Microsoft\Internet Explorer\Main | Search Page : www.google.com -> NOT SELECTED ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ HOSTS File : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: NOT LOADED [0xc000036b]) ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ST9500325AS +++++ --- User --- [MBR] 56b4a445694da458f6228e9e265bdfcb [BSP] 55b9901b863b97d5935284e9e1335a03 : Windows Vista/7/8 MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB 1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 15000 MB 2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: Verbatim STORE N GO USB Device +++++ --- User --- [MBR] bac8b5e8f1c80160bd904cfd3f8507a7 [BSP] 031d8d06f0a59c2bcf19385a4a4490d5 : Unknown MBR Code Partition table: 0 - [XXXXXX] FAT16-LBA (0xe) [VISIBLE] Offset (sectors): 8064 | Size: 1907 MB User = LL1 ... OK Error reading LL2 MBR! ([32] The request is not supported. ) ============================================ RKreport_SCN_09172014_141716.log