RogueKiller V8.4.4 [Feb 5 2013] by Tigzy mail : tigzyRKgmailcom Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Started in : Normal mode User : owner [Admin rights] Mode : Scan -- Date : 02/07/2013 09:46:53 | ARK || MBR | ¤¤¤ Bad processes : 1 ¤¤¤ [DLL] explorer.exe -- C:\Windows\explorer.exe : C:\ProgramData\AllDup\FEShlExt.dll -> UNLOADED ¤¤¤ Registry Entries : 10 ¤¤¤ [RUN][SUSP PATH] HKLM\[...]\Run : DNS7reminder ("C:\Program Files\Nuance\NaturallySpeaking12\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking12\Ereg.ini") -> FOUND [TASK][SUSP PATH] WxDFastUpdaterTask{5685D2BB-B0F2-4199-9339-33E4AA6C6C57}.job : C:\ProgramData\WxDFast\WxDFast1.exe /schedule /profilepath "C:\ProgramData\WxDFast\profile.ini" -> FOUND [STARTUP][SUSP PATH] CNET TechTracker.lnk @owner-pc : C:\Users\owner\AppData\Roaming\CBS Interactive\CNET TechTracker\TechTracker.exe -> FOUND [IFEO] HKLM\[...]\taskmgr.exe : debugger ("d:\Program Files\System Explorer\SystemExplorer.exe") -> FOUND [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> FOUND [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND [HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND [HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\windows\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: SAMSUNG HM500JI +++++ --- User --- [MBR] 2fe0b3e6aa181853b14ec2bd58305af5 [BSP] 071138209bbc0223e651de44f51ee6c2 : KIWI Image system MBR Code Partition table: 0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15360 Mo 1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 31459328 | Size: 100 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31664128 | Size: 230738 Mo 3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 504215552 | Size: 230740 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[12]_S_02072013_02d0946.txt >> RKreport[10]_PR_02052013_02d0813.txt ; RKreport[11]_DN_02052013_02d0813.txt ; RKreport[12]_S_02072013_02d0946.txt ; RKreport[1]_H_02052013_02d0754.txt ; RKreport[2]_PR_02052013_02d0755.txt ; RKreport[3]_DN_02052013_02d0755.txt ; RKreport[4]_SC_02052013_02d0805.txt ; RKreport[5]_PR_02052013_02d0808.txt ; RKreport[6]_H_02052013_02d0808.txt ; RKreport[7]_DN_02052013_02d0808.txt ; RKreport[8]_SC_02052013_02d0811.txt ; RKreport[9]_H_02052013_02d0813.txt