Hello
I am new here and decided to take RogueKiller for a test at my computer and the log gave me the following results:
RogueKiller V9.2.6.0 (x64) [Jul 11 2014] Por Adlice Software
mail :
http://www.adlice.com/contact/Feedback :
http://forum.adlice.comSite :
http://www.adlice.com/softwares/roguekiller/Blog :
http://www.adlice.comSistema Operacional : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Iniciado em : Modo Normal
Usuario : Usuario [Privilegios de Admnistrador]
Modo : Verificar -- Data : 08/11/2014 15:47:59
¤¤¤ Entradas ruins : 10 ¤¤¤
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
[Proc.Hidden] --
¤¤¤ Entradas do Registro : 33 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> ENCONTRADO
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> ENCONTRADO
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_FB68\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_FB68\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BF6AFB00-39F5-43B5-97AD-0B3DBFECB2A0} | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_FB68\ControlSet001\Services\Tcpip\Parameters\Interfaces\{E6E01A88-4EA8-4AB5-872F-60B145CB844E} | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{BF6AFB00-39F5-43B5-97AD-0B3DBFECB2A0} | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\RK_System_ON_F_FB68\ControlSet002\Services\Tcpip\Parameters\Interfaces\{E6E01A88-4EA8-4AB5-872F-60B145CB844E} | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{BF6AFB00-39F5-43B5-97AD-0B3DBFECB2A0} | DhcpNameServer : 200.189.80.122 200.189.80.108 -> ENCONTRADO
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> ENCONTRADO
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> ENCONTRADO
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> ENCONTRADO
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> ENCONTRADO
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> ENCONTRADO
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> ENCONTRADO
[PUM.StartMenu] (X64) HKEY_USERS\RK_Fabricio_ON_F_BBE7\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> ENCONTRADO
[PUM.StartMenu] (X86) HKEY_USERS\RK_Fabricio_ON_F_BBE7\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_E_5156\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_F_423C\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> ENCONTRADO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> ENCONTRADO
¤¤¤ As tarefas agendadas : 0 ¤¤¤
¤¤¤ Arquivos : 0 ¤¤¤
¤¤¤ Arquivo de Hosts : 0 [Too big!] ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤
¤¤¤ Os navegadores da Web : 0 ¤¤¤
¤¤¤ Verificaçao do MBR : ¤¤¤
+++++ PhysicalDrive0: ST500DM0 ST500DM002-1BD14 SCSI Disk Device +++++
--- User ---
[MBR] 26a1a4d0ea0a97461e7d5d1aa6750d00
[BSP] 34a61a003ede25636b391dc009039903 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB
User = LL1 ... OK
Error reading LL2 MBR! ([18] O programa emitiu um comando, mas o comprimento do comando está incorreto. )
+++++ PhysicalDrive1: SAMSUNG HD322HJ SCSI Disk Device +++++
--- User ---
[MBR] 79e5b3505d3bbed87d31057c93ed3838
[BSP] 358f1da5ca91aeaabf802c53f5c4eedb : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 305234 MB
User = LL1 ... OK
Error reading LL2 MBR! ([18] O programa emitiu um comando, mas o comprimento do comando está incorreto. )
+++++ PhysicalDrive2: SAMSUNG HD502IJ SCSI Disk Device +++++
--- User ---
[MBR] e19bcd7fe651c0755442a9d3004bf69f
[BSP] 296c658334246b1be21a2bdca8385d0e : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476938 MB
User = LL1 ... OK
Error reading LL2 MBR! ([18] O programa emitiu um comando, mas o comprimento do comando está incorreto. )
+++++ PhysicalDrive3: TOSHIBA External USB 3.0 USB Device +++++
--- User ---
[MBR] 5048977d4605dd3e3b78606ea89f5ae0
[BSP] 311ade82105d1470a49a0747c6635d54 : HP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1430797 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Não há suporte para o pedido. )
The questiion is: am I infected with malware or something else, given all my Malwarebyes scans appear clean
How do I do to see what to delete or what not?
Topic: Newcomer and a log to see (Read 5025 times)
