API tools faq
paste
Advertisement
TheBladeRoden

Roguekiller

TheBladeRoden
Dec 16th, 2014
72
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.60 KB | None | 0 0
raw download clone embed print report
  1. RogueKiller V10.1.0.0 [Dec 11 2014] by Adlice Software
  2. mail : http://www.adlice.com/contact/
  3. Feedback : http://forum.adlice.com
  4. Website : http://www.adlice.com/softwares/roguekiller/
  5. Blog : http://www.adlice.com
  6.  
  7. Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
  8. Started in : Normal mode
  9. User : Josh [Administrator]
  10. Mode : Scan -- Date : 12/16/2014 00:11:39
  11.  
  12. ¤¤¤ Processes : 0 ¤¤¤
  13.  
  14. ¤¤¤ Registry : 8 ¤¤¤
  15. [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\RzMaelstromVADStreamingService ("C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe") -> Found
  16. [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\xhunter1 (\??\C:\Windows\xhunter1.sys) -> Found
  17. [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\RzMaelstromVADStreamingService ("C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe") -> Found
  18. [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\xhunter1 (\??\C:\Windows\xhunter1.sys) -> Found
  19. [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Found
  20. [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Found
  21. [Tr.Poweliks] (X64) HKEY_USERS\.DEFAULT\Software\classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\LocalServer32 -> Found
  22. [Tr.Poweliks] (X64) HKEY_USERS\S-1-5-18\Software\classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\LocalServer32 -> Found
  23.  
  24. ¤¤¤ Tasks : 0 ¤¤¤
  25.  
  26. ¤¤¤ Files : 0 ¤¤¤
  27.  
  28. ¤¤¤ Hosts File : 16 ¤¤¤
  29. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
  30. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 activate.adobe.com
  31. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 3dns-3.adobe.com
  32. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 adobe-dns-2.adobe.com
  33. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 adobe-dns-3.adobe.com
  34. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 ereg.wip3.adobe.com
  35. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 activate-sea.adobe.com
  36. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 wip3.adobe.com
  37. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 wwis-dubc1-vip60.adobe.com
  38. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 activate-sjc0.adobe.com
  39. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 practivate.adobe.com
  40. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 ereg.adobe.com
  41. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 activate.wip3.adobe.com
  42. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 3dns-2.adobe.com
  43. [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 adobe-dns.adobe.com
  44. [C:\Windows\System32\drivers\etc\hosts] ::1 localhost
  45.  
  46. ¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤
  47.  
  48. ¤¤¤ Web browsers : 1 ¤¤¤
  49. [PUM.HomePage][FIREFX:Config] ln9glt2m.default : user_pref("browser.startup.homepage", "www.google.com"); -> Found
  50.  
  51. ¤¤¤ MBR Check : ¤¤¤
  52. +++++ PhysicalDrive0: SAMSUNG HD502HJ ATA Device +++++
  53. --- User ---
  54. [MBR] 405b880b3a1c71d7e7c13c6731d0bb4a
  55. [BSP] 41167fcf66645d1c17120cd0d92526b9 : Windows Vista/7/8 MBR Code
  56. Partition table:
  57. 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476938 MB
  58. User = LL1 ... OK
  59. User = LL2 ... OK
  60.  
  61. +++++ PhysicalDrive1: ST3320620AS ATA Device +++++
  62. --- User ---
  63. [MBR] e06852f1508b407d4808fd34ef7d989f
  64. [BSP] 8fe3b6ee55331c0af9dacd90bcffcd6e : Windows Vista/7/8 MBR Code
  65. Partition table:
  66. 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 305243 MB
  67. User = LL1 ... OK
  68. User = LL2 ... OK
  69.  
  70. +++++ PhysicalDrive2: Seagate FreeAgent USB Device +++++
  71. --- User ---
  72. [MBR] ff39e542d38d3653a4fbc86b8a93b47e
  73. [BSP] aa5cc12f563ea5f2bd9201b5ce7d9f1e : Windows XP MBR Code
  74. Partition table:
  75. 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 953867 MB
  76. User = LL1 ... OK
  77. Error reading LL2 MBR! ([32] The request is not supported. )
  78.  
  79. +++++ PhysicalDrive3: UFD USB Flash Drive USB Device +++++
  80. --- User ---
  81. [MBR] cbd1a86e23049676167ddd9423a93270
  82. [BSP] 397f8d0a5c6094c0652366d6485dc9fb : Windows Vista/7/8 MBR Code
  83. Partition table:
  84. 0 - [ACTIVE] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 3823 MB
  85. User = LL1 ... OK
  86. Error reading LL2 MBR! ([32] The request is not supported. )
  87.  
  88.  
  89. ============================================
  90. RKreport_DEL_10212014_042318.log - RKreport_DEL_10212014_051841.log - RKreport_DEL_10212014_081336.log - RKreport_SCN_10212014_042029.log
  91. RKreport_SCN_10212014_051606.log - RKreport_SCN_10212014_081011.log
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!