Pastebin launched a little side project called VERYVIRAL.com, check it out ;-) Want more features on Pastebin? Sign Up, it's FREE!
Guest

Rkiller

By: a guest on Sep 22nd, 2013  |  syntax: None  |  size: 2.25 KB  |  views: 44  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. RogueKiller V8.6.12 [Sep 18 2013] by Tigzy
  2. mail : tigzyRK<at>gmail<dot>com
  3. Feedback : http://www.adlice.com/forum/
  4. Website : http://www.adlice.com/softwares/roguekiller/
  5. Blog : http://tigzyrk.blogspot.com/
  6.  
  7. Operating System : Windows 8 (6.2.9200 ) 64 bits version
  8. Started in : Normal mode
  9. User : user [Admin rights]
  10. Mode : Scan -- Date : 09/23/2013 00:02:02
  11. | ARK || FAK || MBR |
  12.  
  13. ¤¤¤ Bad processes : 0 ¤¤¤
  14.  
  15. ¤¤¤ Registry Entries : 10 ¤¤¤
  16. [HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> FOUND
  17. [HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
  18. [HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
  19. [HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorUser (0) -> FOUND
  20. [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> FOUND
  21. [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
  22. [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
  23. [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorUser (0) -> FOUND
  24. [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
  25. [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
  26.  
  27. ¤¤¤ Scheduled tasks : 2 ¤¤¤
  28. [V2][SUSP PATH] Hoolapp For Android : C:\Users\user\AppData\Roaming\HOOLAP~1\UPDATE~1\UPDATE~1.EXE - /Check [x] -> FOUND
  29. [V2][SUSP PATH] Hoolapp Init : C:\Users\user\AppData\Roaming\HOOLAP~1\Hoolapp.exe - /Minimized [x] -> FOUND
  30.  
  31. ¤¤¤ Startup Entries : 0 ¤¤¤
  32.  
  33. ¤¤¤ Web browsers : 0 ¤¤¤
  34.  
  35. ¤¤¤ Particular Files / Folders: ¤¤¤
  36.  
  37. ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
  38.  
  39. ¤¤¤ External Hives: ¤¤¤
  40.  
  41. ¤¤¤ Infection :  ¤¤¤
  42.  
  43. ¤¤¤ HOSTS File: ¤¤¤
  44. --> %SystemRoot%\System32\drivers\etc\hosts
  45.  
  46.  
  47.  
  48.  
  49. ¤¤¤ MBR Check: ¤¤¤
  50.  
  51. +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standard disk drives) - Hitachi HTS547575A9E384 +++++
  52. --- User ---
  53. [MBR] a25a448d83c8d65334008a7db5a8b060
  54. [BSP] fed4df5acd5f6d1e766a90d83741eb09 : Empty MBR Code
  55. Partition table:
  56. 0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 Mo
  57. User = LL1 ... OK!
  58. User = LL2 ... OK!
  59.  
  60. Finished : << RKreport[0]_S_09232013_000202.txt >>