RogueKiller V12.8.1.0 (x64) [Nov 14 2016] (wersja darmowa) od Adlice Software Kontakt : http://www.adlice.com/contact/ Forum : http://forum.adlice.com Strona internetowa : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com System operacyjny : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Tryb rozruchu : Tryb normalny U|ytkownik : Kamil [Administrator] Lokalizacja programu : C:\Users\Kamil\Desktop\RogueKillerX64.exe Tryb : Skanowanie -- Data : 11/14/2016 17:58:41 (Duration : 01:29:15) ¤¤¤ Procesy : 0 ¤¤¤ ¤¤¤ Rejestr : 9 ¤¤¤ [PUP] (X64) HKEY_CLASSES_ROOT\Tencent -> Wykryto [PUP] (X64) HKEY_USERS\S-1-5-21-1905721025-3557672246-1714588951-1000\Software\dobreprogramy -> Wykryto [PUP] (X86) HKEY_USERS\S-1-5-21-1905721025-3557672246-1714588951-1000\Software\dobreprogramy -> Wykryto [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EE32AAD8-6441-4E06-8D47-C0E001F1CAA0} | DhcpNameServer : 172.20.10.1 ([]) -> Wykryto [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{EE32AAD8-6441-4E06-8D47-C0E001F1CAA0} | DhcpNameServer : 172.20.10.1 ([]) -> Wykryto [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Wykryto [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Wykryto [PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-1905721025-3557672246-1714588951-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Wykryto [PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-1905721025-3557672246-1714588951-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Wykryto ¤¤¤ Zaplanowane zadania : 0 ¤¤¤ ¤¤¤ Pliki : 11 ¤¤¤ [Root.ZeroAccess][Folder] C:\Windows\Installer\{c3f53a4d-59e2-4594-729e-43246b6dcdac}\L -> Wykryto [Root.ZeroAccess][Folder] C:\Windows\Installer\{c3f53a4d-59e2-4594-729e-43246b6dcdac}\U -> Wykryto [PUP][Folder] C:\Users\Kamil\AppData\Roaming\Tencent -> Wykryto [Tr.Generic][Plik] C:\Users\Kamil\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe -> Wykryto [Tr.Generic][Plik] C:\Users\Kamil\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe -> Wykryto [Tr.Generic][Plik] C:\Users\Kamil\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe -> Wykryto [Tr.Generic][Plik] C:\Users\Kamil\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe -> Wykryto [Root.ZeroAccess][Folder] C:\Users\Kamil\AppData\Local\{c3f53a4d-59e2-4594-729e-43246b6dcdac}\L -> Wykryto [Root.ZeroAccess][Folder] C:\Users\Kamil\AppData\Local\{c3f53a4d-59e2-4594-729e-43246b6dcdac}\U -> Wykryto [Hj.Name][Plik] C:\Program Files (x86)\PSPad editor\Notepad.exe -> Wykryto [Tr.Generic][Plik] C:\Users\Kamil\Pictures\Bosch ESI[tronic] Keygen 4Q.2012.exe -> Wykryto ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Plik hosts : 0 ¤¤¤ ¤¤¤ Rootkity : 0 (Driver: zaBadowano) ¤¤¤ ¤¤¤ Przegldarki : 1 ¤¤¤ [PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.suggestions_url [{google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}] -> Wykryto ¤¤¤ Sprawdzenie MBR : ¤¤¤ +++++ PhysicalDrive0: SAMSUNG HD103UJ ATA Device +++++ --- User --- [MBR] 91b5f40c392310ec78ee65992830c78f [BSP] 68b0e51648f7de16e4c69d018b65f25e : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - EFI System Partition | Offset (sectors): 40 | Size: 200 MB 1 - OSX | Offset (sectors): 409640 | Size: 113487 MB 2 - Recovery HD | Offset (sectors): 232831512 | Size: 619 MB 3 - BOOTCAMP | Offset (sectors): 234102784 | Size: 839561 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: ST3500320NS ATA Device +++++ --- User --- [MBR] b977e56ab3d4b3f95b3a089cc4274a34 [BSP] 89317cd9a26e5d46487185203cedbf0c : Windows XP|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 476411 MB [Windows XP Bootstrap | Windows XP Bootloader] User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive2: ST3500418AS ATA Device +++++ --- User --- [MBR] 637c513b5b459f95e50fe1b29b5674fd [BSP] d5638221cc8629b1963778d75bdf432b : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive3: TOSHIBA DT01ACA100 ATA Device +++++ --- User --- [MBR] 636a8027df4b96db3256b9177aa78682 [BSP] 12a11be27d2cc7d477ae55cb189a4848 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive4: HP LaserJet 2840 USB Device +++++ Error reading User MBR! ([15] Urz?dzenie nie jest gotowe. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] ??danie nie jest obs?ugiwane. )