RogueKiller V8.5.

4 [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : miguel.carvalho [Admin rights]
Mode : Remove -- Date : 06/12/2013 19:20:35
| ARK || MBR |
Bad processes : 0
Registry Entries : 6
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ SMENU] HKCU\[...]\Advanced : Start_TrackProgs (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1)
-> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1)
-> REPLACED (0)
Particular Files / Folders:
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-3595587848-1729804846-18331
06199-1170\$ee73ac8e553919a3b79fc83401c6a45b\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-3595587848-1729804846-18331
06199-1170\$ee73ac8e553919a3b79fc83401c6a45b\L --> REMOVED
Driver : [NOT LOADED]
Infection : ZeroAccess
HOSTS File:
--> C:\windows\system32\drivers\etc\hosts

MBR Check:
+++++ PhysicalDrive0: TOSHIBA MK5061GSYN +++++
--- User --[MBR] ab1c39ca08ea24f1f5b38a15287b3204
[BSP] bf4aea19f55568c52351067e8847df57 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 461544 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 948316160 | Size: 13895 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Finished : << RKreport[2]_D_06122013_02d1920.txt >>
RKreport[1]_S_06122013_02d1919.txt ; RKreport[2]_D_06122013_02d1920.txt