RogueKiller V12.3.3.0 (x64) [Jun 13 2016] (Free) por Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Site : http://www.adlice.com/software/roguekiller/ Blog : http://www.adlice.com Sistema Operacional : Windows 10 (10.0.10586) 64 bits version Iniciou : Modo normal Usuário : Pedro [Administrador] Started from : C:\Users\Pedro\Desktop\RogueKillerX64.exe Modo : Escanear -- Data : 06/13/2016 22:54:27 ¤¤¤ Processos : 0 ¤¤¤ ¤¤¤ Registro : 9 ¤¤¤ [PUP] (X86) HKEY_LOCAL_MACHINE\Software\Conduit -> Encontrado [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3254986822-4032545658-1977606442-1002\Software\Microsoft\Windows\CurrentVersion\Run | Eption : C:\Windows\SysWOW64\regsvr32.exe C:\Users\Pedro\AppData\Local\YmPack\SamsungTask90.dll [-][x] -> Encontrado [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3254986822-4032545658-1977606442-1002\Software\Microsoft\Windows\CurrentVersion\Run | Eption : C:\Windows\SysWOW64\regsvr32.exe C:\Users\Pedro\AppData\Local\YmPack\SamsungTask90.dll [-][x] -> Encontrado [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3254986822-4032545658-1977606442-1002\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.walasearch.com/?ts=AHEpCHArBHEkAk..&v=20160329&uid=3F74C2F3B9640587028F7F28C68D545D&ptid=ior&mode=ie -> Encontrado [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3254986822-4032545658-1977606442-1002\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.walasearch.com/?ts=AHEpCHArBHEkAk..&v=20160329&uid=3F74C2F3B9640587028F7F28C68D545D&ptid=ior&mode=ie -> Encontrado [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.6 ([]) -> Encontrado [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.6 ([]) -> Encontrado [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{871beb4c-6c22-4b8a-afdd-ef8eec823e2f} | DhcpNameServer : 10.0.0.6 ([]) -> Encontrado [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{871beb4c-6c22-4b8a-afdd-ef8eec823e2f} | DhcpNameServer : 10.0.0.6 ([]) -> Encontrado ¤¤¤ Tarefas : 0 ¤¤¤ ¤¤¤ Arquivos : 0 ¤¤¤ ¤¤¤ Arquivos de hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤ ¤¤¤ Navegadores : 0 ¤¤¤ ¤¤¤ Verificação da MBR : ¤¤¤ +++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++ --- User --- [MBR] 8b41080248407e380b7e280bb8832796 [BSP] 1f9a9495ae03c79521d2bcbfb8169f07 : Empty|VT.Unknown MBR Code Partition table: 0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 500 MB 1 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1026048 | Size: 40 MB 2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1107968 | Size: 128 MB 3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1370112 | Size: 490 MB 4 - Basic data partition | Offset (sectors): 2373632 | Size: 942068 MB 5 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 1931728896 | Size: 452 MB 6 - [SYSTEM][MAN-MOUNT] Microsoft recovery partition | Offset (sectors): 1932654592 | Size: 10189 MB User = LL1 ... OK User = LL2 ... OK