RogueKiller V12.12.26.0 (x64) [Jul 9 2018] (Premium) by Adlice Software mail : http://www.adlice.com/contact/ Feedback : https://forum.adlice.com Website : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 10 (10.0.17134) 64 bits version Started in : Normal mode User : iSu [Administrator] Started from : C:\Program Files\RogueKiller\RogueKiller64.exe Mode : Scan -- Date : 07/18/2018 00:14:15 (Duration : 00:21:12) ¤¤¤ Processes : 0 ¤¤¤ ¤¤¤ Registry : 4 ¤¤¤ [Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1780440095-4180245696-420238287-1001\Software\Microsoft\Windows\CurrentVersion\Run | 1Password : "C:\Users\iSu\AppData\Local\1password\app\7\1Password.exe" /silent [x] -> Found [Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1780440095-4180245696-420238287-1001\Software\Microsoft\Windows\CurrentVersion\Run | 1Password : "C:\Users\iSu\AppData\Local\1password\app\7\1Password.exe" /silent [x] -> Found [PUM.StartMenu] (X64) HKEY_USERS\RK_7s_ON_E_D284\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found [PUM.StartMenu] (X86) HKEY_USERS\RK_7s_ON_E_D284\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found ¤¤¤ Tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Hosts File : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ST4000DM000-1F2168 +++++ --- User --- [MBR] bdbf642f7815e1d104249319214743bd [BSP] 32468b9bbceed235b53e6e1f43cc2026 : Windows Vista/7/8 MBR Code Partition table: 0 - Basic data partition | Offset (sectors): 64 | Size: 3815445 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: WDC WD10EZEX-07M2NA1 +++++ --- User --- [MBR] dc0059921fe79009598258ff68c027c5 [BSP] bbc5f0d526257aebd028604175e58880 : Empty|VT.Unknown MBR Code Partition table: 0 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 2048 | Size: 128 MB 1 - Basic data partition | Offset (sectors): 264192 | Size: 953740 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive2: SAMSUNG MZVKW512HMJP-00000 +++++ --- User --- [MBR] af8a1b0abee310d84c964b4fa3881468 [BSP] ac2aaaca339492b904fb71c1a7ce0486 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 499 MB 1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 1024000 | Size: 100 MB 2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1228800 | Size: 16 MB 3 - Basic data partition | Offset (sectors): 1261568 | Size: 487770 MB User = LL1 ... OK Error reading LL2 MBR! ([1] Incorrect function. )