Recent Posts

Pages: 1 [2] 3 4 ... 10
11
RogueKiller / Re: Latest RogueKiller hanging up for 8+ hours on msacm.msg711
« Last post by Curson on January 15, 2018, 01:43:04 pm »
Hi smoked,

RogueKiller V12.12.0 has been released and should be able to complete the scan.
Could you please give it a try ?

Regards.
12
RogueKiller / Re: ==> Proc.Injected <==
« Last post by Curson on January 15, 2018, 01:40:48 pm »
Hi tienchien1,

Yes, if it's an infection a full system reformat will get rid of it.
However, since this is the only injected process, I really doubt there is an infection.

Regards.
13
RogueKiller / Re: Latest RogueKiller hanging up for 8+ hours on msacm.msg711
« Last post by smoked on January 14, 2018, 04:25:51 am »
Sounds great! 8)
14
RogueKiller / Re: ==> Proc.Injected <==
« Last post by tienchien1 on January 14, 2018, 04:17:41 am »
I do not think this is a false positive.  If this is really an infection, will Format and Settings solve the problem? Thanks so much.
15
MRF / Re: Need Advice on Cron Job
« Last post by RazorBurn on January 13, 2018, 06:00:43 pm »
from
Code: [Select]
/var/log/apache2/error.log
Cuckoo Enabled in config.php
Code: [Select]
[Sun Jan 14 00:50:41.748166 2018] [mpm_prefork:notice] [pid 67] AH00163: Apache/2.4.18 (Ubuntu) configured -- resuming normal operations
[Sun Jan 14 00:50:41.748370 2018] [core:notice] [pid 67] AH00094: Command line: '/usr/sbin/apache2'
[Sun Jan 14 00:54:10.804327 2018] [:error] [pid 72] [client 127.0.0.1:62320] PHP Notice:  Only variables should be passed by reference in /var/www/html/mrf/src/modules/cuckoo.php on line 25
[Sun Jan 14 00:54:22.994554 2018] [:error] [pid 544] [client 127.0.0.1:62330] PHP Notice:  Only variables should be passed by reference in /var/www/html/mrf/src/modules/cuckoo.php on line 25, referer: http://localhost/mrf/index.php
[Sun Jan 14 00:54:25.060991 2018] [:error] [pid 544] [client 127.0.0.1:62330] PHP Notice:  Only variables should be passed by reference in /var/www/html/mrf/src/modules/cuckoo.php on line 25, referer: http://localhost/mrf/index.php

Cuckoo disabled in config.php
Code: [Select]
[Sun Jan 14 00:58:33.989768 2018] [mpm_prefork:notice] [pid 612] AH00163: Apache/2.4.18 (Ubuntu) configured -- resuming normal operations
[Sun Jan 14 00:58:33.990017 2018] [core:notice] [pid 612] AH00094: Command line: '/usr/sbin/apache2'
[Sun Jan 14 00:58:37.802995 2018] [:error] [pid 619] [client 127.0.0.1:62375] PHP Deprecated:  Methods with the same name as their class will not be constructors in a future version of PHP; floIcon has a deprecated constructor in /var/www/html/mrf/src/lib/ico/floIcon.php on line 222
[Sun Jan 14 00:58:37.803371 2018] [:error] [pid 619] [client 127.0.0.1:62375] PHP Deprecated:  Methods with the same name as their class will not be constructors in a future version of PHP; floIconImage has a deprecated constructor in /var/www/html/mrf/src/lib/ico/floIcon.php on line 356

Thanks for looking into it.. Then again this is running on Windows Subsystem for Linux on Windows 10 build 1709 x64bit.. Can't find any fault aside from this one, even Cuckoo running on a separate system is working fine.. Disabled the Cuckoo cause I have some few problems with it connecting the VM to the Host, but thats a problem I have to resolve within Cuckoo, but Cuckoo part in MRF is working fine..
16
RogueKiller / Re: ==> Proc.Injected <==
« Last post by Curson on January 13, 2018, 02:11:45 pm »
Hi tienchien1,

The injected executable is Battlefield 1 main executable. Since it's a very large file, it will be difficult.
Did you install any mod or hacking software ? If that's not the case, I think it's Origin anticheat feature being detected.

Regards.
17
RogueKiller / Re: ==> Proc.Injected <==
« Last post by tienchien1 on January 12, 2018, 09:04:42 pm »
I tienchien1,

PUMs detections are not not necessary malicious. Here, they match the MSN search engine and so, are legit.
The [Proc.Injected] detection is not present in your report. Could you please restart your computer, redo a scan and post the report with your next reply ?

Regards.

My computer starts acting oddly, it's not like what I know. From 2 years ago. I realized myself leaking information, but I still do not understand why, even though I reformatted my hard drive several times. Run multiple anti-virus software, all unable to detect this infection (only RogueKiller good) .

And now I know why. Thanks very much. And can help me remove this infection.
18
RogueKiller / Re: ==> Proc.Injected <==
« Last post by tienchien1 on January 12, 2018, 08:08:53 pm »
 I was confused. I'm running a new scan, now. And will give you logs files, in a few minutes.

19
MRF / Re: Need Advice on Cron Job
« Last post by Tigzy on January 12, 2018, 02:33:25 pm »
Hey,
Do you have apache errors when doing so?
20
MRF / Re: Need Advice on Cron Job
« Last post by RazorBurn on January 11, 2018, 08:31:36 pm »
Disabling Cuckoo in config.php gives blank results..

Pages: 1 [2] 3 4 ... 10