Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - Tigzy

Pages: 1 ... 61 62 [63] 64
RogueKiller / Re: Roguekiller wiped out my Windows Defender!?
« on: February 10, 2014, 08:18:29 am »
By the way, the only case where RogueKiller cleans Windows Defender, is facing a ZeroAccess infection.
It only removes the symbolic link that the infection has created to kill Windows Defender.

You have to repair the services that ZeroAccess has removed too (same link bove for detailed description).
You can do this with several tools, but RogueKiller does embeds such feature => Tools menu, Repair services. :)

I don't find the debug.log lines :/ Did you forget them?
What if you suspend the process with Process Explorer (context menu as well) before create the dump?

Because the stack trace is missing the symbols (that are private on my side)

RogueKiller / Re: Roguekiller wiped out my Windows Defender!?
« on: February 10, 2014, 07:27:52 am »
Do you have the reports?

RogueKiller / Re: Fichiers Docx crippter
« on: February 06, 2014, 07:31:00 pm »

Quel est le nom du malware?
A mon avis il y a peu d'espoir, la plupart des crypto ransomwares sont trop complexes maintenant.

RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 04:27:56 pm »
Non, rien de plus, j'ai bien vu le problème...
Signature pas assez large  :-\ qui a été detectée dans le produit de Norman.

Je confirme que ce fichier n'est pas infecté.

RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 01:53:54 pm »
Je me suis procuré le fichier.
C'est bien un FP, qui sera corrigé dans la prochaine version.

RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 12:08:13 pm »
Ou encore mieux, tu peux uploader le fichier ici:
Et m'envoyer le lien

News/Updates / Re: Email activation with GMAIL
« on: February 06, 2014, 11:37:37 am »
The issue is FIXED.
I have activated by hand all gmail accounts stuck on email approval.
New registrations should pass.

RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 10:46:46 am »
On dirait qu'il s'agit d'un faux positif...

Pourrait tu zipper ce fichier: C:\Program Files\Norman\Npm\Bin\zanda.exe
et l'attacher en pièce jointe?

News/Updates / Email activation with GMAIL
« on: February 06, 2014, 08:44:10 am »
Some of you are probably not receiving email activation if you register with a GMAIL account. :/
This is a problem of server configuration, we are working on it.

RogueKiller / RogueKiller blocks on ProcessTree
« on: February 03, 2014, 10:27:20 am »
EDIT 02/18/2014. This is not fixed. We still need debug informations please.

This is a known issue, but we are unable to fix it due to lack of information.
If you have this problem, please follow the instructions below in order to help us fixing this issue.  :)

- Download the debug version:
- Launch it.
- When it blocks, go to : %Desktop%/RK_Quarantine folder and copy the debug.log file on the desktop.
- It can be huge, so please remove all but the last 100 lines with a text editor like notepad. Save it.
- In this thread, attach this tiny report and please provide your OS information with it (Windows XP, Windows 7 64 bits/32 bits, ... )

Thanks in advance :)

RogueKiller / Re: Rapport du scan , comment l'interpréter?
« on: February 03, 2014, 07:59:59 am »
Pour les entrées de registre, rien d'alarmant.

En revanche, il y a peut être un rootkit:

[Address] IRP[IRP_MJ_CREATE] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)

Je conseille de faire un scan avec Malwarebytes Anti-Rootkit:

RogueKiller / Re: dlhost
« on: February 02, 2014, 06:56:31 pm »

C'est un problème connu.
Après plusieurs essais / redémarrage, ça doit passer.
Nous travaillons dessus.

RogueKiller / FAQ ( Frequently Asked Questions)
« on: January 31, 2014, 11:41:19 am »

General Discussion / Introduce yourself
« on: January 30, 2014, 03:45:40 pm »
Hey :)
Unique topic for introducing.
Please introduce yourself here.

Tigzy, owner of Developer of RogueKiller and some other tools.
Live in France.


Pages: 1 ... 61 62 [63] 64