Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Tigzy

Pages: 1 ... 61 62 [63] 64
931
RogueKiller / Re: Roguekiller wiped out my Windows Defender!?
« on: February 10, 2014, 08:18:29 am »
By the way, the only case where RogueKiller cleans Windows Defender, is facing a ZeroAccess infection.
It only removes the symbolic link that the infection has created to kill Windows Defender. http://nakedsecurity.sophos.com/zeroaccess3/

You have to repair the services that ZeroAccess has removed too (same link bove for detailed description).
You can do this with several tools, but RogueKiller does embeds such feature => Tools menu, Repair services. :)

932
I don't find the debug.log lines :/ Did you forget them?
What if you suspend the process with Process Explorer (context menu as well) before create the dump?

Because the stack trace is missing the symbols (that are private on my side)

933
RogueKiller / Re: Roguekiller wiped out my Windows Defender!?
« on: February 10, 2014, 07:27:52 am »
Hey
Do you have the reports?


934
RogueKiller / Re: Fichiers Docx crippter
« on: February 06, 2014, 07:31:00 pm »
bonjour,

Quel est le nom du malware?
A mon avis il y a peu d'espoir, la plupart des crypto ransomwares sont trop complexes maintenant.

935
RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 04:27:56 pm »
Non, rien de plus, j'ai bien vu le problème...
Signature pas assez large  :-\ qui a été detectée dans le produit de Norman.

Je confirme que ce fichier n'est pas infecté.

936
RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 01:53:54 pm »
Je me suis procuré le fichier.
C'est bien un FP, qui sera corrigé dans la prochaine version.

937
RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 12:08:13 pm »
Ou encore mieux, tu peux uploader le fichier ici: https://www.virustotal.com/
Et m'envoyer le lien

938
News/Updates / Re: Email activation with GMAIL
« on: February 06, 2014, 11:37:37 am »
The issue is FIXED.
I have activated by hand all gmail accounts stuck on email approval.
New registrations should pass.

939
RogueKiller / Re: ZEKOS perststant
« on: February 06, 2014, 10:46:46 am »
Salut
On dirait qu'il s'agit d'un faux positif...

Pourrait tu zipper ce fichier: C:\Program Files\Norman\Npm\Bin\zanda.exe
et l'attacher en pièce jointe?

940
News/Updates / Email activation with GMAIL
« on: February 06, 2014, 08:44:10 am »
Some of you are probably not receiving email activation if you register with a GMAIL account. :/
This is a problem of server configuration, we are working on it.

941
RogueKiller / RogueKiller blocks on ProcessTree
« on: February 03, 2014, 10:27:20 am »
EDIT 02/18/2014. This is not fixed. We still need debug informations please.


Hello
This is a known issue, but we are unable to fix it due to lack of information.
If you have this problem, please follow the instructions below in order to help us fixing this issue.  :)

- Download the debug version: http://www.sur-la-toile.com/RogueKiller/RogueKiller_DEBUG.exe
- Launch it.
- When it blocks, go to : %Desktop%/RK_Quarantine folder and copy the debug.log file on the desktop.
- It can be huge, so please remove all but the last 100 lines with a text editor like notepad. Save it.
- In this thread, attach this tiny report and please provide your OS information with it (Windows XP, Windows 7 64 bits/32 bits, ... )

Thanks in advance :)



942
RogueKiller / Re: Rapport du scan , comment l'interpréter?
« on: February 03, 2014, 07:59:59 am »
Bonjour
Pour les entrées de registre, rien d'alarmant.

En revanche, il y a peut être un rootkit:

Quote
[Address] IRP[IRP_MJ_CREATE] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\System32\drivers\mountmgr.sys -> HOOKED (Unknown @ 0x867601F8)

Je conseille de faire un scan avec Malwarebytes Anti-Rootkit: http://www.malwarebytes.org/antirootkit/

943
RogueKiller / Re: dlhost
« on: February 02, 2014, 06:56:31 pm »
bonjour

C'est un problème connu.
Après plusieurs essais / redémarrage, ça doit passer.
Nous travaillons dessus.

944
RogueKiller / FAQ ( Frequently Asked Questions)
« on: January 31, 2014, 11:41:19 am »

945
General Discussion / Introduce yourself
« on: January 30, 2014, 03:45:40 pm »
Hey :)
Unique topic for introducing.
Please introduce yourself here.

Myself:
Tigzy, owner of Adlice.com. Developer of RogueKiller and some other tools.
Live in France.

:)

Pages: 1 ... 61 62 [63] 64