Adlice forum

Software feedback => RogueKiller => Topic started by: wab on December 12, 2015, 11:26:54 AM

Title: Advanced system Care 9 and IAT hooks?
Post by: wab on December 12, 2015, 11:26:54 AM

Hi,

in a period of several months I experienced that Roguekiller noticed  IAT hooks.I couldnt find the source of it.Yesterday I did a clean install Win 10 64 ,and after installing Advanced System Care 9 Roguekiller detected the IAT Hooks in explorer and more(see attachment).Also my wifes laptop on wich asc is installed has the same hooks. May it is harmless,but I dont know. I did send today also  the rappoort tot ASC. Help!

Wabbie

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: Curson on December 14, 2015, 03:55:52 PM

Hi wav,

Welcome to Adlice.com Forum.
Could you please attach the JSON report in your next reply ?

We are going to perform an extended analysis on the hooks.
Please follow the following process :

• Download Process Explorer (http://live.sysinternals.com/procexp.exe) and save it to your desktop.
  
• Click on the setup file (procexp.exe) and select Run as Administrator to start the tool.
  
• Locate the process named explorer.exe, do a right click on it and select Create Dump > Create Full Dump...
  
• Save the dump on your desktop and compress it.
• Upload it to Dropbox, Google Drive or similar services and share the link in your next reply.

Regards.

Note : This thread has been moved to the "RogueKiller" section for clarity.

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: wab on December 14, 2015, 07:34:18 PM

Hi

thank you for your comment, energy and time,;Here is the link:https://www.dropbox.com/s/bentf6x786mp5fq/rogueinstructie.odt.rar?dl=0

I hope it  is a harmless hook. I wish you(dont know how long the analyse takes) a ver good Christmas.

Wabbie

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: Curson on December 14, 2015, 10:44:46 PM

Hi Wabbie,

I'm sorry, but you didn't upload the right files.
These hooks are certainly harmless but we need the dump and JSON report in order to whitelist them.

Good Christmas to you too. ;)
Regards.

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: wab on December 15, 2015, 10:33:00 AM

ouch very sorry .I hope this is the right one;I also include the answer from ASC(send them also mail about this question)
https://www.dropbox.com/s/io8jrhmevqr1o9j/Roguekillerrapport.rar?dl=0

greetings Wabbie

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: Curson on December 15, 2015, 11:30:21 PM

Hi Wabbie,

You uploaded RogueKiller TXT report this time, not the dump nor the JSON report.
Could you please try it again ?

Regards.

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: wab on December 16, 2015, 08:38:00 AM

same player (at age 67)shoots again .so in the end the dump   https://www.dropbox.com/s/wdq716m1se2ovjf/explorer.rar?dl=0

greetings  wabbie

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: Curson on December 16, 2015, 12:29:31 PM

Hi wabbie,

Player wins.  8)
Could you please attatch the JSON report as well ? We really need it in order to whitelist those hooks.
Thanks for your patience.

Regards.

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: wab on December 17, 2015, 01:25:06 PM

 Here it is in the end: https://www.dropbox.com/s/h15dkse79hc34k2/roguerapport.rar?dl=0

greetings and many thanks

Title: Re: Advanced system Care 9 and IAT hooks?
Post by: Curson on December 18, 2015, 02:40:01 PM

Hi wabbie,

Thanks.
We will analyze it as soon as possible and get back to you.

Regards.