1
RogueKiller / help w/ log: files forged - system32
« on: September 16, 2017, 01:17:37 PM »RogueKiller V12.11.10.0 (x64) [Aug 14 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com
Operating System : Windows 10 (10.0.14393) 64 bits version
Started in : Normal mode
User : HLHan [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 09/14/2017 11:58:11 (Duration : 10:54:05)
¤¤¤ Processes : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Tasks : 0 ¤¤¤
¤¤¤ Files : 3 ¤¤¤
[File.Forged][File] C:\Windows\csup.txt -> Found
[File.Forged][File] C:\Windows\system.ini -> Found
[File.Forged][File] C:\Windows\System32\drivers\etc\networks -> Found
¤¤¤ WMI : 0 ¤¤¤
¤¤¤ Hosts File : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: Hynix HBG4e +++++
--- User ---
[MBR] 1ea00c3b171998c6226f313fc860afdc
[BSP] 7ec51a4af559746b3c1af62409047f75 : Empty MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 500 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1026048 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 1288192 | Size: 28744 MB
3 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 60155904 | Size: 450 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Incorrect function. )
+++++ PhysicalDrive1: Linux File-CD Gadget USB Device +++++
Error reading User MBR! ([15] The device is not ready. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] The request is not supported. )
w/ the exception of the ,txt file (which most likely should be deleted), shall I toss the other too ?
*attached json file