Author Topic: help w/ log: files forged - system32  (Read 4430 times)

0 Members and 1 Guest are viewing this topic.

September 16, 2017, 01:17:37 PM

Heather Lynn Partridge

  • Newbie

  • Offline
  • *

  • 1
  • Reputation:
    0
    • View Profile
help w/ log: files forged - system32
« on: September 16, 2017, 01:17:37 PM »







RogueKiller V12.11.10.0 (x64) [Aug 14 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.14393) 64 bits version
Started in : Normal mode
User : HLHan [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 09/14/2017 11:58:11 (Duration : 10:54:05)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 3 ¤¤¤
[File.Forged][File] C:\Windows\csup.txt -> Found
[File.Forged][File] C:\Windows\system.ini -> Found
[File.Forged][File] C:\Windows\System32\drivers\etc\networks -> Found

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: Hynix HBG4e +++++
--- User ---
[MBR] 1ea00c3b171998c6226f313fc860afdc
[BSP] 7ec51a4af559746b3c1af62409047f75 : Empty MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 500 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1026048 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 1288192 | Size: 28744 MB
3 - [SYSTEM][MAN-MOUNT]  | Offset (sectors): 60155904 | Size: 450 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Incorrect function. )

+++++ PhysicalDrive1: Linux File-CD Gadget USB Device +++++
Error reading User MBR! ([15] The device is not ready. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] The request is not supported. )


w/ the exception of the ,txt file (which most likely should be deleted), shall I toss the other too ?

*attached json file



Reply #1September 18, 2017, 02:42:58 PM

Curson

  • Global Moderator
  • Hero Member

  • Offline
  • *****

  • 2809
  • Reputation:
    100
    • View Profile
Re: help w/ log: files forged - system32
« Reply #1 on: September 18, 2017, 02:42:58 PM »
Hi Heather,

Welcome to Adlice.com Forum.
You are using an outdated version of RogueKiller. Could you please update it and tell me if the detections are still there ?

Regards.

Note : This thread has been moved to the "RogueKiller" section for clarity.