« previous next »
Pages: [1]

Author Topic: Rootkit Detection - Pls Evaluate Report  (Read 5065 times)

0 Members and 1 Guest are viewing this topic.

December 15, 2014, 02:14:07 AM

derek123456789

  • Newbie
  • Offline
  • *
  • 5
  • Reputation:
    0
    • View Profile
Rootkit Detection - Pls Evaluate Report
« on: December 15, 2014, 02:14:07 AM »
Hi - Laptop has been acting funny...I am almost positive my new router got infected after I forgot to change the default PW for a few days.  I run Avast and MBAM actively and shut Defender off.  TDSSKiller is coming up clean.

Please note, first time I ran RK today, the initial scan turned off a MBAM process (a bit odd).  Then the next one found some PUM Reg. entries that I deleted (in addition to all the rootkit stuff).  This was the latest.  Thanks!

RogueKiller V10.1.0.0 (x64) [Dec 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Derek [Administrator]
Mode : Scan -- Date : 12/14/2014  20:04:19

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 8 (Driver: Loaded) ¤¤¤
[IAT:Inl] (chrome.exe) ntdll.dll - LdrUnloadDll : Unknown @ 0x7ffd55df075c (jmp 0xffffffff8018f41c)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrLoadDll : Unknown @ 0x7ffd55df03a4 (jmp 0xffffffff80169654)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrUnloadDll : Unknown @ 0x7ffd55df075c (jmp 0xffffffff8018f41c)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrLoadDll : Unknown @ 0x7ffd55df03a4 (jmp 0xffffffff80169654)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrUnloadDll : Unknown @ 0x7ffd55df075c (jmp 0xffffffff8018f41c)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrLoadDll : Unknown @ 0x7ffd55df03a4 (jmp 0xffffffff80169654)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrUnloadDll : Unknown @ 0x7ffd55df075c (jmp 0xffffffff8018f41c)
[IAT:Inl] (chrome.exe) ntdll.dll - LdrLoadDll : Unknown @ 0x7ffd55df03a4 (jmp 0xffffffff80169654)

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: HGST HTS541010A9E680 +++++
--- User ---
[MBR] ab09653465709269358ca86c4345e29e
[BSP] 7ee15af64f1544c7ab9f5888cf56cf4c : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_DEL_10102014_212827.log - RKreport_DEL_11112014_010526.log - RKreport_DEL_11112014_010741.log - RKreport_DEL_11282014_052614.log
RKreport_DEL_12142014_192540.log - RKreport_SCN_10102014_212517.log - RKreport_SCN_11112014_010301.log - RKreport_SCN_11112014_010726.log
RKreport_SCN_11282014_052344.log - RKreport_SCN_11282014_052847.log - RKreport_SCN_12142014_192425.log - RKreport_SCN_12142014_195416.log
RKreport_DEL_12142014_195656.log - RKreport_DEL_12142014_195720.log - RKreport_DEL_12142014_195722.log - RKreport_SCN_12142014_200014.log
RKreport_DEL_12142014_200110.log

Logged
Reply #1December 19, 2014, 04:09:39 PM

Tigzy

  • Administrator
  • Hero Member
  • Offline
  • *****
  • 957
  • Reputation:
    91
  • Personal Text
    Owner, Adlice Software
    • View Profile
    • Adlice Software
Re: Rootkit Detection - Pls Evaluate Report
« Reply #1 on: December 19, 2014, 04:09:39 PM »
Hello
I'm pretty sure that's your antivirus.
What antivirus do you have?
Logged
Pages: [1]
« previous next »