Author Topic: Possible Malware  (Read 5301 times)

0 Members and 1 Guest are viewing this topic.

September 27, 2017, 05:03:21 AM

Hamtaro666

  • Newbie

  • Offline
  • *

  • 1
  • Reputation:
    0
    • View Profile
Possible Malware
« on: September 27, 2017, 05:03:21 AM »
Hi, I'm a newbie noob to this forum and Idk where to post this, and I'm not sure I have much time to do so since Idk if the archive I got from RogueKiller scan is malicious or not. Please tell me whether what I got needed (I wholeheartedly believed it wasn't malicious) to be removed or I'm in the clear.

This is the scan:

RogueKiller V12.11.17.0 (x64) [Sep 25 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.15063) 64 bits version
Started in : Normal mode
User : unfat [Administrator]
Started from : C:\Users\unfat\Downloads\RogueKillerX64.exe
Mode : Scan -- Date : 09/26/2017 18:57:57 (Duration : 00:29:57)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 2 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2775554596-1257225918-3707391016-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://lenovo15.msn.com/?pc=LCTE  -> Found
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2775554596-1257225918-3707391016-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://lenovo15.msn.com/?pc=LCTE  -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD10JPCX-24UE4T0 +++++
--- User ---
[MBR] 7aeef0d2e741e93f1d54d4037baab2cf
[BSP] d1e8ba0e76c9eb94546aa9662ecc58bb : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 260 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 534528 | Size: 16 MB
2 - Basic data partition | Offset (sectors): 567296 | Size: 913230 MB
3 - Basic data partition | Offset (sectors): 1870862336 | Size: 25600 MB
4 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1923291136 | Size: 1000 MB
5 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1925339136 | Size: 12762 MB
6 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1951475712 | Size: 1000 MB
User = LL1 ... OK
User = LL2 ... OK

Reply #1September 27, 2017, 12:32:27 PM

Curson

  • Global Moderator
  • Hero Member

  • Offline
  • *****

  • 2809
  • Reputation:
    100
    • View Profile
Re: Possible Malware
« Reply #1 on: September 27, 2017, 12:32:27 PM »
Hi Hamtaro,

Welcome to Adlice.com Forum.

PUM stands for Potentially Unwanted Modification. In your case, thoses entries are perfectly legit.
For more information, please refer to RogueKiller Documentation.

Regards.

Note : This thread has been moved to the "RogueKiller" section for clarity.

Reply #2September 27, 2017, 06:54:30 PM

FloydWilliams

  • Newbie

  • Offline
  • *

  • 1
  • Reputation:
    0
    • View Profile
Re: Possible Malware
« Reply #2 on: September 27, 2017, 06:54:30 PM »
Thank you @Curson. Had a similar problem with internet explorer.

Reply #3September 28, 2017, 02:02:42 PM

Curson

  • Global Moderator
  • Hero Member

  • Offline
  • *****

  • 2809
  • Reputation:
    100
    • View Profile
Re: Possible Malware
« Reply #3 on: September 28, 2017, 02:02:42 PM »
Hi FloydWilliams,

I'm glad my answer helped you.
Welcome to Adlice.com Forum.

Regards.