Author Topic: What is this? (Read 7095 times)

stuckinarutt · « **on:** March 05, 2016, 04:56:18 AM »

not sure if this the right place but anyone know what this is?
[SSDT:Inl(Hook.SSDT)] ZwDeleteAtom[119] : C:\Windows\System32\win32k.sys @ 0xffffffffa295abd9 (call dword [0x81cf7b84])
it showed up on my last scan.

Curson · « **Reply #1 on:** March 05, 2016, 04:08:16 PM »

Hi stuckinarutt,

Which security softwares are you using ?
Could you please attach the JSON report in your next post ?

Regards.

Note : This thread has been moved to the "RogueKiller" section for clarity.

stuckinarutt · « **Reply #2 on:** March 05, 2016, 11:53:08 PM »

I use Iolo system mechanic Pro paid as my main AV.
someone suggested i also install RUbotted a couple years ago.
also I run malwarebytes a couple times a month.
I get the roguekiller false Zeus warning on my antivirus component of Iolo. I think Iolo is currently using Commtouch antivirus 5.
I run TDSSKiller occasionally too.

Curson · « **Reply #3 on:** March 07, 2016, 01:07:43 PM »

Hi stuckinarutt,

Thanks for your feedback.
These detections are false positives and they will be whitelisted as soon as possible.

Regards.

stuckinarutt · « **Reply #4 on:** March 07, 2016, 03:51:33 PM »

Thank You!!

Curson · « **Reply #5 on:** March 07, 2016, 04:58:09 PM »

Hi stuckinarutt,

You are welcome.

Regards.

Author Topic: What is this? (Read 7095 times)

stuckinarutt

What is this?

Curson

Re: What is this?

stuckinarutt

Re: What is this?

Curson

Re: What is this?

stuckinarutt

Re: What is this?

Curson

Re: What is this?