PDA

View Full Version : Help with rootalyzer results


lukeyj85
2010-04-18, 04:42
Hi,

I just got this program and ran a deep scan (the quick scan) said everything was fine. The results below came up with many values saying "No Admin in ACL" or "Unknown ADS". Can someon please help by telling me what to do about these results. I attempted to find and delete the temp files but could not find them. Will i need filealyzer to do so??? Runnong Vista home premium.

THANKS in advance for any help.

// info: Rootkit removal help file
// copyright: (c) 2008-2009 Safer-Networking Ltd. All rights reserved.

:: RootAlyzer Results
File:"No admin in ACL","C:\WINDOWS\System32\09408.tmp"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\Tiff's Camera\2007_09_01\MVI_0066.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\Tiff's Camera\2007_09_01\MVI_0066_1.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2458.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2459.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2461.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2472.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2473.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2474.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2483.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2486.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2493.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2495.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2497.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2503.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2507.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\ME ON 3\MVI_2515.AVI:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Tippahknee\Pictures\Camera Photos Lots\2008_08_16\MVI_1022.AVI:TOC.WMV:$DATA"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF1A40.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF1EB6.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF1F4E.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF237B.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2955.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2B6E.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2BEE.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2BF5.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2DED.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF2DF7.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF3ED4.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF5504.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF550A.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF5524.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF5534.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF65C8.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF65EB.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF6625.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF662A.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF665E.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF6663.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF6A12.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF72F2.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF739D.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF7675.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF767A.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF7763.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF7769.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF77A3.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF77A8.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF77DA.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF77E0.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF801B.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF85E0.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF9222.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF9228.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF9271.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF9276.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF92A8.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF92AD.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF944C.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DF99C1.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA6BE.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA6C1.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA6C9.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA6D0.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA754.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA760.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA766.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA798.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA79D.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA7D0.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA7D5.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA7D9.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFA8A4.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFAA41.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFAB8.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFAC2.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFAE91.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFB12.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFB1C.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFB53.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFB5D.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD567.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD571.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD600.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD60A.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD89.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFD93A.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFDB19.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFE1E3.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFE1ED.tmp"
File:"No admin in ACL","C:\Users\Tippahknee\AppData\Local\Temp\~DFE3FA.tmp"
File:"No admin in ACL","C:\Users\All Users\SMART Technologies\activation.dat"
File:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA\OPA12.BAK"
File:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA\opa12.dat"
File:"No admin in ACL","C:\Users\All Users\avg9\Log\history.xml"
File:"No admin in ACL","C:\ProgramData\SMART Technologies\activation.dat"
File:"No admin in ACL","C:\ProgramData\avg9\Log\history.xml"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\global.js"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\HpuFunction.dll"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\HPWUCli.exe"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\hpwuSchd2.exe"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\main.hta"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\SelfUpdate.exe"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\SoftwareUpdate.dll"
File:"No admin in ACL","C:\Program Files\HP\HP Software Update\unicows.dll"
Directory:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA"
Directory:"No admin in ACL","C:\ProgramData\Microsoft\OFFICE\DATA"
Directory:"No admin in ACL","C:\Program Files\HP\HP Software Update"
MisterW
2010-04-22, 09:44
Hello,
the result looks quite normal. No real dangerous things found on the system. Do you think you are infected with some kind of malware? Did a Spybot scan found anything?

regards,
Markus
Team Spybot
lukeyj85
2010-04-24, 08:17
thanks for your response. spybot picked up win32 downloaderx and at first could not remove it. Through a start up in safe mode it was removed but then there were a few problems and was not sure if it was removed correctly. all seems to be running fine now though.

Thanks.