Results 1 to 6 of 6

Thread: Are these entries ok?

  1. #1
    Junior Member
    Join Date
    Aug 2013
    Posts
    3

    Default Are these entries ok?

    Hello and thank you for your attention

    I have done a ROOTKIT Scan on my computer with Spybot (free edition - Version 2.1.18.0 ) and
    got many "Unkown ADS" (most are on png or jpg files)and three "No admin in ACL" messages.
    Because I have no ideas about the results, it would be very kind if you could check them and let me know.

    Below are the logs

    // info: Rootkit removal help file
    // copyright: (c) 2008-2013 Safer-Networking Ltd. All rights reserved.

    :: RootAlyzer Results
    File:"Unknown ADS","Q:\FactoryRecovery\RECOVERY.INI:Done:$DATA"
    File:"Unknown ADS","C:\sagyo\AgDEM250_u54j.tif:com.dropbox.attributes:$DATA"
    File:"No admin in ACL","C:\Program Files (x86)\Lenovo\Lenovo Welcome\logs"
    File:"Unknown ADS","C:\Dropbox\tmp\jp_gap0.png:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\tmp\my_photo.jpg:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\tmp\my_photo_up.tif:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\tmp\x_other\mn_matrix\MN_matrix2.png:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\tmp\Mesh2Map\MCODE.tif:com.dropbox.attributes:$DATA"
    "Unknown ADS","C:\Dropbox\tmp\asn\mesh_points.png:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\tmp\asn\result_6cases.png:com.dropbox.attributes:$DATA"
    File:"Unknown ADS","C:\Dropbox\Photos\Sample Album\Costa Rican Frog.jpg:com.dropbox.attributes:$DATA"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\","Flyout"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Wow6432Node\Microsoft\Security Center\","Svc"


    In advance, I thank you very much for your help.

    Kind regards

    Muu

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello whiteboxer,

    Quote Originally Posted by Yodama View Post
    In general all items found by the RootAlyzer are not necessarily malicious. The RootAlyzer shows items which it believes to be out of the ordinary and may give a hint for an infection.
    The RootAlyzer is an analyst tool, it is not a scan and fix tool like the System or File Scan.
    It's not possible to know all legit ADS stream names but your log isn't raising a flag.

    How is the computer running in general?

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #3
    Junior Member
    Join Date
    Aug 2013
    Posts
    3

    Default

    tashi thank you very much for the reply.

    The PC seems to have no fatal problems. But when I use Chrome for web browsing, sound of the fan of my computer becomes very large ...
    (The sound becomes very small when I manually disable internet access :( )

    I suspect that the computer was infected by some sort of virus or malware and scanned using several virus scanning applications(avast!, Norton, etc).
    But the application did not detect suspicious files.
    So I used ROOTKIT Scan...

    Do you have any suggestion what I should do? Any suggestion is welcome!

    Thank you in advance.

    Whiteboxer

    Quote Originally Posted by tashi View Post
    Hello whiteboxer,



    It's not possible to know all legit ADS stream names but your log isn't raising a flag.

    How is the computer running in general?

    Best regards.

  4. #4
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello whiteboxer,
    Quote Originally Posted by whiteboxer View Post
    I suspect that the computer was infected by some sort of virus or malware and scanned using several virus scanning applications(avast!, Norton, etc).
    How many anti virus programs do you have installed?
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  5. #5
    Junior Member
    Join Date
    Aug 2013
    Posts
    3

    Default

    tashi thank you for the reply!

    Although I have tested several anti-virus programs, I only installed one program at a time.
    Currently, I am using avast! only .
    I hope this is fine..

    Whiteboxer
    Quote Originally Posted by tashi View Post
    Hello whiteboxer,

    How many anti virus programs do you have installed?

  6. #6
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello Whiteboxer,
    Quote Originally Posted by whiteboxer View Post
    tashi thank you for the reply!

    Although I have tested several anti-virus programs, I only installed one program at a time.
    Currently, I am using avast! only .
    I hope this is fine..

    Whiteboxer
    Yes only one anti virus installed is as it should be.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •