Results 1 to 5 of 5

Thread: so here'sa log

  1. #1
    Junior Member
    Join Date
    Jun 2014
    Location
    Terra Firma
    Posts
    10

    Default so here'sa log

    do I have to worry?

    // info: Rootkit removal help file
    // copyright: (c) 2008-2014 Safer-Networking Ltd. All rights reserved.

    :: RootAlyzer Results
    File:"Unknown ADS","C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh:$DATA"
    File:"Unknown ADS","C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh:$DATA"
    File:"Unknown ADS","C:\PerfLogs\System\Diagnostics\20121113-0001\report.xml:Qgrg2rf1Znaluncm1kfl1xla5h:$DATA"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Microsoft\Security Center\Svc\","S-1-5-21-1533950907-162137601-864722444-1000"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Microsoft\Security Center\Svc\","Vol"

    I've seen shadow copy and other spooky stuff.


    thank you.
    Last edited by treelight; 2014-12-20 at 22:13.

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello treelight,

    That part of the log shows System Diagnostics and Microsoft files.

    Quote Originally Posted by treelight View Post
    I've seen shadow copy and other spooky stuff.
    Volume Shadow Copy Service
    http://technet.microsoft.com/en-us/l...=ws.10%29.aspx



    How is the computer running, any issues?
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #3
    Junior Member
    Join Date
    Jun 2014
    Location
    Terra Firma
    Posts
    10

    Default Hello Tashi,

    Thanks for the looksee. Actually the last time I rebooted I got a c drive needs to be checked
    and the system went through a three stage process, the last stage took forever and $ISS files were
    being rebuilt/written. The only way I could boot up was to go through the dialogue three times and within a
    second hit any key and I got the regular reboot screen. That was the first reboot after the rootkit scan.

    I already have back-ups being done automatically by MS back-up and restore, why the need for the shadow copies?

    The thing that made think things might be amiss was the computer would be very quiet and then all of a sudden sound
    as if it was grinding coffee. ughh I hate computers.

  4. #4
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hi treelight,

    Please go to 'What The Tech', register and start a topic in their General Hardware forum.

    Provide a link back to this thread please.

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  5. #5
    Junior Member
    Join Date
    Jun 2014
    Location
    Terra Firma
    Posts
    10

    Default

    okay thanks Tashi, I've done what you asked.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •