Results 1 to 2 of 2

Thread: Rootkit Scan Result

  1. #1
    Junior Member
    Join Date
    Dec 2015
    Posts
    1

    Default Rootkit Scan Result

    Does anything here look suspicious?
    Thanks.

    // info: Rootkit removal help file
    // copyright: (c) 2008-2015 Safer-Networking Ltd. All rights reserved.

    :: RootAlyzer Results
    File:"Unknown ADS","C:\WINDOWS:AstInfo:$DATA"
    File:"No admin in ACL","C:\WINDOWS\system32\3B651B518A.sys"
    File:"No admin in ACL","C:\WINDOWS\system32\411983D60F.sys"
    File:"No admin in ACL","C:\WINDOWS\system32\63BD3E5663.sys"
    File:"No admin in ACL","C:\WINDOWS\system32\KGyGaAvL.sys"
    File:"Unknown ADS","C:\Documents and Settings\Ben\My Documents\My Music\Zune\Playlists\C&C Generals & Zero:Hour.zpl:$DATA"
    File:"Unknown ADS","C:\Documents and Settings\All Users\Application Data\AVG10\Chjw\481845a21845903c.dat:75084b05-b591-464f-8755-6e25c54ddd54:$DATA"
    File:"Unknown ADS","C:\Documents and Settings\All Users\Application Data\AVG10\Chjw\a8cc0341cc0308f0.dat:ab88f14f-6dbd-493b-aca0-a659841f866b:$DATA"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}","InprocServer32<0x00>"
    RegyKey:"Zero char in key name","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}","InprocServer32<0x00>"

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello benrenewed,

    The log shows Microsoft System files, Zune and AVG files.

    How is your computer running, is this an XP operating system?

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •