Results 1 to 2 of 2

Thread: Longish Rootkit Results

  1. #1
    Junior Member
    Join Date
    Mar 2016
    Posts
    2

    Question Longish Rootkit Results

    Hello there, I need a little help reading these. Today it was my first time ever running the rootkit scan, and I was surprised/confused by the results. I did it mostly due to my curiosity, nothing in particular seems off in my pc apart from a recent slownless. Anyway, I'm not an english native speaker so I didn't get what ADS or ACL meant. I feel like the first are just false positive, since they are personal pictures/videos and such, but Spybot did highlight the "No admin in ACL" files in red, worrying me a little. Thanks!

    // info: Rootkit removal help file
    // copyright: (c) 2008-2016 Safer-Networking Ltd. All rights reserved.

    :: RootAlyzer Results
    File:"Unknown ADS","C:\Users\Rita\Videos\effect\effects\Blender Explosion.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Videos\effect\effects\Bokeh.mpg:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\v's pics\Intervista - 08.20.08 (TRL) - VideoMan.mpg:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\v's pics\60-Minutes.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\v's pics\The_Veronicas_-_Interview_-_Sunrise_2008_-_10_-_21_-_PAL_SDTV_Suave.mpg:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\v's pics\video.mp4:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\Leo\Immagine 701.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\Leo\Immagine 722.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\Leo\Immagine 902.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\Leo\leo.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\162.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCF0456.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCN0538.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCN0539.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCN0540.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCN0541.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\DSCN0619.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\immagine 462.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\immagine 463.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\immagine 464.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\immagine 465.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\immagine 467.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 833.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 858.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 897.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 903.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 904.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 905.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 906.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 907.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\Immagine 909.avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_0294.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_5543.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_5545.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_5547.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_6868.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_6869.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\MVI_6954.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (10).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (11).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (12).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (14).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (15).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (16).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (7).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (8).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\trl (9).avi:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\miragica 22 agosto\MVI_7108.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\miragica 22 agosto\MVI_7133.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\miragica 22 agosto\MVI_7134.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\miragica 22 agosto\MVI_7163.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\miragica 22 agosto\MVI_7165.AVI:TOC.WMV:$DATA"
    File:"Unknown ADS","C:\Users\Rita\Pictures\foto personali\irlanda\MVI_5783.AVI:TOC.WMV:$DATA"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF00A36212578CE129.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF049F423AF85FFD9C.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF0D34629F9A8D6350.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF11BCA8451F2FBB9C.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF11D1143E61969181.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF13A0C866DC1F494A.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF141C02509F578F25.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF14CC08900CF7D187.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF19EEED0990B030BC.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF1ABDA0BF3157339F.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF1B176D0043711957.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF21989014139E5F81.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF26CB5CEAC84BFA85.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF26E35D7F2260F928.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF275F9ABE353833FD.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF3426254D4D78DA89.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF38E6192122AE0F76.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF3E11D7D83ADF60D7.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF3F2B5A3B7A473623.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF40A6402B3ACB0AA6.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF40CEC63B09682CA7.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF40F43B793DC2E1BD.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF40F4B12BEB5BDADA.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF4315B6D70BE2B425.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF4A0E530E7592600E.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF4D888159AB899873.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF513D3B59A6FD8812.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF55559045C5C8BCA8.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF56EF3BB208BFC79D.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF5CAB62F48865D2A7.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF5ED403D022A25DCD.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF6C22029A03931915.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF7800157CEFF2528F.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF78309FB6158A7E6B.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF78713A9FAAD767E6.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF7AAAEB898A232AF3.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF883566BBA8C87C0C.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF8F366BC1C31D689C.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF91C9A063CCD0ABED.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DF972A7E105FF0EA21.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFA037F88D8C096149.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFA15F5C22E1504D09.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFA78154F570FF811F.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFB1115C69FA52AA17.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFB30E302CA34846F6.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFB4F92D1E9A9584E5.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFB95DE067B5D33FD1.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFC1C0D7272B0A7206.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFC3C3EBED9FB52ECF.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFC43AF54BC2C0B1AE.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFCE2D2484FA25F11E.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFD39996BCED09F5B7.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFDA5C2AD754C10BE6.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFDAECF6BE3A370412.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFE35A27B827531DC8.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFF3FC96F4F8130886.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFF6BDF482004D9286.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFF6E1A5F8609A77B4.TMP"
    File:"No admin in ACL","C:\Users\Rita\AppData\Local\Temp\~DFF7C36534E1B3A298.TMP"
    Last edited by ritax; 2016-03-17 at 21:33.

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello ritax,

    In general all items found by the RootAlyzer are not necessarily malicious. Sometimes even legitimate software uses rootkit technologies.

    The log isn't waving a flag so how is the computer running aside from the slowness.

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •