driveragent.sys faux positif?

sur le forum de nicolas coolman j'ai ceci

 

# AdwCleaner 7.0.3.0 - Logfile created on Thu Oct 12 03:18:34 2017 # Updated on 2017/28/09 by Malwarebytes  # Database: 09-27-2017.1 # Running on Windows 7 Home Premium (X64) # Mode: scan # Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

****...

Major difficulties with AdwCleaner v. 7.0.3.1

I am helping a friend clean a grossly infected computer. Windows 10. Uses McAfee AV.

He ran Malwarebytes 3 without difficulty and it cleaned with no problem at all. I do have the log if needed but cannot find a way to attach the text file

He then attempted to use AdwCleaner v. 7.0.3.1 but it would not complete cleaning and received a box with notification that a problem had stopped the clean....

Re: Can anyone help me identify if any of these deleted registry keys are essential

Greetings,

First of all, sorry for the late answer.

Can you share the scan logfile as well? Thanks.

Regards.


cocochepeau, 2017-09-19 06:55:31 (UTC)

# AdwCleaner 7.0.2.1 - Logfile created on Sun Sep 10 01:05:26 2017 # Updated on 2017/29/08 by Malwarebytes  # Database: 09-08-2017.1 # Running on Windows 7 Home Basic (X64) # Mode: scan # Support: https://www.malwarebytes.com/support

***** [...

Re: Is this a false positive?

Seems like all of your network devices are out of date. Including Nvidia streaming service which could be a cause, since it does have light exploits to DNS changing. Adwcleaner -> Update your drivers to the latest, if you can Boot Windows "safe mode with networking" and update everything there. Let me know if that solves the issue. Also, farbar flushed your DNS so you should be good for now.

Re: Is this a false positive?

on AdwCleaner by Nec

The fact that this is Spanish(Maybe?) makes it very VERY difficult to read.... Any way you could turn it into English? On the first glance noticed some things that MIGHT be potential issues, unsure, cause..... I am not yet used to reading the logs, and different language doesn't help the issue :)


JoshRoss, 2017-09-07 14:26:07 (UTC)

Of course sorry.

If you see something that is not translat...

Re: Is this a false positive?

on AdwCleaner by Nec

Ports, applications, accessibility. Maybe your other device is used a lot less, you haven't messed with any ports or have any applications that require forwarding. Honestly, very weird issue, I would need to investigate the files. Can you scan your PC With Farbar MiniToolBox and Malwarebytes JRT? Post the logs that you get.


JoshRoss, 2017-09-06 13:16:38 (UTC)

MiniToolBox by Farbar  Version...

Re: Is this a false positive?

on AdwCleaner by Nec

It looks like your PC's DHCP IP's have been altered maliciously not too long ago. Which it would make sense why one PC detects it, and another doesn't. Default addresses can be hijacked and used for malicious intents. It is hard to say whether it is a false positive or not. You could always reset your PCs IP's and router to see if that solves the problem. 


JoshRoss, 2017-09-04 12:22:20 (UTC)

...

Re: Is this a false positive?

It looks like your PC's DHCP IP's have been altered maliciously not too long ago. Which it would make sense why one PC detects it, and another doesn't. Default addresses can be hijacked and used for malicious intents. It is hard to say whether it is a false positive or not. You could always reset your PCs IP's and router to see if that solves the problem. 

Re: Did AdwCleaner Remove Required Registry Files?

As far as the logs go, no drivers/registry keys that are crucial to the functionality of any hardware have been removed. Just some PUPs that are malicious and have nothing to do with it. For future reference, make sure you update your Windows to the latest version, update your drivers to the latest and do an additional scan both with Adwcleaner and Malwarebytes.

Did AdwCleaner Remove Required Registry Files?

In hopes of making my two computers as safe as can be I went ahead and removed the various files that AdwCleaner detected in a scan. However, because I had issues with my computer's hardrive becoming corrupt recently, I'm worried that some of the registry files that were deleted might in fact be necessary ones. Can someone please let me know if this is the case? I've posted the content of the l...