Author Topic: catchme - detected NTDLL code modification????  (Read 1512 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
catchme - detected NTDLL code modification????
« on: January 08, 2018, 02:34:37 PM »
 Please help. Catchme said so. And aswMBR does not work. Thanks!!!

Quote
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2018-01-08 20:02:32
Windows 6.2.9200  WOW64

detected NTDLL code modification:
ZwEnumerateKey 0 != 50, ZwQueryKey 0 != 22, ZwOpenKey 0 != 18, ZwClose 0 != 196623, ZwEnumerateValueKey 0 != 19, ZwQueryValueKey 0 != 23, ZwOpenFile 0 != 51, ZwQueryDirectoryFile 0 != 53, ZwQuerySystemInformation 0 != 54Initialization error


Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: catchme - detected NTDLL code modification????
« Reply #1 on: January 08, 2018, 03:07:27 PM »
Attach your basic diagnostic logs. (MBAM and FRST)
Instructions: https://forum.avast.com/index.php?topic=194892
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

REDACTED

  • Guest
Re: catchme - detected NTDLL code modification????
« Reply #2 on: January 09, 2018, 08:39:36 PM »
Thanks!!!!!!!