Jump to content

Welcome to Geeks to Go
Geeks to Go Welcome
Create Account Login to Account
Photo

FRST Tutorial Comment

* * * * * 1 votes FRST farbar tutorial

  • Please log in to reply
176 replies to this topic

#166
Herman_Salim

Herman_Salim

    Member

  • Member
  • PipPip
  • 35 posts

Will it be useful if Farbar add a password to a Zip file that created from zip: Directive?


  • 0

Advertisements


#167
farbar

farbar

    Developer

  • Expert
  • 390 posts

Useful or not, I think this is a luxury I can't afford to attend to.

 

I would like to request every one not to put a feature request here. This topic is just for discussing tutorial.


  • 1

#168
Herman_Salim

Herman_Salim

    Member

  • Member
  • PipPip
  • 35 posts

Sorry.. My bad..

Is there any place for average user to disscuss about feature?


  • 0

#169
farbar

farbar

    Developer

  • Expert
  • 390 posts

No Worries.

 

The helpers have their own channels. I don't mind a feature request through PM with the following requirements:

 

1. Clear description of the feature request.

2. Clear description of the reason or necessity of the feature request.


  • 1

#170
CryVICSky

CryVICSky

    New Member

  • Member
  • Pip
  • 3 posts

I want to see in the logs of the utility separate lists of those elements, to which I must pay special attention. It can be done?

 

For example:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Emsisoft Ltd) C:\Program Files\Emsisoft Internet Security\a2service.exe
Item 2
Item 3
...

==================== Processes (Suspicious & Infected) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Suspicious:

S3 GENERICDRV; \??\C:\Users\ADMINI~1\AppData\Local\Temp\pftD643.tmp\amifldrv64.sys [X] <==== ATTENTION
Item 2
Item 3
...

Infected:

Item 1
Item 2
Item 3
...

Edited by CryVICSky, 14 May 2018 - 03:57 PM.

  • 0

#171
picasso

picasso

    Trusted Helper

  • Malware Removal
  • 106 posts
  • MVP

Hi,
 
This topic is not meant for feature requests. From this and this post:
 

I would like to request every one not to put a feature request here. This topic is just for discussing tutorial.

 

The helpers have their own channels. I don't mind a feature request through PM with the following requirements:
 
1. Clear description of the feature request.
2. Clear description of the reason or necessity of the feature request.


  • 2

#172
CryVICSky

CryVICSky

    New Member

  • Member
  • Pip
  • 3 posts

picasso

 

In which topic can I leave my wishes? Send a link, please.


  • 0

#173
picasso

picasso

    Trusted Helper

  • Malware Removal
  • 106 posts
  • MVP

As quoted above, there is no such topic available for avarage users and the only option is to send a PM to Farbar.


  • 1

#174
CryVICSky

CryVICSky

    New Member

  • Member
  • Pip
  • 3 posts

Help me deal with some elements of the log. I did not find their descriptions in the tutorial.

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"{0281EC11-8D7D-4E1A-BCCD-B89905B381D9}" task was unlocked. <==== ATTENTION
"{03FF134D-CA60-4122-8A0F-C9B9D0395221}" task was unlocked. <==== ATTENTION
"{042D8A51-5878-4000-9C10-C04AFF122A1F}" task was unlocked. <==== ATTENTION
...

There are approximately 100-150 such elements in the Scheduled Tasks (Whitelisted) block of the Addition.txt file. What is their essence? Are they trash or suspicious?


  • 0

#175
picasso

picasso

    Trusted Helper

  • Malware Removal
  • 106 posts
  • MVP

Similar question was already in this topic here. Adding to the emeraldnzl's answer: the line has informational purpose only (can't be processed in the Fix) and it means that there was no access to the task and FRST resetted permissions. The task could be legit or bad - you need to take new Addition log.

 

Note also this part:
 

This is not the place to post logs for analysis.
 
You might like to open topic in the Malware forum here and post a FRST log so that an expert can have a look.


  • 1

Advertisements


#176
farbar

farbar

    Developer

  • Expert
  • 390 posts

While picasso is right about not posting the log here, this one is a bug and will be fixed soon.


  • 1

#177
farbar

farbar

    Developer

  • Expert
  • 390 posts

Not sure what it was. I thought it was a bug. It could be a temporary permissions issue.

However, FRST it updated to unlock locked task keys only if the logged in user is administrator.


  • 1





Also tagged with one or more of these keywords: FRST, farbar, tutorial

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

featured
Malware Removal How to Guides Windows 7 System Building Download Files Register welcome

Never used a forum? Learn how.