Re: hacktool.rootkit
From: Shawn E. Hale (SEHaleNOSPAM1_at_comcast.net)
Date: 10/22/05
- Next message: David H. Lipman: "Re: Troj_servu.q trojan"
- Previous message: Jeremy Pollard: "Re: hacktool.rootkit"
- In reply to: Jeremy Pollard: "Re: hacktool.rootkit"
- Next in thread: cquirke (MVP Windows shell/user): "Re: hacktool.rootkit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 22 Oct 2005 09:10:03 -0400
I sure do appreciate all of the advice I have been getting. Thanks to all
for your time generosity.
I ran the RootkitRevealer and, thank God, only got one hit. The date stamp
is from the day we got the computer (or real close to it). Google tells me
it is not a problem. Here is the message:
HKLM\SOFTWARE\Classes\webcal\URL Protocol 9/7/2005 12:24 PM 13 bytes Data
mismatch between Windows API and raw hive data.
Many thanks again. I will keep monitoring it. Still no other errors or
problems.
"Jeremy Pollard" <jeremy.pollard@uwe.ac.uk> wrote in message
news:31q6f.36218$MF6.14001@fe1.news.blueyonder.co.uk...
> Standard antivirus software packages such as Norton and McAfee are
> unable to find many types of rootkit, because of the way rootkits work.
>
> Rootkit revealer works differently to these antivirus packages and is
> much more likely to find this type of malware. Its freeware and is one
> of the only tools that can detect the types of rootkits which standard
> antivirus software cannot.
>
> It may be worth running rootkit revealer, just to check whether your
> antivirus software has missed anything. Here's the link:
>
> http://www.sysinternals.com/Utilities/RootkitRevealer.html
>
- Next message: David H. Lipman: "Re: Troj_servu.q trojan"
- Previous message: Jeremy Pollard: "Re: hacktool.rootkit"
- In reply to: Jeremy Pollard: "Re: hacktool.rootkit"
- Next in thread: cquirke (MVP Windows shell/user): "Re: hacktool.rootkit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
