Re: Restoring WindowsXP SP2 Firewall service after malicious software attack

---

• From: "Polanski24" <infodate@xxxxxxxx>
• Date: 14 Jul 2006 07:33:02 -0700

---

Hello!

After few days spent on investigating my system I have detected rootkit
presence with only one tool -> SVV by Joanne Rutkowska. All other tools
(I have tested dozens of them) have failed to do so. My only luck with
infection is that programmer who wrote or rather adapted rootkit made
some lousy job so I can see its presence by some very easy to spot
system behaviour abnormalities.

Seems that flattening the system and reinstalling it is coming closer
:).

.

---

• Follow-Ups:
  • Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
    • From: Gary Flynn

• References:
  • Restoring WindowsXP SP2 Firewall service after malicious software attack
    • From: Polanski24
  • Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
    • From: B . Nice
  • Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
    • From: Polanski24

• Prev by Date: Re: Short List of Security Questions
• Next by Date: Re: Short List of Security Questions
• Previous by thread: Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
• Next by thread: Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.security  > 2006-07