Rootkit Revealer Results

Discussion in 'other security issues & news' started by WilliamP, Nov 2, 2005.

Thread Status:
Not open for further replies.
  1. WilliamP

    WilliamP Registered Member

    Joined:
    Jun 1, 2003
    Posts:
    2,201
    Location:
    Fayetteville, Ga
    I downloaded and ran Rootkit Revealer and I got this. Now what ?
     

    Attached Files:

  2. Val Doonican

    Val Doonican Guest

  3. Alec

    Alec Registered Member

    Joined:
    Jun 8, 2004
    Posts:
    355
    Location:
    Dallas, TX
    Well, we can't really see the Path information, but it looks like nothing to worry about really. The bottom 2 entries appear to refer to the same file, but one that probably was modified during the scanning process. Rootkit Revealer scans the filesystem 2 different ways: one through the normal Windows API and the other through a lower-level access mechanism that avoids normal API calls. It then compares the results of the two scans and notes the discrepancies. Therefore if one of the files were to change between the two scans, then it would be noted as a discrepancy even though it may be the result of some harmless process. The file that appears to have changed seems to be in the C:\Windows\Internet Logs path and so is probably just the result of an automated log update.
     
  4. WilliamP

    WilliamP Registered Member

    Joined:
    Jun 1, 2003
    Posts:
    2,201
    Location:
    Fayetteville, Ga
    I have posted in the Rootkit Revealer forum. Hopefully I can find out something.
     
Loading...
Thread Status:
Not open for further replies.