Rootkit with Zemana Antilogger and/or Defense Wall

Discussion in 'other anti-malware software' started by Ashanta, Jun 23, 2009.

Thread Status:
Not open for further replies.
  1. Ashanta

    Ashanta Registered Member

    Joined:
    Aug 21, 2007
    Posts:
    659
    Location:
    Europe
    Hi,

    2 days ago, I installed Zemana Antilogger and Defense Wall on my laptop.

    Yesterday, I launched Gmer and it detected a rootkit in hidden process.

    Could you tell me if this detection is linked with ZAL and/or DF ?

    Moreover, when clicking on the right side of my mouse ("rootkit hidden procces"), the "delete service" is on greyscale. I can kill the process, but it won't delete the rootkit.

    http://www.imagebam.com/image/05552539913036

    http://www.imagebam.com/image/56483d39913038

    Thanks for your help !
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    disable one software, scan with gmer then repeat for other software to establish which, if any causes, gmer detection
     
  3. Ashanta

    Ashanta Registered Member

    Joined:
    Aug 21, 2007
    Posts:
    659
    Location:
    Europe
    Thanks Cuni for your reply,

    I've not yet disable one of the 2 applications. I'm suspected also SuperAntispyware.

    Anyway, I did GMER scanning again (without disabled DFF and ZAL) and it didn't detect anything this time while SpyDllRemover, still detect a rootkit hidden process. It makes me confused at this time, do I have to rely on Gmer or SpyDllRemover ?

    Waiting for your response before disable the 3 softwares.
     
  4. Ashanta

    Ashanta Registered Member

    Joined:
    Aug 21, 2007
    Posts:
    659
    Location:
    Europe
    I run again Gmer and it doesn't detect anything !

    I suspect SpyDllRemover to give some false alarms. Now, it has detected 2 rootkit hidden process.

    Do you have noticed false alarms with SpyDLLRemover ?

    Do you have another good free rootkit detector and remover to check again ?

    o_O
     
Loading...
Thread Status:
Not open for further replies.