RootkitRevealer v1.55 scan results/NOD32

Discussion in 'other anti-malware software' started by spy1, Oct 4, 2005.

Thread Status:
Not open for further replies.
  1. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    I probably missed the one where this was discussed, but I just got through running RootkitRevealer v1.55 and got nothing but results on NOD32.

    Can someone enlighten me? Pete
     

    Attached Files:

  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,791
    Location:
    Texas
    I just ran RootkitRevealer v1.55, running NOD32, and got none of what you show in the screenshot.
     
    Last edited: Oct 4, 2005
  3. nick s

    nick s Registered Member

    Joined:
    Nov 20, 2002
    Posts:
    1,430
    As part of its method, RootkitRevealer creates a temporary raw copy of HKEY_LOCAL_MACHINE\SOFTWARE and later compares the "live" registry to the copy. If, in the interim, active apps, like NOD32 and its updater component, have modified the registry, then RKR will flag the mismatch.

    Nick
     
  4. Mover

    Mover Registered Member

    Joined:
    Oct 1, 2005
    Posts:
    165
    You should shut down apps and let rootkit revealer run to completion. While its running, I wouldn't do anything until it completes
     
  5. nick s

    nick s Registered Member

    Joined:
    Nov 20, 2002
    Posts:
    1,430
    Thanks, I will keep that in mind.

    Nick
     
  6. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    nick s - Thanks. As long as it's a legit series of entries (and what you said explains it) then it's not a problem. Pete
     
  7. Mover

    Mover Registered Member

    Joined:
    Oct 1, 2005
    Posts:
    165
    I was just adding to your explanation when I quoted you. I'm sure you
    already knew what I was referring to by not doing anything. ;)
     
Loading...
Thread Status:
Not open for further replies.