Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 6 subscribers
  • Views 18462 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Hidden Rootkit

gypsydan

Does anyone know what this unremovable rootkit belongs to?

There is no other available info on it.

Is there a way to remove it, without rebuilding HD?

\HKEY_USERS\S-1-5-21-1390067357-299502267-725345543-1006

\HKEY_USERS\S-1-5-21-1390067357-299502267-725345543-1006_Classes

 running XP-SP3

:14657


This thread was automatically locked due to age.
Parents
  • 0
    SAR is Sophos Anti-Rootkit.
    Not everything hidden or seemingly unaccessible is a rootkit. And the Home editions have a special twist (like Win9x). If you are really worried that you are rooted tell us what makes you think so - and post as much of the output as possible. But I'd say what you've got is just caused by normal "evolution" of a home system.

    Prudence is a virtue - Paranoia is an Art ;-)
    Christian
    :15413
Reply
  • 0
    SAR is Sophos Anti-Rootkit.
    Not everything hidden or seemingly unaccessible is a rootkit. And the Home editions have a special twist (like Win9x). If you are really worried that you are rooted tell us what makes you think so - and post as much of the output as possible. But I'd say what you've got is just caused by normal "evolution" of a home system.

    Prudence is a virtue - Paranoia is an Art ;-)
    Christian
    :15413
Children
No Data