PDA

View Full Version : Not sure if Rootkit is hiding as normal file



RishR
2013-02-24, 14:02
Hi I hope someone can help me please, I am new to this blog so if I am making a mistake bear with me.:)

I recently had a problem which was eventually detected by avast and working with them on their forum I have fixed that problem. However my scans with an older version of spybot have not been picking up anything, so I uninstalled that version went to the safer networking website and downloaded the latest free version available to me.

Since then I posted my result on the forum here and I have removed some files from my system after being advised.

However, I just commenced a root skit scan, the quick scan said there are signs of root kits and I started a deeper scan. Would someone mind taking a look to see if these files are malware hiding as something else.

// info: Rootkit removal help file
// copyright: (c) 2008-2013 Safer-Networking Ltd. All rights reserved.

:: RootAlyzer Results
File:"No admin in ACL","C:\Users\All Users\Real\setup\config.ini"
File:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA"
File:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA\OPA12.BAK"
File:"No admin in ACL","C:\Users\All Users\Microsoft\OFFICE\DATA\opa12.dat"
File:"No admin in ACL","C:\ProgramData\Real\setup\config.ini"
File:"No admin in ACL","C:\ProgramData\Microsoft\OFFICE\DATA"

I uninstalled Real Player a long time ago but I still see the icon in my Auto play options, should I delete those files?

Hope you can help with this:thanks: in advance

Rishi

RishR
2013-02-25, 12:28
Can someone please take have a look at my root kit scan results, I am not sure if there are actually root kits, malware or just normal files.

Thanks in advance

Rish:)

spybotsandra
2013-02-25, 15:03
Hello,

That are no rootkits.
Only leftovers of the Real player.
If you want you can remove them, as you have already uninstalled the player.
The other found items are Office files, I would not recommend to delete them.

Best regards
Sandra
Team Spybot

RishR
2013-02-26, 13:58
Hi Sandra,

Great I have removed the left over real player files and I will leave the office files alone. I would appreciate it if you could help me with another problem.

I am trying to scan an External hard drive with Spybot by running a folder scan on the drive itself. But my computer becomes very slow when the scan is running and my CPU is always at 80% or higher. Is there any way to reduce the strain on my system and increase the speed of the scan?

:thanks: in advance

Rish

spybotsandra
2013-02-26, 15:03
Hello,

Usually the File Scan is meant to scan single files and folders.
But you can also scan a complete drive with it, which will take some time.

Best regards
Sandra
Team Spybot