PDA

View Full Version : Rootkit Scan Logfile Analysis



Marvelous
2014-11-20, 23:53
Hi everybody,

I just did a Rootkit-Scan with Spybot - S&D 2.4.
Unfortunately I don't know if the two rootkits found in the registry are malware. The logfile of the scan looks like this:

RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\","Flyout"
RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Wow6432Node\Microsoft\Security Center\","Svc"

I'd appreciate any help.
My OS is Windows 7 professional - 64-bit SP 1, if that matters.
Thanks in advance.

tashi
2014-11-21, 06:00
Hello Marvelous,

One item is a battery meter and the other Microsoft Security Center. In general all items found by the RootAlyzer are not necessarily malicious but shows items it believes to be out of the ordinary and may give a hint for an infection.

Sometimes even legitimate software uses rootkit technologies. How is the computer running? :)

Best regards.

Marvelous
2014-11-23, 16:25
Hello tashi,

thanks for your answer. Computer runs quite well. I just learned that some malware uses rootkit-techniques and can't be detected by standard antivirus software.
Therefore I wanted to check whether my PC was infected or not.
Guess I'm safe then :)
Thanks again, gonna close this thread.
Regards,

Marvelous