Results 1 to 2 of 2

Thread: MBR PhysicalDrive0

  1. #1
    Junior Member
    Join Date
    Jun 2013
    Posts
    2

    Default MBR PhysicalDrive0

    I ran the rootkit scan and got the following results:

    RootAlyzer Quick Scan Results

    Files in Windows folder
    ----------------------------------------
    116 files were tested.
    No hidden files detected.
    ========================================

    Files in System folder
    ----------------------------------------
    2841 files were tested.
    No hidden files detected.
    ========================================

    Global run entries
    ----------------------------------------

    No hidden entries detected.
    ========================================

    Winlogon entries
    ----------------------------------------

    No hidden entries detected.
    ========================================

    Invisible processes (from handles)
    ----------------------------------------
    0 handle process IDs for 117 processes.
    No hidden processes detected.
    ========================================

    Invisible processes (from threads)
    ----------------------------------------
    117 processes tested.
    No hidden processes detected.
    ========================================

    Master Boot Records
    ----------------------------------------
    1 MBRs checked.
    Unkown MBRs: PhysicalDrive0
    PhysicalDrive0
    ========================================

    I have ran several programs to remove it but to no avail. I have used WiseCare 365, aswMRB, Malwarebytes, mbrAnalizer, RegCure Pro. Please help with this.

  2. #2
    Senior Member Yodama's Avatar
    Join Date
    Oct 2005
    Location
    Buchenheim
    Posts
    1,110

    Default

    Quote Originally Posted by tmcgehee View Post
    I ran the rootkit scan and got the following results:

    RootAlyzer Quick Scan Results

    Master Boot Records
    ----------------------------------------
    1 MBRs checked.
    Unkown MBRs: PhysicalDrive0
    PhysicalDrive0
    ========================================
    Hello the "unknown" MBR above is not necessarily malicious. In fact it is most likely not malicious. An unknown MBR just means that RootAlyzer does not know this pattern, this can have various reasons, for instance usage of a bootloader.
    In general all items found by the RootAlyzer are not necessarily malicious. The RootAlyzer shows items which it believes to be out of the ordinary and may give a hint for an infection.
    The RootAlyzer is an analyst tool, it is not a scan and fix tool like the System or File Scan.
    born in the shadow to die in the shadow, that is the fate of the shinobi

    Spybot S&D Downloads

    Please help us improve Spybot and download our distributed testing client.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •