But it's runs fast By the way, what registry program do you recommend? Not an artifact of having thrown so many tools at the problem? Use Sysexporter again to copy the info about the .sys file in question into the text file also then post that file back here Apr 23, 2008 #11 kritius TS http://internetbusinessdaily.net/what-is/avg-anti-rootkit.html Close OTMoveIt2 Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process.
Finally turn back on your computer.
How do I determine if they can be safely removed? Turn off any router or hub that your computer may be plugged into. 3. Apr 23, 2008 #13 kritius TS Guru Posts: 2,084 C:\Documents and Settings\Spyros\Desktop\SmitfraudFix\Reboot.exe C:\Documents and Settings\Spyros\Desktop\SmitfraudFix\restart.exe C:\WINDOWS\system32\Process.exe C:\Documents and Settings\Spyros\Desktop\SmitfraudFix\Process.exe All these are to do with SmitfraudFix and are quite legit. How To Make A Rootkit Thanks!
From a minidump I just looked at: b9ea7000 b9fa7000 sptd sptd.sys Thu Mar 06 09:32:57 2008 (47CF3BB9) b953b000 b95a0000 awhmu8a6 awhmu8a6.SYS Thu Mar 27 21:24:26 2008 (47EB91FA) b953b000 b95a0000 aeaixffm aeaixffm.SYS The nature of these threats were Object name : idle and all were identified by Anti-rootkit. You can remove them if you'd like, since you no longer have Avira installed. You can try using System Restore to see if that helps or not and since you can always undo that action...
It's 11pm here. In SysExporter, click Options -> Refresh Now look thru SysExporter for the window named drivers (we'll be looking for the .sys file detail listed in that window) Hint: when looking for I'll read through this and follow the directions. Back to top #11 wordplay wordplay Topic Starter Members 20 posts OFFLINE Gender:Female Location:NW Philly Burbs Local time:05:29 PM Posted 17 November 2013 - 11:09 PM ESET is still running.
Alcohol 120 does the same thing and I see several alcohol related startups in the file you just posted /**** Edit ****/ Should say, have alcohol 120 does the same thing Then place or remove checkmarks as follows Place checkmark "Display the contents of system folders" Place checkmkark "Show hidden files and folders" Remove checkmark "Hide file extensions for known file types" Make sure Scan all drives is selected and click on the Start button. Are these false positives?
AVG finds three rootkits on his system. Check that your Windows HOSTS file does not contain an entry for any AVG / Grisoft websites in it... Join the community here. More questions AVG found rookit but won't remove but avast found nothing?
if so remove it/them... But please note that before I decide to post the problem here I had never used ZoneAlarm at all. The additional one, the first one in the list was Hidden Driver, path c:\Windows\System32\drivers, Identified by Anti-rootkit. To fix these types of problems, download the util mentioned below.
Thanks to rdsok and Anoqoq for patience and help