I downloaded RootkitRevealer v1.7 and ran a scan. I got the following results:
HKLM\SECURITY\Policy\Secrets\SAC* 11/26/2008 1:49 AM 0 bytes Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI* 11/26/2008 1:49 AM 0 bytes Key name contains embedded nulls (*)
C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090905.004\vscanmsx.dat 9/5/2009 8:19 PM 2.02 KB Hidden from Windows API.
C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb 9/5/2009 8:13 PM 64.00 KB Visible in Windows API, but not in MFT or directory index.
I'm running Windows XP SP3, Windows Firewall, Symantec AntiVirus 9.2.0.1000, and Windows Defender. Do any of the above listings sound fishy?
I ran the scan because I was getting strange behavior with Windows Firewall. Every time I start my computer, WF momentarily disables (and gives the usual warning message) and then after a few seconds it turns back on. It appears this happens when it is loading HP Digital Imaging Monitor. After finding no threats with a virus scan or Windows Defender scan, I read about RootkitRevealer and I thought I would try it. Problem is, it doesn't really say what the results mean or what I should do about them. Any advice would be appreciated.
HKLM\SECURITY\Policy\Secrets\SAC* 11/26/2008 1:49 AM 0 bytes Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI* 11/26/2008 1:49 AM 0 bytes Key name contains embedded nulls (*)
C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090905.004\vscanmsx.dat 9/5/2009 8:19 PM 2.02 KB Hidden from Windows API.
C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb 9/5/2009 8:13 PM 64.00 KB Visible in Windows API, but not in MFT or directory index.
I'm running Windows XP SP3, Windows Firewall, Symantec AntiVirus 9.2.0.1000, and Windows Defender. Do any of the above listings sound fishy?
I ran the scan because I was getting strange behavior with Windows Firewall. Every time I start my computer, WF momentarily disables (and gives the usual warning message) and then after a few seconds it turns back on. It appears this happens when it is loading HP Digital Imaging Monitor. After finding no threats with a virus scan or Windows Defender scan, I read about RootkitRevealer and I thought I would try it. Problem is, it doesn't really say what the results mean or what I should do about them. Any advice would be appreciated.
Facebook
Twitter