* Home Help Search Calendar Login Register  

Welcome, Guest. Please login or register.
May 17, 2008, 05:44:05 AM

Login with username, password and session length

155239 Posts
19189 Topics
47335 Members
Latest Member: sabino59

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Desktop Security Products
| |-+  Comodo Anti-Viruspyware (CAVS)
| | |-+  Virus/Malware Removal Assistance
| | | |-+  Executable help?		 « previous next »
Pages: 1 [2] 3 Go Down Print
Author Topic: Executable help?  (Read 2537 times)
Info-Sec
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 459
« Reply #15 on: March 25, 2008, 06:40:28 PM »
Quote from: martin11ph on March 25, 2008, 08:06:25 AM
Thanks to you both. Angel Do I need this avast Virus Recovery Database?


The beta patch here you mean is Avast Anti Rootkit scanner right?

The beta will enable anti rootkit, and spyware detection.
Logged
*Vista *CFP V3 *Avira * Avast *Spyware Doctor
*XP *Zone Alarm PRO *NOD32 V2.7 *Spysweeper
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #16 on: March 26, 2008, 06:59:19 AM »
Ok.  Smiley I hope next time I attach a flash drive, it would already be detected.
Logged
Info-Sec
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 459
« Reply #17 on: March 26, 2008, 01:29:33 PM »
Quote from: martin11ph on March 26, 2008, 06:59:19 AM
Ok.  Smiley I hope next time I attach a flash drive, it would already be detected.

So im assuming Avast! killed the virus?
Logged
*Vista *CFP V3 *Avira * Avast *Spyware Doctor
*XP *Zone Alarm PRO *NOD32 V2.7 *Spysweeper
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #18 on: March 26, 2008, 07:05:07 PM »
No. As I said earlier, I quarantined it with Comodo. Smiley

Quote from: martin11ph on March 23, 2008, 08:55:16 PM
Although the virus is at bay thanks to Comodo, I don't want to keep blocking it and be wary every time I attach a
flash drive. Before I do any changes to my antivirus, I would like to know which one is the best option.
Logged
Goose18
Comodo's Hero
*****
Offline Offline

Posts: 769
« Reply #19 on: March 26, 2008, 07:31:00 PM »
Have you ran Avast though? you might be surprised that it might find something else you didn't know about  Wink
Logged
Avast! 4.8, BOClean, CFP3 and did i mention Avast! 4.8 Grin  OH guess what!!! Avast! 4.8 Grin
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #20 on: March 27, 2008, 06:43:41 AM »
Quote from: Goose18 on March 26, 2008, 07:31:00 PM
Have you ran Avast though? you might be surprised that it might find something else you didn't know about  Wink

Hmm..actually I didn't find anything. I don't know if that's a good or bad thing. Tongue
Logged
Info-Sec
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 459
« Reply #21 on: March 27, 2008, 07:27:27 PM »
Quote from: martin11ph on March 27, 2008, 06:43:41 AM
Hmm..actually I didn't find anything. I don't know if that's a good or bad thing. Tongue

Well thats a good thing.  Especially because you ran f-prot (or f-secure cant recall) through your computer as well.
Logged
*Vista *CFP V3 *Avira * Avast *Spyware Doctor
*XP *Zone Alarm PRO *NOD32 V2.7 *Spysweeper
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #22 on: March 28, 2008, 09:56:51 AM »
Quote from: martin11ph on March 23, 2008, 11:25:35 AM
In Comodo it is written:
Application: \Device\Harddisk1\DP(1)0-0+9\transmit.ex...
Action: Terminate Process
Target: C:Windows\explorer.exe
later by Comodo.


I guess it is then safe to assume that next time I scan a flash drive with avast, it won't penetrate and will be detected? Coz you know the first time this occurred, comodo did not block it. Wave
Logged
Info-Sec
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 459
« Reply #23 on: March 28, 2008, 01:36:36 PM »
Quote from: martin11ph on March 28, 2008, 09:56:51 AM
I guess it is then safe to assume that next time I scan a flash drive with avast, it won't penetrate and will be detected? Coz you know the first time this occurred, comodo did not block it. Wave

You should be safe from now on.
Logged
*Vista *CFP V3 *Avira * Avast *Spyware Doctor
*XP *Zone Alarm PRO *NOD32 V2.7 *Spysweeper
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #24 on: March 28, 2008, 09:37:30 PM »
Many thanks to the both of you, Info-Sec and Goose18. Bounce
Logged
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #25 on: March 31, 2008, 10:10:41 PM »
 Cry My mother again tried to use her Flash Drive. I scanned it with ESET and the Avast! On Access Scanner. The files were still not detected. Also, I could not use the Anti-Rootkit scanner on it as it will only scan my hard drive. Here is the log:



avast! Antirootkit, version 0.9.3
Scan started: Tuesday, April 01, 2008 10:35:42 AM

File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000011.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000016.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000017.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000019.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000020.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000021.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000022.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000024.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000025.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000026.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000027.SYS  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000028.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000029.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000030.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000033.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000034.drv  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000035.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000037.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP1\A0000038.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017057.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017058.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017059.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017060.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017063.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017146.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017147.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017148.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017149.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP10\A0017227.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017229.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017231.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017232.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017233.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017236.ime  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017237.ime  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017240.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017241.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017243.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017245.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017247.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017249.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017250.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017251.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017252.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017254.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017256.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017257.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017261.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017263.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017265.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017272.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017274.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017275.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017277.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017280.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017281.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017282.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017283.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017284.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017285.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017286.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017287.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017288.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017289.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017290.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017291.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017292.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017293.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017294.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017295.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017296.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017297.dll  **HIDDEN**


*continued*



Scan finished: Tuesday, April 01, 2008 10:58:42 AM
Hidden files found: 2311
Hidden registry items found: 0
Hidden processes found: 0
Hidden boot sectors found: 0


----------

I'm still wondering how to delete the transmit.exe and other viruses in the FLash Drive as they still weren't detected. Cry
The aforementioned 2311 files were deleted by the Avast Anti-Rootkit scanner. However, we still haven't cleaned the flash drive and just removed it for fear of more infection.
« Last Edit: March 31, 2008, 10:21:03 PM by martin11ph » Logged
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #26 on: March 31, 2008, 10:12:32 PM »
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017298.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017299.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017300.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017301.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017302.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017303.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017304.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017305.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017306.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017307.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017308.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017309.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017310.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017311.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017312.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017313.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017314.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017315.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017316.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017317.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017318.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017319.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017320.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017321.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017322.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017323.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017325.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017326.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017327.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017329.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017330.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017331.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017332.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017333.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017335.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017336.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017338.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017340.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017342.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017345.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017347.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017348.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017350.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017351.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017352.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017353.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017354.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017355.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017356.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017357.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017358.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017359.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017361.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017362.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017363.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017364.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017365.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017366.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017367.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017368.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017369.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017370.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017371.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017372.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017373.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017374.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017375.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017406.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP11\A0017407.sys  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP12\A0017536.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP12\A0017538.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP12\A0017539.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP12\A0017541.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP12\A0017544.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017550.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017556.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017559.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017560.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017561.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017562.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017566.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017567.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\A0017569.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\snapshot\MFEX-1.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\snapshot\MFEX-2.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\snapshot\MFEX-3.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\snapshot\MFEX-4.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP13\snapshot\MFEX-5.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017570.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017578.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017579.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017580.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017582.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017583.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017584.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017585.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\A0017586.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\snapshot\MFEX-1.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\snapshot\MFEX-2.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\snapshot\MFEX-3.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\snapshot\MFEX-4.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP14\snapshot\MFEX-5.DAT  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017587.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017595.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017596.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017597.dll  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017599.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017600.exe  **HIDDEN**
File C:\System Volume Information\_restore{6781FF39-96E7-482B-A904-14FEFE6EEE54}\RP15\A0017601.dll  **HIDDEN**
Logged
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #27 on: March 31, 2008, 10:15:49 PM »
Tell me if you need the entire thing as it is very long. I was reading the article on Comodo in PC World's 101 Fantastic Freebies and saw this program, McAfee Rootkit Detective. Well, I was just wondering if it is useful and can be used along with Avsat and ESET.

I also found this. http://siranikosbox.blogspot.com/2008/03/virus-made-by-local-students-here-in.html
« Last Edit: March 31, 2008, 10:33:25 PM by martin11ph » Logged
Info-Sec
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 459
« Reply #28 on: April 01, 2008, 01:35:07 PM »
Quote from: martin11ph on March 31, 2008, 10:15:49 PM
Tell me if you need the entire thing as it is very long. I was reading the article on Comodo in PC World's 101 Fantastic Freebies and saw this program, McAfee Rootkit Detective. Well, I was just wondering if it is useful and can be used along with Avsat and ESET.

I also found this. http://siranikosbox.blogspot.com/2008/03/virus-made-by-local-students-here-in.html

All of that looks like its the rootkit in your system restore....clean your system restore files in the disk cleaner utility
Logged
*Vista *CFP V3 *Avira * Avast *Spyware Doctor
*XP *Zone Alarm PRO *NOD32 V2.7 *Spysweeper
martin11ph
Comodo Member
**
Offline Offline

Posts: 49
« Reply #29 on: April 01, 2008, 07:21:24 PM »
Its not related to the flash drive? Coz I scanned the drive before we attached and it was clean. Only afterwards did were those rootkits found.
Logged
Tags:
Pages: 1 [2] 3 Go Up Print 
« previous next »
Jump to:  

SSL Firewall
Page created in 0.441 seconds with 19 queries.
Powered by SMF 1.1.5 | SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks 		Design by 7dana.com