| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 75287 | 2006-12-23 21:21:00 | Rootkit Revealer Results | SurferJoe46 (51) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 508987 | 2006-12-23 21:21:00 | Another lost chunk of grey matter for me...and probably a dumb question to youse guys: Results from Rootkit Revealer leaves me questioning the result I post here: HKLM\SOFTWARE\Classes\webcal\URL Protocal - 13 bytes - Data mismatch between Windows API and raw hive data. OK..so now what? |
SurferJoe46 (51) | ||
| 508988 | 2006-12-23 21:34:00 | I have no idea, but did you try Googleing? :p I got this site first up (and only) by C/P the result forum.sysinternals.com |
The_End_Of_Reality (334) | ||
| 508989 | 2006-12-23 23:01:00 | I have no idea, but did you try Googleing? :p I got this site first up (and only) by C/P the result forum.sysinternals.com Ya know, I gotta start doing that for the tech stuff too. It's not uncommon for me to Google things like this: " what is the differential corollary in miles per hour and the time required to see the moon change in position by 1/2 it's mean diameter during the vernal equinox in a northern hemisphere on Mars " and I get results......so why didn't I Google that line too? I dunnow! :nerd: |
SurferJoe46 (51) | ||
| 508990 | 2006-12-24 00:29:00 | Ha ha, I know the feeling, I do it too some times :p But as for your question... I am unable to help you :groan: And WHAT_THE_BANANAS_DOES_THAT_MEAN??? :p |
The_End_Of_Reality (334) | ||
| 508991 | 2006-12-24 01:08:00 | From www.microsoft.com " This discrepancy will occur if a Registry value is updated while the Registry scan is in progress. Values that change frequently include timestamps such as the Microsoft SQL Server uptime value, shown below, and virus scanner " last scan " values. You should investigate any reported value to ensure that its a valid application or system Registry value. " |
pheonix (36) | ||
| 508992 | 2006-12-24 01:10:00 | What that means is... dunno really. I would try running the revealer while in safemode to eliminate the possibility of anything updating. |
pheonix (36) | ||
| 508993 | 2006-12-24 01:30:00 | Do a scan with Trojan remover (http://www.simplysup.com/) See if that detects/picks up any rootkit services. |
Speedy Gonzales (78) | ||
| 508994 | 2006-12-24 03:27:00 | Do a scan with Trojan remover (http://www.simplysup.com/) See if that detects/picks up any rootkit services. Nope...clean! So I can sleep well tonight...[the trout fishing was cancelled for snow/rain/cold in the mountains yesterday, so I go on Xmas morning....should be nice and deserted then as all the daddys and moms are sleeping adult beverages off either under the tree or in the driveway and the kiddies will be gleefully smiting each other with toys and sugar-highs.] |
SurferJoe46 (51) | ||
| 508995 | 2006-12-24 08:24:00 | It means exactly that - a discrepancy. Nothing to worry about - you can ignore it or delete it - either way nothing bad will happen. | pctek (84) | ||
| 508996 | 2006-12-24 08:32:00 | "Raw hive data" sounds a bit ominous. Does the machine have a honeycomb grille on it anywhere? | chainey (9225) | ||
| 1 2 | |||||