| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 66015 | 2006-02-08 02:19:00 | Something is reading and writing on my hard drive | Ian the Man (9772) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 428262 | 2006-02-08 03:47:00 | Tweak'e, that is the rootkitrevealer i am running. as for the swap file, i dont know, point me in the right direction. |
Ian the Man (9772) | ||
| 428263 | 2006-02-08 04:22:00 | well i just ran my rootkit detector, and it consistently gets 3 things: HKLM\SYSTEM\ControlSet001\Services\d347prt\Cfg\0Jf 40 2/7/2006 11:00 PM 0 bytes Hidden from Windows API. HKLM\SYSTEM\ControlSet001\Services\d347prt\Cfg\0Jf 41 11/28/2005 10:17 PM 0 bytes Hidden from Windows API. HKLM\SYSTEM\ControlSet001\Services\d347prt\Cfg\0Jf 42 11/28/2005 10:17 PM 0 bytes Hidden from Windows API. no idea what they are, i'm guessing that they arent an actual threat, but i cant be sure. |
Ian the Man (9772) | ||
| 428264 | 2006-02-08 05:27:00 | You only need to worry about the 'current control set'..... What is this, I having seen this before 'C:\Program Files\Gaim\gaim.exe' |
SolMiester (139) | ||
| 428265 | 2006-02-08 05:34:00 | You only need to worry about the 'current control set'..... What is this, I having seen this before 'C:\Program Files\Gaim\gaim.exe' Its an IM program, lke Yahoo, MSN Messenger. But you can log into more than 1 of them at a time. Hmm, this HKLM\SYSTEM\ControlSet001\Services\d347prt\Cfg\0Jf 40 may have something to do with Daemon tools. |
Speedy Gonzales (78) | ||
| 428266 | 2006-02-08 06:04:00 | Yes, Daemon tools relies on putting a rootkit in your computer to disguise itself so it can work, to hide from DRM. | zqwerty (97) | ||
| 428267 | 2006-02-08 23:05:00 | alright thx guys, i think i got the problem fixed, i no longer get the accessing. if it comes up again, i will just bumpt this thread and ask again. | Ian the Man (9772) | ||
| 428268 | 2006-02-08 23:17:00 | Share! | Murray P (44) | ||
| 428269 | 2006-02-09 09:21:00 | I refuse to hold my breath :mad: | Murray P (44) | ||
| 428270 | 2006-02-10 02:24:00 | i just did everythign u guys told me to and it worked . . . until today, when it started back up again . NOW im stumped . |
Ian the Man (9772) | ||
| 428271 | 2006-02-11 05:46:00 | Try everything again, if it works, note down every start up process and running process. If it comes back, note them down again. If you have a difference, you have somewhere to start. Don't be rash though. | Murray P (44) | ||
| 1 2 | |||||