Jump to content

C:\WINDOWS\system32\drivers\iksysflt.sys: BC.Heuristics.Rootkit.B-9.SDT FOUND


Recommended Posts

ClamWin scan found the following:

Scan Started Tue Nov 09 10:15:12 2010

-------------------------------------------------------------------------------

WARNING: Can't open file C:\pagefile.sys: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\CatRoot2\tmp.edb: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\config\DEFAULT: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\config\SAM: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\config\SECURITY: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\config\SOFTWARE: Permission denied

WARNING: Can't open file C:\WINDOWS\system32\config\SYSTEM: Permission denied

C:\i386\iksysflt.sys: BC.Heuristics.Rootkit.B-9.SDT FOUND

C:\WINDOWS\system32\drivers\iksysflt.sys: BC.Heuristics.Rootkit.B-9.SDT FOUND

----------- SCAN SUMMARY -----------

Known viruses: 849019

Engine version: 0.96.2

Scanned directories: 9779

Scanned files: 83109

Infected files: 2

Data scanned: 22980.14 MB

Data read: 20934.23 MB (ratio 1.10:1)

Time: 5726.250 sec (95 m 26 s)

Malware comes up with nothing. Advice needed on how to remove the rootkit SDT.

Regards, Tralrdr

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please go to VirusTotal, and upload the following file for analysis:

C:\WINDOWS\system32\drivers\iksysflt.sys

Post the results in your reply.

Are you experiencing any actual symptoms of infection?

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post DDS.txt directly into your reply.

Link to post
Share on other sites

  • 5 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.