Tech Support Forum - View Single Post

fredmh · 10-01-2006, 04:38 PM

These scans are looking good. Now I want to make sure Pest Trap/Brave Sentry or anything else is hiding in the Root Directories

----------------------------------------

F-SECURE BLACKLIGHT

Download lBlacklight

Note that you must have local administrative privileges to run the program.

Click Scan. BlackLight will use Windows Explorer (the desktop process) to scan for hidden items. Your anti-virus software or personal firewall
might display a warning that says Blacklight (blbeta.exe) is trying to manipulate the Windows Explorer process (explorer.exe). If you want to continue
the scan, you should allow BlackLight to do this.

When it finishes, click Next, and then click on Close.

BlackLight beta should create a log file "fsbl-<date-and-time>.log". By default, the log file is in the same directory as the executable.
Please post the log.

----------------------------------------

GMER ROOTKIT

Download gmer from http://www.gmer.net & unzip it to desktop

Launch gmer.exe by double-clicking it. Select the rootkit tab & make sure the 'Show All' button is unticked.

Press scan & when it has finished press copy & paste the log back here

----------------------------------------

FOLLOW-UP

Please return and post these items:

F-Secure repor
GMER report

10-01-2006, 04:38 PM	#8 (permalink)
fredmh Analyst, Security Team ; TSF Supporter Join Date: May 2006 Location: Phila,Pa Posts: 2,335 OS: XP	These scans are looking good. Now I want to make sure Pest Trap/Brave Sentry or anything else is hiding in the Root Directories ---------------------------------------- F-SECURE BLACKLIGHT Download lBlacklight Note that you must have local administrative privileges to run the program. Click Scan. BlackLight will use Windows Explorer (the desktop process) to scan for hidden items. Your anti-virus software or personal firewall might display a warning that says Blacklight (blbeta.exe) is trying to manipulate the Windows Explorer process (explorer.exe). If you want to continue the scan, you should allow BlackLight to do this. When it finishes, click Next, and then click on Close. BlackLight beta should create a log file "fsbl-<date-and-time>.log". By default, the log file is in the same directory as the executable. Please post the log. ---------------------------------------- GMER ROOTKIT Download gmer from http://www.gmer.net & unzip it to desktop Launch gmer.exe by double-clicking it. Select the rootkit tab & make sure the 'Show All' button is unticked. Press scan & when it has finished press copy & paste the log back here ---------------------------------------- FOLLOW-UP Please return and post these items: F-Secure repor GMER report Last edited by fredmh; 10-01-2006 at 04:40 PM.