Rootkit Scanner found this. Anyone Help ?

  Hiall 09:39 09 Apr 2009
Locked

Hi all,

I used Sophos Anti Rootkit Scanner and it displayed the following error:"Error parsing raw registry hive S-1-5-18. Registry scan may not be supported on this version of windows." What is this & is this something I need to be concerned about? If so, what is the solution?
I have done a google search but can't seem to find out anything about it.
Thanks.

Windows xp sp3
home edition.

  birdface 11:37 09 Apr 2009

Googled.click here= Maybe time to run someother Security programs.Malwarebytes free is very good also Superantispyware.maybe try those and see what they can find.

  birdface 11:41 09 Apr 2009

Another good one is this.

click here

Now this is a pay for program but you get a 30 day trial and it will remove anything that it finds unlike some others that will scan and want you to pay before they will remove anything,
If after 30 days you decide you do not want it just delete it.

  Hiall 12:29 09 Apr 2009

Hi Buteman,
Thanks for your help.
I have ran Malwarebytes, Superantispyware,Spyware Terminator and CCleaner.
I have also ran the Trojan remover you suggested.
And they found nothing.
Have just ran Sophos Anti Rootkit Scanner and it is still there.

  birdface 13:09 09 Apr 2009

Hi.I ran Trojan remover on my grand daughters computer at the weekend and it found a Rootkit and other things which it removed.
I was unable to update some of her security programs,But they worked after using Trojan remover.
Just wondering if maybe it is not compatible with any of the programs that you already have on your computer.

  birdface 13:18 09 Apr 2009

Not using Vista are you.

click here

  Hiall 13:42 09 Apr 2009

windows xp sp3
home edition
aol broadband.

  mfletch 13:53 09 Apr 2009

Please download this and do a scan GMER

click here

  Hiall 16:45 09 Apr 2009

Hi mfletch,
Done that now what?

  birdface 17:05 09 Apr 2009

If it did not find anything it will probably just be a false positive with the Sophos Anti Rootkit Scanner.I think that is what it means.

  mfletch 17:44 09 Apr 2009

Its not uncommon to get false rootkit detections even a hidden file can be seen as a rootkit


This type of infection is best left to a expert

Here is just one site click here Virus Vault

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

OnePlus 5 review

Alice Saey's mesmerising animation for Dutch singer Mark Lotterman

iPad Pro 10.5in (2017) review

Comment faire une capture d’écran sur un Mac ?