- #USB REDIRECTOR CLIENT ROOTKIT INSTALL#
- #USB REDIRECTOR CLIENT ROOTKIT UPDATE#
- #USB REDIRECTOR CLIENT ROOTKIT DRIVER#
- #USB REDIRECTOR CLIENT ROOTKIT PROFESSIONAL#
09:27:44 - d-w- c:\documents and settings\all users\Immunet VBSFile=c:\program files\analogx\script defender\sdefend.exe %1 %* VBEFile=c:\program files\analogx\script defender\sdefend.exe %1 %* JSEFile=c:\program files\analogx\script defender\sdefend.exe %1 %* S3 TMPassthru Trend Micro Passthru Ndis Service c:\windows\system32\drivers\TMPassthru.sys
#USB REDIRECTOR CLIENT ROOTKIT INSTALL#
S3 nokiacpo Nokia Internet Stick Wireless Modem Service Install c:\windows\system32\drivers\nokiacpo.sys
#USB REDIRECTOR CLIENT ROOTKIT DRIVER#
S3 Lavasoft Kernexplorer Lavasoft helper driver \?\c:\program files\lavasoft\ad-aware\kernexplorer.sys -> c:\program files\lavasoft\ad-aware\KernExplorer.sys
![usb redirector client rootkit usb redirector client rootkit](https://1.bp.blogspot.com/-DQHGjyjyG3A/Xongh5kUQiI/AAAAAAAAIis/dumNgH-hgAUF3gilAJ5GlhmLzY0dRlb4QCLcBGAsYHQ/w1200-h630-p-k-no-nu/img-tech-customer-step1.png)
S3 BgRaSvc BgRaSvc c:\program files\bullguard ltd\bullguard\support\BgRaSvc.exe S2 Trend Micro RUBotted Service Trend Micro RUBotted Service c:\program files\trend micro\rubotted\RUBotSrv.exe R3 TMPassthruMP TMPassthruMP c:\windows\system32\drivers\TMPassthru.sys R3 nokiappo Nokia Internet Stick Wireless Modem Power Policy Service c:\windows\system32\drivers\nokiappo.sys R3 MBAMProtector MBAMProtector c:\windows\system32\drivers\mbam.sys R3 BsScanner BullGuard scanning service c:\program files\bullguard ltd\bullguard\BullGuardScanner.exe R3 afwcore afwcore c:\windows\system32\drivers\afwcore.sys R3 afw Agnitum firewall driver c:\windows\system32\drivers\afw.sys R2 MBAMService MBAMService c:\program files\malwarebytes' anti-malware\mbamservice.exe
#USB REDIRECTOR CLIENT ROOTKIT UPDATE#
R2 BsUpdate BullGuard update service c:\program files\bullguard ltd\bullguard\BullGuardUpdate.exe
![usb redirector client rootkit usb redirector client rootkit](https://www.thewindowsclub.com/wp-content/uploads/2017/08/direct-connection-600x355.png)
R2 BsMain BullGuard main service c:\windows\system32\SvcHost.exe -k BullGuard_Main R2 BsMailProxy BullGuard e-mail monitoring service c:\windows\system32\SvcHost.exe -k BullGuard R2 BsFire BullGuard firewall service c:\windows\system32\SvcHost.exe -k BullGuard
![usb redirector client rootkit usb redirector client rootkit](https://www.net-usb.com/images/upload/UNG/articles/client/2.jpg)
R2 BsFileScan BullGuard on-access service c:\windows\system32\SvcHost.exe -k BullGuard R2 BsBrowser BullGuard antiphishing service c:\windows\system32\SvcHost.exe -k BullGuard_LowPriv R2 BsBhvScan BullGuard behavioural detection service c:\program files\bullguard ltd\bullguard\BullGuardBhvScanner.exe R1 SASKUTIL SASKUTIL c:\program files\superantispyware\SASKUTIL.SYS R1 SASDIFSV SASDIFSV c:\program files\superantispyware\sasdifsv.sys R1 NovaShieldTDIDriver NovaShieldTDIDriver c:\windows\system32\drivers\NSNetmon.sys R1 NovaShieldFilterDriver NovaShieldFilterDriver c:\windows\system32\drivers\NSKernel.sys
![usb redirector client rootkit usb redirector client rootkit](https://www.apriorit.com/images/articles/IOKit_Driver_Matching/blog-134-article.jpg)
R1 BdSpy BdSpy c:\windows\system32\drivers\BdSpy.sys
#USB REDIRECTOR CLIENT ROOTKIT PROFESSIONAL#
Microsoft Windows XP Professional 5.1.26.1.10.489 ĪV: BullGuard Antivirus *Enabled/Updated* Run by Administrator at 16:03:48,92 on ma So here are my dds logs and root alyzer log and the packed suspicious files that were found bu rootalyzer. Hello i'm not sure if this post belongs to here because my computer is not showing any actual symptoms of infection but i ran a scan with spy dll remover and combofix and both found rootkit activity but could not tell what was causing it, combofix even asked me to reboot the computer.