Wednesday 6 March 2013

Nothing short of a shock: TDSSKiller says 2 threads detected during scan

Okay, when one hits something that may cause a question about the integrity of a system we delve into our tool chest to start pulling things apart.

TDSSKiller from Kaspersky is one such tool that we turn to if there is a suspected rootkit problem.

During the TDSSKiller scan we saw 2 Threats Found until the scan completed.

That was a bit of a heart stopping moment as the system that was being scanned is used for online banking and other such sensitive transactions (user runs as Standard though).

image

Once the process completed we were presented with the above.

It's almost laughable that the two "Threats Found" where HP driver related! :P

BTW, Kaspersky has an awesome free tools reference page.

Philip Elder
MPECS Inc.
Microsoft Small Business Specialists
Co-Author: SBS 2008 Blueprint Book

Chef de partie in the SMBKitchen
Find out more at
www.thirdtier.net/enterprise-solutions-for-small-business/

Windows Live Writer

1 comment:

Silvano said...

I usually uncheck unsigned files and check tdss file system in the advanced parameters before running. It will often flag good drivers and system files if not.