Do i have a rootkit in my system ?
 

Hi, have some problems for week by now.

System is WinXp SP2
LimeWire BASIC
Think i've got i virus or a rootkit. Only possible to download corrupted files.
If try do download a normal file it will be after 2 seconds remove in status bar.
If check file from user who connecting to me they all have the same File's and some very nasty names.

URGENT LIMEWIRE UPDATE-download AND install now.exe

Get some help from Dutch Forem, did HIJACK , can't find anything.
Do some research about prevention and read a lot.
What's the problem? :bangh:
Have Sygate running and try to backtrace.
Did Online BitDefender, couldn't find anything
Did scan with SuperAntispyware, couldn't find anything

Limbabnees Hi.
If you suspect a rootkit, then go to one of the Free computer Help sites listed here, They realy know what there doing. Regester and post in there
forum, They will instruct you to D/L & run software that can be trusted,
Not all sites are Genuin, These three are recomended by tekies.
Click on one of these Blue links.
http://forums.spywareinfo.com/index.php?showtopic=79038

http://www.castlecops.com/HijackThis.html

http://www.bleepingcomputer.com/

If the site you choose gives you good help, Tell us it helps others.
Peace.

AVG Anti-Rootkit (Beta)
 

Limbabnees

Following on from Mickjapa108 advice, you could try AVG Anti-Rootkit (Beta). As you can see, it's still in beta but it is free and, since I have used it several times, can vouch that it is safe.

The URL is: http://www.grisoft.com/doc/21/us/crp/0



UK Bob

Thanks, i go check there :)

Found nothing with those programs.
Did Panda Activescan and only SDFix.exe.
Well the only tootkit is SDFix.exe, but that i knew. It's in a backup directory.

I had some help from dutch forum and i had to do Hijack for him.

Why do i still have problems with Limewire.
Only possible to download nasy things, all normal files are not possible to download.
If try to download Sygate.zip he put it in status bar: "Wait" 1 second later: "Delete"

It looks like something is controle my system.
Even with install Ad-Aware & CCleaner. Not Possible, if wanna install all go good till a certen point. after 5 % of install it's just stop and disappear.

Have some one maybe answers on this. It's now a week i have those problems :(

Limbabnees.

Are you sure your not trying to d/load fake files?

See Recognising Fake files, also this post by LOTR: http://www.gnutellaforums.com/showthread.php?t=63993.


Try d/loading a file from here and let us know how it goes: http://www.magnetmix.com/audio2.shtml

@ UK BOb, Thanks for that prog. Tried it and my system is clean :).

Looks like big trouble.

If i try to download one of these (tried all) it brings me too an error site.
Can't find server.
magnet:?xt=urn:sha1:AZO45B2WM4Q46KYXC6N3VPX3LH2QHT GW&dn=Martin%20-%20Get%20It%20Right.mp3&xs=http://magnetmix.com:6346/uri-res/N2R?urn:sha1:AZO45B2WM4Q46KYXC6N3VPX3LH2QHTGW

Is this correct?

I downloaded Sygate.zip
This is what i find in my download map!!!

Sygate Personal Firewall Full v5 6 3408 rar.zip - ZIP archive, unpacked size 210.432 bytes

If try to unpack it NOD32 get Alert
Win32/TrojanDropper.VB.NAI trojan, lucky for me i download on D-Drive

Hmmm, seems someone do some ad things on my PC :(

And if look in overview who's connecting to me i fins very strange names, 4blocks.

This is what i see in whatever i selecting for downloading.
T-77562-URGENT LIMEWIRE UPDATE-download AND install now.exe

Very bad files only to find.

If i put in a name from a band or singer, nothing comes out. Only bad files.
I even tried with Elvis, who dont know him :)
If i wanna download the file (only zips & exe, there are no mp3 visible) from Elvis, it already excist.

Well im not good at finding hacker tools, and my software and even hijack wont find anything.

Think i block Limewire in sygate, maybe it does something i not see :(

If you keep trying to follow the path that you are taking it's only going to get worse. It's never a good idea to try & download programs such as Sygate from Limewire. They are almost always bundled with viruses that will cause problems on your computer. You should follow the advice mickjapa108 gave you above & go & have your computer checked by experts at one of the forums listed.

If you aren't up to doing that, at least run an in-depth scan with NOD32.

BTW: You can get Sygate for free here:

http://www.tucows.com/preview/213160

Yes i have the free version, i was just checking the posiblilities for downloading. Thats why i saw all those strange things.

Btw, all checks are negative. Even NOD32 Deep scan.
HijackThis found nothing.

Come from dutch forum and *Kingpin* (Moderator) advised me to let check my system over here.
http://www.nationaalcomputerforum.nl...splay.php?f=25

Ask it again: