Keylogger Identified
1.The installation of KIS 2010 has resulted in a pop up indicating that C:\Windows\System32\KBFILTR.SYS has a behaviour similar to PDM.keylogger detected.
2.I had contacted the MS support online, during which some changes were made to the registry and system configuration. This resulted in issues with start up and I resorted to system restore. The startup is somewhat slower after that.
System Info: Win XP Home Ed SP3 2006, x-86 based PC(Atom N270) 1.6Ghz, 2G RAM
I would appreciate your help on whether (1) is a virus and if (2) can be resolved.
1 person needs an answerI do too
March 27th, 2010 6:47pm
This has come up before for Kaspersky.
You can submit the file to Kaspersky via a link in this
forum thread:
http://forum.kaspersky.com/index.php?showtopic=13881
You could also submit it to VirusTotal:
http://www.virustotal.com
I'm not sure how to evaluate question 2--but #1 is a lot
more important...
This is a pretty good overview of XP performance issues
and safe fixes for them. It has a section on startup programs which may be
relevant.
http://www.microsoft.com/windowsxp/using/setup/expert/northrup_restoreperf.mspx
This page on startup time improvements is pretty
carefully labeled as to what advice is solid, and what has some controversy to
it:
http://www.pchell.com/support/how_to_speed_up_windows_boot_time.shtml
"the.saintman" wrote in message news:f255e3f4-a085-4699-b02a-90054be81a26...
1.The installation of KIS 2010 has resulted in a pop up indicating
that C:\Windows\System32\KBFILTR.SYS has a behaviour similar to PDM.keylogger
detected.
2.I had contacted the MS support online, during which some changes
were made to the registry and system configuration. This resulted in issues
with start up and I resorted to system restore. The startup is somewhat slower
after that.
System Info: Win XP Home Ed SP3 2006, x-86 based PC(Atom N270)
1.6Ghz, 2G RAM
I would appreciate your
help on whether (1) is a virus and if (2) can be
resolved.
Bill Sanderson
Free Windows Admin Tool Kit Click here and download it now
March 27th, 2010 11:30pm