Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

XCP Rootkit traces

by rws1969 Feb 11, 2006 11:14AM PST

Hello, I have had a problem with the Sony XCP Rootkit deal. When I realized I had it, I went to the Sony page and downloaded and installed the uninstaller. The program(A2 Squared) that found the problem still found it. I then found out about the uninstaller problem and found something to get rid of that. Now, my A2 Squared program still finds traces in the registry.Sony swears that this isnt a problem and that they will "go away" on their own. Is this true, if not how can I safely remove the traces?

Discussion is locked

6 Posts
- Collapse + Expand Details
- Collapse -
Manual Removal Instructions..
by Grif Thomas Former Forum moderator Feb 11, 2006 1:30PM PST
- Collapse -
that should have helped
by rws1969 Feb 11, 2006 3:03PM PST

Hey, thanks for the response, first of all. I went to that link was set to try it .It said to go to the command prompt which I did, and type CD WINDOWS , did that, type CD SYSTEM32 when I do, it says "cant find path specified". When I go to the explorer, that directory is there, but not at the c prompt. I am very confused.

- Collapse -
RWS, Try These Commands
by Grif Thomas Former Forum moderator Feb 12, 2006 1:49AM PST

The commands in that link made some incorrect assumptions..So, type the commands as below:

Click on Start-Run, type: cmd then click on OK.

When the command window loads, type: cd \ (leaving one space between the cd and the backslash), then press the "Enter" key. You should now see:

C:\>

Now type: cd windows\system32 then press the "Enter" key..

You should now see:

C:\Windows\System32

Now continue following the instructions per the link provided earlier.

Hope this helps.

Grf

- Collapse -
thanks
by rws1969 Feb 12, 2006 11:58AM PST

Thanks for the continuing help. That got to me to the point that tells me that i dont have these problems, however my spyware program still says i have a problem.

- Collapse -
RWS, If A-Squared Is Showing The Registry Entry...
by Grif Thomas Former Forum moderator Feb 12, 2006 11:38PM PST

..and the path to it, then can't you simply delete the entry? Most spyware removal tools will specify where the problem is. This should be no different. Have other spyware removal tools detected anything? Have you tried the program at the link below?

Rootkit Reveler

Blacklight Beta Rootkit Detector

And most importantly, is the supposed issue actually causing some problem on the computer?

Hope this helps.

Grif

- Collapse -
you are the man, man
by rws1969 Feb 13, 2006 3:33AM PST

Hello again. First off, my pc wasn't doing anything weird. I was just worried it might. I ahve had many virus/spyware programs in the past, so I get paranoid easy. Secondly, I am weary of messing with the registry and didnt think deleting the keys would work, since my a-squared was never sucessful with that. I finally rolled up my sleeves and dove in. It took several tries to delete it, not sure why, but I finally got it. Thank you so much for all your help and time. One good thing about viruses, you can learn alot and also meet cool helpful people.

Back to Computer Help forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info