MajorGeeks Support Forums IOBit Software

Go Back   MajorGeeks Support Forums > Majorgeeks.Com - Support Forums > Malware Removal
Reload this Page Root kit infection
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 03-10-12, 17:48
PowerSonic PowerSonic is offline
Private E-2
  
Join Date: Mar 2012
Posts: 7
Thanks: 0
Thanked 0 Times in 0 Posts
Default Root kit infection
We have a windows 7 32 bit machine which has been infected with a root kit virus. The first clue to the infection was that McAfee Anti Spyware had been disabled even though it is locked down and needs a password to be disabled. We could not re-enable it. Then, looking into services we had hundreds of new services with the description 'New service would allow parents to control their children's online activity', although most were not started. The other noticeable thing is that during shutdown it would hang and have to be powered off. Scanning with the tools requested by majorgeeks before opening this thread revealed a number of root kits which some seemed to have been removed. We can now start McAfee spyware module and the computer now shuts down without hanging. We are still noticing though firefox and IE automatically shutting down within 30 seconds of opening and we are still seeing those hundreds of services when viewing services. Attached are logs requested. When trying to run combofix we had the error "Windows cannot find "NIRKMD". Make sure you typed the name correctly, and then try again." pop up a number of times although it seemed to run successfully and removed infections. Root Repeal we could not get to run. Our McAffe was completely disabled.
Thanks in advance for your help!
Attached Files
File Type: log SUPERAntiSpyware Scan Log - 03-09-2012 - 14-54-32.log (583 Bytes, 1 views)
File Type: txt mbam-log-2012-03-09 (15-01-37).txt (2.9 KB, 2 views)
File Type: txt ComboFixLog.txt (28.2 KB, 4 views)
File Type: txt RootRepeal_crash_030912.160253.txt (189 Bytes, 1 views)
Reply With Quote
Sponsored links
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
root kti infection PrivatePile-sir Malware Removal 5 07-31-10 05:05
root kit? zsuiter Malware Removal 1 09-19-09 23:41
How do I get to Root?? candive Linux 7 06-27-08 11:18
windows has detected a virus infection! Please use macrovirus to remove the infection frenchtreelover Malware Removal 8 03-15-08 00:43
General.Root infection Belezebub Malware Removal 1 01-28-07 17:53


All times are GMT -5. The time now is 06:26.

Contact Us - MajorGeeks - Archive - Top

MajorGeeks.Com Home Page
| Admin Tools | All In One | Anti-Spyware | Anti-Virus | Appearance | Backup | Benchmarking | BIOS | Browsers | Covert Ops |
Data Recovery | Diagnostics | Drive Cleaners | Drive Utilities | Drivers | Driver Tools Ergonomics | Firewalls | Games | Game Tweaks | Graphics | Input Devices | Internet Tools | Macintosh | Mail Utilities | Memory | Messaging | Monitoring | Microsoft | Multimedia | Networking | Office Tools | Process Management | Processor | Registry | Security | System Info | Toys | Video | Miscellaneous|

-->
Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger