HELP!!!!! Did everything again MBR rootkit infection HELP

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by hostileto, Feb 27, 2010.

  1. hostileto

    hostileto Private E-2

    http://forums.majorgeeks.com/showthread.php?t=209710

    followedeverything to the tee at the link above
    I'm on and after 15min computer freezes and beeps I have to do a hard shutdown.
    I hate this!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

    I reinstall hjt here is the log
    it would be faster to just wipe my drive HELPEHELP HELP
     

    Attached Files:

  2. hostileto

    hostileto Private E-2

    I used recovery console command and I fixed my
    fixmbr

    Since I've been working on hours to make this work here is the final mebroot fix but it says malicious code is it still there.

    I've done everyone freaken program to get this POS off my computer. Is it off? what other thing do I need to run here is the lastest hjt list


    Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

    device: opened successfully
    user: MBR read successfully
    kernel: MBR read successfully
    user & kernel MBR OK
    copy of MBR has been found in sector 0x01D1C06C0
    malicious code @ sector 0x01D1C06C3 !
    PE file found in sector at 0x01D1C06D9 !



    CAN SOMEONE PLEASE REPLY@@@@@@@@!!!!!!!!!!!!!!!!!!!!!!
     

    Attached Files:

  3. hostileto

    hostileto Private E-2

    Prevx 3.0 did not work it said it removed the problem but it still there

    There needs to be a solution for this
     
  4. hostileto

    hostileto Private E-2

    Anti virus stuff used to get this mbr rookit infection off

    avg
    mbr
    hijackthis
    avira
    adware
    spybooy
    malware
    tdskiller

    none of this worked

    used my xp boot disc to get to
    here
    http://helpdeskgeek.com/how-to/fix-mbr-xp-vista/

    that where I am now I will try to be more proactive in giving help because I found I did the steps and still had the problem.
     
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    If you had a Master Boot Record infection and ran fixmbr from the Recovery Console then your problem is fixed.

    If you want to know for sure then run our cleaning procedure. HijackThis logs are not helpful for most infections and they are useless in terms of MBR infections. The below is our cleaning procedure:

    READ & RUN ME FIRST. Malware Removal Guide
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds