IOBit Software
|
IOBit Software
|
|
|
||||||
| Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient. |
 |
|
|
Thread Tools | Display Modes |
|
#1
07-30-10, 08:31
|
||||
|
||||
root kti infection
I think I may have a root kit infection. Here's whats going on.,
after making some menue item changes for the system, reboot, and the system goes back to default. ex; changed control panel to in start menu to show as menu. IE8 home page keeps loading it's own pages, different everytime. shut down some services in admin tools, after reboot they are back on avast av, lavasoft ad-aware, system firewall. while running combofix, i get this message on screen; sed: can't read profiles.folder.dat sed: can't read appdata.folder.dat sed: can't read localappdata.folder.dat sed: can't read desktop.folder.dat sed: can't read startup.folder.dat started system this morning after following the README_FIRST sticky and completing the log files requested and IE8 asking for default permissions, after it had been set already yesterday. I used the file attachment icon above and sent the results of the scans, plz let me know if they did not come through. Thank you for your time and effort.
__________________
Take your time and do it right. 
|
| Sponsored links |
|
|
|
#2
07-30-10, 08:56
|
||||
|
||||
|
Re: root kti infection
I still need to see the log from rootrepeal if you were indeed able to run it, and most importantly, the C:\Mglogs.zip.
__________________
Have we been helpful and you would like to show your gratitude? Support MajorGeeks Majorgeeks Geek Wear. Hats, T-Shirts, Hoodies “The truth is, everyone is going to hurt you. You just got to find the ones worth suffering for.”
|
| The Following User Says Thank You to Kestrel13! For This Useful Post: | ||
PrivatePile-sir (07-30-10) | ||
|
#3
07-30-10, 09:12
|
||||
|
||||
|
Re: root kti infection
sorry, forgot the MGfile
__________________
Take your time and do it right.
|
|
#4
07-30-10, 09:39
|
||||
|
||||
|
Re: root kti infection
Quote:
Running from: c:\downloads\mgtools&fix\ComboFix.exe <--- Move combofix.exe directly onto your desktop where it needs to be. I am not seeing any malware in those logs.
__________________
Have we been helpful and you would like to show your gratitude? Support MajorGeeks Majorgeeks Geek Wear. Hats, T-Shirts, Hoodies “The truth is, everyone is going to hurt you. You just got to find the ones worth suffering for.”
|
| The Following User Says Thank You to Kestrel13! For This Useful Post: | ||
PrivatePile-sir (07-30-10) | ||
|
#5
07-30-10, 10:30
|
||||
|
||||
|
Re: root kti infection
Quote:
this is the new combofix log.
__________________
Take your time and do it right.
|
| Sponsored links |
|
|
|
#6
07-31-10, 05:05
|
||||
|
||||
|
Re: root kti infection
Hello there. I didn't request another combofix log. I just asked that you move it to the desktop.
I also asked you this question that you didn't answer. Quote:
__________________
Have we been helpful and you would like to show your gratitude? Support MajorGeeks Majorgeeks Geek Wear. Hats, T-Shirts, Hoodies “The truth is, everyone is going to hurt you. You just got to find the ones worth suffering for.”
|
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Root Kit Help | Megabites | Malware Removal | 1 | 07-29-10 14:31 |
| root kit | PrivatePile-sir | Malware Removal | 2 | 07-28-10 22:19 |
| root kit? | zsuiter | Malware Removal | 1 | 09-19-09 23:41 |
| windows has detected a virus infection! Please use macrovirus to remove the infection | frenchtreelover | Malware Removal | 8 | 03-15-08 00:43 |
| General.Root infection | Belezebub | Malware Removal | 1 | 01-28-07 17:53 |
Linear Mode
