Rootkit ?????

Discussion in 'Malware Help (A Specialist Will Reply)' started by DamoWain, Jan 22, 2011.

  1. DamoWain

    DamoWain Private E-2

    Hi guys went through the malware removal process yesterday and thought id deleted everything so i also did a factory reset. Installed a firewall and avast anti virus and some other stuff today. Avast keeps picking up something it says a rootkit hidden boot sector has been detected MBR:\\.\PHYSICALDRIVE0
    (recommended to delete now). when i delete it says i should reset my laptop and it will do a full scan of the system but everytime ive done this it keeps finding this same thing again when the scans done and it loads back up. This is the 5th time now and it takes a while for it to reset etc. Im not sure what to do? Its obviously not getting rid of it and my other things like malware bytes anti malware arent picking it up.

    Any help plz
     
    DamoWain, Jan 22, 2011
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!


    Be sure to download TDSSKiller.exe (v2.4.0.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.

    • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
      Vista/Windows 7 users right-click and select Run As Administrator.
    • If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123tdk.com).
    • Click the Start Scan button.
    • Do not use the computer during the scan
    • If the scan completes with nothing found, click Close to exit.
    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_14.17.05_log.txt) will be created and saved to the root directory ( usually Local Disk C ).
    • Attach this log to your next message
     
    TimW, Jan 22, 2011
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds