Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus: Hacktool.rootkit


  • Please log in to reply
2 replies to this topic

#1 Lemeki

Lemeki

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:56 AM

Posted 29 October 2007 - 09:31 PM

I have a colleague who suspects that he is being hacked after discovering that he has a virus in his laptop. The name of the virus is Hacktool.Rootkit and it has disabled some applications too including, as he said, his anti virus software. My friend is facing problems now and is afraid that he does a lot of online purchasing using his credit card.

I have asked my friend not to connect to the internet for the time being while I ask for help fromf you good folks on this forum to give us direction on how we can fix this problem up.

Looking forward to your help and thanks in advance.

Edited by Lemeki, 29 October 2007 - 09:33 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:56 AM

Posted 29 October 2007 - 11:36 PM

Here are two Rookit scanner/removers to try. Neither is for Vista

Panda Anti-Rootkit
use the in depth scan, by checking the box. Requires a reboot. Also submit files when asked.

AVG Anti-Rootkit

Remove anything they find
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,289 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:56 AM

Posted 30 October 2007 - 08:59 AM

Before running either Panda or AVG ARK do this:

Please download ATF Cleaner by Atribune & save it to your desktop.
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main "Select Files to Delete" choose: Select All.
  • Click the Empty Selected button.
  • If you use Firefox browser click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
  • If you use Opera browser click Opera at the top and choose: Select All
  • Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
  • Click Exit on the Main menu to close the program.
Instructions for scanning with AVG Anti-Rootkit
  • Double click avgarkt-setup-1.1.0.42.exe to install. By default it will install to C:\Program Files\GRISOFT\AVG Anti-Rootkit
  • Accept the license and follow the prompts to install.
  • You will be asked to reboot to finish the installation so click "Finish".
  • After rebooting, double-click the icon for AVG Anti-Rootkit on your desktop.
  • You will see a window with four buttons at the bottom.
  • Click "Search For Rootkits" and the scan will begin.
  • You will see the progress bar moving from left to right. The scan will take some so be patient and let it finish.
  • When the scan has finished, a small window will open so you can view the results.
  • Right click and select "Save Result To File".
  • By default the file will be saved with a .csv extension. (You can use notepad to open the .cvs file)
  • If anything was found, click "Remove selected items"
  • If nothing was found, please click the "Perform in-depth Search" saving anything found to file as before.
Instructions for scanning with Panda AntiRootkit
  • Create a new folder in C:\Program Files called Panda ARK and extract (unzip) the file into that folder.
    (click here if your not sure how to do this.)
  • Double-click on PAVARK.exe to run.
  • Read the license agreement and click Accept.
  • Click the box for in-depth scan (you must restart the system).
  • Leave the checkmark in Automatic Update if running your scan while connected to the Internet. If not, then uncheck it.
  • Press Start Scan and follow the prompts.
  • Click Exit when done.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users