Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


new rootkit?????

  • Please log in to reply
No replies to this topic

#1 vpc


  • Members
  • 1 posts
  • Local time:07:24 PM

Posted 17 April 2010 - 06:02 PM

I have about 5 machines having problems. I have already ran combofix and rkill. When i try to install avg free, it gives me the error message that "something bad has happened to the application". Also if i use Microsoft Securtiy Essentials it will install no problem, but will not update. I found a atapi.sys rootkit and a intellppm.sys rootkit. Autoruns and hijackthis look normal. Also I have pull the hard drive out of the system and scanned the drive as a slave in a different computer. I scanned the drives with norton, microsoft security, avg, malware bytes, and also super anti-spyware.

If I go to windows updates, it will not display the page. Host file is clean, and the dns is not set to a bogus address.

The system also had some trash called xp smart scan that was poping up, in the doc and settings/local/ave.exe, but combofix cleaned that.

Any Ideas?????

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users