Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Possible rootkit infection

  • Please log in to reply
1 reply to this topic

#1 szticks


  • Members
  • 1 posts
  • Local time:12:01 PM

Posted 01 July 2010 - 04:04 AM


I seem to have a problem with a rootkit on my computer.

I use Micorsoft Security Essentials as my choice of anti-virus software and it seems to have served me well. However I must have gone and clicked where I shouldn't have, as that seems the obvious way viruses spread.

First my AV reporte that I had an Alureon.H trojan which it apparently dealt with. But I'm not sure it got completely rid of it. I have tride a few scans with Malwarebyte's but it does not seem to find anything. Hitman Pro 35, however, finds a rootkit infection in a file called wfplwf.sys in my \system32\drivers folder.

My main problem at this point is that I cannot get the Chrome web browser to run. Or rather it runs but does nothing, just holds at a blank page. Luckliy Firefox and IE still work so I can post here.

Please tell me what to do so I can get rid of this thing. Hopefully without reformatting, but I guess I'll do it if I have to.

BC AdBot (Login to Remove)


#2 boopme


    To Insanity and Beyond

  • Global Moderator
  • 73,404 posts
  • Gender:Male
  • Location:NJ USA
  • Local time:06:01 AM

Posted 01 July 2010 - 12:26 PM

Hello and welcome... You need to do all the steps as some pertain to your issue..
Please follow our Removal Guide here How to remove the TDSS, TDL3, or Alureon rootkit
A log file should be created on your C: drive called "TDSSKiller.txt" please copy and paste the contents of that file.

You will move to the Automated Removal Instructions

After you completed that, post your scan log here,let me know how things are.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users