Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible TDL3 rootkit malware


  • This topic is locked This topic is locked
5 replies to this topic

#1 humbold

humbold

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:16 PM

Posted 16 September 2010 - 07:49 PM

I have the same problem like several other members.
During the last few weeks I am being redirected on Google searches and the computer has slowed down considerably.
I have tried these anti-malware programs (Malwarebytes, TDSSKiller, HitmanProFree, Spybot S&D) but none found any infections.

I run Win7 Home Premium 32bit with a 2 partitioned WD ATA hard drive and use Avast Anti-virus Free, CCleaner and Windows firewall.
My local computer expert believes that I have malware of the “TDL3 rootkit” variety and he suggested contacting this forum.
During some research looking for answers to combat this nasty, I came across an article in this forum written by Ngyuen Pho Son and explaining the TDL3 rootkit malware.
Since I am no computer geek and in my 70’s I found it pretty difficult to understand how it works.
However, it seems that there are no current anti-malware programs which can eliminate this rootkit.
Consequently, I was intending to backup my most important data and then reformat the hard drive and reinstall Win7 from the original disk.
Would such idea be quicker and safer than running “Combofix” and other logs?
Your advice and/or other suggestions would be greatly appreciated.
Thanks in advance. :thumbsup:

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 AM

Posted 17 September 2010 - 03:37 PM

Hello and welcome. First I am moving this to the Am I Infected forum as this forum is for HJT and DDS logs and you did not post one. No biggie.
Please do not run ComboFix on your own.

With these TDDS rootkit infections it may well be faster and easier to reformat the PC.

If you do not want to do that then you will need to do this.


Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 humbold

humbold
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:16 PM

Posted 18 September 2010 - 02:23 AM

Hi boopme,
Thanks for your prompt response. :thumbsup:

I have done some more work on the promblem and I believe that I have possibly solved the matter.
However, I am sending you a PM before going public.
Hope you don't mind.

......humbold

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 AM

Posted 18 September 2010 - 09:12 AM

I've replied
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 humbold

humbold
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:16 PM

Posted 21 September 2010 - 04:58 AM

hi boopme,
as discussed via PM I have re-formatted my hard drive and I now have
a faster, leaner and happier computer.

Thanks for your kind assistance......humbold :thumbsup:

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 AM

Posted 21 September 2010 - 09:43 AM

You are welcome. here's some of our quietman's helpful info: I will close this topic now.
Tips to protect yourself against malware and reduce the potential for re-infection:Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs. They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications. Read P2P Software User Advisories and Risks of File-Sharing Technology.

Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. To learn more about this risk, please read:

Edited by boopme, 21 September 2010 - 09:44 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users