Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Combofix detect rootkit


  • This topic is locked This topic is locked
2 replies to this topic

#1 Raziel1986

Raziel1986

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:25 AM

Posted 31 January 2011 - 04:12 AM

Hi all Staff and member.

Sorry for my english but i not speak very good.

Problem:
Yesterday, i download Combofix from here and execute him.
Combofix detect rootkit (O.o) and restart notebook for remove him.
When scan is finish i disable system recovery, restart notebook and scan with Combofix that detect again rootkit.
Then i save all my documents from esternal HD and format all partition.
Install Windows XP Professional (SP2), install Norton Antivirus (trial version) and update system and driver from official site web and scan all pc. Nothing.

Not connect my HD with my data but download and scan with Combofix again that detect rootkit again again and again. I format pc repeatedly (9 volt) and this rootkit is detect only after update system (first install SP3).

This morning i scan again pc with Norton Power Eraser and activate scan for rootkit... nothing.

Is possible that only Combofix detect rootkit?
PS: each format i download new version of Combofix.

Attachment Combofix log of this morning.
Attached File  ComboFix.txt   446.11KB   12 downloads

Thanks for help

Carlo B.

Thanks B-boy/StyLe/

Ok. I have follow all steps.

GMER log
Attached File  GMER Log.log   11.18KB   2 downloads

DDS log
Attached File  Attach.txt   5.93KB   1 downloads
Attached File  DDS.txt   8.81KB   5 downloads

One question: I have post in wrong section? :o If yes... sorry me.

Carlo B.

Merged posts. ~ OB

New information:

Yesterday i format again ( :wacko: ) and I noticed that after install this update Windows XP (KB2115168) Combofix detect rootkit.

On virtual machine that does not happen. O_O

EDIT: Posts merged ~BP

Edited by Budapest, 02 February 2011 - 04:23 PM.


BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:06:25 AM

Posted 04 February 2011 - 09:38 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#3 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:06:25 AM

Posted 09 February 2011 - 08:00 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users