New here but have used your guides in the past, very helpful
I've beaten hundreds of virues/trojans/rootkits in the past 10+ years, but this one has me stumped!
I cant seem to remove it, or even see where it is... it keeps coming back.
I'm pretty sure its related to TDSS but Kaspersky TDSSKiller detects nothing and Symantec removal tool also detects nothing.
I have tried:
TDSSKIller by Kaspersky
TDSS Removal tool by Symantec
RKUnhooker (crashes to blue screen)
Kaspersky Rescue CD (updated).
Gmer (Gmer crashes when scanning, to blue screen with error: normandy.sys or another sys file (random name one))
I normally remove viruses manually using linux rescue CD to boot out of the OS, however I cannot identify or find this rootkits files.
For example the file normandy.sys does not exist on the hard disk when mounted with Linux, so I'm guessing its hidden within another file or in memory created by the rootkit during boot up and destroyed when rebooted.
I'll post the logs/files as required:
Thanks in advance,