My son hauled in his laptop to me, complaining of problems surfing. After looking at it, I determined it to have a number of nasties, including Anti Virus 2011, amongst some other common malware. I am fairly capable at dealing with these, and had the machine back running OK soon, but still has some sort of browser hijacker as results from google searches were sent to "similar" pages, but not the correct page. I suspected a TDSS rootkit, but a scan for that came back negative. Using a Kaspersky rescue boot CD, it found 3 files which it labelled as zeroaccess/max++ type infection. It said the files could not be healed, and suggested deleting them, which I did. On reboot, got a BSOD, so I popped hard drive into another machine, restored the deleted files, and now computer boots up again, but still with rootkit running. Typical removal tools scans seem to reveal nothing. I could really use some help with this one to avoid reformatting.
System is HP laptop, running Win 7 HP 64 Bit, SP1 installed
Running MSE as AV and SP
If it helps at all, TDSSkiller, SAS, Malwarebytes, and several other utilites all come back completely negative, ie. not even a tracking cookie left to find!
Edited by littlehb, 27 May 2011 - 07:29 PM.