Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows XP Repair - TDSS rootkit


  • This topic is locked This topic is locked
2 replies to this topic

#1 cpued

cpued

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 03 July 2011 - 02:04 AM

Most of the issues I am experiencing are described: http://www.bleepingcomputer.com/virus-removal/remove-windows-xp-repair
This includes the hijackthis entry described in the article, "low disk space" warning, google search redirect, hidden files, as well as the "windows xp repair" shortcut installed on the desktop.

It also includes indications that the TDSS rootkit has been installed. Malwarebytes received an error when trying to update. Thats the point I get a little confused...the article defers on this variety saying:

"this guide will not be able to help you and you should instead follow the instructions in this topic in order to receive one-on-one help in removing this infection"

I'm not entirely sure what that means, but if anyone has any helpful thoughtAttached File  hijackthis.log   9.7KB   0 downloads, I would be be very much obliged.

Best-Dave

BC AdBot (Login to Remove)

 


#2 cpued

cpued
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:21 AM

Posted 06 July 2011 - 10:41 PM

I found a very helpful link in removing and cleaning up from this infection. Computer seems to be operating normally again.

http://www.symantec.com/security_response/writeup.jsp?docid=2008-091809-0911-99&tabid=2

#3 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:21 PM

Posted 07 July 2011 - 04:46 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users