Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rootkit.boot.sst.b


  • This topic is locked This topic is locked
4 replies to this topic

#1 tomraedisk

tomraedisk

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 18 July 2012 - 12:38 PM

I've been working on this machine for two days now. Ive done everything thing i can do and think of doing to remove this bootkit.it causes google redirect and tools like tdsskiller from Kaspersky have to be renamed before they are able to run. I have slaved this drive to another machine to remove it but it does not cure the mbr. Ive tried useing Kaspersky's live cd also to remove the bootkit, but with no success. Ive tried running DDS and GMER on it and the machine locks up

Edited by tomraedisk, 18 July 2012 - 01:01 PM.


BC AdBot (Login to Remove)

 


#2 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:02:40 PM

Posted 22 July 2012 - 03:08 PM

what operating system do you have?

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#3 tomraedisk

tomraedisk
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 22 July 2012 - 03:18 PM

It was Windows Vista Pro x86. Unfortunately i had to format/reinstall the machine and return it to the customer.

#4 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:02:40 PM

Posted 22 July 2012 - 03:18 PM

ok, thanks for letting me know

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#5 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:02:40 PM

Posted 22 July 2012 - 03:18 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users