Solve : What to do about a rootkit??

1.	Solve : What to do about a rootkit??
Answer» Quote from: MBAM scan Memory Processes Infected: (No malicious items detected) Memory Modules Infected: \\?\globalroot\systemroot\System32\MSIVXqpdsyqpyvjbbbrlqyhibcrgsfkcddiiv.dll (Spyware.Agent) -> Delete on reboot. Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: \\?\globalroot\systemroot\System32\MSIVXqpdsyqpyvjbbbrlqyhibcrgsfkcddiiv.dll (Spyware.Agent) -> Quarantined and deleted successfully. C:\Windows\System32\MSIVXcount (Trojan.Agent) -> Delete on reboot. These 3 infections will not go away, not with MBAM or SuperAntiSpyware. Twice I attempted to install HijackThis, but both times (once in safe mode) my computer crashed IMMEDIATELY after hitting "run" (which was unusual and obviously related to the program installation). So at this point I have 3 options: 1. Find a way to REMOVE the rootkit completely 2. Backup all my files and FORMAT my disk, reinstalling Windows Vista, then Windows 7 RC, and upgrade to W7 FULL next month. 3. Partition my computer. I'm not quite sure if this is possible, but I would partition the infected OS and install Windows 7 or 7 RC on the other partition. This would only be viable if I could access all the files I have now in the new partition. Option 2 seems like the best BET, because it ensures the complete removal of the rootkit and any backdoors, and I can just backup the stuff I really want and format the disk with all the excess crap I don't want (lots and lots of crap). Any advice, suggestions, or solutions?I'm the first to admit it, I'm not a virus guy. Go here and follow the directions, a specialist will be with you.Well I did follow the directions until HijackThis, which gave me problems like I said.Sorry man, I'm not an virus guy. I work really hard to keep it that way A specialist will be with you though.haha it's no problem, glad someone is posting in my thread at least I just don't want you to think that we're ignoring you. Yeah, that's it... honestly i already plan on just wiping my HD. at this point i'm just looking for my external drive and thinking about purchasing a new one. my computer has 2 years worth of crappy space consuming junk on it and i think it's a good idea.If your stuff is already backed up and you won't be copying the virus over, I don't see a reason not to. Just remember to FDISK as well.

Answer»

Quote from: MBAM scan

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
\\?\globalroot\systemroot\System32\MSIVXqpdsyqpyvjbbbrlqyhibcrgsfkcddiiv.dll (Spyware.Agent) -> Delete on reboot.

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
\\?\globalroot\systemroot\System32\MSIVXqpdsyqpyvjbbbrlqyhibcrgsfkcddiiv.dll (Spyware.Agent) -> Quarantined and deleted successfully.
C:\Windows\System32\MSIVXcount (Trojan.Agent) -> Delete on reboot.

These 3 infections will not go away, not with MBAM or SuperAntiSpyware. Twice I attempted to install HijackThis, but both times (once in safe mode) my computer crashed IMMEDIATELY after hitting "run" (which was unusual and obviously related to the program installation).

So at this point I have 3 options:

1. Find a way to REMOVE the rootkit completely
2. Backup all my files and FORMAT my disk, reinstalling Windows Vista, then Windows 7 RC, and upgrade to W7 FULL next month.
3. Partition my computer. I'm not quite sure if this is possible, but I would partition the infected OS and install Windows 7 or 7 RC on the other partition. This would only be viable if I could access all the files I have now in the new partition.

Option 2 seems like the best BET, because it ensures the complete removal of the rootkit and any backdoors, and I can just backup the stuff I really want and format the disk with all the excess crap I don't want (lots and lots of crap).

Any advice, suggestions, or solutions?I'm the first to admit it, I'm not a virus guy.

Go here and follow the directions, a specialist will be with you.Well I did follow the directions until HijackThis, which gave me problems like I said.Sorry man, I'm not an virus guy. I work really hard to keep it that way

A specialist will be with you though.haha it's no problem, glad someone is posting in my thread at least I just don't want you to think that we're ignoring you. Yeah, that's it... honestly i already plan on just wiping my HD. at this point i'm just looking for my external drive and thinking about purchasing a new one. my computer has 2 years worth of crappy space consuming junk on it and i think it's a good idea.If your stuff is already backed up and you won't be copying the virus over, I don't see a reason not to.

Just remember to FDISK as well.

Solve : What to do about a rootkit??

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment