Announcement

Collapse
No announcement yet.

rootkit rootkit rootkit

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    rootkit rootkit rootkit

    great
    It seems I m a magnet for virusses + other malware

    So 2 days ago I got hit by msn ----? sirh0t32 executable. Because it came from a friend I thought it was ok. Which it was not

    no virusscan works. After several hours, I did manage to run them in save mode. Nothing found. no spyware tool detects them.

    So I was wondering If there is any other option besides a complete reinstall.

    And how does a rootkit work? I did manage to find some info on it. But it disabled many important files at windows xp.

    - no virusscan runs
    - no firewall
    - msconfig command or any other command doesnt work.
    - system 32 folder disapeared

    update: Got a firewall up and running for 3 minutes and found some one sniffing on my computer Unfortuntaly I forgot to note his ip + additional info

    firewall is offline again and doesnt run
    There is no salvation for the soul, But to fall in Love.
    It has to creep and crawl, Among the Lovers first.

    Imam Jallal-u-Din Rumi

    #2
    Re: rootkit rootkit rootkit

    Unfortunately (depending on the rootkit, 99% worthless) the only option is to reformat.
    An Android a day keeps the Apple away!

    Comment


      #3
      Re: rootkit rootkit rootkit

      can't you take the HD in another comp and scan for rootkit/malware?
      Life is not a joke, but a life without jokes is a cruel joke of life

      Comment


        #4
        Re: rootkit rootkit rootkit

        I posted the following on another forum Im being generous to share with y'all. The only one i can vouch for is F-Secure and Sysinternals


        1. Sysinternals Rootkitrevealer
        info: http://www.sysinternals.com/ntw2k/fr...itreveal.shtml
        download : http://www.sysinternals.com/files/rootkitrevealer.zip

        2. Microsoft's Strider GhostBuster
        info and download: http://research.microsoft.com/rootkit

        3. F-Secure BlackLight
        info and download: http://www.f-secure.com/blacklight


        Also read PC Mag's article:
        Rootkits: The Ultimate Stealth Attack

        Ever hear of a rootkit? It's a surreptitious program that is specifically designed to conceal its presence on your system, most likely toward some malicious end.

        Click here for the rest of the article


        locally checks for signs of a rootkit here: http://www.chkrootkit.org/
        I am only responsible for what I say, not for what you understand.

        Comment


          #5
          Re: rootkit rootkit rootkit

          right, YOU posted them all here, lol!

          If you suspect that there is a rootkit on a computer then never take a chance with any of the above. I would just redo the machine.
          An Android a day keeps the Apple away!

          Comment


            #6
            Re: rootkit rootkit rootkit

            thanx guys
            I ll try the software but reinstall everything nonetheless
            There is no salvation for the soul, But to fall in Love.
            It has to creep and crawl, Among the Lovers first.

            Imam Jallal-u-Din Rumi

            Comment


              #7
              Re: rootkit rootkit rootkit

              Rootkits are hard to detect. Your case may just be that of a trojan or a virus. If your aunty-virus doesnt detect any virus/trojan or does detect them, it doesnt mean you dont or do have rootkit.
              I suggest you run that F-Secure application and see if it finds anything and post here before you wipe you HDD clean. Im actually curious myself.
              I am only responsible for what I say, not for what you understand.

              Comment


                #8
                Re: rootkit rootkit rootkit

                /\

                allright I ll post the results overhere
                There is no salvation for the soul, But to fall in Love.
                It has to creep and crawl, Among the Lovers first.

                Imam Jallal-u-Din Rumi

                Comment


                  #9
                  Re: rootkit rootkit rootkit

                  creaete a ghost image of ur most trusted and working installation and then whenever ther's a problem wipe off the os partition and use the ghost, norton ghost. or perphaps other imaging software

                  Comment


                    #10
                    Re: rootkit rootkit rootkit

                    The F-secure app just crashed and messed up the whole system At first I couldnt even get to the website but I managed to download it on a diff system put it on a flashdrive and saved it here. SO it didnt work

                    But I did get the Sysinternals Rootkitrevealer and found the following

                    [thumb=H]kitje6096_5573671.JPG[/thumb]

                    GENCTURK rootkit?

                    It does say rootkit several times
                    Anyway I didnt feel like waiting the whole scan so I abborted it
                    reinstalling in a few mins
                    Its been more then two years anyway ( I think)
                    There is no salvation for the soul, But to fall in Love.
                    It has to creep and crawl, Among the Lovers first.

                    Imam Jallal-u-Din Rumi

                    Comment


                      #11
                      Re: rootkit rootkit rootkit

                      Even if there hadn't been anything you can never be sure that its not there. You are doing the best thing.
                      An Android a day keeps the Apple away!

                      Comment


                        #12
                        Re: rootkit rootkit rootkit

                        2 yrs *eek* u didn't format the hdd for 2 yrs , I do it every 3 months , its like a ritual for me.
                        Depending on the perspective, everything is beautiful!!

                        Comment


                          #13
                          Re: rootkit rootkit rootkit

                          TB: yea my system is superduperfly fast again

                          PD: I have so much stuff on it Its hard to save it all. Besides that, my bro and sisters use m comp as the download machine ( I squeezed their connections a bit :halo: )
                          But I ll do it more often I think
                          But first I need an upgrade
                          There is no salvation for the soul, But to fall in Love.
                          It has to creep and crawl, Among the Lovers first.

                          Imam Jallal-u-Din Rumi

                          Comment


                            #14
                            Re: rootkit rootkit rootkit

                            dayum. Genc Turk Rootkit? Dunno what it is. You have been visiting dodgy website havent you
                            I am only responsible for what I say, not for what you understand.

                            Comment


                              #15
                              Re: rootkit rootkit rootkit

                              All turkish women are not kosher
                              An Android a day keeps the Apple away!

                              Comment

                              Working...
                              X