Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: How do you get rid of Rootkits

  1. #1
    mixedgas's Avatar
    mixedgas is offline Creaky Old Award Winning Bastard Technologist
    Infinitus Excellentia Ion Laser Dominatus
    Join Date
    May 2007
    Location
    A lab with some dripping water on the floor.
    Posts
    9,890

    Default How do you get rid of Rootkits

    I somehow managed to pick up the "FAMOUSSEARCHENGINE.COM" rootkit on my XP laptop. HOW ON EARTH do you get rid of it?

    Trend's rootkit finder was useless.

    Steve

  2. #2
    Join Date
    Feb 2011
    Location
    Knutsford, UK
    Posts
    286

    Default

    Hitman Pro 3.5 from Surfright - http://www.surfright.nl/en/hitmanpro

    This will confirm it if present & you can remove it with the free 30 day trial.

  3. #3
    Join Date
    Apr 2006
    Location
    Miami, FL
    Posts
    3,590

    Default

    nuke from orbit

    or combofix may help you, would still backup and nuke from orbit, but thats me personally

  4. #4
    Join Date
    Jun 2010
    Location
    Australia
    Posts
    3,734

    Default

    Install Linux or FreeBSD.

    But really, Windows is just a maintenance nightmare...
    This space for rent.

  5. #5
    Join Date
    Apr 2006
    Location
    Miami, FL
    Posts
    3,590

    Default

    Quote Originally Posted by dnar View Post
    Install Linux or FreeBSD.

    But really, Windows is just a maintenance nightmare...
    some people like actually using their computers

  6. #6
    Join Date
    Jun 2010
    Location
    Australia
    Posts
    3,734

    Default

    Quote Originally Posted by flecom View Post
    some people like actually using their computers
    Ouch, that hurt!
    This space for rent.

  7. #7
    mixedgas's Avatar
    mixedgas is offline Creaky Old Award Winning Bastard Technologist
    Infinitus Excellentia Ion Laser Dominatus
    Join Date
    May 2007
    Location
    A lab with some dripping water on the floor.
    Posts
    9,890

    Default

    [QUOTE=dilbert;212991]Hitman Pro 3.5 from Surfright - http://www.surfright.nl/en/hitmanpro

    Dilbert, thank you!

    That worked, NOTHING ELSE DID!


    only side effect was It tried to declare all the LSX exes a trojan, but you could manually opt them out.

    Steve

  8. #8
    Join Date
    Feb 2011
    Location
    Knutsford, UK
    Posts
    286

    Default

    Glad to help, most rootkits install a modified hard disk driver that loads with the operating system so any program you install or run to try and remove is unable to see or remove the infection as the disk I/O is hidden.

    Hitman is cloud based so doesnt matter if its embedded in the drivers

  9. #9
    Join Date
    Apr 2006
    Location
    Miami, FL
    Posts
    3,590

    Default

    Quote Originally Posted by dnar View Post
    Ouch, that hurt!
    sorry dealt with too many *nix boxes, very jaded lol

    Quote Originally Posted by dilbert View Post
    Glad to help, most rootkits install a modified hard disk driver that loads with the operating system so any program you install or run to try and remove is unable to see or remove the infection as the disk I/O is hidden.

    Hitman is cloud based so doesnt matter if its embedded in the drivers
    some also take over the .exe association via the registry, pretty nasty stuff

  10. #10
    Join Date
    Jun 2010
    Location
    Australia
    Posts
    3,734

    Default

    Quote Originally Posted by flecom View Post
    sorry dealt with too many *nix boxes, very jaded lol

    some also take over the .exe association via the registry, pretty nasty stuff
    The same applies to me and Windows boxes!!!!

    Just take a look at this thread!

    I rest my case your Honor.
    This space for rent.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •