Question

Locked

Rootkits

By wesley.chin ·
Has anyone been able to get rid of infostealer.gampass trojan? It brought with it hacktool.rootkit. I have looked for the keys that should be present with the infestation, but after removing them, the trojans remain.

There is another one, backdoor.trojan but I don't know if it came along with infostealer.

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

Fixing registry keys not enough.....

by ThumbsUp2 In reply to Rootkits

You must also find the file(s) which caused the problems.

Have you scanned the computer with anti-virus/anti-spyware software? Have you tried running Ccleaner repeatedly until it finds nothing more to clean?

Collapse -

Yes

by wesley.chin In reply to Fixing registry keys not ...

With every reboot, the files that are infected are different.

Symantec Antivirus Corporate detected the trojans. S&amp has been run. CCleaner has not been run.

Collapse -

Download this ISO, make the CD, boot to it.

by formerly CallPete.com In reply to Rootkits

ftp://ftp.bitdefender.com/pub/rescue_cd/bitdefender_2008_RescueCD_v2.iso

Bitdefender rescue CD. It will mount your hard drive as a linux partition, update its own definitions (from the internet), scan for viruses on your hard drive, and REMOVE THE VIRUSES.

If/since symantec isn't cutting the mustard, you might try a different antivirus/antispyware. BitDefender's free AV works well, as does AVG from http://free.grisoft.com

S&amp is good for spyware, but I don't recommend it as a sole defense. Adaware 2007 is a good followup. These trojans can be tricky to get rid of.

Booting to the rescue CD is good since it boots linux, and doesn't allow windows-based viruses/trojans to load. Since ALL (99.99999%) of viruses are Windows based, booting to a linux CD (mentioned at the top of this post) is a safe option.

Collapse -

Thanks for that link Pete

by Dumphrey In reply to Download this ISO, make t ...

I have been using UBCD4Win to do this, which takes longer to update, boot, and burn. I am suprised more AV companies do not offer an iso like this =\ Then again, maybe I'm not...
I would give you a Thumb if this was my thread. Mentally add one to your tally each time you look at it=)

Collapse -

Hm

by wesley.chin In reply to Rootkits

Will reinstalling the OS get rid of the rootkit?

Collapse -

SuperAntiSpyware

by willcomp In reply to Rootkits

This is the most effective free spyware removal program. Should remove hacktool.
http://www.superantispyware.com/download.html

AV software just doesn't effectively remove spyware/adware.

Back to Malware Forum
7 total posts (Page 1 of 1)  

Related Discussions

Related Forums