Author Topic: Rootkit infestation?  (Read 498 times)

0 Members and 1 Guest are viewing this topic.

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Rootkit infestation?
« on: September 05, 2019, 08:26:34 PM »
I'm running Avast free version on Win 10 home. I ran a full scan a few days ago and it stalled at 28% (for about 8 hours) so I cancelled it and it reported over 940
detections, all rootkits.  I let Avast resolve it and it claimed to have fixed everything,  ran another full scan and it came back with the same amount of detections again, all rootkits again.  I then ran rootkit scanners from bitdefender, kapersky, trend micro, mcafee, emsisoft and malware bytes.  I ran RKill first to shut down any malicious processes before scanning.  NONE of these programs found anything.  I tried repairing Avast and ran another full scan and its still saying I have the rootkits.  I'm stumped now. Any help will be greatly appreciated.

Offline Pondus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 36301
Re: Rootkit infestation?
« Reply #1 on: September 05, 2019, 09:27:49 PM »
“Ah beer. The cause of and the solution to all of life’s problems.”

"Operator! Give me the number for 911!"

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Re: Rootkit infestation?
« Reply #2 on: September 05, 2019, 10:44:43 PM »
Thanks for your reply Pondus,  getting ready to head to work now, but will get those logs posted A.S.A.P. after I get off.

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Re: Rootkit infestation?
« Reply #3 on: September 06, 2019, 07:48:33 PM »
Here are those log files.  The only thing Malwarebytes appears to have hit on is my Advanced System Care for some reason.

Offline Pondus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 36301
Re: Rootkit infestation?
« Reply #4 on: September 06, 2019, 08:46:45 PM »
Do you have a log / screenshot of avast detection?

What was the location of detected files?

“Ah beer. The cause of and the solution to all of life’s problems.”

"Operator! Give me the number for 911!"

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Re: Rootkit infestation?
« Reply #5 on: September 06, 2019, 10:22:39 PM »
Attached is a screenshot of the detection,  I couldn't find a log file.  The location of the detections were C:\users\tim\desktop\desktop\  and then throughout that second desktop folder which has a lot of old files/programs in it.

Offline Sass Drake

  • MyCity AMF R2
  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 767
Re: Rootkit infestation?
« Reply #6 on: September 06, 2019, 10:25:07 PM »
In FRST logs I can't see active infection. Can you click on Detailed Report and post screenshot of it?

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Re: Rootkit infestation?
« Reply #7 on: September 06, 2019, 10:29:14 PM »
Sorry I forgot to add this screen, its a small snippet of all the results.   Oh and I dont even have office 2000 on this pc.

Offline Sass Drake

  • MyCity AMF R2
  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 767
Re: Rootkit infestation?
« Reply #8 on: September 06, 2019, 10:31:24 PM »
Did you have Office2000 folder on your Desktop?

Offline Tim_60

  • Newbie
  • *
  • Posts: 6
Re: Rootkit infestation?
« Reply #9 on: September 06, 2019, 10:35:42 PM »
Yes I have it in the desktop folder, forgot it was there, although its never been detected on any previous scans.