avast keeps finding hidden rootkits?

Viruses and worms
1

I am having the same sort of problem with avast finding 134 hidden rootkits and saying these are suspicious files.It gives an option to ignore or delete them.I’ve done both options but each time I run avast scan they are still found by avast. I also get a message saying a virus has been found and that it recommends a scan in boot safe mode which i’ve done and it finds nothing.I get av updates daily automatically so my avast is always up to date.I’ve also run superantispyware and it doesn’t find anything either.So are these hidden rootkits,fasle positives?If so how do I prevent them from showing up whenever I run avast scan in future?and what about this supposed virus it says it’s found,to then only come up with nothing when I do a boot safe scan of my files as recommended?
I’ve left the box ticked to send the results to avast lab but no response.Leaving this box checked,does the program automatically send the results to the lab or do I have to somehow manually do this?
I’ve run a hjt scan but not sure if anything there needs to be removed.Since this problem of hidden rootkits has been found by avast i’ve also noticed,just over the last couple of days i’ve lost a big (to me anyway) chunk of free space on my C drive.

Hope someone can help with this?I mean if avast has found this virus why doesn’t it name it and give me the option to delete or move to chest etc?Can this also be a false positive response aswell?

2

Your statistics must be arriving the lab… hope they take a look.
Can you post some files names and paths? I mean, could be both scenarios: false positives or a real infection.
I can bet on false positives, as superantispyware is not finding anything. Maybe you can test with MBAM.

3

A lot of the files that avast are finding are as those listed in similar post about rootkits by member crowela - see the jpeg attachment with her post.
Is it possible to remove these(possibly) false positives?

what is MBAB?

thanks :slight_smile:

4

MBAM is Malwarebytes tool for scanning for the latest malware threats and removing them.

I would download MBAM then update it then run a Quick scan and let it remove what it detects and a reboot may be required to remove locked files:
http://www.malwarebytes.org/mbam.php

5

Post the log contents \Data\Log\aswAr.log

6

Hello,

I send this post for I have the same problem as Stoney58 and the scan in boot safe mode finds nothing as well…

But when launching a scan in “normal” mode, Avast finds hidden rootkits / infected files and I cannot delete them…

Thanks in advance for your help
Ziburu :slight_smile:

7

Ziburu, can you say what is the infected file name, where was it found (C:\windows\system32\infected-file-name.xxx)?
What avast! version and virus database are you using? (see About dialog of avast!)

8

Good night Tech,

I use 4.8 Avast! free version and virus database (VPS 081214-0), automatically updated.

The diary’s report is attached. I don’t know whether this document is the good one or not for informations you need.

Thanks again & kind regards
Ziburu