Problem with rootkit

Avast Free Antivirus / Premium Security
1

Yesterday a rootkit attacked me and my Avast didnt alert me and it

turned off immediatley.

I had to format my computer because I couldnt run Avast.

Should I do something to activate the anti-rootkit ?

Thank you

2

Hi…

Yikes! :frowning: You may have not needed to reformat your system to remove the rootkit. While I’m not sure why Avast didn’t detect it, there are other standalone scanners you can try should this happen again…

F-Secure’s Blacklight…

http://www.f-secure.com/security_center/

gmer…

http://www.gmer.net/index.php

and Trend Micro’s Rootkit-Buster…

http://www.trendmicro.com/download/rbuster.asp

There have been other malware involved too. MalwareBytes and SuperAntiSpyware are two good (on demand) programs that deal with this. Spyware Terminator and Spybot S&D also offer real time protection. :slight_smile:

Hope this helps. :slight_smile:

Best Regards…

3

How do you know it was a rootkit that affected the computer? Any warning messages?

4

Nothing… it’s activated by default. 8 minutes after booting, an on-demand scanning of rootkits is performed.

5

After this rootkit attacked me, everytime I tried to run Avast or other softwares a message on my

computer appeared: “you cant run it, this is not a Win32 software”, then I tried to google it and I

found out it was a rootkit called “baggle”…

6

Bagle is relatively easy to clean and a reformat was not really needed

7

Well, you must know I’m not an expert of computers… I tried to google information for detecting it but

I understood nothing. Plus I couldnt download any anti-rootkit as I couldnt run it because of baggle.

8

I’m thinking to download “gmer” but before I do it I need to ask informations:

Has it a real time protection? If so, can I run it together Avast ?

Thank you :slight_smile:

9

It does not have real time protection.
But its technology was acquired by avast months ago and it’s present in avast scanning.

Can you do it at another computer?
Maybe online scanning helps:
Kaspersky (very good detection rates)
ESET NOD32
Trendmicro housecall
F-Secure
BitDefender (free removal of the malware)

10

Hi…

The rootkit scanners don’t install, you just run them (initiate the scan) by clicking on the executable file when it is finished downloading. They don’t run in the background, either, as Tech has mentioned. :slight_smile:

Best Regards…