Windows 8 and 8.1 Forums


windows 8.1 rootkit problem

  1. #11


    Posts : 328
    Windows 8.1 (x64)


    Yes you might as well repartition your drives.

      My System SpecsSystem Spec

  2. #12


    Posts : 13
    windows 8.1


    Quote Originally Posted by oneeyed View Post
    Yes you might as well repartition your drives.
    Forge everything up there, i didnt do anything with that. I followed the instructions of the link u gave me and heres picture what the console looks like nowClick image for larger version

    so i did everything right ?
      My System SpecsSystem Spec

  3. #13


    Posts : 328
    Windows 8.1 (x64)


    Yeah. But I'd advise you to still reinstall Windows from your usb.
      My System SpecsSystem Spec

  4. #14


    Posts : 13
    windows 8.1


    Quote Originally Posted by oneeyed View Post
    Yeah. But I'd advise you to still reinstall Windows from your usb.
    will the rootkit be gone then ?
      My System SpecsSystem Spec

  5. #15


    Posts : 13
    windows 8.1


    Just to make sure that i did it right. In the part where it asks if i want to partition the drives, i selected yes. After that it asked that if i want to keep my own files or fully wipe the drive, i selected fully wipe the drive. Is that ok ? Ita currently restoring the factory settings
      My System SpecsSystem Spec

  6. #16


    A rootkit installs a hidden boot partition on your drive that generally does not show up on Disk Manager. It is possible for a rootkit to survive a reinstall if the disk is not wiped properly. The rootkit will be at the end of the drive, hidden & between 1 - 10 MB depending on the variant.

    After restoring the factory settings, d/l & run TDSSKiller. Run a scan & see if it finds anything.

    TDSSKiller Download

    When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.
      My System SpecsSystem Spec

  7. #17


    Posts : 13
    windows 8.1


    Quote Originally Posted by Borg 386 View Post
    A rootkit installs a hidden boot partition on your drive that generally does not show up on Disk Manager. It is possible for a rootkit to survive a reinstall if the disk is not wiped properly. The rootkit will be at the end of the drive, hidden & between 1 - 10 MB depending on the variant.

    After restoring the factory settings, d/l & run TDSSKiller. Run a scan & see if it finds anything.

    TDSSKiller Download

    When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.
    the things ive done:

    scanned with avast, found 3 infections. some how deleted them. after that ran with antibytes malware, antibytes malware rootkit, several different rootkit finders and it didnt find infection.

    then i reinstalled windows, did scans and such, didnt find anything. then i did as oneeyed told me to do, i did this: MBR - Restore Windows 7 Master Boot Record - Windows 7 Help Forums ( i had usb recovery drive made some days ago, before the infection). after ive had done that, i reinstalled windows one more time.i also ran the tdsskiller, and did what u told from the 'change parameters', and it didnt find anything. u think im safe now ?
      My System SpecsSystem Spec

  8. #18


    Most likely it is gone. I would keep an eye on your PC & run a full system scan with your AV/scanners to see if anything turns up, simply because viruses have a nasty habit of inviting other unwanted guests to your PC once infected.

    If you want full closure on if it's gone or not, there is a program called GParted. It is a bootable partition manager. You'll need to make a bootable CD/USB & run it at boot time. Instructions are on the site.

    GParted -- A free application for graphically managing disk device partitions

    A rootkit will show up as a hidden boot partition at the end of the drive.

    Since the other rootkit scanners showed a clean reading, I would save this in case you have any doubts about your PC being clean.
      My System SpecsSystem Spec

  9. #19


    Posts : 13
    windows 8.1


    Quote Originally Posted by Borg 386 View Post
    Most likely it is gone. I would keep an eye on your PC & run a full system scan with your AV/scanners to see if anything turns up, simply because viruses have a nasty habit of inviting other unwanted guests to your PC once infected.

    If you want full closure on if it's gone or not, there is a program called GParted. It is a bootable partition manager. You'll need to make a bootable CD/USB & run it at boot time. Instructions are on the site.

    GParted -- A free application for graphically managing disk device partitions

    A rootkit will show up as a hidden boot partition at the end of the drive.
    i cant really understand what i need to do ? i got the old usb stick with the recovery drive on it, should i format it and use that ? i really dont understand the site that well D:
      My System SpecsSystem Spec

  10. #20


    Don't format the USB with your recovery info. You need that for down the road.

    I would say don't worry about running this now since the other scanners showed all clear. However, this is a good program to have & you may want to make it for down the road. The file is in .ISO format, clicking on it will launch your default CD burning software & it will make a bootable disk that you can use. This is the page you d/l the .iso files from.

    GParted -- Download

    When you get an extra USB drive, if you want to opt for a bootable USB, this page has the files.

    GParted -- Live CD/USB/PXE/HD

    For now, just keep an eye on your PC & do a full system scan with all AV's & Scanners you have.
      My System SpecsSystem Spec

Page 2 of 2 FirstFirst 12
windows 8.1 rootkit problem
Related Threads
Here is my problem When i write my DVD-R with Nero/Imgburn/Burnaware it says burnt successful but it fails to verify and even dvd is blank when i reinsert in laptop and my friends computer. I have tried to burnt at slower speeds but still same problem.:rolleyes: My dvd drive reads other DVDs...
When I try to check for a solution to a problem (Control Panel\System and Security\Action Center\Problem Reports) a warning appears telling me to connect to the Internet or to try later… 44832 The problem is that I am connected to the Internet while I receive this message and now I do not see...
I have 2 issues. I don't know if they are related somehow. 1. I installed PrivaZer and deleted it. It still shows up on the right click context menu. I tried to reinstall it and deleted it again. I still have that problem. I even restarted the computer. How can I get rid of the entry? 2....
So i'm trying to delete this file i have in my downloads folder, which is a normal .avi file. however, this file is really broken, it wont delete. I suspect this file makes my folder not showing thumbnails and acting slow and sometimes wont show anything at all, just a loading bar thing. i...
Hey, running Windows 8.1 64bit, Asrock Z87E-ITX mobo, Intel 4770K Problem 1: When i shot down my pc via windows Shot Down button pc doesn't go Off. I see Windows Off screen, screen goes black but pc still running. Solution? Problem 2: When my pc goes sleep or monitor goes sleep i can't...
I had no problems with Customer Preview, everything worked, but, I must say that this Release Preview is another story all together. My PC hardware configuration is unchanged since installing Windows 7 when it came on to the market. 1. Doing a clean install did not install a clean...
Dell Inspiron N4010 Network and sound Driver Problem on windows 7 after installing windows 8 dual boot. on Friday i install windows 8 on my laptop with wins 7 dual boot. everything was working fine but after yesterday night windows 7 not working good, here r some problem 1) At login Screen when...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook