Solved! Kernal Rootkit Removal/Identification?

kangodafi_1

Prominent
Aug 3, 2017
2
0
510
Best answers
0
I have a root kit installed on my computer, I haven’t got a clue how to find it or remove it. My fear is that it is a kernel root kit and I’m pretty done for atm. If anyone can offer help then thanks.


I managed to find a very suspicious file if anyone knows what it is. It’s called 4127879B, it runs as a .sys file.
Here’s a picture: https://imgur.com/a/himM4OE
 

Ralston18

Dignified
Moderator
Oct 11, 2014
2,396
0
15,310
Best answers
966
By "Didn't work" you mean the file was not deleted or removed?

May be a false positive.

Look in Startup. Do you see anything being launched that you do not or cannot recognize?

Consider TDSSKiller (Kaspersky Lab):

https://www.bleepingcomputer.com/download/tdsskiller/


 

shknawe

Commendable
Oct 22, 2016
84
0
1,610
Best answers
13
Read this-----https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=2&cad=rja&uact=8&ved=2ahUKEwi34fqpqePfAhUNZd8KHfp8Bf0QFjABegQIBxAE&url=https%3A%2F%2Fwww.file.net%2Fprocess%2Fmbamchameleon.sys.html&usg=AOvVaw1j832xyddGdy2ZT12tGZBH
 

rgd1101

Polypheme
Moderator
Nov 7, 2011
15,702
23
69,925
Best answers
2,746


What software is that that find the file?
 
Thread starter Similar threads Forum Replies Date
aafusc2988 Antivirus / Security / Privacy 11
B Antivirus / Security / Privacy 3
M Antivirus / Security / Privacy 1
L Antivirus / Security / Privacy 2
Z Antivirus / Security / Privacy 14
C Antivirus / Security / Privacy 2
xtcmax Antivirus / Security / Privacy 13
W Antivirus / Security / Privacy 2
D Antivirus / Security / Privacy 2
S Antivirus / Security / Privacy 1
Z Antivirus / Security / Privacy 4
A Antivirus / Security / Privacy 6
I Antivirus / Security / Privacy 2
darkbreeze Antivirus / Security / Privacy 0
P Antivirus / Security / Privacy 1
D Antivirus / Security / Privacy 3
D Antivirus / Security / Privacy 14
T Antivirus / Security / Privacy 1
N Antivirus / Security / Privacy 11
R Antivirus / Security / Privacy 1

Similar threads


ASK THE COMMUNITY