hacktoolrootkit kit has taken over my friends computer cant get into anything cant get on the web any ideas please help
2006-11-25 04:12:53 · 8 answers · asked by cheryl b 2 in Computers & Internet ➔ Other - Computers
cant get into the programs ether
2006-11-25 04:26:58 · update #1
system restores may return your computer to a workable state but the rootkit will still be on your computer but not visible in any files...so the only logical solution is to clean the rootkit from your p.c and you will need to use a specialist removal tool for this
f-secure anti-virus do a trial anti-virus which contains one of the best rootkit removers around...go to http://esd.element5.com/demoreg.html?productid=300108641&languageid=1,and install the trial software,remembering to uninstall any current anti-virus software to avoid conflicts
once you have installed f-secure and all updates have downloaded you need to do a rootkit scan first(you go to the scan option and then you pick rootkit scan) this wont take too long but should locate the rootkit and remove it,then you need to run a complete scan,this will clean any other malware that may be on your p.c
another very good program is aries rootkit remover(http://www.download.com/ARIES-Rootkit-Remover/3640-8022_4-10564838.html?tag=tab_ur) which is a dedicated program for removing just rootkits,it is made by the same company who make adaware personal so thats a good recommendation
personally i would try aries rootkit remover first so you dont have to install a whole new anti-virus but if that dosent shift it try f-secure
i suppose the last option would be a windows re-installation using a system recovery disk,as rootkits are one of the hardest infections to remove,they hide in places deep in the hard drive,normally not accesible with anti-virus scanners t,that is why you need dedicated software
good luck
2006-11-25 09:23:14 · answer #1 · answered by brianthesnail123 7 · 0⤊ 0⤋
if you cannot get the system restore through programs when u boot up press F8 right when the computer boots up it will allow you to choose how to boot the computer up. From there it will give u options such as last correct configuration, safe mode, and system restore. try correct configuration and then as a last resort system restore, Once you can get in scan all your drivers with ur anti virus system and do spyware searches to ensure that you did not download something. Good Luck
2006-11-25 04:26:50 · answer #2 · answered by Jennalee&Will 1 · 1⤊ 0⤋
I agree
Do a system restore back to date before the rootkit problem. It is under Start, Programs, Accessories, System Tools, and system restore is there. Menu driven.
2006-11-25 04:21:42 · answer #3 · answered by CT 6 · 2⤊ 0⤋
Turn off System Restore, its useless and will re-install this.
Then boot in safe mode and run a rootkit remover;
http://www.softpedia.com/get/Antivirus/Lavasoft-ARIES-Rootkit-Remover.shtml - Aries Rootkit remover.
To get into Safe Mode repeatedly press the F8 key after the bios screen loads but before Windows loads. You'll know if you made it because the screen will be at 800 x 600 and your pc will be slow.
2006-11-25 08:25:42 · answer #4 · answered by sarah c 7 · 1⤊ 1⤋
Do a system restore back to date before the rootkit problem. It is under Start, Programs, Accessories, System Tools, and system restore is there. Menu driven.
2006-11-25 04:14:40 · answer #5 · answered by Marissa 6 · 1⤊ 1⤋
system restore asap
then scan all drives with upto date AV
2006-11-25 04:20:49 · answer #6 · answered by Icarus 6 · 2⤊ 0⤋
http://www.stopzilla.com/purchase/dl_nonav.aspx?AID=10136&S=66&type=DOWNLOAD_NONAV&topic=&source=&AAID=&cid=Google_ROOTKITS
You may have to start the PC in safe mode to be able to do a restore
2006-11-25 04:20:06 · answer #7 · answered by Sir Sidney Snot 6 · 2⤊ 0⤋
FIRST, UNhook that infested computer from the net, IMMEDIATELY. You'll find out why below..........
Take a look at the sites on this list to learn about this particular rootkit:
http://search.yahoo.com/search?search=hacktool+rootkit&ei=UTF-8&fr=ks-ans&ico-yahoo-search-value=http%3A%2F%2Frds.yahoo.com%2F_ylt%3DAps0mcqPHW2uZLPIw3dW2HYazKIX%2FSIG%3D111gjvvgj%2F*-http%3A%2F%2Fsearch.yahoo.com%2Fsearch&ico-wikipedia-search-value=http%3A%2F%2Frds.yahoo.com%2F_ylt%3DAsfTiAfilWKLldjhroFU8uEazKIX%2FSIG%3D11ia1qo58%2F**http%253a%2F%2Fen.wikipedia.org%2Fwiki%2FSpecial%253aSearch&p=hacktool+rootkit
Find out here how to remove it without further damage to the computer:
http://forums.extremeoverclocking.com/showthread.php?t=199847
http://search.yahoo.com/search?search=hacktool+rootkit+Remover&ei=UTF-8&fr=ks-ans&ico-yahoo-search-value=http%3A%2F%2Frds.yahoo.com%2F_ylt%3DAps0mcqPHW2uZLPIw3dW2HYazKIX%2FSIG%3D111gjvvgj%2F*-http%3A%2F%2Fsearch.yahoo.com%2Fsearch&ico-wikipedia-search-value=http%3A%2F%2Frds.yahoo.com%2F_ylt%3DAsfTiAfilWKLldjhroFU8uEazKIX%2FSIG%3D11ia1qo58%2F**http%253a%2F%2Fen.wikipedia.org%2Fwiki%2FSpecial%253aSearch&p=hacktool+rootkit+Remover
Learn how to keep this from happening again here:
http://www.microsoft.com/athome/security/default.mspx
I'm giving you those links so that you can LEARN from this experience.
GOOD LUCK!
2006-11-25 04:33:47 · answer #8 · answered by x_southernbelle 7 · 1⤊ 0⤋