Novahq.net Forum

Novahq.net Forum (https://novahq.net/forum/index.php)
-   Hardware and Software (https://novahq.net/forum/forumdisplay.php?f=160)
-   -   Rootkit Alert!!!! (https://novahq.net/forum/showthread.php?t=46851)

Guest001 08-23-2012 12:11 AM
Rootkit Alert!!!!
 
After the Adobe reader Post I did a rootkit scan only to find a severe infection in the Adobe Flashplayer Plugin

It was loaded through official channels via Mozilla Plugin Updater.

Will have to lay low and go to Chrome or Explorer for a while.

Be very careful and run your AV Rootkit scanners now! :sad5:

Guest001 08-23-2012 01:03 AM
Update

I am here using a Virtual Browser

For those in Australia I have the exact name of the installer of the Rootkit

install_flashplayer11x32_mssd_au_aih.exe

Guest001 08-23-2012 01:05 AM
Update

Tracked it to Russian Origin

Guest001 08-23-2012 04:49 AM
Chrome is my solution for now, browse the net and plays flash without the need to install Plugins

Was using Firefox, will still never use Explorer very much.

Hellfighter 08-23-2012 01:21 PM
i had that fix
did a scan using "Malwarebytes" it remove it and restart the system then i gone to "flashplayer" remove the older one then install it from the main site

i have to recheck it later see if that rootkit get back in thou

have to say agreed with you its a nasty thing these rootkits hate them

think sony music copy right started it and all hell broken loose some time back! given bad hackers new ways to dig-in to it

have to say malwarebytes.org software all so found some trojan downloader as will

Guest001 08-23-2012 03:42 PM
Trojans are easier to find if the Antivirus Program is auto-scanning, in the old days I'd do it manually because my PC didn't have much memory and CPU power to spare...Now? ffft!...no problem.
Rootkits damn sneaky, I recon it got in by DNS server attack or redirection, Hope my internet provider gets on to it soon.

Luis 08-24-2012 07:07 AM
thanks for the info
i`ll scan right now.

Guest001 08-24-2012 01:05 PM
Update

Just found out that my Browser was listed in locations to be excluded during routine scans.
Be a good idea to check all exclusions for your Anti-Virus Scanner

Hellfighter 08-24-2012 01:31 PM
Quote:
Originally Posted by stompem (Post 378843)
Update

Just found out that my Browser was listed in locations to be excluded during routine scans.
Be a good idea to check all exclusions for your Anti-Virus Scanner
my excluded blank no then listed in it

but some time having excluded listed make video feed not hang when it try to scan browser when watching online video movies, only reason i can think of it be in there!

Guest001 08-24-2012 02:12 PM
It must be something the hackers have learnt to exploit.

dave61 08-25-2012 12:04 PM
I've been having problems running flash on my 64-bit system (had to install 64-bit compatible flashplayer).

I was concerned about the Rootkit so I ran a Rootkit scan ... nothing found ... relieved !!

;)

Guest001 08-25-2012 01:51 PM
In case of hide and seek, a boot-time scan, run before windows starts would be a good idea to do once a week.


All times are GMT -5. The time now is 05:30 PM.

Powered by vBulletin®