Welcome to our peer-to-peer forums, where owners help owners. Need help now? Visit eSupport here.

English Community

Software and Operating SystemSecurity & Malware
All Forum Topics
Options

10 Posts

03-07-2017

Norway

24 Signins

296 Page Views

  • Posts: 10
  • Registered: ‎03-07-2017
  • Location: Norway
  • Views: 296
  • Message 11 of 16

Re: firmware rootkit

2017-03-07, 18:40 PM

GMER reported changes to the master boot record, a notification of rootkit behavior in the operating system and infected hidden files in system32. After i reprogramed the master boot record i was unable to replicate the report, but the network activities and firewall rules remains

Reply
Options

1232 Posts

09-12-2012

United States of America

2341 Signins

21237 Page Views

  • Posts: 1232
  • Registered: ‎09-12-2012
  • Location: United States of America
  • Views: 21237
  • Message 12 of 16

Re: firmware rootkit

2017-03-07, 19:10 PM

OK, this is not a firmware issue, chances are this is a standard rootkit problem. I can help you clean your system up, but I recommend that we move this to the Spywarehammer Forum. We have a bit more latitude there on what we can do on the forum. It is free, just as here. If you want to do this, you will need to sign up ad then follow the instructions in this post, http://spywarehammer.com/post-here-for-malware-removal/(new-instructions!)-what-do-i-do-first I will keep an eye out for your signup so I can approve it right away.

Hoov
Former Microsoft MVP - Consumer Security
SpywareHammer.com
Reply
Options

10 Posts

03-07-2017

Norway

24 Signins

296 Page Views

  • Posts: 10
  • Registered: ‎03-07-2017
  • Location: Norway
  • Views: 296
  • Message 13 of 16

Re: firmware rootkit

2017-03-07, 19:15 PM

Ok, will do, thank you :)

Reply
Options

2494 Posts

05-01-2010

United States of America

12733 Signins

147093 Page Views

  • Posts: 2494
  • Registered: ‎05-01-2010
  • Location: United States of America
  • Views: 147093
  • Message 14 of 16

Re: firmware rootkit

2017-03-07, 23:25 PM

wrote:

update.... HitmanPro is beeing blocked and cant run :/ TDSSKiller is detecting some unsigned files but noting more.. No i haven't used any 3rd party firmware or software, everything is genuine from lenovo and windows!


Glad to see that you will be working over at SpywareHammer. Please do not run any additional tools/scans until a trained staff member can work with you over there to give you step-by-step instructions.  Thank you.






Microsoft MVP Consumer Security 2006-2016 / Windows Insider MVP 2016-Present
I am not employed by Microsoft or Lenovo.

Using Browser Search to Find Your Answers In Lenovo and Moto Community
Reply
Options

1232 Posts

09-12-2012

United States of America

2341 Signins

21237 Page Views

  • Posts: 1232
  • Registered: ‎09-12-2012
  • Location: United States of America
  • Views: 21237
  • Message 15 of 16

Re: firmware rootkit

2017-03-07, 23:43 PM

The link in my previous post was messed up a bit, It is fixed now. You should be able to use it.

Hoov
Former Microsoft MVP - Consumer Security
SpywareHammer.com
Reply
Answer
Options

2494 Posts

05-01-2010

United States of America

12733 Signins

147093 Page Views

  • Posts: 2494
  • Registered: ‎05-01-2010
  • Location: United States of America
  • Views: 147093
  • Message 16 of 16

Re: firmware rootkit

2017-03-17, 18:05 PM

This malware removal topic is continued here: http://spywarehammer.com/post-here-for-malware-removal/possible-rootkit/






Microsoft MVP Consumer Security 2006-2016 / Windows Insider MVP 2016-Present
I am not employed by Microsoft or Lenovo.

Using Browser Search to Find Your Answers In Lenovo and Moto Community

0 person found this solution to be helpful.

This helped me too

Reply
Forum Home

Community Guidelines

Please review our Guidelines before posting.

Learn More

Check out current deals!

Go Shop
X

Save

X

Delete

X

No, I don’t want to share ideas Yes, I agree to these terms