Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.
Hi all, please see this major site announcement: https://www.boards.ie/discussion/2058427594/boards-ie-2026

[Q] Help, Trojan "FURootkit" and "msdirectx.sys"

  • 27-06-2005 01:49AM
    #1
    Egyptian
    Registered Users, Registered Users 2 Posts: 352 ✭✭


    I'm just wondering if anyone has any problems with Rootkit Trojans.
    More specifically FU versions? And how they went about getting rid of them.

    I have searched, and searched, for well on a month now, with no luck.
    I've heard of many similar problems, and many, many 'possible' solutions, all of which have been tried, but to no avail.

    [Long story short]

    The Trojan FURootkit creates the infected file "msdirectx.sys", McAfee detects the file and deletes it, but cannot seem to delete the Trojan itself. And after the created file is deleted, FURootkit creates it again, and again, and again......... about every 15 seconds.

    [/Long story short]

    It doesn't seem to have affected my PC performance in any way, yet it is quite annoying.
    It can be easily ignored, but I would still like to get rid of it.

    Any help, suggestions, or even comments would be greatly appreciated, especially from anyone who has experienced this problem first-hand.

    Many Thanks


Comments

  • #2
    DonkeyStyle \o/
    Closed Accounts Posts: 7,144 ✭✭✭DonkeyStyle \o/


    I recall a thread on the security forum with a linky to a rootkit revealer.
    http://www.boards.ie/vbulletin/showthread.php?t=251499
    I'm not sure if this app actually cleans the rootkit or simply tells you about it, but it's worth a look I'm sure. (if you haven't already that is.)


  • #3
    odie
    Closed Accounts Posts: 364 ✭✭odie


    Found this great for removing all viruses and Trojans.

    ewido security suite
    http://www.ewido.net/en/download/

    And here are updated Signature files.

    http://www.ewido.net/en/download/updates/

    I install it on any PC i get with Virus and adware problems, run it in safe mode and it hasn't failed me yet.


  • #4
    Wandering Dazed
    Closed Accounts Posts: 78 ✭✭Wandering Dazed


    Egyptian wrote:
    I'm just wondering if anyone has any problems with Rootkit Trojans.
    More specifically FU versions? And how they went about getting rid of them.

    I have searched, and searched, for well on a month now, with no luck.
    I've heard of many similar problems, and many, many 'possible' solutions, all of which have been tried, but to no avail.

    [Long story short]

    The Trojan FURootkit creates the infected file "msdirectx.sys", McAfee detects the file and deletes it, but cannot seem to delete the Trojan itself. And after the created file is deleted, FURootkit creates it again, and again, and again......... about every 15 seconds.

    [/Long story short]

    It doesn't seem to have affected my PC performance in any way, yet it is quite annoying.
    It can be easily ignored, but I would still like to get rid of it.

    Any help, suggestions, or even comments would be greatly appreciated, especially from anyone who has experienced this problem first-hand.

    Many Thanks
    Have you tried

    http://www.f-secure.com/blacklight/

    Might do the job for you.


Advertisement
Advertisement