hacktool.rootkit virus



Samuel
07-10-2005, 02:26 AM
Please help. My computer has a "hacktool.rootkit" virus, as alerted by my
virus protection, Norton AntiVirus. It's hiding itself as "msdirectx.sys" in
my c:\documents and settings\"username" folder. Norton can't remove it at
all which is anoying. I've tried the WindowsXP Malicious Software Removal
Tool, and I've also tried all the MS DOS command stuff mentioned at
http://support.microsoft.com/?id=897079

I don't know what else to do! It's causing all sorts of funny things to my
computer, like random shutdowns, blacking-out of jpg thumbnails, desktop
layout to change.

Any help please? Thanks.

PCDaddy
07-10-2005, 02:26 AM
=?Utf-8?B?U2FtdWVs?= Wrote:
> Please help. My computer has a "hacktool.rootkit" virus, as alerted by
> my
> virus protection, Norton AntiVirus. It's hiding itself as
> "msdirectx.sys" in
> my c:\documents and settings\"username" folder. Norton can't remove it
> at
> all which is anoying. I've tried the WindowsXP Malicious Software
> Removal
> Tool, and I've also tried all the MS DOS command stuff mentioned at
> http://support.microsoft.com/?id=897079
>
> I don't know what else to do! It's causing all sorts of funny things to
> my
> computer, like random shutdowns, blacking-out of jpg thumbnails,
> desktop
> layout to change.
>
> Any help please? Thanks.

Can you get to your username folder? Do you know how? Let me know.


--
PCDaddyPosted from http://www.pcreview.co.uk/ newsgroup access

PCDaddy
07-10-2005, 02:26 AM
=?Utf-8?B?U2FtdWVs?= Wrote:
> Please help. My computer has a "hacktool.rootkit" virus, as alerted by
> my
> virus protection, Norton AntiVirus. It's hiding itself as
> "msdirectx.sys" in
> my c:\documents and settings\"username" folder. Norton can't remove it
> at
> all which is anoying. I've tried the WindowsXP Malicious Software
> Removal
> Tool, and I've also tried all the MS DOS command stuff mentioned at
> http://support.microsoft.com/?id=897079
>
> I don't know what else to do! It's causing all sorts of funny things to
> my
> computer, like random shutdowns, blacking-out of jpg thumbnails,
> desktop
> layout to change.
>
> Any help please? Thanks.

Do you know how to get to your "username" folder?


--
PCDaddyPosted from http://www.pcreview.co.uk/ newsgroup access

MAP
07-10-2005, 02:26 AM
Samuel wrote:
> Please help. My computer has a "hacktool.rootkit" virus, as alerted
> by my virus protection, Norton AntiVirus. It's hiding itself as
> "msdirectx.sys" in my c:\documents and settings\"username" folder.
> Norton can't remove it at all which is anoying. I've tried the
> WindowsXP Malicious Software Removal Tool, and I've also tried all
> the MS DOS command stuff mentioned at
> http://support.microsoft.com/?id=897079
>
> I don't know what else to do! It's causing all sorts of funny things
> to my computer, like random shutdowns, blacking-out of jpg
> thumbnails, desktop layout to change.
>
> Any help please? Thanks.

http://securityresponse.symantec.com/avcenter/venc/data/hacktool.rootkit.html

http://vil.nai.com/vil/content/v_102335.htm

http://www.diamondcs.com.au/processguard/index.php?page=download

--
Mike Pawlak

Samuel
07-10-2005, 02:26 AM
Yes I am able to get into the folder and I can even see the file there. If I
try to delete it, it just comes back straight away whenever the computer is
restarted.

"PCDaddy" wrote:

>
> =?Utf-8?B?U2FtdWVs?= Wrote:
> > Please help. My computer has a "hacktool.rootkit" virus, as alerted by
> > my
> > virus protection, Norton AntiVirus. It's hiding itself as
> > "msdirectx.sys" in
> > my c:\documents and settings\"username" folder. Norton can't remove it
> > at
> > all which is anoying. I've tried the WindowsXP Malicious Software
> > Removal
> > Tool, and I've also tried all the MS DOS command stuff mentioned at
> > http://support.microsoft.com/?id=897079
> >
> > I don't know what else to do! It's causing all sorts of funny things to
> > my
> > computer, like random shutdowns, blacking-out of jpg thumbnails,
> > desktop
> > layout to change.
> >
> > Any help please? Thanks.
>
> Do you know how to get to your "username" folder?
>
>
> --
> PCDaddyPosted from http://www.pcreview.co.uk/ newsgroup access
>
>

PCDaddy
07-10-2005, 02:27 AM
=?Utf-8?B?U2FtdWVs?= Wrote:
> Yes I am able to get into the folder and I can even see the file there.
> If I
> try to delete it, it just comes back straight away whenever the
> computer is
> restarted.
>
> "PCDaddy" wrote:
>
> >
> > =?Utf-8?B?U2FtdWVs?= Wrote:
> > > Please help. My computer has a "hacktool.rootkit" virus, as alerted
> by
> > > my
> > > virus protection, Norton AntiVirus. It's hiding itself as
> > > "msdirectx.sys" in
> > > my c:\documents and settings\"username" folder. Norton can't remove
> it
> > > at
> > > all which is anoying. I've tried the WindowsXP Malicious Software
> > > Removal
> > > Tool, and I've also tried all the MS DOS command stuff mentioned at
> > > http://support.microsoft.com/?id=897079
> > >
> > > I don't know what else to do! It's causing all sorts of funny
> things to
> > > my
> > > computer, like random shutdowns, blacking-out of jpg thumbnails,
> > > desktop
> > > layout to change.
> > >
> > > Any help please? Thanks.
> >
> > Do you know how to get to your "username" folder?
> >
> >
> > --
> > PCDaddyPosted from http://www.pcreview.co.uk/ newsgroup access
> >
> >


If there are no solutions from anti v companies that work. Try
restarting your pc, tap F8. This should bring you to some options that
allow you to boot into safe mode. This only loads the most basic
functions for xp. Then go to the folder and delete the file. Then do a
reboot and should be gone. Only do this if no other anti virus tools
can get rid of it.


--
PCDaddyPosted from http://www.pcreview.co.uk/ newsgroup access


hacktool.rootkit virus