First time to see MBR rootkit in the wild

Discussion in 'malware problems & news' started by aigle, Oct 11, 2008.

Thread Status:
Not open for further replies.
  1. aigle

    aigle Registered Member

    Dec 14, 2005
    Saudi Arabia/ Pakistan
    Just wanted to share as I am a little bit excited after seeing this. One of my friends asked to see his PC that seemd to be infected and slowed down like a snail. It was ahving Symantec corporate AV installed and was detecting some malware plus a rootkit.

    I tried Antivir and it detected Mebroot( MBR Rootkit). Same with Gmer and Dr.Web Cureit.

    LAptop is running Vista Home( UAC was probably disabled). I have asked him to reformat and do a fesh install of OS( I assume it should rewrite the MBR). I am not sure how he managed to get it. He is using his PC mainly for voice chat on various messengers with his family members.
Thread Status:
Not open for further replies.