1
Malware removal help / Very Sophisticated Rootkit probably in BIOS -- Need Help
« on: October 24, 2015, 09:43:34 AM »
IAT Hooks - Firmware Level Rootkit
First time using RogueKiller and FRST. I have been trying to get rid of this rootkit for over a month. It has infected my laptops, desktop, android phones (HTC 4.3 and Moto 5.0), and iPhone (5s). Laptops incude Mac OS X, Windows 7 Enterprise, Windows 10 64bit, Ubuntu 14.3 and 15. I reformatted from live USBs and re-imaged multiple times. Rootkit seems to be resident in Bios. I've tried Secure Wipe of drives and resetting CMOS. I have ran Combofix, TdsKiller, Mbam, RkHunter, ChkRootKit, Sophos Mobile, HitmanPro, and many others and they have found some elements of the infection, but were unable to clean the unmounted and hidden partitions as well as the firmware hook that is allowing the infection to return.
I have attached my RogueKiller and FRST files. Any help would be appreciated.
First time using RogueKiller and FRST. I have been trying to get rid of this rootkit for over a month. It has infected my laptops, desktop, android phones (HTC 4.3 and Moto 5.0), and iPhone (5s). Laptops incude Mac OS X, Windows 7 Enterprise, Windows 10 64bit, Ubuntu 14.3 and 15. I reformatted from live USBs and re-imaged multiple times. Rootkit seems to be resident in Bios. I've tried Secure Wipe of drives and resetting CMOS. I have ran Combofix, TdsKiller, Mbam, RkHunter, ChkRootKit, Sophos Mobile, HitmanPro, and many others and they have found some elements of the infection, but were unable to clean the unmounted and hidden partitions as well as the firmware hook that is allowing the infection to return.
I have attached my RogueKiller and FRST files. Any help would be appreciated.