Escaping a nasty rootkit
Escaping a nasty rootkit
As I accessed a blog, AVG indicated problems. Very quickly I found both AVG and Malwarebytes disabled. Google searches were redirected and system restore didn't help. Attempts to update malwarebytes gave the following screen:
My previous rootkit experience had been with Google redirects which TDSSkiller (once I discovered it) easily fixed. In this case, TDSSkiller (rootkit remover) helped, but didn't fully solve the problem. What did help was HousecallLauncher (entered from safe mode (f8)). Housecall identified and removed several instances of Katusha.W, including some in AVG files. Both AVG and Malwarebytes still had problems, for example:
I reinstalled Malwarebytes and deleted and reinstalled AVG. Computer is now OK.