|Got a nasty rootkit infection. I eventually resorted to formatting and reinstalling windows, which confirms my system drive is clean. But I have two extra physical hard drives about which I'm not convinced (this infection was previously not detected by Avast or Malwarebytes).|
Here's what happened:
- My pc slowed down a ton.
- It didn't respond to my commands to shut down.
- It overrode my boot-time virus scan.
- Windows backup started by itself repeatedly. When I went into the backup settings window to cancel the process, it wasn't showing at all.
- Avast was still enabled, but refused to update, and
- returned clean results.
- Avast then became completely disabled after a while.
- Malwarebytes didn't come up with anything either.
After reading a bit about rootkit infections, I decided to reinstall Windows. I disconnected my other two hard drives (to simplify the process). I stupidly forgot to format the drive as well, though. After installing Avast on the fresh system, a scan came back with results about a rootkit infection, but I couldn't delete or quarantine the files. The next scan came back clean. So I reinstalled again, this time formatting the whole drive. Now everything seems fine. Avast and malwarebytes are up to date and working and none of the strange behaviour occured again so far.
I scheduled a boottime scan and reconnected one of my two other drives. Avast and Malwarebytes scans came back clean and everything still seems fine. But I am sceptical (the infection was very tough and clever, and might have planted something) - is there any way I can have some sort of log generated for you guys to look at?
Thanks a ton.