TDL3 Rootkit 64 Bit Driver

Hitman pro has the ability to remove TDL3 rootkit.
 

My Computer

Computer Manufacturer/Model Number
Samsung NP530U4B-S02IN
OS
Windows® 8 Pro (64-bit)
CPU
Intel® Core™ i5 Processor 2467M (1.60GHz, 3MB L3 Cache)
Motherboard
Samsung Electronics
Memory
6GB DDR3 System Memory at 1,333MHz (on BD 4GB + 2GB x 1)
Graphics Card(s)
AMD Radeon™ HD7550M 1GB DDR3 (Ext. Graphic)
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
35.56cm (14.0) SuperBright 300nit HD LED Display
Screen Resolution
1366x768
Hard Drives
1TB S-ATA II Hard Drive (5400RPM) with ExpressCache 16GB SSD
Internet Speed
sucks
Antivirus
Microsoft Security Essentials
Browser
Google Chrome (Sync enabled)
Why don't you upload it to offensive computing.
 

My Computer

OS
Windows 7
CPU
Quad Core
Memory
8GB
Hard Drives
1TB

My Computer

Computer Manufacturer/Model Number
Samsung NP530U4B-S02IN
OS
Windows® 8 Pro (64-bit)
CPU
Intel® Core™ i5 Processor 2467M (1.60GHz, 3MB L3 Cache)
Motherboard
Samsung Electronics
Memory
6GB DDR3 System Memory at 1,333MHz (on BD 4GB + 2GB x 1)
Graphics Card(s)
AMD Radeon™ HD7550M 1GB DDR3 (Ext. Graphic)
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
35.56cm (14.0) SuperBright 300nit HD LED Display
Screen Resolution
1366x768
Hard Drives
1TB S-ATA II Hard Drive (5400RPM) with ExpressCache 16GB SSD
Internet Speed
sucks
Antivirus
Microsoft Security Essentials
Browser
Google Chrome (Sync enabled)

My Computer

Computer Manufacturer/Model Number
Samsung NP530U4B-S02IN
OS
Windows® 8 Pro (64-bit)
CPU
Intel® Core™ i5 Processor 2467M (1.60GHz, 3MB L3 Cache)
Motherboard
Samsung Electronics
Memory
6GB DDR3 System Memory at 1,333MHz (on BD 4GB + 2GB x 1)
Graphics Card(s)
AMD Radeon™ HD7550M 1GB DDR3 (Ext. Graphic)
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
35.56cm (14.0) SuperBright 300nit HD LED Display
Screen Resolution
1366x768
Hard Drives
1TB S-ATA II Hard Drive (5400RPM) with ExpressCache 16GB SSD
Internet Speed
sucks
Antivirus
Microsoft Security Essentials
Browser
Google Chrome (Sync enabled)
dranfu said:
@Jaxryley

Offensive Computing | Community Malicious code research and analysis

All files uploaded here will be imported into the Offensive Computing Malware database. By using this service, you certify that you are not uploading any ...
Click to expand...
Thanks dranfu but I am kept quite busy uploading samples to Malwarebytes.

If you join the KernelMode forum then the samples are available to download.

I do try to join in over at KernelMode but those fellas over there are so far advanced that I'm left scratching my head most of the time.
 

My Computer

OS
7
Dinesh said:
Corrine said:
Dinesh said:
Hitman pro has the ability to remove TDL3 rootkit.
Click to expand...

Not the one that is in the thread Jaxryley linked to.
Click to expand...
Hi, how do you know that?
Click to expand...

As indicated in the thread, this is a new variant that researchers have still not obtained the dropper, although it appears that a_d_13 has file dumps for this variant from infected machines. All the bits are needed in order to create definitions. If anyone can do it, a_d_13 will.
 

My Computer

OS
Windows 7 & Windows Vista Ultimate
Here's an article by Marco Giuliani of Prevx on the variant:

TDL3 rootkit x64 goes in the wild

(Sidebar: I have a great deal of respect for Marco and recall all his work on the Gromozon rootkit removal tool.)
 

My Computer

OS
Windows 7 & Windows Vista Ultimate
You must log in or register to reply here.
Back
Top