Originally posted by brainswippin
I suggest you scan your computer with tdsskiller.
This is a nasty one that creates an encrypted partition on your windows installation and also install itself in your boot record That allows it to re
install itself if you format your windows partition.
first let me thank everybody for the help
in the last few days i have been trying to "fight" of a root kit that absolutely amazed me with its complex nature,
after a reinstall it has reinfected my machine, while i was in the process of updating my OS,
i lost control of the ability to stop processes and at times certain web sights were inacesable,
other times ie9 opened up and stayed blank while data was sent and received from my machine,
i installed a network monertering tool and traced the flow to an exterior sight.
i then tryed to fdisk and reinstall and just as i got everything up again i was root kitted again
this really mad me mad.
how the hell did that happen?
well i have traced the source of the infenction to a directed attack,
and have reported the ARP poisen cash to the police,
they were uninterested,
my isp asked for logs and data to attempt to block this attack at a national level
then i discovered "whowas" the owner of the servers that were attacking me,
turns out it was a pair of machines at different sights owned by a single company,
as i have given the details to the authorities i cant publish them here,
i can say after battling with this kit i NEVER want to get infected on this level ever again.
i had to remove my hard drive and slave it to a machine for a destructive format process with many many passes,
i was worried about reinfection.
at times i could have sworn that there was a remote user watching me and preventing me from working to adress the problem.
some antivirus sights were blocked and files i downloaded disapaired after a short while.
the websight is still currently attacking my network, but as the ISP is now monitering for this attack i feel confident they will decide to stop.
i would like to thank everybody for their help
and will post updates when available