/* ----------------------------------------------- Blogger Template Style Name: Minima Black Designer: Douglas Bowman URL: www.stopdesign.com Date: 26 Feb 2004 ----------------------------------------------- */ CompuDave: December 2010

Tuesday, December 28, 2010

Fighting the TDL3 Hijack

TDL3 rootkit. A very hard one to identify. I've had two different computers at completely different locations experience this. The big clue is redirection of search results. Even Google on FireFox. You get the results but if you try to link it redirects.

I have no clue as to the vector. AVG, Hijack This, Housecall and Malwarebytes all failed to find it. Combofix could see it but failed to fix it. Kasperskey has a specific cleanup tool that did the job.