Did read this: How can I remove malicious spyware, malware, adware, viruses, trojans or rootkits from my PC?
But, computer I have is out of the box (OEM) and I've never connected it to the internet. Just did the install, and was starting working on moving applications (anti-spyware, etc) over to it via a USB drive, when I got a notification saying I have bootkit.0010:
Of course the AVG on the computer won't do anything (nothing happens when clicking 'protect me'), not connected to the internet so can't get 'show details'.
https://support.kaspersky.com/viruses/solutions/2727#block2
Downloaded that, and moved it (via the same USB drive, only one available and not formattable) to the computer, installed/run it, and it finds nothing.
Found this, trying it next: http://www.avg.com/us-en/remove-win32-bootkit.tpl-stdfull
What else should I be trying?
Best Answer
Your flash drive is infected, not the computer itself.
The AVG dialog states that the detected object is Boot sector (e:). I'm pretty sure
E:is the flash drive as your images indicates that there is only one hard drive on the machine.Removing the infection requires erasing its boot sector and reformatting the drive. This will make all data on the drive unreadable, so you should back up the contents of the drive before you proceed. Be sure the files are not themselves infected with malware.
To clean the drive:
diskpart.list diskto find the correct drive, then useselect disk xto specify the disk you want to clean (replacexwith the number corresponding to your flash drive).cleanto erase the boot sector and partition table.Once you've erased the boot sector, you can reformat the drive and it should no longer be infected. If it is still infected, the drive may have been compromised at the firmware level, which would render it unusable.