| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 116331 | 2011-02-27 20:15:00 | Can rootkits survive a factory reset | nofam (9009) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1181858 | 2011-02-27 20:15:00 | My new Vaio notebook suddenly black-screened yesterday while you-tubing, and then every reboot after that it would accept my user/password and then BSOD with the IRQ_NOT_LESS_OR_EQUAL error, and mentions iastor.sys. I tried all the usual repair steps (RAM test, chkdsk etc), and even did a factory restore, but it still BSOD's when doing the initial setup after rebuild. Is it likely that a rootkit would still be causing the issue after a factory reset, or is it more likely to be a hardware issue? I would've thought that with formatting the hard drive, it would be removed? Or can rootkits infect the recovery partition as well? Normally I'd just pull the drive and scan it, but I don't want to invalidate my warranty. |
nofam (9009) | ||
| 1181859 | 2011-02-27 20:18:00 | It's almost surely a driver issue or hardware fault. Only a firmware rootkit could survive a format / reinstall. | inphinity (7274) | ||
| 1181860 | 2011-02-27 21:01:00 | It's almost surely a driver issue or hardware fault . Only a firmware rootkit could survive a format / reinstall . Surely a driver issue would be resolved when the hard drive was wiped, and iastor . sys was re-written from the recovery partition? Think I'll just get in touch with Sony and RMA it . . . . :( |
nofam (9009) | ||
| 1181861 | 2011-02-27 22:32:00 | Yeah, get it back to Sony. OT Rather like your signature. Where does it come from? |
linw (53) | ||
| 1181862 | 2011-02-27 22:44:00 | Surely a driver issue would be resolved when the hard drive was wiped, and iastor . sys was re-written from the recovery partition? Not necessarily . Probably an older version and not compatible and it just got reinstalled back . |
pctek (84) | ||
| 1181863 | 2011-02-27 23:17:00 | Not necessarily. Probably an older version and not compatible and it just got reinstalled back. Good point - I'm actually wondering if the notebook overheated somewhat; I was watching some 720p footage, and had also been watching some Bluray movies, so it was getting a bit of work. Anyway, pleased to report that Sony have declared it a DOA, so are quite happy for the retailer (Playtech) to send out a replacement right away. Excellent service all round - Sony+Playtech = :wub @linw - it's from a song called Scrapyard Lullaby of the album Dirt Floor (en.wikipedia.org(album)) by Chris Whitley - a personal favourite of mine, :) |
nofam (9009) | ||
| 1181864 | 2011-02-28 08:25:00 | Thanks, nofam, and pleased you will get a new machine so promptly. Let's know how it goes. |
linw (53) | ||
| 1181865 | 2011-02-28 12:05:00 | My friend bought a Sony Vaio and the HDD died in a month or so, he replaced it with a bigger one. | Agent_24 (57) | ||
| 1181866 | 2011-02-28 18:22:00 | I've never come across any kind of rootkit on my PC's - could also be that I had some and never knew about it. Anybody else - any experience with it? sarel |
sarel (2490) | ||
| 1181867 | 2011-02-28 20:28:00 | I've never come across any kind of rootkit on my PC's - could also be that I had some and never knew about it . Anybody else - any experience with it? sarel I just cleaned one off a PC a few weeks back actually (Vista HP) - it wouldn't even boot to the login screen . . . . It would just BSOD and reboot continuously . The PC had Avast on it, which the trojan (W32/Olmarik) has all but uninstalled, and even once I'd slaved the drive to a working PC with NOD32 it could only detect the infection in the MBR, not remove it . TDSSKiller got rid of it straight away though . |
nofam (9009) | ||
| 1 2 3 | |||||