I cannot send a file to comodo nor comodo detects it.
note comodo tells me file is unreadable: “\.\com8.vki” lol
file is c:\windows\system32\com8.vki 151kb size from details in explorer row, but on property show 0 lenght both on disk and file.
microsoft security essentials has detected this as troyan w32.stresid
also chkdsk keep detecting free allocated space on MFT partition table, and many indexing errors, bitmap errors, those errors keep coming out every reboot but i have to run chkdsk at boot to see it, till i got delayed writing on mft failed (i think because there was no more space on mft for allocate new writings because of mft virus. Also the partition table is 380mb, and 98% used, weird
anyway even with w32.stresid removed by microsoft, the disk keep develop errors on bitmat mft and so on.
This sistem was infected with linkoptimizer rootkit, and i cant really get it to be clean.
The bad is that i tried all: even cluster resize, partition defrag, defrag of mft, nothing to do, the disk keep develop problems with bitmap and index attributes on mft. Filesystem ntsf is ok, i tried all sort of disk utilities, gparted show no problems with mft (mft is identicalt to mirror).
I changed psu, ram, harddisk, which i cloned using smart option on ghost, but still the infection persist.
This infection seems to be resident in the ntfs itself, i tried to wipe out the disk writing all zero, and then smart copying only data with ghost (no sector by sector copy), to get rid of ■■■■■■ virus on the mft.
I suspect this virus hide itself in the clusters which are not fully used, no antivirus can detect it. I scanned with all antirootkits, antispyware, trend micro, comodo, norton, but i cant understand how it execute its code, and why antivirus programs cant detect it.
I believe now the only way to wipe it is to fresh reinstall xp, and reinstall all.