Malware in Bootsector of Snow Leopard
Hello,
I realize this post is almost exactly the same issue as (https://discussions.apple.com/thread/1787259?start=15&tstart=0) however, there is no answer to the problem.
Problem: Recently my wireless router was compromised, leading to metasploit backdoors and etc being placed inside of several of my computers. My Macbook (intel based core 2 duo, 160gb hdd) was found to have a "bootroot loader" malware infection by avast for mac being recoginized as a "decompression bomb". My network is now fully secure (wired router) with managed cisco switch, Backtrack 5 packet monitoring machine...blah...blah, and I am still having the bootloader infection!
Since then, I have re-install linux over the drive, re-installed windows over it on a seperate computer, partitioned it to various formats, deleted free space and volume space, taken it to areas where there are no wireless signals and reinstalled, and etc. I STILL HAVE THE MALWARE, VERY SIMILAR ISSUE TO THE ABOVE LINK and EFT script!!! The last time I reinstalled from my apple purchased dvd, I found even more infections (i.e. payload injections, private/var infections etc).
I know how to harden the OS but it makes no difference when the bootloader has already been compromised!!! H3LP M3!!!
MacBook, Mac OS X (10.6.8), Malware in Bootloader