Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Rootkit infection requires Windows reinstall, says Microsoft
computerworld ^

Posted on 06/27/2011 10:21:23 PM PDT by Gomez

Microsoft is telling Windows users that they'll have to reinstall the operating system if they get infected with a new rootkit that hides in the machine's boot sector.

A new variant of a Trojan Microsoft calls "Popureb" digs so deeply into the system that the only way to eradicate it is to return Windows to its out-of-the-box configuration, Chun Feng, an engineer with the Microsoft Malware Protection Center (MMPC), said last week on the group's blog.

"If your system does get infected with Trojan:Win32/Popureb.E, we advise you to fix the MBR and then use a recovery CD to restore your system to a pre-infected state," said Feng.

A recovery disc returns Windows to its factory settings.

(Excerpt) Read more at computerworld.com ...


TOPICS: Computers/Internet
KEYWORDS: microsofttax
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-80 ... 121-130 next last
To: enduserindy
They all want to have you plug your monitor, mouse and keyboard into a connector the size of a remote. Then we will be Lucky enough to pay little fees renting everything else.
21 posted on 06/28/2011 1:06:33 AM PDT by Domangart
[ Post Reply | Private Reply | To 16 | View Replies]

To: Brookhaven
Go Linux and never look back for free!>

Preach it. I'm writing this on a laptop with the latest version of Linux Mint.

I have the feeling that this may be what is infecting a relative's computer from that description I've read. She called me late last week and said that she'd opened an email from a friend with what was supposed to be photos. Her anti-virus warned her not to open it, but she did anyway. The way she described it, opening the file installed something, which took her to websites, which installed something she couldn't stop, which did something else, and then it gets garbled. She isn't quite sure.

Ooopsie.

Anyone want to guess what I'm doing this weekend?

I hate Windows.

22 posted on 06/28/2011 2:12:23 AM PDT by mountainbunny
[ Post Reply | Private Reply | To 4 | View Replies]

To: Gomez
A close friend had what I think may be this virus last week and I ended up re-installing Win XP for him.

While not a "Guru" but after having had a puter for 26 years (starting off with a ol' Kaypro in 85 which required learning DOS and working my way up to and thru all the Windows programs...it got to the point I could repair/reinstall Win 98 in my sleep...) I am not exactly a neophyte, either.

That said, I tried every virus/malware program I knew off (including Spybot, Spyware Doctor, Avast, AVG, Malewarebytes, Adaware, System Mechanic, and maybe a couple of others I can't think of) all to no avail.

That's the 1st time I've not been able to fix a puter that had been infected including the dreaded "About Blank," thus whatever it was, is the worst yet and I keep thinking how I'd like to get my hands on all these bottom-feeding scumbags who develop these programs for whatever pleasure they derive therefrom and even at my advanced age, put (or try anyway?) a whooping on them they would not soon forget.

"There ought to be a law....."

23 posted on 06/28/2011 3:19:29 AM PDT by Conservative Vermont Vet (l)
[ Post Reply | Private Reply | To 1 | View Replies]

To: enduserindy
"...Mac’s are mostly used by liberals who feel good about overpriced crap. I do mean crap..."

Hahahaha,,,it sure sounds like you have a "small man" syndrome complex there...

24 posted on 06/28/2011 3:38:59 AM PDT by rlmorel (Sometimes, the enemy of our enemy is our friend. But not always.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: enduserindy

I am under the impression that Linux will not run Windows programs. Is this a correct impression?

If correct, the problem with Linux then is acquiring and learning new software, and doing without those programs for which Linux has not equivalent.


25 posted on 06/28/2011 4:08:15 AM PDT by BwanaNdege (For those who have fought for it, Life bears a savor the protected will never know.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: Gomez; rdb3; Calvinist_Dark_Lord; GodGunsandGuts; CyberCowboy777; Salo; Bobsat; JosephW; ...

26 posted on 06/28/2011 4:47:46 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Gomez; rdb3; Calvinist_Dark_Lord; GodGunsandGuts; CyberCowboy777; Salo; Bobsat; JosephW; ...

27 posted on 06/28/2011 4:48:37 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: BwanaNdege
I am under the impression that Linux will not run Windows programs. Is this a correct impression?

Linux will not run Windows programs without some help. It is is completely different OS, after all.

However, there is a very common program, called WINE, that will allow you to run most Windows programs.

If correct, the problem with Linux then is acquiring and learning new software,...

..kinda like learning new versions of Office or other major upgrades. Not a big deal, actually.

...and doing without those programs for which Linux has not equivalent.

Not many of those. I can actually think of more Linux software that has no Windows equivalent, than the other way around. You'd have to have pretty obscure, and specific, titles to have no Linux equivalent these days.

28 posted on 06/28/2011 4:59:12 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 25 | View Replies]

To: mountainbunny

Hey, another Minter here. Although Clement Lefebvre (sp?) (main Mint developer) asked supporters of Israel to neither contribute funds to or use Mint. I missed seeing such a restriction in the underlying general public license, so I enjoy Mint nonetheless.

It’s great to have a dual boot machine and Mint on a “disposable” laptop.


29 posted on 06/28/2011 5:47:40 AM PDT by bajabaja (Too ugly to be scanned at the airports.)
[ Post Reply | Private Reply | To 22 | View Replies]

To: BwanaNdege

Ubuntu, the most popular Linux flavor, has a utility named “wine” which runs many windows programs. I’ve used it, it was clunky but got the job done. Many linux distros can be dual booted and live comfortably next to a Microsoft OS. Linux has a library of tens of thousands of various programs, though the quality and duplication between these programs is a problem, but not an insurmountable one. Depends on what you are looking for.

Linux is not yet and probably never will be, despite its claims, as successful and complete as Microsoft or Apple OSes. But it has its strengths and is a free back up with some options.


30 posted on 06/28/2011 5:53:35 AM PDT by bajabaja (Too ugly to be scanned at the airports.)
[ Post Reply | Private Reply | To 25 | View Replies]

To: Gomez

You guys are all writing about what program you can install to get rid of a rootkit like this, but when the rootkit completely seizes control of your computer and you cannot even shut it down, use the mouse, etc., you can’t install jack.


31 posted on 06/28/2011 5:57:18 AM PDT by ottbmare (off-the-track Thoroughbred mare)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Porterville
Mac? I can reinstall a complete system in a few hours and install a top of the line whatever-card for 1/4 of the price.

People have their priorities. Those "few hours" every few months are valuable to me.

I can have a computer 10X better than a Mac for $300.

The $280 Dell does not include a $220 monitor.

The same Mac would cost me $3,000

The basic iMac -- which includes a monitor -- is $1,200 and has far more features than the basic Dell including a much better processor.

The only Macs costing $3,000 are specialty products.

and I'd be stuck with crap-Mac products "cloud" nonsense.

You don't need to use "the cloud" with a Mac any more than you need to use "the cloud" with a PC.

But wait, you get to keep all my data in your freaking "cloud"

If you want, although I leave my stuff on my hard drive & use "the cloud" for a backup for some things.

32 posted on 06/28/2011 6:13:52 AM PDT by Tribune7 (We're flat broke, but he thinks these solar shingles and really fast trains will magically save us.)
[ Post Reply | Private Reply | To 13 | View Replies]

To: NerdDad

Mark


33 posted on 06/28/2011 7:03:59 AM PDT by NerdDad (Aug 7, 1981, I married my soul mate, CDBEAR. 29 years and I'm still teenager-crazy in love with her.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: cableguymn
From the comments.. You do not need to reformat.

I would never trust a rooted machine without an OS reinstall. Nuke it from orbit!
34 posted on 06/28/2011 7:09:12 AM PDT by Gomez (shibboleet)
[ Post Reply | Private Reply | To 6 | View Replies]

To: ottbmare
You guys are all writing about what program you can install to get rid of a rootkit like this, but when the rootkit completely seizes control of your computer and you cannot even shut it down, use the mouse, etc., you can’t install jack.

Most of the Aureleon/FakeAV family of viruses only infect the user they arrived on - simply creating another user often will give you access... there are several ways to do that with self-booting tools. More can be thwarted from safe mode. Only the true rootkit varieties require using a rescue media.

For that, you should look into the various WinRE/WinPE Rescue platforms, or use one of the prepared anti-virus boot disks available (BitDefender, Kaspersky, etc) which run on WinPE or Linux. But no tech should be without a solid WinRE/WinPE boot disk.

As to the actual removal Kaspersky's TDSSKiller does the trick neatly, with a followup using Kaspersky's AVPTool once the machine is bootable again. After that, install a good AV (Kaspersky, Nod32, FProtect, Avira, MSE, etc), MalwareBytes, Spybot Search & Destroy, and CCleaner: Scan with all of them to clean up any residuals, and leave them on the box - Use them weekly, practice safe-hex, and you won't have problems anymore.

35 posted on 06/28/2011 7:16:20 AM PDT by roamer_1 (Globalism is just socialism in a business suit.)
[ Post Reply | Private Reply | To 31 | View Replies]

To: FredZarguna

“Computer trade magazines are for tech management idiots who couldn’t find their asses if they had four robots searching at the top of their legs”

My twenty-something age son has been reading tech journals since he was 13. He is pretty much self-taught and has a high level job analyzing servers for his employer.

The company recently completed a merger which required him to analyze several vendor processes and recommend the best one for the company’s needs. He had to fight with the boardroom execs who don’t know jack and it almost ended up being a total cluserfark.

His comment to me: “I used to read about this kind of monumental corporate screw-ups in the trade journals and now I’m part of it!”


36 posted on 06/28/2011 7:28:17 AM PDT by Rebelbase
[ Post Reply | Private Reply | To 15 | View Replies]

To: Brookhaven; Swordmaker

Funny, I’m told that Macbots never post stuff in Windows threads like use a mac instead.

This was the first reply in the post.

See swordmaker, unless brookhaven was just being sarcastic and making fun of macbots...macbots really do this.


37 posted on 06/28/2011 7:28:23 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 4 | View Replies]

To: Tribune7
People have their priorities.

They also have their egos, which seems to make them assume that everybody else's priorities need to be made the same as theirs.

38 posted on 06/28/2011 7:29:12 AM PDT by tacticalogic
[ Post Reply | Private Reply | To 32 | View Replies]

To: aviator; Swordmaker; Brookhaven

sorry Brookhaven replied to the wrong post.

See swordmaker....macbots really do post garbage in windows threads suggesting Macs can’t get a virus. We all know that’s not true. I’m not sure how his post was constructive, but since macbots never do this I’m sure he was just being sarcastic (just as I am).


39 posted on 06/28/2011 7:30:34 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Tribune7; Swordmaker

He sword...here’s another macbot muddying up a windows topic. Once again I thought you said this never happens.

Why do the macbots feel it neccessary to muddy up windows threads with FUD?


40 posted on 06/28/2011 7:32:21 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 32 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-80 ... 121-130 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson