Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » One in Five PC's Infected With Rootkits
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
AVG7.5 Free Update Manager problems »
« Avira AntiVir Personal Classic and Premium  
AuthorAll Replies

qrkx
Premium
join:2003-04-26
Montreal, QC

reply to Blackbird
Re: One in Five PC's Infected With Rootkits

said by Blackbird See Profile :

To clarify: I'm not accusing them. It's just that when you make, sell, and use hammers intensively, everything can start to look like a nail.
Well - nine out of seven dentists believe scotch is better than Novocain.

I thought it is agreed upon the fact that once root-ed zee boxen needs to be incinerated.

What I find amusing is that by the very attempt of hiding their presence, rootkits give themselves away. What if rootkits stop hooking enumerating&query API's and just operate in your face? Are we back to file signatures?

rgds.

to forum · permalink · · 2007-12-14 18:06:18 · Reply to this


Blackbird
Built for Speed
Premium
join:2005-01-14
Fort Wayne, IN
·Verizon Online DSL
said by qrkx See Profile :

...I thought it is agreed upon the fact that once root-ed zee boxen needs to be incinerated. ...
Nah... just the hard-drives and firmware flash chips. And in those rare instances of really pesky rootkits, the metal chassis may have to be scrubbed and rinsed thoroughly... or better still, repainted.
--
If God wanted us to work with electrons, He'd make them big enough to see...
to forum · permalink · · 2007-12-14 18:16:34 · Reply to this

Qwerky

join:2006-05-24
Adanac

reply to qrkx
said by qrkx See Profile :

Well - nine out of seven dentists believe scotch is better than Novocain.
And five out of four people have trouble with fractions.

But three out of five people, aren't the other two.

Anyway, is SysInternals RootkitRevealer sufficient, or should one be using more/different tools?
--
Mr. Qwerky - The Lone Stranger
Hi-Ho Tinfoil, Away!
to forum · permalink · · 2007-12-14 20:21:41 · Reply to this

lefty1

join:2002-10-25
Clay, NY
Anyway, is SysInternals RootkitRevealer sufficient, or should one be using more/different tools?
While running SystInternals RootkitRevealer, it stops every minute or so and gives me an error message about only having partial compatibility with Vista. Now why am I not surprised by that?
to forum · permalink · · 2007-12-15 14:22:23 · Reply to this


AB
Premium
join:2006-04-04
Leesburg, VA

1 edit
said by lefty1 See Profile :

While running SystInternals RootkitRevealer, it stops every minute or so and gives me an error message about only having partial compatibility with Vista. Now why am I not surprised by that?
The most recent version of RR seems to have been released on 11/1/2006-- prior to Vista.
Likely why.

*Edit- sp
to forum · permalink · · 2007-12-15 14:33:12 · Reply to this
Forums » Up and Running » Security » SecurityAVG7.5 Free Update Manager problems »
« Avira AntiVir Personal Classic and Premium  

Friday, 27-Nov 11:00:30 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [116] Time Warner Cable Fires Broadside At Broadcasters
· [109] New AT&T Ad Campaign Hits Back At Verizon
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [70] TiVo Sees Record Customer Losses
· [68] In-Flight Internet Headed For Bumpy Landing?
· [59] Thanksgiving Open Thread
· [38] EFF Wages War On Fine Print
· [38] ICANN Slams DNS Redirection
· [36] Senators Want ACTA Made Public
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· Newegg Black Friday Sale started [Users Find Hot Deals]
· SSD [Computer Hardware Discussion/Reviews]
· Not strictly "Home" related - but WOW anyways... [Home Repair & Improvement]
· Only firefox accesses Internet? [Security]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· New exploit masquerades as Flash Player upgrade [Security]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]