Discussion in 'malware problems & news' started by ronjor, Dec 6, 2005.
An ever growing problem.
That article is misleading. It only refers to rootkits removed by the Microsoft Malicious Software Removal Tool, which, as far as I recall, only detects/removes around 6 rootkits. Not many in the great scheme of things.
It seems too funny now after seeing this that alot of the main posters here only a few months ago were saying rootkits were not a problem. They were currently a pipe dream. What happened?
The secret life of a rootkit
One reason why there is a need for a firewall to track outbound requests ...
I believe the comment revolved around the apparent magical qualities of rootkits. They may have some measure of stealth once installed, but they don't hop around the insides of your PC like cyber-ninja before that. Some overt and readily detected actions precede installation. They can be controlled then, as well as later for that matter.
A bit late if you are rooted
Where Are Rootkits Coming From?
Are Atomic Time and Forgetmenot two of the rootkitted adwares?
I see sending mail to support will get you an uninstall file or directions on how to uninstall it.
Anyone looked these over yet?
Boclean picks up on a few of Atomic Time's exe but misses one, including one DLL
Boclean gives no peep on Forgetmenot even though there is the same missed BHO exe and DLL.
Intel Researchers Sneak Up on Rootkits
Interview with Intel
Anti-spyware Battles Rootkits with Rootkit Tactics
Anti-spyware software companies are adding features to their products that spot rootkits and other malicious programs that operate at the Windows "kernel," or core processing center.
The new kernel-mode features are a response to new, sophisticated spyware.
However, they have raised warnings from security analysts about instability in Windows and conflicts with anti-virus programs that also work at the kernel level.
Aluria Software of Lake Mary, Fla., became the latest anti-spyware vendor to add kernel-mode features.
Separate names with a comma.