Wondering if there is a new Rootkit Out There?

Discussion in 'other security issues & news' started by Triple Helix, Feb 9, 2006.

Thread Status:
Not open for further replies.
  1. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    I put The Legend Of Zorro DVD to play I didn’t see anything Unusual it play well But 2 days later when I tried to Back Up of my Files With Roxio Media Creator 7.5 I could not get the Burning speed above 1.8x and I did set to 16x I have a Pioneer DVDR-110 16x! I did scans With NOD32, Ewido and Rootkit Revealer it did not find anything!The DVD is made by Sony!!

    Any Ideas? o_O
     
  2. Happy Bytes

    Happy Bytes Guest

    Yup. Keep your hands also from Mr. & Mrs. Smith away.

    I'm just investigating in that particular case.
     
  3. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    Thanks Mike!!

    Cheers,

    Daniel
     
  4. DonKid

    DonKid Registered Member

    Joined:
    Jun 27, 2004
    Posts:
    566
    Location:
    S?o Paulo, Brazil
    Mr. & Mrs. Smith has a protection called Settec alpha-dvd.
     
  5. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    I can see the need for there protection for trying to copying but for playing the DVD, But also for them to install anything to anyone's computer without notice it's a shame! And that was the problem with the Sony Rootkit! We will see what happens!!

    Cheers,
     
  6. pc-support

    pc-support Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    285
    Location:
    Edinburgh, UK
    Just out of curiosity - Are the rootkits on these DVD's Windows only or have they sneaked a Mac version on there as well?
     
  7. DonKid

    DonKid Registered Member

    Joined:
    Jun 27, 2004
    Posts:
    566
    Location:
    S?o Paulo, Brazil
    Maybe I´m wrong, but I think it just for Windows user.
    There´s only a reason for me, to keep this eternal beta called Windows and not get a Mac.
    Games.
    I´m not a kid anymore since long, long time ago, but games are my life.:D
     
  8. Happy Bytes

    Happy Bytes Guest

    Games? Did you ever play some games on a real mac? I mean there are a lot of mac games.
     
  9. DonKid

    DonKid Registered Member

    Joined:
    Jun 27, 2004
    Posts:
    566
    Location:
    S?o Paulo, Brazil
    LOL.

    Hi Cool Daddy.

    No, I´d like to have a Mac. but I have a PC.
    I´m from a time that used to have a Commodore 64, an Amiga 500, 1200.:D
    I have 2 cousins that have a Mac, and sometimes we play some games using a family lan.:D
    But I really would like that Apple could import Counter Strike series to Mac.
    I wouldn´t think twice about switching OS.:D
     
  10. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
  11. DonKid

    DonKid Registered Member

    Joined:
    Jun 27, 2004
    Posts:
    566
    Location:
    S?o Paulo, Brazil
    I read today, that Mr and MRs Smith DVD installs a rootkit in your PC.
    According to Settec, they have a uninstall for their tecnology called Alpha-DISC, in their website.
    F-Secure has published the news yesterday , but Cool Daddy told us since february 9.
    Hope NOD32 can detect it.

    http://www.f-secure.com/weblog/archives/archive-022006.html#00000810

    Best Regards,

    DonKid.
     
    Last edited: Feb 15, 2006
  12. Wolfe

    Wolfe Registered Member

    Joined:
    Jan 23, 2005
    Posts:
    160
    (Evil) rootkits can be ordered - just cough up the bucks and a "special design" will be yours. It's that simple really. Has been this way for quite some time now.
     
  13. spartak

    spartak Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    21
    Does the use of any dvd or similar programms offer anything against the installation of rootkits;
     
  14. spartak

    spartak Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    21

    Any ideas;;
     
  15. controler

    controler Guest

    Some programs prevent the install such as PG but Unhackme Pro seems to find most once installed. Do not count Boclean out either.
    You could try IceSword too.
    I am surprised rootkitrevealer did not spot it.




    con
     
  16. controler

    controler Guest

    I use AnyDVD

    read here also. He has coverd this since Jan.

    "5.8.2.1, 2006 01 11
    - New: Added support for a new version of the Sony Arccos protection as found on "Mr. & Mrs. Smith" R2 (Swiss German) to the option to remove "Protection based on unreadable Sectors" NOTE: This Arccos version is not yet supported with DVDShrink and Nero Recode. With elby CloneDVD 2.8.5.1 the quality bar will not work, but this is only a cosmetic problem. We will try to support this Arccos version better in the future."
    - Updated languages

    http://www.videohelp.com/tools?tool=294

    con
     
  17. spartak

    spartak Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    21
    By PG you mean process guard;


    I was wondering about any dvd because it prevents automatic launch of dvd.
    I think Arccos is different technology and refers to locking dvds not rootkit installation.
     
    Last edited: Feb 20, 2006
  18. controler

    controler Guest

    I have used AnyDVD on Sonys rootkit and it works fine. It installs a low level driver between windows and the hardware. Windows never sees the rootkit.
     
Loading...
Thread Status:
Not open for further replies.