Is There A Rootkit Stashed In Your Boot Record?
3 posts
• Page 1 of 1
Is There A Rootkit Stashed In Your Boot Record?
See this news article posted by rippinchikkin Is There A Rootkit Stashed In Your Boot Record?.
Here's a fix:
From the recovery console, advised Elia Florio, another Symantec researcher, users can run the "fixmbr" command to remove the rootkit. "To help prevent similar attacks in the future, and if your system BIOS includes the Master Boot Record write-protection feature, now is a good time to enable it," Florio recommended
Source: Computerworld
Not that there are exactly a lot of systems infected at about 5000, but it could be a meanie to get rid of. I guess one would only know if ones system no longer booted. It seems it's "acquired" by visiting certain "host" sites that have been compromised.
I haven't checked right now, but I can't remember that my BIOS has a MBR write protection feature. At least it can be gotten rid of though.
That almost sounds too simplistic of a fix!? Checkout Rootkit Revealer from TechNet. I have no idea.
Everything that irritates us about others can lead us to an understanding of ourselves. -- Carl Jung
eVGA X58 tri-SLI, i7 930 @ 3.8GHz., Corsair 6GB Dominator, Inno3D GTX470, eVGA260
ASUS P8P67 Pro, i7 2600K @4.60 GHz, 8GB RAM, eVGA GTX 460
eVGA X58 tri-SLI, i7 930 @ 3.8GHz., Corsair 6GB Dominator, Inno3D GTX470, eVGA260
ASUS P8P67 Pro, i7 2600K @4.60 GHz, 8GB RAM, eVGA GTX 460
- augie
- Community Director
- Posts: 7870
- Joined: Mon Aug 26, 2002 1:55 am
- Location: Laurentians, Quebec
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 7 guests