windows update and root kit

I

italian

New Member
Reaction score
0
Location
USA
this is the third computer I have had this problem with. After let it download and install the updated I have root kit problems, anybody else have this problem? it has only happened to me with xp pro, not on xp home, vista or 7. at first I though it was my copy of xp pro, but I don't get it tell I do the updated and this time it is the customers copy of xp pro and I'm having the same problem.
 
I'm not sure which update is doing it, there where 33 of them, the usually security ones, the computer was opening everything fast and working fine then I let it do the updates and it was taking forever to open things so I ran a few scans and found the root kits, I could try to install them one at a time and see if it is in fact one of them, I'm just not sure how I'm getting them, at first I thought it was avg causing it so I killed it and installed Microsoft security essentials, I just have been feeling the new 2011 avg has been using more resources then it needs to. I formated and started over after I thought it was avg. I just wanted it to be clean and I have alot of time on my hands.
 
yes I did, even scanned it in safe mode, and took out the drive and put it in one of my encloses and scanned it with my laptop.
 
I would doubt your getting it from the updates themselves, its more likely there could be something on your network that is installing itself whilst the updates are being installed and before they are applied.

What is the source of your updates (Windows update?), and is there anything else on your network that could be the source?
 
To say it was unlikely that MS are dishing out rootkits with their updates would be a massive understatement.
 
Hey I had a similar problem and I kept getting the same virus over and over on machines when I was working on them in here. At first I thought it was my USB spreading and come to find out a virus had changed the dns settings on my router and everytime I went to a webpage or something I would get redirected and then get a virus. I would check the settings on your router and also change the login credentials..hope that helps.
 
I have dsl wireless router for my internet, my desktop is plugged in to the router part of it, and my lap top used the warless part, I have another router plug in to the dsl router and the computer I work on I plug in to that one and nothing else. I thought it might be something on one of my usb devices I use and I haven't found anything on them yet. Networking is not one of my strong points so you tell me if I can get something from another computer, by the way my other computer are clean right now
 
sophos anti-root kit, it said the usual stuff, yes its removable but clean up not recommended for this file, I looked it up with goggle and it was a know rootkit or virus or questionable, so I killed it. I don't think sophos had ever recommended to remove anything, I just have to look up the files and see what they are.
 
On occasion an MS update "uncloaks" a rootkit or malware and often results in BSOD, there was widespread anger back in February after thousands of pc's developed BSOD after an MS update, MS was blamed but after investigation the machines involved all had a rootkit. I had a lot of work that month.
This may be a similar case,
http://windows.about.com/b/2010/02/18/rootkit-not-microsoft-update-causing-crashes.htm

A work around for that instance

https://patrickwbarnes.com/blog/2010/02/microsoft-update-kb977165-triggering-widespread-bsod/

http://www.computerworld.com/s/article/9157518/Hackers_update_rootkit_causing_Windows_blue_screens
 
You must log in or register to reply here.

Similar threads

DonS
Surface Pro 7 stuck at Windows Logo after Windows updates
Replies
0
Views
231
DonS
DonS
HCHTech
Microsoft signin issues - TPM
Replies
1
Views
158
Sky-Knight
Sky-Knight
HCHTech
Slow opening times for files on a network drive
Replies
10
Views
715
trevm999
trevm999
HCHTech
Email authentication help
Replies
7
Views
824
Sky-Knight
Sky-Knight
HCHTech
Quickbooks Enterprise 2024 multi-user issues
Replies
7
Views
559
Markverhyden
Markverhyden
Back
Top