locked
QdrModule11.exe fails to fix RRS feed

  • Question

  •  

    Hi;

     

    I just wanted to report that the QdrModule11.exe virus fails to clean.

     

    I had do download SmitfraudFix.exe and run it in safe mode in order to fix it.  Shoulden't there be a version that should be able to run in safe mode? If so, why does it always say it can't run in safe mode.  It seems to me that that is the only way to clean some of these viruses.

     

    Also, I got the virus by browsing photo-sig.com. It seems to me that's a pretty big problem if you can't browse with confidence.

     

    I also noticed that OneLive does not yet have a rootkit detector. Is that coming?

     

    Ya-ya.

    Monday, January 14, 2008 6:19 AM

Answers

All replies

  • See this post for how to report infections to Microsoft - http://forums.microsoft.com/WindowsOneCare/ShowPost.aspx?PostID=662566&SiteID=2

     

    See this post for how to run in Safe mode - http://forums.microsoft.com/WindowsOneCare/ShowPost.aspx?PostID=1215336&SiteID=2

     

    Unfortunately, no antivirus solution is 100% effective, but I'm sorry to read that you were infected with OneCare active.

    Root kits can't be detected, only assumed based typically by comparing memory to the registry and noting differences. The idea would be to prevent the root kit from getting to the PC to begin with as, once infected by a root kit, most experts agree that your only recourse is to completely format the PC at that point.

    -steve

    Monday, January 14, 2008 6:54 PM
    Moderator
  • Thank you, that was helpful. I hope that you would be willing to work on providing a utility to properly detect potential rootkits and the processes that install them.  I recently formatted my PC and was re-infected with a rootkit using IE 7. The problem is that I use my admin account and it makes more sense to use a non-admin restricted account for browsing the web. I also noted that while the root kit was active, my cd laser was continuously active. I doubt I am the first to report hardware failure as a result of a rootkit, but it seems that is the case. I realize Sony is to blame for rootkits and SONY will never get another dime of my money as a result, but it seems like we should be doing more to hold accountability for these things.  What are your thoughts?

     

    -PCguy

    Monday, January 14, 2008 11:57 PM
  • You may want to look at Root Kit Revealer - http://www.microsoft.com/technet/sysinternals/Security/RootkitRevealer.mspx

     

    Sony isn't to blame for root kits, they just got a lot of press for employing misguided copy protection scheme that used root kit behavior (well, actually a root kit) with some CDs sold. Root kits were around long before Sony got into trouble with that.

     

    And, as I said, the goal is to prevent a root kit from gaining a foot hold, which OneCare does strive to do.

    -steve

    Tuesday, January 15, 2008 2:37 AM
    Moderator