Oh! What a clandestine virus

by Jason Davies on December 9, 2010

This was a unique week involving computer repair in Green Bay. I acquired new business clients this week due to a common mistake of the competition. The problem was relative to virus removal specifically, and caused a great headache for many people. As a result, it caused a handful of people to jump ship.

A computer at a local company fell ill with a computer virus. This virus caused a numerous popup ads that generated numerous other ills. The customer called their normal computer repair shop to fix the issue, and assumed everything was okay. The technician left and the customer had a smile on their face … for now.

This computer moved along well for a few hours until the day was done. The computer repair job was finished so the client though nothing about turning their computer off at night. Next morning the computer was turned on, (along with several dozen others.) Then, the popup ads came back like wild fire. Only this time they took a more profound attack on the computer network.

Okay, I know your wondering, “is there a point to this dramatic introduction?” The answer is that the issue was a ‘root kit‘ (you can read up on these sneaky buggers!) The issue was specifically a varient of a root kit called TDL4. This little pesky bug was “removed” from the systems mentioned above, but only what was detected.  When the systems were rebooted, the infection came back like the plague.

The reason for the re-infection was that the MBR (master boot record) of the hard drive was infected. The MBR is responsible for telling the computer “here is where the operating system is located.” It can be modified for hijacking purposes too. This ability to hide enables this virus to be really sneaky.

Now, had the technicians taken the time to simply write a new master book record to the disk, it would have solved the problem.  When you are having problems with viruses and cannot seem to find an answer, take a look at the MBR. With the proliferation of computer viruses in this day and age, it is important to look outside the box!

If you have questions about your computer, or think it may be infected with a root kit virus – call TechRx!

{ 1 comment… read it below or add one }

Arik Jones December 31, 2010 at 3:29 pm

I’ve dealt so many times with those damn things. I hate the ones that spread across the windows registry. They’re sooo hard to track down sometimes!

Leave a Comment

Previous post:

Next post: