Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Bube - a true baddie

Status
Not open for further replies.
bcastner

bcastner

IS-IT--Management
Aug 13, 2002
29,271
US
This just appeared from nowhere. If you are current with the MS Antispyware freeware it can remove this one. Otherwise, additional instructions and a discussion of how bad a bad boy this guy is:
Note that this disables the XP firewall, System Restore, and corrupts Explorer.exe, so the steps outlined avove seem reasonable if you discover a case of a sudden lose of all desktop icons.

Best wishes,
Bill Castner
 
Sort by date Sort by votes
I count threads in various forums of Tek-tips at 4 showing Bube.D issues as of this morning.

Really be on the lookout for this bad guy.


 
Upvote 0 Downvote
I think I have to remove this from my son's system. I had not studied through Calamity Jane's fix yet. The MS antispyware is an alternative to that?



-------------------------------------
It's 10 O'Clock ( somewhere! ).
Are your registry and data backed up?
 
Upvote 0 Downvote
What exploit does it use? I have been trying to find this on symantecs site but found no info. Any other links that define this one, as far as what it does?
 
Upvote 0 Downvote
Interesting tidbit I found on a different site

"I just had to sort out a Windows 98 PC infected with this. It produced another symptom too. You can install and run old versions of Grisoft AVG 7.0 free edition (e.g. 300a419), but if you either update AVG over the internet or install a later version in the first place (e.g. the current download which is 300a456), then when the PC reboots at the end of ths installation, it gives the message "Error loading explorer.exe. You must reinstall Windows." Rebooting to safe mode and uninstallng AVG allows the PC to boot again.

If anyone else gets this syptom, I suggest using SFC to restore c:\windows\explorer.exe from the install CD. BTW the date on the modified explorer.exe is not recent, it looks as old as the installation, otherwise I would have spotted it earlier. I eventualy dicovered that the PC had this virus by installing AVG in customised mode, turning off Resident Shield and doing a full scan. AVG Free now detects this virus (it didn't 24 hours ago), however on seeing AVG detect a virus in Explorer.exe I immediately stopped the scan before AVG could quarantine or delete it. "
Click to expand...

This thread is a much shorter replica, beyond the above, of the Broadbandreports thread.
Click me

Nice bit of information there Bill!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

iambob
  • Locked
  • Question
Avast Anti-Virus is.. a virus?! 3
Replies
5
Views
300
Oorde
Oorde
shivajiboss
  • Locked
  • Question
I am getting a problem while opening up my windows
Replies
1
Views
268
2ffat
2ffat
2ffat
  • Locked
  • News
Audacity is Spyware?
Replies
2
Views
244
2ffat
2ffat
DrB0b
  • Locked
  • Question
True Crypt / Crypto-ware / Firewalls 1
Replies
14
Views
310
goombawaho
goombawaho
ChrisOfOz
  • Locked
  • Question
Lenovo startup problem please any ideas? 2
Replies
10
Views
775
Yoko Littner
Yoko Littner

Part and Inventory Search

Sponsor

Back
Top