Do your research

"Of course, this would mean MS effectively having to crawl to the Penguin for help.

(snigger)"

Nope - Microsoft have their own environment and have done since 2005. Called WinPE or WinRE. (Windows Preinstallation Environment or Windows Recovery Environment)

It's the foundation for the Vista and Windows 7 setup and also used extensively for Windows Deployment Services as well.

Don't need no daft named, terminal based open source muck here thank you.

Do your research

The Live CDs run a full GUI and will automatically make available the fixed discs. Non need to touch the terminal if you don't want (fyi: you still need to use the command prompt in Windows by times).

Also there would be good reason to use a non-Windows based OS if you are attempting to remove code that is highly infectious to Windows. It did, after all, hose your current install.

Now, where can I get my WinPE/RE ISO? Oh wait, I can't; I need an MSDN TechNet sub or some such bollocks. Sucks to be a normal user I guess. So I'd have to use Bart's PE or get a Linux Live CD.

What!

The problem is that affected machines are running Windows XP. Does it work on that?

This problem shows that the OEMs and Microsoft (their idea originally) have shot themselves in the foot. They are suggesting that you boot from the disc and perform a recovery, iirc, but the problem is Microsoft have encouraged OEMs not to supply Windows discs, instead encouraging them to rape, er charge the customer to purchase a disc instead. This leaves the customer up shit creek because it means they have to effectively reinstall the whole OS - that is if they made a recovery disc that most don't!!

Notice I called them customers? That is what they are. They consume nothing! They are customers as they BUY STUFF from the shops!

Still not doing your research

" will automatically make available the fixed discs"

As in it mounts the disks? Wow - big achievement. Guess what also automounts...?

"Also there would be good reason to use a non-Windows based OS if you are attempting to remove code that is highly infectious to Windows"

You do know what "ROM" stands for in CD-ROM? Same relevant parts apply to DVD's - it's not installing anything, and not starting anything from the infected system - so where's the risk again? Think it's going to destroy your free recovery DVD? Your point is moot.

"Now, where can I get my WinPE/RE ISO?"

Here: http://www.microsoft.com/downloads/details.aspx?FamilyID=C7D4BC6D-15F3-4284-9123-679830D629F2&displaylang=en

"Sucks to be a normal user I guess. So I'd have to use Bart's PE or get a Linux Live CD"

Yeah, because normal users often read the register, burn ISO's of BartPE (which I've used, and is rather good), and on a daily basis burn and boot a Linux Live CD.

Reality check?

Err...

Oh right, so home users now have the appropiate licencing to create WinPE/WinRE discs? There was me thinking that WinPE was only for OEMs and WinRE was only available to those running XP Professional.

I'll stick with my Linux custom live CDs, ClamAV and a whole host of tools, without having to pay extra for the licencing or break the law. ;)

I'm a Windows sysadmin, and even I am all too aware that Linux, with the appropiate tools to hand, is better at fixing Windows than Windows is. DOS prompt just don't cut it anymore.

Where can you get WInPE and WInRE?

From the free WAIK

re: Err... Couldn't agree more....

I'm getting pretty good at cleaning up infections. ClamAV only picks up files it has signatures from. You really need to work in the registry, that way you can clean out most things. Still there are worms like scribbler that you still have to format and restart. But hey you can do it all within linux.

Best of all automating any of your fixes is a doddle :-)

Come off it, WinPE/RE is a true dog. I'm sure you're writing this just to buy an argument.

Come off it, WinPE/RE is a true dog. I'm sure you're writing this just to buy an argument.

As I said in my posts elsewhere, this solution, at best, is barely better than nothing.

Essentially, Microsoft has never provided a decent and proper solution, fixing a really stuffed Windows O/S is little more than pot luck. When everything goes belly-up M$'s solution effectively is to format and reinstall.

Why is it pot luck you many well ask? Well, the reason is VERY simple, opening up the O/S to this sort of scrutiny makes it easier for peopled to bypass DRM, copyright licensing etc. etc. all of which requires the enormous obfuscating capability which Windows has in abundance.

Not only M$ hides stuff in Windows--registry and elsewhere--but most commercial programs also do so. Unfortunately this obfuscation ALSO makes it much easier for root kits viruses etc. to hide within the O/S.

I won't bore you with lessons on how Microsoft could easily have solved this problem with the use of authentication, encryption, Chinese 'fire' walls between the O/S, program and user files together with the use of file encapsulation and better file system etc.

Suffice to say, what Microsoft has done INTRINSICALLY makes it easy for ROOT KITS to HIDE in the O/S.

Why did M$ do it this way instead of doing it correctly? Einstein go home--even a person with a room temperature IQ knows this was done purely for commercial reasons--that of maximizing profit.

Protection of user's data files and the susceptibility of Windows to root kits, viruses etc. fell a long way short of that key commercial objective. Whilst necessary, these hundreds and hundreds of security patches which have needed to be installed in Windows are little more than window dressing in the big schema of things. Had appropriate engineering been used in the initial design of Windows, then most of them wouldn't have been necessary.

Right, Microsoft has made us users own the problem!

Obviously a Microsoft share owner. ...And WinPE/RE are dogs to use!

Obviously a Microsoft share owner talking!

...Anyway, WinPE/RE are dogs to use. That's why there are free third-party alternatives--BartPE et al, but even these are not very satisfactory as they're very slow and cumbersome.

That's why all my machines dual-boot to DOS and use FAT32 partitions (for the O/S only of course--data still lives in NTFS). I'm damned if I know how anyone does any serious maintenance work on Windows on a NTFS partition. One day I hope someone will enlighten me.

I simply can't understand how people use WinPE etc. They've obviously nine lives not to mention simple machine configurations. I've only one life unfortunately, wasting it spending time cranking up WinPE is something I can well do without.

Spot on.

Spot on.

Trouble is that we'll need a few more of these f%$#-ups before customers start demanding them.

Right, damn vague isn't it? Where's the LEMON LAWS for software?

Right, damn vague isn't it? Where's the LEMON LAWS for software?

These bastards (and I'm not just talking about M$ here--it's many software vendors) hide behind compiled code and you haven't a clue what's happening with patches and fixes. Often functionality suffers or speed decreases and you're none the wiser until you come upon an unexpected gotcha--and then often you're not sure if its the original program and you've just noticed the problem of whether it's the patch.

When my car goes kaput service people tell me what went wrong and supply me with the dead part. But all we get from most software vendors is an EULA which goes on for hours about the company not being responsible for anything.

Copyright, patents etc. aren't just enough to satisfy this mob. How come the software lobby has the service angle and that they're not responsible for anything also sewn up with the regulators?

We really do need decent software lemon laws. Only then will these vendors take notice.

Me too!

Yeah, had the same problem last week, a few months ago, last year, the year before that - in fact, that pesky BSOD of plagued me for the last 14 years, so it has.

I demand that something is done and done now!

Re: Other XP problems as well

Uh oh. I have similar symptoms, but in my case it may be PGP Desktop that is causing the problem.

Still investigating. Unfortunately, when you boot in safe mode you can't access pgp desktop, and can't decrypt the HD. If you can't decrypt, you can't repair windows.

I am currently in the process of using a pgp emergency boot CD to decrypt and it is painfully slow. Over 12 hrs to decrypt, now it is taking hours more to find PGPWDE.

Fortunately, I have a fairly recent backup of the HD image

Once I have this fixed, I will likely disobey corporate instructions and not encrypt my HD.

There's more to life than this

12 hrs... A serious problem.

There is also an electromagnetic emission from your site, a nickel tea-pot near your monitor, your cat and dog and another alien stuff which nobody'd better know (-: Neither as about your information stored.

Why don't you call a cab to drive the data where necessary? Takes a couple of hours usually, and it's almost an unbreakable solution.

@annihilator...

"However, who gave them the open window to enter with a rootkit?"

..Dunno same people for Linux?

http://linuxhelp.blogspot.com/2006/12/various-ways-of-detecting-rootkits-in.html

or Macs?

http://www.switchingtomac.com/tutorials/how-to-check-your-mac-for-rootkits/

feel free to search for others...

please,,,

when do you ever hear the terms Microsoft and good idea used together??

Yes but...

but if ever turn off the facility Mickysoft DELETES ANY restore points you have saved.

Way to go MickySoft, can you think of any more creative ways to fuck up your own crapware.

RE: please,,,

...when they invented the registry?

Agree

It's probably the least error-prone detection mechanism found so far. If BSOD then rootkit else not. Gotta love it.

Why, should it check for your malware compatability?

Why block an update that has nothing wrong with it?