Malware Customer Call - Notes from a real appointment
If you’re new here, you may want to subscribe to my RSS feed. Thanks for visiting!
Ms Hager: “Hi Matt, my computer is giving me a little fit…I don’t know what my husband has been doing”
Matt: “What’cha got going on?”
Ms Hager: “Well, when I turn the computer on I either get a blank desktop or a [...]
Recent XP Antivirus 2008 Infections Stealing Data. Are You Protected!
I had probably one of the worst client calls of my career that other day. When I arrived to David’s house I immediatly saw the XP Antivirus 2008 infection and though…sweet, “i’ll be outta here in a few minutes”..boy was I ever wrong.
David had the latest generation of the XP Antivirus 2008 trojan…it’s a very [...]
A Weekend Of RootKits: Figaro.sys Rootkit
I took a few appointments this weekend and witnessed the same infection over and over again…Figaro.sys. The Figaro.sys rootkit is dropped in c:\windows\system32\drivers (on vista) and on XP i’ve seen it in the DLLCACHE folder.
I don’t know exactly what it does but I can give you the symptoms:
Random reboots
Virtumonde drops
Very slow logins
I removed Figaro.sys [...]
