Tech Support Forum - View Single Post - Sinowal Trojan

tetonbob · 11-05-2008, 01:17 PM

This is not that new. What's new is the widespread reporting, based on a recent find of logged information.

http://www.theregister.co.uk/2008/10..._trojan_heist/

http://www.rsa.com/blog/blog_entry.aspx?id=1378

Many AntiVirus can identify this threat (droppers of the rootkit component), even if they can't all fix it.

Sinowal is also known as MBR rootkit

http://www.google.com/search?q=MBR%20rootkit

or mebroot

http://www.google.com/search?q=mebroot

It takes a dedicated rootkit scan to see this, and often takes dedicated tools to fix.

If you think your computer is infected....

11-05-2008, 01:17 PM	#4 (permalink)
tetonbob Manager, Security Center, TSF Academy; Analyst, Security Team Join Date: Jan 2005 Location: Transylvania County, North Carolina, USA Posts: 35,761 OS: 2000 Pro; XP Pro; XP Home	Re: Sinowal Trojan - How to detect it This is not that new. What's new is the widespread reporting, based on a recent find of logged information. http://www.theregister.co.uk/2008/10..._trojan_heist/ http://www.rsa.com/blog/blog_entry.aspx?id=1378 Many AntiVirus can identify this threat (droppers of the rootkit component), even if they can't all fix it. Sinowal is also known as MBR rootkit http://www.google.com/search?q=MBR%20rootkit or mebroot http://www.google.com/search?q=mebroot It takes a dedicated rootkit scan to see this, and often takes dedicated tools to fix. If you think your computer is infected.... __________________ Practice Safe Surfing PC Safety and Security--What Do I Need? Because what you don't know, CAN hurt you. Proud Member of ASAP since 2005 Proud Member of UNITE since 2006 Microsoft MVP - Consumer Security 2009