[SGVLUG] Discovering a rootkit [was: Re: linux-friendly netbooks]
John E. Kreznar
jek at ininx.com
Wed Sep 2 17:43:07 PDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
In a message purporting to be from Sean <sean at seanodonnell.com> but
lacking a digital signature, it is written:
> I have the EPC1000HD, which came stocked with Windows XP.
> I soon replaced the Windows XP OS after discovering 1 week later that it had
> included a Sino rootkit/keylogger, which either came out of the box (thanks
> Asus), or was somehow embedded in a version of Cygwin that I had downloaded
> from anl.gov mirrors.
Fascinating! How did you discover it? What did it look like? Did
you save anything that you could show?
- --
John E. Kreznar jek at ininx.com 9F1148454619A5F08550 705961A47CC541AFEF13
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.8+ <http://mailcrypt.sourceforge.net/>
iD8DBQFKnxDrYaR8xUGv7xMRAivDAJ9WLPIytvfs1UvzKWrpzQ2IYVoFIwCggXSC
USbXw5/0LNCI6WDSOZytkIk=
=Afz+
-----END PGP SIGNATURE-----
More information about the SGVLUG
mailing list