Categories
Uncategorized

Windows 7 Malware / FakeHDD

Rouge.FakeHDD is making it’s rounds this week and now is also floating around on Windows 7 Machines.  Point of post is the new spot for malware seems to be:
C:\ProgramData

This is your new spot to check on Windows 7, versus the Application Data or Local folders in the Docs and Settings folder in XP.

As usual, run TDSSKILLER too, since search result hijacks are commonly also present.  Rootkit.boot.SST.b found in today’s instance.