Author Topic: Possible New Rootkit (Read 2118 times)

Justin_22 · « **on:** August 24, 2008, 04:24:00 AM »

I was just reading through a "remove malware" page that I often visit that a guy made who runs his own IT business in St. Louis here in the U.S and he reported that he came across what might be a New rootkit I dont have a name for it but the file itself is Figaro.sys I don't have a sample or I would send it to Avast! the symptoms of this Rootkit is

1.Random Reboots
2.Virtumonde Drops
3.Very Slow Logins

my question is does anyone know if Avast! protects against this rootkit or if it is detected as something else (Trojan ect.) sorry if this topic takes up forum space but im just wondering if Avast! users are protected against this.

-Justin

EDIT: The page I got this from is http://remove-malware.com/

wyrmrider · « **Reply #1 on:** August 24, 2008, 06:04:33 AM »

did you google
Figaro.sys rootkit?

Justin_22 · « **Reply #2 on:** August 24, 2008, 07:06:28 AM »

I googled the file name but didnt really read through it all that much ill have to do that tomorrow

bob3160 · « **Reply #3 on:** August 24, 2008, 03:48:56 PM »

Maybe this will help you Justin_xp:
http://spywaredlls.prevx.com/RRADBF44402437/FIGARO.SYS.html

Author Topic: Possible New Rootkit (Read 2118 times)

Justin_22

Possible New Rootkit

wyrmrider

Re: Possible New Rootkit

Justin_22

Re: Possible New Rootkit

bob3160

Re: Possible New Rootkit