Search This Blog

Friday, May 25, 2012


Just discovered a great tool from Kaspersky: Rescue disk  CD/usb - it can scan Windows 7 disk and update databases online. I regret  that I did not use it immediately before spyware deinstalled itself...


Interesting case today, where the PC was slow, with high hdd activity and very strange traffic with task  Id 0 to IP and and possibly others. Few days ago this PC was highlighted by snort as "SPYWARE-PUT Trackware casalemedia runtime detection"

PC is protected with Trend.  After sucessful installation of Lavasoft, I realised that it actually did not install, folder is absent. Second time, the same result. Somebody is playing jokes? Third time it was installed ok and suddenly strange activity stopped, as if it deinstalled itself to avoid detection.

Further scan with Lavasoft and Kaspesky did not uncover anything. Puzzle...

Thursday, May 3, 2012

AsyncOS 7.5.1 blocks Office files

Cisco IronPort AsyncOS 7.5.1 has a bug and it blocks Office 2007/2010 files as executables (some Office file files have .bin for printer settings). Defect 81190 apparently was fixed in 7.5.2 and higher - ref readme.