Anyone ever find RAT's on customer's machines?

tankman1989

tankman1989

Active Member
Reaction score
5
I am wondering how many of you are finding Remote Access Trojans (RATS) on customers computers? Do you guys know how to tell if the customer is a RATS victim? I've been looking for some time and I can't find any manual way to do it. DO A/V/Malware programs protect against this?
 
ATTech said:
I have to admit, I went into this thread with a completely different thought as to what it was about...
Click to expand...

LOL. Most commercial and certainly most popular RAT's are detected by antiviruses usually as trojans. Good RAT's with thought and effort involved would probably involve rootkits hiding their presence, so they could well be almost invisible.
 
I discovered a program made by logmein, that is no longer in production, called logmein scout. It uses logon credentials to scan all pc's on the lan for known remote access products. Its no longer available for download but was VERY VERY useful for finding and removing old remote access software that previous support companies had left behind :).
 
MouseNotWorking.jpg


One hit with combofix and that was all that was left of him.
 
I was just talking in another thread about some Sun Ultra 10's that were brought to us by a military client. They were stored in a warehouse and were so filthy from rats living in them that we were afraid the feces would make us sick. Cleaned it out with a air hose and breathing masks.
 
Besides the fact that the topic is pretty humorous, I haven't really heard anyone seriously answer the question. I would think that these trojans would be the most dangerous for clients, especially clients with children. I know a lot of RATs are detectable by AV's and malware detectors but I was reading an article that said there are millions upon millions of current victims.

I would think finding an active RAT on a clients PC would be a very beneficial service and removal could charge a high premium.
 
You must log in or register to reply here.

Similar threads

D
How are you folks handling Scam Popups
Replies
10
Views
1K
Markverhyden
Markverhyden
D
[WARNING] Medusa Ransomware Attack on Milano Salon
Replies
8
Views
601
HCHTech
HCHTech
thecomputerguy
Probably one of the dumbest things I've ever heard of.
Replies
14
Views
1K
timeshifter
timeshifter
britechguy
Suggestions for a revised "Storage Topography" for a client
2
Replies
33
Views
3K
YeOldeStonecat
YeOldeStonecat
britechguy
[Solved] Bizarre Issue
Replies
6
Views
1K
GTP
GTP
Back
Top