/* Javascripts ----------------------------------------------- */ /* * * * * * * BODY * * * * * * * ----------------------------------------------- */

Note that the title of most blog entries provides a link to the relevant document.

Friday, November 11, 2005

Mark's Sysinternals Blog (#2)

Second article by Mark Russinovich on Sony DRM Rootkit code is titled:"More on Sony: Dangerous Decloaking Patch, EULAs and Phoning Home". In the article, Mark looks at Sony's first attempt at an uninstall functionality. He points out that the way that the drivers load and system call hook and are later unloaded opens up a timing window. Also, he detects that the Sony code is transmitting play information to a Sony website whenever a copy protected CD of theirs is played.

[+/-] show/hide this post

1 Comments:

Anonymous Anonymous said...

That's a great story. Waiting for more. »

3:57 PM  

Post a Comment

Links to this post:

Create a Link

<< Home