[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Tools for checking for presence of adware remotely

To: "Harlan Carvey" <keydet89@xxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Tools for checking for presence of adware remotely
From: "Aditya, ALD [ Aditya Lalit Deshmukh ]" <aditya.deshmukh@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 1 Jul 2004 06:54:58 +0530

> Sure...Perl scripts.  As a security admin in an FTE
> position, I had scripts that checked all systems
> within the domain for entries in the ubiquitous 'Run'
> key, as well as for BHOs.  Easy stuff, pretty trivial, actually.

but then you would have to keep on updating your bhos and other sigs, and what 
about the spyware that when removed from the run key refuse to let the network 
connections operate? how do u take care of them ?

-aditya

ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ
éb½êÞvë"?axZÞx÷«²?Ú?Gb¶*'¡ó?[kj¯ðÃæj)mªÿr?ÿ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: Re: Re: [Full-Disclosure] Sandeep Sengupta has invited you to open a Gmail account
Next by Date: Re: [Full-Disclosure] Web sites compromised by IIS attack
Previous by thread: Re: [Full-Disclosure] Tools for checking for presence of adware remotely
Next by thread: Re: [Full-Disclosure] Tools for checking for presence of adware remotely
Index(es):
- Date
- Thread