Network Security: Detailed info on Re: strange software

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Incidents

[Top] [All Lists]

Re: strange software > winsupdater.exe

from [Jeremy Anderson] Network Security

[Permanent Link]

Subject:	Re: strange software > winsupdater.exe
Date:	Wed, 16 Mar 2005 16:11:21 -0600

On Wed, 2005-03-16 at 12:53 +1300, Nick FitzGerald wrote:


Filenames are all but totally useless for diagnosing malware, spyware 
_AND_ the normal operation of a system.


Actually, I'd say they're fairly useful, if you plug them into google.  Sites 
like iamnotageek.com have pretty good information repositories on what is 
legitimate and what is not.

a filename is no substitute for actual forensic analysis, but it can give you a 
good leg up on many, many pieces of spyware and malware.
-- 
Jeremy Anderson         Author, MultiTool Linux
http://www.angelar.com/~jeremy    jeremy@angelar.com
http://search.barnesandnoble.com/booksearch/isbnInquiry.asp?userid=UG0uEnaAUk&isbn=0201734206&itm=8

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
strange software > winsupdater.exe, SDA Re: strange software > winsupdater.exe, Nick FitzGerald Re: strange software > winsupdater.exe, Justin Re: strange software > winsupdater.exe, Jeremy Anderson <= Re: strange software > winsupdater.exe, Nick FitzGerald Re: strange software > winsupdater.exe, Paul Laudanski Pubstro rash, David Gillett Re: Pubstro rash, Mark Coleman RE: Pubstro rash, Steve Drees RE: Pubstro rash, Alexandre Skyrme Re: Pubstro rash, Jeff Kell RE: Pubstro rash, David Gillett Re: strange software > winsupdater.exe, Mike Barushok Re: strange software > winsupdater.exe, Harlan Carvey

Previous by Date:	Re: strange software > winsupdater.exe, Justin
Next by Date:	Re: strange software > winsupdater.exe, Harlan Carvey
Previous by Thread:	Re: strange software > winsupdater.exe, Justin
Next by Thread:	Re: strange software > winsupdater.exe, Nick FitzGerald
Indexes:	[Date] [Thread] [Top] [All Lists]