Full Disclosure mailing list archives

Re: Tools for checking for presence of adware remotely

From: "Aditya, ALD [ Aditya Lalit Deshmukh ]" <aditya.deshmukh () online gateway technolabs net>
Date: Thu, 1 Jul 2004 06:50:57 +0530

Sure...Perl scripts.  As a security admin in an FTE
position, I had scripts that checked all systems
within the domain for entries in the ubiquitous 'Run'
key, as well as for BHOs.  Easy stuff, pretty trivial, actually.


but then you would have to keep on updating your bhos and other sigs, and what about the spyware that when removed from 
the run key refuse to let the network connections operate? how do u take care of them ?

-aditya
ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ
éb½êÞvë"axZÞx÷«²ÚGb¶*'¡ó[kj¯ðÃæj)mªÿrÿ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Tools for checking for presence of adware remotely Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)
- Re: Tools for checking for presence of adware remotely Harlan Carvey (Jun 30)
  - Re: Tools for checking for presence of adware remotely Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)
    - Re: Tools for checking for presence of adware remotely Harlan Carvey (Jul 01)
- <Possible follow-ups>
- Re: Tools for checking for presence of adware remotely Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)
- Re: Tools for checking for presence of adware remotely Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)