| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <1103881034.7763.2.camel@gibson> From: barrie at reboot-robot.net (Barrie Dempster) Subject: List of worm and trojan files On Thu, 2004-12-23 at 21:22 -0500, Carilda A Thomas wrote: <snip> > Task manager is also > destroyed, so there is no help there. <snip> Try using filemon, regmon, pstools and tcpview from www.sysinternals.com. As long as the attacker hasn't hijacked any system calls this should provide enough information to at least recognise a rogue program. With Regards.. Barrie Dempster (zeedo) - Fortiter et Strenue http://www.bsrf.org.uk [ gpg --recv-keys --keyserver www.keyserver.net 0x96025FD0 ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20041224/4984bbbd/attachment.bin
Powered by blists - more mailing lists