|
|
#1
February 9th, 2003, 07:51 PM
|
|||
|
|||
complete loading methods via regsitry??
Hi..can anybody tell me the complete loading methods of malicious programs with windows using registry??
i know most of them..like run/run services,opening with exe files..but i have heard that sub seven and some other trojans use some very unknown methods..can anyone help?? |
|
#2
February 9th, 2003, 09:40 PM
|
||||
|
||||
|
Re:complete loading methods via regsitry??
Hi. I'm certainly not an expert in this area, but if I'm not mistaken, there are many, many ways malware uses the registry and even autoexec.bat, sys.ini, and other system files.
That is why we need security software, because a lot of work going into trying to find the registy and system file entries. You are right in naming some of the most common, but if you are looking for a manual way of detecting any and all viruses, trojans, keyloggers, dialers, etc, it sure would seem to be a daunting task to me. If I could suggest a small, free program called system safety monitor. It monitors the execution of any and all files, can watch registry changes, and really is an addition to ones safety arsenal. You can find it here. http://maxcomputing.narod.ru/ssme.html?lang=en It's really a slow site, but its a small program. Max, the developer, is a great guy and will help with any questions/problems you might have.
__________________
"There is a principle which is a bar against all information, which is proof against all arguments and which cannot fail to keep a man (and a woman) in everlasting igonorance- that principle is: Contempt prior to Investigation." -Herbert Spencer |
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
