bindfile.exe

From: Matthew Lederman (lederman@panix.com)
Date: 06/21/02

• Next message: Martin Ireland: "Re: email extensions to block list?"
• Previous message: Vojislav Ristivojevic: "key conversion"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: lederman@panix.com (Matthew Lederman)
Date: 21 Jun 2002 13:38:11 -0700

I found a program called bindfile.exe installed (recently) in the
winnt/system32 directory of one our NT 4.0 servers. It was also
running on startup. I can find no documentation (indeed a google
seach turns up virtually nothing) and I suspect that someone here
downloaded something they weren't supposed to and was just unable to
get rid of it. However, this is just a guess. I did delete it from
the drive and the registry even though I couldn't determine what, if
anything, it was doing. There is a bindfile.dll that is part of NT
which seemed to make the choice of name suspicious.

Does anyone have any ideas? Could it be malicious? Any info would be
appreciated.

Thanks.

-Matt

---

• Next message: Martin Ireland: "Re: email extensions to block list?"
• Previous message: Vojislav Ristivojevic: "key conversion"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)