Re: Detecting spy software

From: Kent W. England [MVP] (kwe@mvps.org)
Date: 06/09/02

• Next message: Justin: "Re: Password on a file"
• Previous message: Ben West: "Re: how to get rid of the "password prompt" on Win 98"
• In reply to: Dolly Jack: "Detecting spy software"
• Next in thread: Rupam Phukan: "Re: Detecting spy software"
• Reply: Rupam Phukan: "Re: Detecting spy software"
• Reply: DevilsPGD: "Re: Detecting spy software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Kent W. England [MVP]" <kwe@mvps.org>
Date: Sat, 8 Jun 2002 17:38:42 -0700

Install ZoneAlarm free or Pro and watch the processes that ask for
connectivity to the outside, particularly asking to run as a server. Run
msconfig.exe and see what starts at boot and logon. Run Task Manager and
look for odd processes. Install Active Ports and see what processes are
listening on which ports, but if the spyware is clever it will use
svchost.exe to run so you won't be able to distinguish it from all the
MS .dlls that run under svchost.exe. Still, look for the odd ports
listening, since that is the preferred method for spyware/sneakware to
contact secret parties.

--
Kent W. England, MS MVP for Windows XP
(Please respond only in the newsgroup)
Dolly Jack <shadowdancer35@hotmail.com> posted the following:
> If you suspect that someone might have had access to your
> computer and installed spy software in order to read your
> mail and messaging, by maybe getting your passwords, or
> however it works, how do you go in and locate the program
> and uninstall it?  Sure hope someone out there can answer
> this question, so I can figure out if something is going
> on, or I'm extrememly paranoid.
>
> Thanks

---

• Next message: Justin: "Re: Password on a file"
• Previous message: Ben West: "Re: how to get rid of the "password prompt" on Win 98"
• In reply to: Dolly Jack: "Detecting spy software"
• Next in thread: Rupam Phukan: "Re: Detecting spy software"
• Reply: Rupam Phukan: "Re: Detecting spy software"
• Reply: DevilsPGD: "Re: Detecting spy software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: subversion on FreeBSD 4.10 ... I've upgraded all the ports including perl. ... # CFLAGS controls the compiler settings used when compiling C code. ... # or supported for compiling the world or the kernel - please revert any ... # To avoid running MAKEDEV all on /dev during install: ... (freebsd-questions) Re: newest PHP port upgrade broke php5-mbstring-5.0.1 ? ... # CFLAGS controls the compiler settings used when compiling C code. ... # or supported for compiling the world or the kernel - please revert any ... # certain ports. ... # To avoid running MAKEDEV all on /dev during install: ... (freebsd-questions) Re: External drives not installing or working properly on USB ... Tne one thing you could try doing is a repair install of XP ... Only one of the five host controllers is connected to the 6 ... As you have 5 host ports, ... operating system to recognise the four additional 'drives'. ... (microsoft.public.windowsxp.general) Re: Packages available for different FreeBSD versions ... When I install FreeBSD, I am installing a "core operating system version ... Then I may choose to install the "ports" as either ... (freebsd-questions) Re: mfi freebsd7 ... i did update my ports and install the 1.01.40 version... ... A RAID1 config shoudl suit a busy webserver well. ... To unsubscribe, send any mail to ... (freebsd-questions)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)