Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Suspecious JPEG Files
Feb 06 2008 06:13AM
Geoffrey Gowey (gjgowey gmail com)
1) Install sandboxie on your system.
2) install filemon and regmon on your system
3) disconnect system from network
4) run filemon and regmon
5) run suspect program in sandbox
6) wait a little then kill, but don't delete sandbox.
Now you can look at regmon and filemon to see what the program was
[ more ]
Copyright 2010, SecurityFocus