Sign in to follow this  
Followers 0
MariusN

Monitoring a exe file loaded via IE or FF?

6 posts in this topic

Does anyone know what function a guy can use to monitor "auto load" exe's when opening a webpage? Thing is, there are so many viruses on Facebook, i was thinking of compiling a script that can run in the background, and as soon as a file wants to install itself, the program/script will "detect" it...Any ideas?

Share this post


Link to post
Share on other sites



Does anyone know what function a guy can use to monitor "auto load" exe's when opening a webpage? Thing is, there are so many viruses on Facebook, i was thinking of compiling a script that can run in the background, and as soon as a file wants to install itself, the program/script will "detect" it...Any ideas?

How about changing your browser's security settings, or using a better browser?

William

Share this post


Link to post
Share on other sites

Its not for me..i'm 100% protected, but i would like to help some folks on FB as it seems that place is full of viruses. This way, they can at least "terminate" the virus if it wants to download...geez, it can save them mega bugs.

Share this post


Link to post
Share on other sites

Hello.

I think this very complicated thing monitoring drive by download etc.

It dependns on vuln for ex: buffer overflow in client application or vulnerable plugin for ex.

1)Keep up2date your applications

2)I think easy way to protect self from such attacks using Sandboxie.

So if you are using Sandboxie and say your browser vulnerable and exploitable- troyan,virii etc. can not infect your system.Because all threads staring from Sandboxie is virtual.


[size="5"] [/size]

Share this post


Link to post
Share on other sites

mmm...I think i'm getting somewhere...will keep you posted ;)

Share this post


Link to post
Share on other sites

mmm...I think i'm getting somewhere...will keep you posted :)

Nope...no luck. I think ill have to work with the user32 as well as the Windows API functions ;)

(Still a bit rusty on the API though)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0