Ever few weeks, I see some post about people asking for service scanners and vulnerability scanners.
Well, I found one. Its called "Service Spy" and its a command-line utility, and it will scan for any application servers, or common services running on your computer. It has good reporting, and a generally great utility. I recommend it for everyone who uses Windows NT/2K/XP.
and in a couple of days you'll see the question asked again. this post can stll be on the main page and yet the question will be asked...go figure. for the first month or so when i first started posting here i would do a few different serchs to make sure i wasn't duplicating.
but thanks for the info ill check it out.
February 23rd, 2003, 09:20 PM
very interesting too bad it grabbed my passwords and checked all my mail accounts for address no doubt.
if anybody gets a file attachment from me dont open it!
it hasn't set norton off though so i dont know what its up to.
guess im just going to have to ask Howard Piland.
February 23rd, 2003, 10:52 PM
Check your fire-wall logs for any information that it sent out. If you DO see anything, of course, I'd suggest change your PWs.
BTW, I originally found this download at CNet's Download.com
February 24th, 2003, 12:43 AM
no **** sherlock thanks allot. i had a sniffer operating to see what it did...and thats what it did.
its a perl script made executable using an apparantly licensed version of perl2exe from indigo star
February 24th, 2003, 01:19 AM
Hey, atleast we're civil, right? ::Grins:: Sorry if the advice seemed kind of obvious, but you did sound confused in your last post. I apologize if I upset you..
February 24th, 2003, 01:24 AM
im not upset.im just going to track this MF down then break his fingers.
if i sounded confused it was because me gf wanted to go out right after this happened.
just for grins and giggles i ran it again and it tried to access my email again using outlook which i dont have running. i think it might be right nice if you deleted that link.
February 24th, 2003, 02:23 AM
Uh, let me get this straight -- is this a verified password stealer? If it is, sorry for the redundancy--and please remove this thread. It just seems like Download.Com would check out the software first, not only with virus scanners. If they don't, it's no real news, but it's slightly surprising.
February 24th, 2003, 03:21 AM
no it isnt a verified password stealer yet. the sniffer i was trying out only picks up incoming packets such as the those returned from my pop accounts and my im. it opened and read my mail and then sent something. ill know more tomorrow when i set up a computer with ethereal and a mail account just for this purpose.
heres the contents from a few of the packets:
+OK POP3 server ready <email@example.com>
From: Red Hat Network Alert <firstname.lastname@example.org>
+OK Microsoft Exchange 2000 POP3 server version 6.0.6249.0 (xxxxxxxxxxxxxx.COM) ready.
February 24th, 2003, 05:22 AM
Okay, thanks for all of the information! If I get a chance I'll try to inspect the program a little, but the way things are going I might not get to it anytime soon. I guess it lives up to its name, heh