-
August 3rd, 2005, 07:15 AM
#1
Member
initial investigation of suspected compromised Windows system
hi
so right now i have a Windows 2K/XP computer which i suspect that is compromised. There is possibility that rootkits are being installed and so i have to investigate using clean tools.
Just wondering, how would u go about doing an initial investigation on this machine like dumping the network connections, memory, processes, etc ? Using Live CDs??
thanks
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|