Tech Support Forum banner
Status
Not open for further replies.
1 - 1 of 1 Posts

·
Registered
Joined
·
2 Posts
Discussion Starter · #1 · (Edited)
Hi, I have a program written by a friend (from an IRC channel) that I think is trustworthy, but another friend is convinced that there is a rootkit/backdoor in it. I have scanned with everything imaginable (notable ones are RootkitRevealer, Blacklight and Avast Antirootkit), my antivirus is up to date and I find nothing, I have also uploaded the file to Virus Total and it was found clean. There is nothing odd in my HJT log, but I still wonder if there is a keylogger that runs within the program that sends anything back through the IRC protocol (it is a tool for use on the network) or if it gives file sharing access through the protocol on command.

What I want to know is if there is there something I can run with this program (or run the program within) that will list all the stuff it is trying to do to my PC, that will list what other programs/windows services it interacts with if any, I don't know where to begin looking for something like this. (I'm not looking for a packet sniffer for traffic, I have already looked over the traffic it sends/receives) I don't know if this is the appropriate place to ask, but I figure it is security related.

I would like to believe that my friend is trustworthy and the program does nothing malicious, but I need to confirm this.
 
1 - 1 of 1 Posts
Status
Not open for further replies.
Top