There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
 
Tag Cloud
acer black screen blue screen boot computer connection crash css dell drive driver drivers email error ethernet excel explorer firefox firefox 3 freeze hard drive internet internet explorer itunes laptop linux malware monitor network networking outlook outlook 2003 outlook express password printer problem problems ram router security slow software sound trojan usb virus vista windows windows xp wireless
General Security
Search
Search in:
 
Advanced Search
Tech Support Guy Forums > Security & Malware Removal > General Security >
How to construct a Baseline?


HELLO AND WELCOME! Before you can post your question, you'll have to register -- it's completely free! Click here to join today! We highly recommend that you print a copy of our Guide for New Members. Enjoy!

Closed Thread
 
Thread Tools
lunarlander's Avatar
Computer Specs
Senior Member with 829 posts.
  
Join Date: Sep 2007
22-Jun-2008, 11:08 AM #1
Question How to construct a Baseline?
Hi,

I am wondering how what you folks use to construct a baseline so as to detect if you've been hacked. I am currently using HijackThis to save a hijack log and a startup list. And am also using MsInfo to export a pc configuration txt file. I am thinking of using SysInternal's RootkitRevealer to save a log too. Is this any good?

I'm assuming that any keylogger and hacker's monitoring tools needs to start up when I login somehow and that is covered by HijackThis's monitoring of startup points in the system. If the hacking tool is a driver, then a diff with MsInfo logs will catch those. And Rootkits will show up on RootKitRevealer.

Does this combination capture enough info to form a baseline ? What do you guys use?
Last edited by lunarlander : 22-Jun-2008 12:11 PM.
lunarlander's Avatar
Computer Specs
Senior Member with 829 posts.
  
Join Date: Sep 2007
26-Jun-2008, 04:22 PM #2
So nobody does baselines?
lunarlander's Avatar
Computer Specs
Senior Member with 829 posts.
  
Join Date: Sep 2007
03-Jul-2008, 07:07 PM #3
bump
Closed Thread

THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

« Previous Thread | General Security | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
WELCOME TO TECH SUPPORT GUY! Are you looking for the solution to your computer problem? Join our site today to ask your question -- for free! Our site is run completely by volunteers who help people like you solve computer problems. See our Welcome Guide to get started.



Thread Tools


Related Sites: 56k Dial-Up | Tech Gift Ideas | Mobile TechGuy | Advertise on TSG
Contact Us - HelpOnThe.Net - Archive - Terms of Service - Top
You Are Using:
Server ID
Advertisements do not imply our endorsement of that product or service.
All times are GMT -4. The time now is 09:03 PM.
Copyright © 1996 - 2008 TechGuy, Inc. All rights reserved.
Powered by vBulletin, Copyright © 2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.1.0
Powered by Cermak Technologies, Inc.