Joined: 19 Jan 2004
Location: N 5.43564° E 100.3091°
A Useful Tool:Dependency Walker 2.2
Dependency Walker is a free utility that scans any 32-bit or 64-bit Windows module (exe, dll, ocx, sys, etc.) and builds a hierarchical tree diagram of all dependent modules. For each module found, it lists all the functions that are exported by that module, and which of those functions are actually being called by other modules. Another view displays the minimum set of required files, along with detailed information about each file including a full path to the file, base address, version numbers, machine type, debug information, and more.
Used this tool and a hex editor with DMA to track down my first trojan in windows 2K pro --ahh, the bad old days. That was the same year I learned how to uninstall (forcibly) Messenger and oddly had Windows 2K P installed after all that for over a year without issue before moving to XP and Ubuntu.
The trojan in question like to use frees pace and registry keys to hide and operate. Depends rocks.
Thnx yeohhs (had some of your example apps from way back too --nice).
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You can attach files in this forum You can download files in this forum