Jump to content
Science Forums

How Do You Find Out Which Website A Computer Virus/trojan Came From?


Recommended Posts

Do you have network logs? If yes then grep, if no then, do you have a friend judge? if yes then you can get him to grant you a subpoena to get your network logs from your ISP and then grep. Much more less reliably, you could pull your browsing history and try to match the time stamps on the virus files (not that those are hard to fake or browsing history is hard to modify).

 

But let me ask you this, how do you know it was a website? Various viruses and trojans use various means of transmitting themselves, network or not, some may exploit a vulnerability or a service to get onto your machine from other places, some can come on an oem cd or an ipod or a usb thumb drive from your mate. And the ever-so-dangerous public wifi only makes it worse, because i can have a legitimate website feed you a face full of exploits, and you didnt even have to have visited it from the wifi access point. It could even be a legit-ish webiste that doesnt know its owned, that fed you the file through a flash player exploit or something... How do you know the penetration vector until you check the network logs...?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
 Share

×
×
  • Create New...