HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 30 guests online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Malwarearrow Messbots.exe ???
Ethical Hacker Community Forums
December 02, 2008, 03:12:13 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Messbots.exe ???  (Read 1629 times)
0 Members and 1 Guest are viewing this topic.
nubie
Newbie
*
Offline Offline

Posts: 6


View Profile
« on: July 04, 2008, 05:38:15 AM »
Hi guys, sorry for disturbing your time, can i get some explanation
about file Messbots.exe is this file like a malware or what? cause i had googling and found that this file is unknown about safe or not.
Thank's a lot to this Forum.
 Smiley
Logged
jimbob
Sr. Member
****
Offline Offline

Posts: 313



View Profile WWW
« Reply #1 on: July 04, 2008, 08:35:41 AM »
Hi,
It is not wise to judge whether an executable file is malware based on the filename. Most malware chooses either a random name or names itself to look harmless.

You can upload a file to http://www.virustotal.com/ where it will be checked against a number of different AV scanners and report the results. Don't think for one minute that if virus total doesn't flag it as malware that it isn't, there's lots of nasty stuff out there with no AV signature to detect it.

Where did you get the file and from whom? What is it supposed to do? Does whatever it's supposed to do warrent the risk of running the file? If you are just curious as to what it does it's probably best just to delete the file.

Jimbob
Logged
RoleReversal
Sr. Member
****
Offline Offline

Posts: 469


View Profile WWW
« Reply #2 on: July 04, 2008, 10:44:30 AM »
Nubie,

Jimbob's advise is good, if VirusTotal shows the file to be malicious you can submit the file to a sandbox (e.g. Norman Sandbox) to get a better idea about what the code does, which can be especially useful if you have already executed the .exe

Either way if you find anything maliciuos if you are able/willing consider uploading the file to Offensive Computing.

Let us know what you find,
RR
Logged
A little bit of sanity:
http://www.infosanity.co.uk
nubie
Newbie
*
Offline Offline

Posts: 6


View Profile
« Reply #3 on: July 05, 2008, 12:05:11 AM »
Thank's a lot for all your replies and advices, it's very help me and i don't
know anyone give that .exe file to me cause when i checked my linux pc that file is in my folder, by the way i will try to upload that file in virustotal.
Thank you so much guys.
 Smiley
Logged
shakuni
Jr. Member
**
Offline Offline

Posts: 78


View Profile
« Reply #4 on: July 05, 2008, 06:13:06 AM »
Post its md5 if you can.
Thanks
Logged
There is no rule, law or tradition that apply universally... including this one.
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.051 seconds with 23 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
During the most recent election, I:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.