You're right. A spyware program isn't detectable except when it's communicating information to its owner. And then it would be detectable by an IDS or packet scanner, not a vulnerability checker (unless it is listening on a port like a server as well).
What you really really want is an Ad-Aware or PestPatrol that can be centrally deployed and managed, similar to the way corporate AV software works. Or an AV program that is as functional against spy/mal/trojan-ware as it is against viruses. Most AV s/w recognizes dangerous trojans but I know of none that flag spyware. Carl -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of George Stone Sent: Thursday, September 12, 2002 4:50 PM To: [EMAIL PROTECTED] Subject: Hotbar.com Hotbar.com has an installer that allows extra garbage (pictures, animations, etc.) in e-mail and has an unwanted side effect of installing spyware and repeater programs (unsure of exact details at this time) under Windows. Does anyone know if Nessus can detect such spyware and repeater programs courtesy of hotbar.com? I'm thinking that a Windows scanner residing on the host to be scanned would be needed. Any clarification would be appreciated. Thanks. -- George - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body. - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
