NSI's Forenisic Incident response tool will scan your network and can determine
if your systems have been compromised, tell you specifically which ones need to
be removed and cleaned and will show you the specific malware we found on the computer
and if you wish, can demonstrate exactly what the malware does.
- specifically look for tools that ex-filtrate data
- locate malicious files, by searching for embedded terms, located with the malicious binary
- extract only those portions of the logs, which document a successful connections by the intruder
- locate Backdoor Trojans and other malicious files
- obtain previous Internet History of each user profile, for further examination
- document the last time and date a potentially malicious file was executed on the file system