6 Replies Latest reply: Jan 3, 2011 6:55 AM by mjmurra RSS

    Autorun.inf - is the target file checked?


      I often have malicious Autorun.inf files on USB drives that clients connect to machines. GetSusp is pretty good at flagging that they exist and noting them as suspicious, but I don't think the file that the Autorun.inf points to for the Autorun is checked.


      Is this location checked by Getsusp? If not, could it be considered as a FMR?