Jump to content


Photo

Password Protection For Log Files


  • Please log in to reply
7 replies to this topic

#1 QUASARS

QUASARS

    Newbie

  • Members
  • 1 posts

Posted 17 March 2012 - 04:30 PM

I recently switched to Bitdefender and while reading forums, I have come to know that almost all of the below tools for gathering system information for some troubleshooting the issue, the logs of which are always password protected. Why is this so? Why the logs created are password protected? And how do we ensure that they don't gather any personal information or something else?


1) AVIS
2) BDIS
3) BDSysLog_i
4) BDSysLog
5) SPtool_for_scanlogs


There may be more tools which I don't know. Someone from the Technical support reply in detail. Ypu may already aware of that other security solution competitors don't protect their logs file with password.

Edited by QUASARS, 17 March 2012 - 04:33 PM.


#2 Christian

Christian

    Bitdefender Support

  • Root Admin
  • PipPipPipPipPipPip
  • 14,021 posts
  • Gender:Male
  • Location:BitDefender HQ
  • Interests:Private

Posted 17 March 2012 - 05:14 PM

Hello smile.gif

Welcome to the forums.

The password is not a secret in the industry, it's the same used for malware submission: infected

Also, your tools do not collect personal information. From tool to tool, they collect scan logs, list of active processes, startup list, list of installed programs, Bitdefender log files and some registry keys.

Also, BDSYS could also collect infected files running in memory of files that inject into other processes and they are suspect.

All these are also available in Windows and they could also be collected with any 3rd party tool.

We password protect these archives because in some cases they contain .exe files(BDSYS logs) and some web based email services do not allow to attach .exe files, even if they are located in an archive. If the archive is password protected, it could be attached and sent to us when me or one of my colleagues is asking for it during the investigation.

Let me know if you have other questions.

Take care.

#3 ONT

ONT

    Guru Poster

  • Banned
  • PipPipPipPipPipPip
  • 2,223 posts
  • Gender:Male

Posted 21 March 2012 - 10:13 PM

Hmm interesting post. I have checked the said password for above tools e.g AVIS and BDIS etc but can't open the logs.

#4 Christian

Christian

    Bitdefender Support

  • Root Admin
  • PipPipPipPipPipPip
  • 14,021 posts
  • Gender:Male
  • Location:BitDefender HQ
  • Interests:Private

Posted 21 March 2012 - 10:19 PM

Hello smile.gif

For BDSYS logs/AVIS logs, you need a special tool that is only available internally. Once loaded that, the logs can be opened in Mozilla Firefox.

You wanted to know the password for those logs, you can now open the archives to see that we do not collect personal data.

Take care.



#5 ONT

ONT

    Guru Poster

  • Banned
  • PipPipPipPipPipPip
  • 2,223 posts
  • Gender:Male

Posted 21 March 2012 - 10:48 PM

I believe that you do not collect personal data, but I want to study the logs "just for information" only. smile.gif

#6 Christian

Christian

    Bitdefender Support

  • Root Admin
  • PipPipPipPipPipPip
  • 14,021 posts
  • Gender:Male
  • Location:BitDefender HQ
  • Interests:Private

Posted 22 March 2012 - 01:18 PM

Hello smile.gif

Trust me, you won't understand them biggrin.gif

You need a training before doing that, they are not just like any other logs, just text.

These logs are only useful for our malware researchers. Using the information provided in the log, we know if the PC is infected or not.

And trust me, we can also see a rootkit in there biggrin.gif

If you think your PC is infected, you can send me the log and I will "read" it for you.

Take care.

#7 ONT

ONT

    Guru Poster

  • Banned
  • PipPipPipPipPipPip
  • 2,223 posts
  • Gender:Male

Posted 22 March 2012 - 02:16 PM

QUOTE (Christian @ Mar 22 2012, 04:18 PM) <{POST_SNAPBACK}>
Hello smile.gif

Trust me, you won't understand them biggrin.gif

You need a training before doing that, they are not just like any other logs, just text.

These logs are only useful for our malware researchers. Using the information provided in the log, we know if the PC is infected or not.

And trust me, we can also see a rootkit in there biggrin.gif

If you think your PC is infected, you can send me the log and I will "read" it for you.

Take care.



Hmm I understand. I'll definitely get your support when I suspect that my PC is infected.

#8 Christian

Christian

    Bitdefender Support

  • Root Admin
  • PipPipPipPipPipPip
  • 14,021 posts
  • Gender:Male
  • Location:BitDefender HQ
  • Interests:Private

Posted 22 March 2012 - 05:44 PM

Hi smile.gif

Yes, you can send me the log via PM and I will get back to you with an answer.

Have a great day.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users