Cyber Security Technologies Corporation (CST) is the innovation leader in affordable software products for computer investigations. CST was formed by industry veterans who see the need for new investigative tools designed for the changing investigative environment. We are dedicated to delivering technically advanced but easy-to-use software products for corporations, government agencies, service providers and law enforcement, as well as related training and certification. CST is an affiliate of Architecture Technology Corporation, a technology company specializing in software-intensive solutions for complex problems in IT security and high-security network computing applications. Learn more...
Miller immediately notices something out of the ordinary. One of the running processes on the target is WINWORD.EXE, the executable name for Microsoft Word. This is odd, because the standard company document editor is Word Perfect. Wallace would have had to specifically install Microsoft Word on his computer in order for it to appear as a running process. Miller decides to examine the process WINWORD.EXE in detail. By clicking on a process name in the running process table, he can get more information about that process, as shown in Figure 11. This information includes the owner, open network ports, running threads, open DLLs and open handles.
Figure 11 - Detailed Process Information (WINWORD.EXE)
