I'm working with the owner of the firm where I work to track down the source of "DO_NOT_TRUST_FiddlerRoot" certificates that keep accumulating in his Personal cert store. We've also identified the "DO_NOT_TRUST_FiddlerRoot" dummy CA cert in his "Trusted Root Certification Authorities" store. We've been able to confirm that he does not have the Fiddler application installed on this computer. We've also been unable to find any of the FiddlerCore DLLs on his hard drives. Which leads me to believe that the FiddlerCore DLL has been merged into a stand-alone executable by using something like ILMerge.
We have a general idea of when the dummy CA cert was created, so we're starting to look at applications (particularly applications in the system's Startup folders) which were installed right about that time. But the question for the forum: is there any quick or easy way to identify which applications may have the FiddlerCore engine embedded in them?
Thanks in advance for any advice, suggestions!
We have a general idea of when the dummy CA cert was created, so we're starting to look at applications (particularly applications in the system's Startup folders) which were installed right about that time. But the question for the forum: is there any quick or easy way to identify which applications may have the FiddlerCore engine embedded in them?
Thanks in advance for any advice, suggestions!