The complete windows trojan paper

not sure if this has been posted before but here it is for those who may not have seen it.

 

Setiri breaches firewalls with ease

another good reason to avoid IE and run intrusion detection software

 

Very good link to warn ignorant users for the many risks on the internet.

After reading several security forums/websites for more than a year, this website is of course old news for me and I follow all these preventing advices for quite some time and with very good results.
I don't follow always the advices for softwares, because my computer is too small to run all these softwares.
I consider myself as the best protection.

Security softwares and malware have one thing in common, they make your computer VERY SLOOOW. Isn't that funny ?

 

Wow, long read. I think it's just more efficient use of my time to go buy PG,RD,Online Armor, KAV,ZA Pro, Ewido, BOclean.

 

I don't read 8 hours a day. I read when I have time enough.

You have quite an expensive security set, must be at least $260.00 worth + yearly fees for updatings.
I paid $0.00 and I have the same thing like you : a malware free computer.

That's the difference between reading and buying.

 

Here is another long read. It should give a good idea of exactly how many trojans are out there:

http://www.simovits.com/trojans/trojans_files.html

 

Quite a list. I count them later.

 

WOW!!! That was a long read, but worth it for all the extra info and links. Cheers Toploader, i owe you a beer!! T

 

cheers Tom - the guy who wrote it certainly did a good job - must have taken him ages - i think we owe him one too

 

thanks Starrob - that was a cool read - it's like the telephone directory for trojans.

 

Thanks for the link.

6.How Can I Get Infected?
6.1 ICQ - I don't use ICQ
6.2 IRC - I don't use IRC anymore
6.3 Attachments - I ignore and delete spam-emails
6.4 Physical Access - not possible at home
6.5 Browser And E-mail Software Bugs - Firefox and Thunderbird + carefull behaviour.
6.6 Netbios(FileSharing) - not needed.

I take my chances and won't install any additional AT scanner on my computer, than I already have.
I'm not a security freak and my computer isn't a very interesting target.

 

There is one additional and one of the most common ways that a trojan can be installed and that can be found here:

https://www.wilderssecurity.com/showthread.php?t=94927

 

Total cost for a good security setup is probably less than $150 (yearly dues proabbly around $80). This amounts to about 2.5 hours of an average persons time. Give or take an hour or two a year. One read of the two articles in this thread (which offer zero protection, just good knowledge) costs more than that in time. It depends upon how one values one's time. Today I spent two hours in the park which probably means more to me than the dozens of articles and books I can read on this subject and the hundreds of hours I would spend reading them. Agreed, at the end, the result is the same. It is simply the road that is different.

Rich

 

If you are talking about downloading softwares from websites, than you are very right, but after my newbie time I changed alot of habits and I became smarter of course.

Application softwares :
I always buy application software on CD in Belgium.

Security softwares :
I always download freewares from the original homepage and only freewares that are approved by security forums.

Other softwares :
I have all the software I need and I'm not that curious anymore.
If I need another software, I will ask about it in a security forum first.

In my newbie time, I didn't care because I didn't know.
So I had my fun with P2P, freewares, cracks, serials, illegal software sites, porn, free lottos, chatting, etc., until my computer was so infected, that nothing worked properly anymore.
So I learned it the hard way until I joined forums, like SWI and Wilders of course.
But those days are over and unfortunately also the FUN is over, because I can't do the same things anymore like I did in my newbie time and my security set (= freewares) isn't that good to make that possible.

 

here's a faq on keeping those pesky trojans from sneaking into your ports

http://www.chebucto.ns.ca/~rakerman/trojan-port-table.html

 

and a short summary of the different categories of trojan

 

meanwhile behind the chintz curtains of the cosy spotless screensavers of suburbia a titanic battle rages between the darkside and the forces of light - the question on the lips of all jedi is can rootkit revealer prevent the most dangerous trojan kit on the internet - hacker defender from taking over the world and if not will icesword ride to the rescue?

do not logon to the net until the outcome is revealed - resistance is FUTILE!

 

IceSword wielded to great effect as hacker defender cries uncle (as long as you can speak chinese)

And now IceSword speaks!

but the battle has only just begun ladies and gentlemen even as we speak the massed armies of Hacker Defender gather on the ethereal plane for an ALL OUT ASSAULT ON CIVILISATION!!

popcorn available in the foyer - no cameras in the auditorium please

Hacker Defender played by Russell Crowe and IceSword played by Michelle Yeoh

 

Wow, you expect me to become an expert on operating systems, and read and memorise every malware on the planet that has ever existed?

Er. I must side with Richrf here is just easier, KAV or any other antivirus/trojan is just easier

 

I only read security websites/forums to know what is going on in the security world.
I prefer to watch the wood, rather than drowning in details.
I'm waiting for new ideas, that will change the security world drastic, because the actual solutions don't have a future and have too many problems IMO.
Another firewall or scanner and even IPS doesn't interest me.

I'm also here to see how good or bad softwares are for IGNORANT users.
I'm also very interested how adware will evolve in the future, because adware is the real problem, not spyware.
Meanwhile I participate in the discussions at Wilders, but that's fun and doesn't change anything.

 

You might have a long wait. There appears to be a lot of money involved in keeping things much the way they are now.

Just like people know it would be a good idea to develop alternate energy sources. It is a great idea.....except so much money is invested in oil and gas exploration that it is likely that it will be quite some time before other viable energy sources will be developed that takes better care of the world's energy needs.

As for computer security....it is all a individual need. Everyone's needs and requirements are different.

People are not necesarrily smarter or dumber because they use or don't use software in their security set-up. There are many other factors that are involved.


Starrob

 

Those new ideas are already there, maybe not perfect yet, but certainly a total different approach compared with definition-based security.

1. ShadowSurfer/ShadowUser allows you to surf on the net and try softwares without getting malwares.

2. SecureOL is also interesting, but is still in beta.

 

Different approach but may not be applicable for some people.


Starrob

 

I have used Secureol's VE2, and it seems to be working very well now.
I read in their forums that a LITE version is coming out soon - for regular users.

I found it in download.com - http://www.download.com/VE2/3000-2653_4-10426897.html