Computer Hope
Software => Computer viruses and spyware => Topic started by: montbritney on September 15, 2011, 08:20:40 AM
-
Hi, this is my first time posting on ComputerHope forum and hope someone will be able to help me out. I am beginning to study computer security and do not have much experience aside from basic knowledge such as, email and surfing the web. Currently, I am taking a class, not college, on Cybersecurity, but plan on studying IT in the future. I do have some knowledge on security, started studying for Security + certification, but realized I need more hands on help and experience. I am working on an xtra credit report for my class and am having a hard time understanding some of the terminology. So, if anyone could answer some of my questions I would appreciate it.
What does it mean, in reference to Trojan horse characteristics:
-attempts to load & execute remote code in explorer process?
-attempts to write memory location of a protected process?
-attempts to write to a memory location of a windows system process?
I'm sure I will have many more questions so if there's anyone out there who wouldn't mind guiding me along, I would be extremely thankful.
Montbritney
-
Hi and welcome to Computer Hope!
Viruses, worms, Trojans, and bots are all part of a class of software called Malware (malicious software)
I'm not an expert on this but you can see a lot of references in Google. ;)
-
Thank you for responding!!! I actually did try to Google some of them, still came up with the same terminology that I don't understand. Also, I emailed the instructor of the class I am taking and got no response, that's how I ended up here. Hopefully, someone will respond with an explanation I can understand. Thank you for the help.
-
You can try looking here (http://en.wikipedia.org/wiki/Trojan_horse_(computing)) and here. (http://antivirus.about.com/od/whatisavirus/g/trojan.htm)
-
Thank you, SuperDave for responding to my questions. I had checked out the Winipeake definition of a Trojan the other day, but the other sight gave me some additional info. I have a general understanding of Trojans such as it is a type of malicious software that a user may find desirable but the end effect is not what the bargained for. Different Trojans have different characteristics like, keystroke logging, stealing passwords and credit card numbers and hackers can gain backdoor access or remote access to your computer and use it as a bot in a DDos attack. I am still finding it hard to understand, per my extra credit report, what is meant by;
-A protected process attempted to write to the memory location of another protected process
-Attempts to write to a memory location of a protected process.
-Attempts to write to a memory location of a Windows system process
-Attempts to write to a memory location of a previously loaded process.
-Enumerates many system files and directories.
-Process attempts to call itself recursively
-Adds or modifies Internet Explorer cookies- think I understand this one..attaches a tracking cookie to your system so they can see which website a person views
-No digital signature is present
These are what I am having a hard time understanding the terminology, if I had to describe these characteristics in my own words, I can't, because I don't understand what they mean. Any suggestions are greatly welcome. Again, thank you for your help.
can gain backdoor access or remote access to your computer and use it as a bot in a DDos attack. I am still finding it hard to understand, per my extra credit report, what is meant by;
-
-A protected process attempted to write to the memory location of another protected process
-Attempts to write to a memory location of a protected process.
-Attempts to write to a memory location of a Windows system process
-Attempts to write to a memory location of a previously loaded process.
-Enumerates many system files and directories.
-Process attempts to call itself recursively
A rootkit? Not sure, wait for SuperDave. ;D
-
I will wait for SuperDave...I guess what I'm asking is how would I put all those examples of Trojan characteristics into my own words and actually understand what they mean. If anyone knows of a good website that will teach me the in and outs of computers, please let me know. I have CompTIa A+ and Security + books but need more hands on experience or how to apply it. Thank you, geek hoodlum, for your response.
Montbritney
-
If you want to learn about malware and viruses you can start here (http://www.computerhope.com/forum/index.php/topic,57605.0.html) but I should warn you it's a long drawn out process.
-
Thank you Super Dave for your suggestions. I applied to Geek University, will see if they accept me. I am willing to put in the time and effort to learn.
-
Some viruses will be triggered when you open the infected files or folder one thing that i know to avoid this and to delete malware without using an antivirus was going to the CMD prompt (http://isyan.hubpages.com/hub/Using-command-prompt-attrib-to-check-for-Viruses-or-Malware).
-
Help, I tried doing the CMD prompt results were as followed:
1- file has SHR in front
2- files have SH in front
I tried:
attrib-s-h-rautorun.inf also tried attrib-s-h-r autorun.inf got same message each time attrib-s-h-r' is not recognized as an internal or external command, operable program or batch file
What am I doing wrong? Does it mean my system is infected with malware??