Good Trojan? - Chicagoland Sportbikes
Chicagoland Sportbikes
 
Geek Squad to the rescue! fucken computer crashing on you again? another porn site infected your computer? tierd of your wife seeing your anal fisting videos and want to lock her out of the external HD? get the answers you need from our local computer experts.

 
LinkBack Thread Tools Display Modes
post #1 of 3 (permalink) Old 05-18-2006, 03:25 PM Thread Starter
King Nothing


 
Kegger's Avatar
 
Join Date: Nov 2004
Location: Ur Moms House
Posts: 17,944
Location: Ur Moms House
Sportbike: I ride Ur Mom
Years Riding: As long as Ive known Ur Mom
How you found us: u found me
           
Good Trojan?



MAY 16, 2006 | Here's a first: a Trojan horse that actually helps security pros do their jobs.

Analysts at SophosLabs, the research arm of antivirus software vendor Sophos, have discovered a spyware-borne Trojan, dubbed Troj/Erazer-A, that seeks out and destroys movie and music files that it suspects to be illegal copies transmitted via peer-to-peer (P2P) file sharing networks.

The Trojan looks through P2P file sharing folders, seeking out formats such as AVI, MP3, MPEG, WMV, GIF, and ZIP. When it finds these files, it wipes them out and places a copy of itself in the folder, using tempting names such as game.exe, goporn.exe, nero7.exe, and officexpcrack.exe, according to Sophos.

Researchers say that, while some IT departments may be tempted to keep a Trojan that deletes files enterprise users aren't supposed to have anyway, they should think twice.

"The Erazer Trojan is a vigilante worthy of a Charles Bronson movie, taking the law into its own hands. However, it's perfectly possible for the Trojan to aim poorly and wipe out innocent files, too," says Graham Cluley, senior technology consultant at Sophos. "Malware is not the way to fight Internet piracy."

Trojan Erazer could be dangerous because it tries to turn off antivirus applications and other security tools, the researchers observed, noting that its methods are worrisome because it deletes files, steals information, adds itself to the registry, and then drops more malware on the target system.

Still, other security monitoring groups consider the risk to be negligible. The French Security Incident Response Team (FrSIRT) ranked Trojan as "low risk," its lowest incident rating.

P2P, by contrast, continues to be a growing threat to enterprise security. Reconnex, a risk management company, reported that it found P2P protocols in 78 percent of enterprises during the first quarter of 2006, compared with 35 percent in all of 2005. (See Reconnex Targets Threats.)

Trojan/Erazer can be removed with most Windows anti-virus tools, using the same practices used for any other virus, experts said.

"When in doubt, use full throttle. It may not improve your situation, but it will end the suspense."
Kegger is offline  
Sponsored Links
Advertisement
 
post #2 of 3 (permalink) Old 05-18-2006, 03:30 PM
that punk kid
 
AdrenalinJunkie's Avatar
 
Join Date: Sep 2005
Location: Hinsdale, IL
Posts: 1,005
Location: Hinsdale, IL
Sportbike: '05 ZX-6R (636)
Years Riding: 1
How you found us: Friend
           
Send a message via AIM to AdrenalinJunkie Send a message via Skype™ to AdrenalinJunkie
thanks, i'll start using this in my office. Block all apps, let me remote control all of them. Rock on!

Adrenalin Junkie
- '05 Suzuki GSXR 1000
- ** retired ** '05 Kawasaki ZX-6R
- NESBA "A" #616
- Founder/President - Creatix, Inc.
- Founder - BartendChicago - BartendChicago.com

Wikipedia - Adrenaline Junkie - An adrenaline junkie is somebody who feels as if they are addicted to adrenaline. Adrenaline junkies may enjoy competing in extreme sports like skydiving, surfing, motorcycle racing, or anything else that gets their heart rate up. This sort of addiction is brought on by enjoying the (adrenaline) "rush" gained from these activities.
AdrenalinJunkie is offline  
post #3 of 3 (permalink) Old 05-19-2006, 04:34 PM
 
Join Date: Apr 2002
Posts: 6,882
           
Quote:
Originally Posted by AdrenalinJunkie
thanks, i'll start using this in my office. Block all apps, let me remote control all of them. Rock on!
Oh there's much better toys to do that. Strange file. Seems a little oxymoronic to me? Sub one illegal act with another, unless it's just a vigilante act from someone on the MPAA or RIAA side
BIGGY is offline  
Reply

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the Chicagoland Sportbikes forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome