Free PC Security

This blog has moved to http://freepcsecurity.co.uk

  • blogging-mentor-award

    Click here to join FreePCSecurity
    Click to join
    FreePCSecurity

    Download May 2008 Bloghology

    WOT Logo

    Award by Hanna

    Bloggers of the World

    Get your own free Blogoversary button!

  • Archives


  • Our Reviews
    "I can't find a the perfect word to attach to this website's image because it is out of this world. No matter what type of Computer Security System you are interested in, you'll find help and quality content here. The content is awsome, well displayed and well arranged. The menu and speed is excellent. Navigation, Response and Relevance are also the best of the best. I don't even have to mention the Links because i must admit that i have never seen any better. I will let other people say more or invent other words because it really does suit it! Keep doing what you are doing now because you are exactly on the right path! Thanks for sharing! BOOKMARKED!"

    Ove
    squidoo.com/hardware-core
    Get your own reviews, free traffic at

    Our Reviews
    "Great initiative. Will be very usefull to many PC users at home and in business."

    M.
    tnsbelgium.com
    Get your own reviews, free traffic at

    Page copy protected against web site content infringement by Copyscape
    Photo Sharing and Video Hosting at Photobucket
    Blogging Den 2

  • Click here

    Internet Blogs - Blog Top Sites
    Register for a skinnyscore at www.blogskinny.com and increase traffic
    get a free page counter with chart at www.blogskinny.com

    like what you've read, click here to give this author a higher rating at blogskinny.com

Archive for the ‘file-sharing’ Category

Encryption And Making Your System Secure

Posted by cotojo on April 25, 2007

What does encryption do for me?
Encryption and cryptographic software has been used in many
different ways to make systems more secure.  This article discusses
only a few ways that such software can make your system more secure,
including:  

1) Encrypting your email  

2) Encrypting your files

Two programs are mentioned that will help encrypt information. There
are many more programs out there that will help, but these programs
are good and a good place to start as any. They have the added
benefit of both being free with source code available. 

Will encryption stop people from accessing my information? 
Encryption simply makes it harder for people to gain access to
important information, like passwords or sensitive information in a
file. The first thing you should know about encryption is that the
algorithm that is used to encrypt can be simple or more complex and
that affects how securely what you have encrypted is protected.
Encryption systems have been broken when the method of encryption is
understood by hackers and is easy to break.  

Why bother to encrypt my email?
It should be noted that email is far less secure than paper mail for
two very good reasons:  first, electronic data can be accessed easily
over an Internet and secondly, electronic data is really simple to
copy. There is a very good chance that someone has snooped around in
your email despite your best intentions to stop it.  

How do I go about encrypting my email? 
There are many programs out there that can help you encrypt your
email.  A very popular one is PGP (Pretty Good Privacy) or its Gnu
offshoot GPG.   

PGP (http://www.pgpi.org/) self-describes itself this way: This “is
a program that gives your electronic mail something that it otherwise
doesn’t have: Privacy. It does this by encrypting your mail so that
nobody but the intended person can read it. When encrypted, the
message looks like a meaningless jumble of random characters. PGP has
proven itself quite capable of resisting even the most sophisticated
forms of analysis aimed at reading the encrypted text.” 

Why bother to encrypt my files?  
The answer to this boils down to what you store on your computer.
If you have financial data with important information like social
security numbers, email addresses, account numbers and passwords,
then you open yourself up to losing very valuable information.  Most
corporate Internet security employees will attest to the widespread
theft of very valuable information. As long as you are connected to
the Internet you are vulnerable. 

How do I go about encrypting my files?
 AxCrypt File Encryption Software  (http://axcrypt.sourceforge.net/)
Self-described as “Free Personal Privacy and Security for Windows
98/ME/NT/2K/XP with AES-128 File Encryption, Compression and
transparent Decrypt and Open in the original application.”

Add to Technorati Favorites

Posted in Internet, P2P, Security, email, file-sharing, information, online, peer-to-peer, personal information, privacy, private, program, sensitive | 1 Comment »

Computer Viruses that Come a Callin’

Posted by cotojo on April 17, 2007

Every day new computer viruses are created to annoy us and to wreck havoc on our computer systems. Below are ten viruses currently cited as being the most prevalent in terms of being seen the most or in their ability to potentially cause damage. New viruses are created daily. This is by no means an all inclusive list. The best thing you can do is to remain vigilant, keep your anti-virus software updated, and stay aware of the current computer virus threats.

Virus: Trojan.Lodear
A Trojan horse that attempts to download remote files. It will
inject a .dll file into the EXPLORER.EXE process causing system
instability.

Virus: W32.Beagle.CO@mm
A mass-mailing worm that lowers security settings. It can delete
security-related registry sub keys and may block access to security-related websites.

Virus: Backdoor.Zagaban
A Trojan horse that allows the compromised computer to be used as a covert proxy and which may degrade network performance.

Virus: W32/Netsky-P
A mass-mailing worm which spreads by emailing itself to addresses produced from files on the local drives.

Virus: W32/Mytob-GH
A mass-mailing worm and IRC backdoor Trojan for the Windows
platform. Messages sent by this worm will have the subject chosen randomly from a list including titles such as: Notice of account limitation, Email Account Suspension, Security measures, Members Support, Important Notification.

Virus: W32/Mytob-EX
A mass-mailing worm and IRC backdoor Trojan similar in nature to W32-Mytob-GH. W32/Mytob-EX runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels. This virus spreads by sending itself to email attachments harvested from your email addresses.

Virus: W32/Mytob-AS, Mytob-BE, Mytob-C, and Mytob-ER
This family of worm variations possesses similar characteristics in terms of what they can do. They are mass-mailing worms with backdoor functionality that can be controlled through the Internet Relay Chat (IRC) network. Additionally, they can spread through email and through various operating system vulnerabilities such as the LSASS (MS04-011).

Virus: Zafi-D
A mass mailing worm and a peer-to-peer worm which copies itself to the Windows system folder with the filename Norton Update.exe. It can then create a number of files in the Windows system folder with filenames consisting of 8 random characters and a DLL extension.

W32/Zafi-D copies itself to folders with names containing share,
upload, or music as ICQ 2005a new!.exe or winamp 5.7 ew!.exe.
W32/Zafi-D will also display a fake error message box with the
caption “CRC: 04F6Bh” and the text “Error in packed file!”.

Virus: W32/Netsky-D
A mass-mailing worm with IRC backdoor functionality which can also infect computers vulnerable to the LSASS (MS04-011) exploit.

Virus: W32/Zafi-B
A peer-to-peer (P2P) and email worm that will copy itself to the
Windows system folder as a randomly named EXE file. This worm will test for the presence of an internet connection by attempting to connect to www.google.com or  www.microsoft.com. A bilingual, worm with an attached Hungarian political text message box which translates to “We demand that the government accommodates the homeless, tightens up the penal code and VOTES FOR THE DEATH PENALTY to cut down the increasing crime. Jun. 2004, Pécs (SNAF Team)”

Add to Technorati Favorites

Posted in Internet, P2P, PC's, Security, browser, cookies, email, file-sharing, internet explorer, links, malware, pop-ups, privacy, program, spyware | 1 Comment »

Why Do I Feel Like Somebody’s Watching Me?

Posted by cotojo on April 3, 2007

Spyware is one of the fastest-growing internet threats.  According to the National Cyber Security Alliance, spyware infects more than 90% of all PCs today.  These unobtrusive, malicious programs are designed to silently bypass firewalls and anti-virus software without the user’s knowledge.  Once embedded in a computer, it can wreak havoc on the system’s performance while gathering your personal information.  Fortunately, unlike viruses and worms, spyware programs do not usually self-replicate. 

 

Where does it come from?

Typically, spyware originates in three ways.  The first and most common way is when the user installs it.  In this scenario, spyware is embedded, attached, or bundled with a freeware or shareware program without the user’s knowledge.  The user downloads the program to their computer.  Once downloaded, the spyware program goes to work collecting data for the spyware author’s personal use or to sell to a third-party.  Beware of many P2P file-sharing programs.  They are notorious for downloads that posses spyware programs.

The user of a downloadable program should pay extra attention to the accompanying licensing agreement.  Often the software publisher will warn the user that a spyware program will be installed along with the requested program.  Unfortunately, we do not always take the time to read the fine print.  Some agreements may provide special “opt-out” boxes that the user can click to stop the spyware from being included in the download.  Be sure to review the document before signing off on the download.

Another way that spyware can access your computer is by tricking you into manipulating the security features designed to prevent any unwanted installations.  The Internet Explorer Web browser was designed not to allow websites to start any unwanted downloads.  That is why the user has to initiate a download by clicking on a link.  These links can prove deceptive.  For example, a pop-up modeled after a standard Windows dialog box, may appear on your screen.  The message may ask you if you would like to optimize your internet access.  It provides yes or no answer buttons, but, no matter which button you push, a download containing the spyware program will commence. Newer versions of Internet Explorer are now making this spyware pathway a little more difficult.

Finally, some spyware applications infect a system by attacking security holes in the Web browser or other software.  When the user navigates a webpage controlled by a spyware author, the page contains code designed to attack the browser, and force the installation of the spyware program.

What can spyware programs do?

Spyware programs can accomplish a multitude of malicious tasks.  Some of their deeds are simply annoying for the user; others can become downright aggressive in nature.


Spyware can:

1.            Monitor your keystrokes for reporting purposes.

2.            Scan files located on your hard drive.

3.            Snoop through applications on our desktop.

4.            Install other spyware programs into your computer.

5.            Read your cookies.

6.            Steal credit card numbers, passwords, and other personal information.

7.            Change the default settings on your home page web browser.

8.            Mutate into a second generation of spyware thus making it more

         difficult to eradicate.

9.            Cause your computer to run slower.

10.        Deliver annoying pop up advertisements.

11.        Add advertising links to web pages for which the author does not get paid.  Instead, payment is directed to the spyware programmer that changed the original affiliate’s settings.

12.        Provide the user with no uninstall option and places itself in unexpected or hidden places within your computer making it difficult to remove.

Spyware Examples

Here are a few examples of commonly seen spyware programs.  Please note that while researchers will often give names to spyware programs, they may not match the names the spyware-writers use. 

CoolWebSearch, a group of programs, that install through “holes” found in Internet Explorer. These programs direct traffic to advertisements on Web sites including coolwebsearch.com. This spyware nuisance displays pop-up ads, rewrites search engine results, and alters the computer host file to direct the Domain Name System (DNS) to lookup preselected sites. 

Internet Optimizer (a/k/a DyFuCa), likes to redirect Internet Explorer error pages to advertisements. When the user follows the broken link or enters an erroneous URL, a page of advertisements pop up.

180 Solutions reports extensive information to advertisers about the Web sites which you visit.  It also alters HTTP requests for affiliate advertisements linked from a Web site.  Therefore the 180 Solutions Company makes an unearned profit off of the click through advertisements they’ve altered.

HuntBar (a/k/a WinTools) or Adware.Websearch, is distributed by Traffic Syndicate and is installed by ActiveX drive-by downloading at affiliate websites or by advertisements displayed by other spyware programs.  It’s a prime example of how spyware can install more spyware.   These programs will add toolbars to Internet Explorer, track Web browsing behavior, and display advertisements.

How can I prevent spyware?

There are a couple things you can do to prevent spyware from infecting your computer system.  First, invest in a reliable commercial anti-spyware program.

I recommend you follow this link  http://www.linkbrander.com/go/34613 and read more and you can also scan your PC for free. There are several others on the market including stand alone software packages such as Lavasoft’s Ad-Aware available for free at http://www.lavasoft.de/products/ad-aware_se_personal.php or Windows Antispyware.  Other options provide the anti-spyware software as part of an anti-virus package.  This type of option is offered by companies such as Sophos, Symantec, and McAfee. Anti-spyware programs can combat spyware by providing real-time protection, scanning, and removal of any found spyware software.   As with most programs, update your anti virus software frequently. 

As discussed, the Internet Explorer (IE) is often a contributor to the spyware problem because spyware programs like to attach themselves to its functionality.  Spyware enjoys penetrating the IE’s weaknesses.  Because of this, many users have switched to non-IE browsers.  However, if you prefer to stick with Internet Explorer, be sure to update the security patches regularly, and only download programs from reputable sources.  This will help reduce your chances of a spyware infiltration.

 

And, when all else fails?

Finally, if your computer has been infected with a large number of spyware programs, the only solution you may have is backing up your data, and performing a complete reinstall of the operating system.

Add to Technorati Favorites

Posted in IP address, Internet, P2P, Security, Web, XoftSpy, browser, cookies, file-sharing, information, internet explorer, keyloggers, links, malware, online, plug-ins, pop-ups, privacy, private, secure access, software, spam, spyware, surfing, trojans, virus | 2 Comments »