Sunday, January 24, 2010

Fake Antivirus Programs


Introduction to Fake-Anti virus:
Now in these days very dense amount of Fake Anti-viruses have been observed. The main reason behind that is the malware authors wants to earn money.
Few months a go i read an articles of a malware researcher. According to him now in these days mostly attacks are financially motivated.
Recently a found a fake anti-virus which on install reports Absent viruses on hard-disk. Then fake anti-virus asks for registration to remove those malwares.

Properties of Fake AntiVirus Programs:
  • They have very very small in size, not more than 2 MB.
  • They install automatically without the user interaction.
  • They will start scanning the files without your command.
  • They have extremely beautiful GUI and icons to cheat users.

Detect A Fake-Antivirus
The thing which is found common among all fake antivirus programs is that they point out the virus/worms etc, there names as well, but they don't tell you the location of that infected files as you can see in the following images.



When you click the Red button to remove it will take to the site and ask you to pay money before cleaning them.

Pop-Up and Messages:-
They will also annoy you after showing you lot's of pop-ups like this.



And when you minimize that fake antivirus it will show this message.

Wednesday, January 13, 2010

Windows 7 Security Features P-I

I was using very old PC from couple of years. I was unable to run window 7 on it. So i recently i bought a new Dual-Core PC with good configuration so i thought why not to test it's security features that is it secure the the previous version of windows.

There is no doubt about it that win 7 is very fast, reliable., Beautiful GUI and occupy very less resources as compared to Windows Vista. Lots of patch vulnerabilities make win 7 quite secure.

Virus Resistance:
I m very disappointed by Microsoft that they havn't paid much attention to this section. I have 70 Virus and Trojan samples in my PC. I made a test on win7 by execution some of them and About 80% of them executed on it successfully. Here is the result of this analysis.
























The the conclusion is that " Use a good anti virus that you trust most"

So the question rises that why Microsoft has not paid much attention to make windows 7 secure. I think uncle Bill Gates don't want to disturb the business of all Anti virus companies.

Conformation Pop-Up:-
Lot's of times you have observed that while installation of software, a pop-up appears to conferm that are you sure to install it. But there is no restriction on other unknown exe, vbs and batch files, Why? are all of them are secure? The answer will be NO.
Then near me this pop-up is use less because if a malware gets executed without any interaction of the user and download more files from internet this poo-up is of what use? Here is the image of that pop-up!














You can change the appearance of these pop-ups by clicking "Change when these notifications appears". Then you can change the settings.

Most of the peoples feel this pop-up is annoying but i think spending 1 sec is far batter then spending 30 Minutes on installation of windows 7 again after infection. But this feature will rule if Microsoft Add this pop-up while the execution of un-trusted files, batch and vbs scripts file.

Beautiful GUI in Win 7 :

Look a this how awsome is this .














Here is another one













See more features of windows 7 in next post or Part-II