CyberGuru Consulting - Design - Support - Training

My CyberGuru
Login   |   What the?
Home About Solutions Help Desk Contact

Help Desk - Opinion - Trojan Horses
Help Desk
bulletOpinion
bulletHow-to Guides
bulletHints, tips and tricks
bullet Security and virus warnings
bulletNewsletter

So far, I have had to clean a dozen or so computers from Trojan Horses. What are Trojan Horses you ask? Well they are "holes" in software such as operating systems like Windows 95. I stress that most holes aren't in the software already, but are made by hackers who wish to "explore" or possibly destroy your data.

These "holes" are made by hackers. Many novices and even experienced users would normally not know if they know if the hole has been opened up. Lately, a number of utilities have been made by hackers, such as NetBus and Back Orfice to open them.

The utilities contain two parts: "controllers" that can operate your computer, which resides on the hacker's computer and a "server" part which is often described as a "patch" or sometimes as a game such as 'Wack-a-Mole' which resides on the user's computer.

It is important that novices do not accept such patches and should on rely on reliable software patches like ones placed on the Microsoft Windows Update site, which is almost certified to be certain to have no faults.

The "patch" that is included with NetBus is a small program, consisting of creating a hole in the Windows operating systems (which includes Windows NT - Microsoft's MOST SECURE operating system so far). Once the "patch" is run, the hacker, armed with the user's IP address (while on the internet) could do possibly more harm being away then being there.

On the user's side, the patch does not display anything on the program and the program looks it is close as there is no Task Bar icon or on the Task List. The patch also reruns itself when the computer rebooted.

The hacker uses the "controller" to do such things like opening programs, deleting, downloading and uploading files, visiting web sites, ejecting CD-ROM drives, displaying wallpapers and much more. While this sounds quite harmless, it's not.

There are similar programs around purposely meant for remote computer administration, such as Microsoft's new Remote Desktop Administration which is optionally installed in Windows 95 OSR2.x and Windows 98. Quite simply though, most programs are around for bad than good.

My point on this matter: be careful what you accept on the internet even if it doesn't look like a Trojan Horse. If you are uncertain what a file you are receiving is not to open it and delete it straight away.

If you require an expert to clean a trojan horse from your computer, feel free to call on my Support solution.

Last updated: 29 March 2000

 

© 1997-2010 Christopher Jeffery trading as CyberGuru | Privacy and Security | Disclaimer | Site Map and Search