Zusammenfassung Virus Englisch
Hey s * pvp,.
I think it is time to correct false statements. This is true with regard to the following topics:
-About the sorting out viruses | A (hopefully stimulating) criticism
-General info about viruses, etc [formerly sticky]
-Protection against viruses (!) Protection against viruses (!) [formerly sticky]
Outline:
-What is a virus?
-Tips and tricks against viruses.
-Viruses in the field of Gamehacking - why cheats are recognized by many scanners for viruses.
-Crypter & packer.
-Closing remarks.
What is a virus?
The term virus is known - every user of a computer, although only few that know what is a virus. Short it is a "malicious program routine of minimal size that replicate themselves and spread". In short this is but one. A virus is a very small program, that, once on your PC, even continuously replicates itself to not to be deleted, just once to make long. A program that is not in the traditional way can be deleted, often deletes files or damaged or even stored data such as passwords.
Tips and tricks against viruses.
Just said:
-NEVER turn off the firewall
-ALWAYS an antivirus program have active - caution: more than just an antivirus program should be never at the same time, because it would block to each other
-Programs you are not sure of their origin should be loaded always in a sandbox. A sandbox is a closed system, that reset on every boot at the time of installation. This can be for example a virtual machine. Who cares about it worried best VMWare.
-You should regularly check not only the auto-start on unknown executable files, but also with programs such as for example kernel detective search for hidden processes which we associate a program know.
-Keyloggers have an network activity inevitably. This can be checked for example with Netlimiter.
-No one is "trusted".
-Used never for all accounts a general password.
-Pay attention to the seriousness of the person who makes available the download.
-Pay attention to the size of the files - "Naeron Injector" example: it has an area of 197 kB in the original, gebinded are at least 300.
-If necessary, check checksum as it was explained in [IMPORTANT] hacks with fake VT.
-[INFO] easy times read dangers on the Internet - very informative.
Viruses in the field of Gamehacking - why cheats are recognized by many scanners for viruses.
Here you must distinguish between two things: the injector and the cheat in itself.
We deal first with the injector, which, technically - serves attach a thread to an external process, run the program routine stored in the DLL in the process to make. As in many viruses hidden run in other processes, many virus scanners indicate injectors as viruses. In fact most of the viruses in cheat are gebindet releases here in the Forum at the injectors (= "bound", that that is the virus in execution of the program is running with). Best always the same injector used to avoid this, I take for example "PerX" or the "Naeron injector".
Secondly, it is to deal with the DLL. A cheat manipulates a process's memory, are found out this addresses the different areas of the process. Programs that manipulate memory addresses, are also often recognized as viruses, because they have similar behavior. Here an example of a hack, not containing viruses, but appear in VirusTotal 17 / 43 gets (DLL packed with WMP): CLICK_ME.
Crypter & packer.
Crypter & Packer are often called excuses for very high rates in VirusTotal report. Taken closer under the microscope has this statement a true core, but shall not vote. You can Crypten to the security of the own source - so that they can be changed for example does not have a hex editor. This crypted it then strings. Crypten can also mean to seem a routine of the program to another, in the hacking it is scene of "fud" make (fud = fully undetected). This means that virus scanners can no longer find the virus. Tests with 0 recognized VirusTotal viruses are viruses in the field of Gamehacking very rarely and mostly - the number gecrypted. Here it is considered to be particularly careful: who manages to crypten, viruses is mostly no beginners.
Packer serve to prevent the Unpacken of DLLs to ensure the source, at least to make it more difficult. As this change extensive parts of the DLL packed files also frequently appear as viruses.
Closing remarks.
WarRock - what beautiful play
Hier ein Link auf Deutsch...
