Trojan Horse Virus

This paper is about of Trojan horses on the internet and their prevalence, technical structure and impact. It explores the evolution and future developments. Also we explore about types of Trojan horse and their pressures. We found that such a Trojan horse is straightforward to implement, even using a high level language such as Java. Also Trojan horse can be run on any platform.

Trojan Horse Virus
Trojan Horse Virus

A Trojan horse, or Trojan, is a type of malicious code or software that looks legitimate but can take control of your computer. A Trojan is designed to damage, disrupt, steal, or in general inflict some other harmful action on your data or network.

A Trojan act like a bona fide application or file to trick you. It seeks to deceive you into loading and executing the malware on your device. Once installed, a Trojan can perform the action it was designed for.

A Trojan is sometimes called a Trojan virus or a Trojan horse virus, but that’s a misnomer. Viruses can execute and replicate themselves. A Trojan cannot. A user has to execute Trojans. Even so, Trojan malware and Trojan virus are often used interchangeably.

 

Evolution

One of the earliest Trojan horse virus was detected in the 1980s, when several computers were affected. As it was earlier mentioned Trojan horse viruses are created in order to steal useful information such as passwords. They are developed by hackers, who after stealing data, can use the information for various purposes, including blackmailing. Some of the first Trojan horse viruses were able to infect Windows32 files, but since then these programs evolved, and today they cause even more harm.

 

The name of the Trojan horse comes from Greek mythology about the siege of Troy. The Greeks were unable to conquer the city until they built a huge wooden Trojan horse and hid a number of warriors in it. The wooden horse was supposed to be a present from the Greeks, informing that they sailed away and no longer wanted to conquer the city.  When the Trojan horse was pulling into the city, the small army of Greeks inside it waited till dark and then invaded the Tory, destroying it, thus leading to the end of the war. In contrast to the wooden Trojan horse, the Trojan horse virus spread worldwide and is still popular today.

  

According to some online sources the first Trojan horse virus was dubbed the pest trap, also known as spy Sheriff. This Trojan horse managed to infect about one million PCs worldwide. It did not damage any files on a computer, inside it led to the appearance of a large number of pop-ups, most of them looking like warnings that warned users about the necessity to install some kind of software application. As soon as the Trojan horse computer virus was installed on the machine, it was quite difficult to get rid of it. In case the user tried to erase it, the Trojan horse would simply reinstall it from hidden affected data files on the computer.

During the 1980s, there was an increase of the Bulletin Board System, which was computer system running software that permitted user to penetrate the system through a phone line. The BBS contributed to a fast spread of Trojan horse viruses, because after users logged in, they carried out such functions as uploading and downloading software and data sharing (some of which infected). At that time computer viruses were created for aim popular software trades. A dangerous Trojan horse virus was the Vundo, which used a lot of memory from the operating system at different intervals and generated a lot of pop-ups that informed the user about a number of software programs that need to be installed on your computer. The installed software included one or more computer viruses. Unlike the Spy Sheriff, it was rather easy to get rid of Vundo. There it one important thing to remember: A Trojan horse virus can be turned on when the user activates the program that features of the virus. 

 

How does Trojan work?

Whether you prefer it Trojan malware or a Trojan virus, it’s smart to know how this infiltrator works and you can do to keep your devices safe.

You might think you have received an email from someone you know and click on what looks like a legitimate attachment. But you have been fooled. The email is from a cybercriminal and the file you clicked on and downloaded and opened has gone on to install malware on your device.

When you execute the program, malware can spread to other files and damage your computer. Trojans are designed for different things. But you will probably wish they didn't do any of them on your computer.

 

Common types of Trojan malware

 

Backdoor Trojan

Detection name used by Symantec to identify malicious software programs that share the primary functionality of enabling a remote attacker to have access or send commands to a compromised computer.

 

Distributed Denial of Service (DDoS) attack Trojan

DDoS Trojan is a detection name used by Symantec to identify malicious software programs that perform distributed denial of service attacks. When this program is deployed, the server under attack can suffer from network congestion, which may cause the server to stop responding. Rebooting the server will not stop the attack. To end the attack, the Hack tool program must be stopped.

 

Downloader Trojan

This is a specific detection name to recognize harmful programs that aim to drop silently other malware files onto the compromised computer. The presence of Trojan. Downloader on your system can trigger more damages on the computer because many malware contains a backdoor for remote access.

 

Fake AV Trojan

Detection for Trojan horse programs that intentionally misrepresent the security status of a computer. These programs attempt to convince the user to purchase the software in order to remove non-existent malware or security risks from the computer. The user is continually prompted to pay for the software using a credit card. Some programs employ tactics designed to annoy or disrupt the activities of the user until the software is purchased.

 

Game-thief Trojan

This type of malicious program is designed to steal user account information for online games. The data are then transmitted to the malicious user controlling the Trojan. Email, FTP, the web (including data in a request), or other methods may be used to transit the stolen data.

 

Infostealer Trojan

An extremely hazardous Trojan horse infection, which can wreck your system in a brief period. Normally spreading ways are containing spam messages, shady sites, free software, P2P network and removable gadgets. Subsequently, when surfing on the Internet, you should be more watchful.

 

Mailfinder Trojan

This type is designed to harvest email addresses from a computer and then send them to the malicious user via email, the web, FTP, or other methods. Stolen addresses are then used by cyber criminals to conduct mass mailings of malware and spam.

 

Ransom Trojan

Ransom is a ransomware threat that prevents users from accessing the infected machine's Desktop; it then demands payment, supposedly for either possession of illegal material or usage of illegal software.

 

Remote Access Trojan

RAT is a malware program that includes a back door for administrative control over the target computer. RATs are usually downloaded invisibly with a user-requested program -- such as a game -- or sent as an email attachment. Once the host system is compromised, the intruder may use it to distribute RATs to other vulnerable computers and establish a botnet.

 

Rootkit Trojan

A computer program designed to provide continuing privileged access to a computer while actively hiding its presence. The term rootkit is a connection of the two words "root" and "kit." Originally, a rootkit was a collection of tools that enabled administrator-level access to a computer or network. Root refers to the Admin account on Unix and Linux systems, and kit refers to the software components that implement the tool.

 

SMS Trojan

These Trojans use the SMS (text) messaging services of a mobile device to send and intercept messages. The user is usually unaware of the behaviour.

 

Trojan banker

Trojan-Banker programs are designed to steal user account data relating to online banking systems, e-payment systems and plastic card systems. The data are then transmitted to the malicious user controlling the Trojan. Email, FTP, the web (including data in a request), or other methods may be used to transmit the stolen data.

 

Trojan, IM

A malicious program designed to steal user account credentials in instant messengers, such as Facebook Messenger, Skype, and Telegram. The information retrieved from the infected computer is sent to the cybercriminals.

 

Examples of Trojan malware attacks

There are lots of Trojan malware attacks in the world. At the same time, Trojan continues to evolve. There are some examples below.

  1. Emotet banking Trojan. After a long hiatus, Emotet’s activity increased in the last few months of 2017, according to the Symantec 2018 Internet Security Threat Report. Detections increased by 2,000 percent in that period. Motet steals financial information, among other things.                                                                                 
  2. Rakhni Trojan. This malware has been around since 2013. More recently, it can deliver ransomware or a cryptojacker (allowing criminals to use your device to mine for cryptocurrency) to infected computers. “The growth in coin mining in the final months of 2017 was immense,” the 2018 Internet Security Threat Report notes. “Overall coin-mining activity increased by 34,000 percent over the course of the year.”
     
  3. ZeuS/Zbot. This banking Trojan is another oldie but baddie. ZeuS/Zbot source code was first released in 2011. It uses keystroke logging — recording your keystrokes as you log into your bank account, for instance — to steal your credentials and perhaps your account balance as well.

 

Each of these involves a different delivery mechanism by which the user receives the Trojan on their machine. We now discuss each of these in more detail. Actually, these delivery mechanisms can equally be used to deliver wildlife. However, we cover these ideas in this section because Trojan horses are dependent upon such delivery mechanisms for their survival as they cannot spread on their own.

Delivery mechanisms

Delivery mechanisms can take one of three forms:

 

  • Stationary threats
  • Anonymous threats
  • Manual introduction

 

We now discuss each of these in turn.

Stationary threats. Stationary threats refer to malicious programs that have been posted to a web site for users to download. These programs are stationary on the website, easily downloaded and executed by any unsuspecting user.

Stationary threats such as Java and ActiveX have received much attention in the security world, but the actual threat from malicious stationary threats has been negligible to non-existent. We believe that stationary threats have been limited up. until now for one primary reason: Java and ActiveX, the two most popular types of executable content, must be explicitly placed on a web page which is registered to a given user or company. If such a user places malicious code on their web site, they will be held accountable for the damage done to users of the website. Such threats are easily traceable and people are very aware that they will be held legally accountable for anything that they intentionally post.

As we discuss in the next section, these types of malicious threats can also be posted anonymously to newsgroups and other on-line exchange systems. Let’s consider a scenario where a once-anonymous applet becomes a stationary applet. A user surfs the web and finds a new applet which has been posted anonymously. The user tries the applet and decides to post it on their own web site because of its apparent entertainment value, not knowing that the applet is truly malicious. Soon other users browse the first user’s site and try the applet themselves. They too, like its functionality and, in turn, post the applet on their own web pages. Now, we have a malicious applet on numerous websites. Each of these users effectively vouched for the safety of such an applet, when in fact the applet is malicious. In this case we have an apparent stationary threat, which has grown out of an initial anonymous posting. This type of threat will likely increase, even though strictly stationary threats (which did not start out as anonymous threats) will likely grow more slowly because of their clear traceability.

The most successful malicious applets distributed in this manner will be those that have a timed “trigger feature” which prevents them from causing harm immediately. Any Trojan without this delay would quickly be caught and removed from on-line services. On the other hand, a Trojan which only started performing malicious actions two months after its initial posting would probably gain widespread acceptance on web sites before it ever did any damage. Such an applet, which would appear to be useful or fun (perhaps display a spinning logo), could attain widespread distribution and wreak havoc on the on-line world. It is likely that given the increasingly high volume of posts applets, fewer and fewer applets will undergo any scrutiny at all. We discuss the notion of a “trigger condition” at more length below in the section on payloads.

We do expect that the number of actual theft-motivated attacks using Java or ActiveX will grow in the future. In this scenario, the web operator takes a calculated risk and places malicious Java/ActiveX code on the web site to obtain credit card numbers, passwords etc. As soon as the person has made enough money or obtained enough passwords, they can disappear with their money or information. Each individual scam will probably be short lived and use entirely new, specially tailored ActiveX/Java code in order to avoid detection by antimalware scanners.

ActiveX – In the short term, ActiveX objects will remain the most dangerous active content that web-browsing users will be exposed to. ActiveX objects are basically 32-bit Windows executable files and have the capabilities of any other Windows application. These applets can delete files, attempt to format the hard drive, alter the registry, export sensitive information over the Internet, and other destructive actions.

 Java – Unsigned Java is a fairly secure executable medium and we will probably not see too many new truly malicious Java applets. The Java VM (Virtual Machine) is designed to prevent Java applets from accessing the host system’s resources, and has been shown to be fairly robust. To date, most “malicious” Java applets have merely been annoying.

In principle, it could be possible for someone to create a Java applet which penetrated the Java VM – such a threat would be very dangerous since it could potentially compromise computer file system through a web browser. However, it seems likely that should such an applet ever be created, it could easily be detected through standard signature-based AV detection schemes – any code to penetrate the Java VM would almost surely have clear characteristics which could easily be encoded into an exact detection for any AV product.

It is currently possible for users to configure their browsers in such a way that a signed Java applet has full access to the host system. Such a Java applet could perform most if not all of the same damaging functions that could be performed by an ActiveX object. However, the signing requirement will probably deter most people from producing such malicious applets; obviously, the developer would be quickly held accountable for any damage caused by the applet.

For a further discussion of current malicious Java and ActiveX threats, see (Branigan, 1998).

In summary, we expect the number of truly stationary threats to increase at a slow rate because of the clear accountability involved. However, as we discuss above, the conversion of an anonymously-posted threat of a stationary threat can and will be a growing problem for users.

Anonymous threats.

Anonymous threats include the gamut of Trojan horse programs that can be posted anonymously to public discussion groups or sent in mass mailings to unsuspecting end-users. Since malicious threats could easily be sent via anonymous e-mail, it can be very difficult to track their source. Such anonymous threats seem far more likely than malicious Java/ActiveX – one is much less likely to get caught through sending anonymous e-mail than they are by posting a malicious program on a public web site. Currently, the two most likely vectors for these anonymous Trojan horses are anonymous (or forged sender) mass e-mailings, and anonymous (or forged sender) USENET newsgroup posting. In addition, there are many other services support such anonymous transmission (such as IRC).

In addition, the popularity of graphical “joke” executables is increasing - we have received many such programs over the past year. These tend to be humorous or fun small programs which friends pass on to each other over the Internet. While many of these programs are innocuous, there is nothing preventing such a program from stealing passwords, exporting the last edited document, etc. Trojan horses don’t necessarily always simply format hard drives; -they can have much more suitable payloads, as we’ll discuss further below. Since most users don’t track the usage Windows sockets (used for Internet connections) while watching a joke program graphics and listening to its music, it would be very easy for such a program to export sensitive information past a firewall and out to a malicious attacker.

With the increase of third-party web-hosting sites such as GeoCities, we may see an increase in what appear to be stationary attacks. These third-party services provide free space for users to put up their own web page. Given that users can provide false information and set up their page anonymously, we may see malicious individuals posting malicious applets on what most end-users would expect to be a fully accountable site. Nothing could be farther from the truth. This is effectively an alternate way to anonymously distribute malicious applets.

We expect anonymous threats (whether they appear to be stationary, or not) to grow markedly over the coming years.

Manual Introduction. Finally, it is always possible for a malicious Trojan to be introduced into any user’s machine through some manual, secret means. In fact, a covert operative could potentially install a Trojan horse in an organization or government. Mechanisms by which this might be done are outside the scope of this paper, but it bears mentioning that this sort of threat always exists.

 

Differences Between Trojan Horses and Other Viruses

So what is the difference between Trojan horses and other types of viruses? Well, as mentioned in the above paragraph, Trojans are harmless until they are executed, unlike some viruses, which can start harming your system upon download or entrance into your system.  Trojans have a simpler code than viruses or worms; therefore, they can be hidden inside other files, thus making their detection even harder. Viruses and worms cannot be hidden inside other files making them easily detectable by virus scanners, unlike Trojan Horses that often go undetected. Another difference is that Trojan Horses will send the programmer feedback, where a virus is simply a mischievous information destroying program.

 

Who Creates These Trojan Horse Viruses?

“Hackers” are individuals who attempt to gain unauthorized access to a computer system and usually write these programs. They have many means at their disposal for breaking into your system. But you don’t have to be a hacker to create a Trojan horse. As mentioned before, Trojan code is simpler than a virus or worm code, this makes them easier to create and harder to detect. People with little or no computer programming knowledge can write one of these malicious programs. Most Trojans are written in Visual Basic programming language or C ++. Some hacker web sites even contain ready-made Trojans that can be modified by anyone.

 

Types of Trojans and How Much Damage They Can Cause

A Trojan horse installs itself on your computer, where it can wreak havoc later by modifying or deleting data or spying on you.  There are different types of Trojans. There are password stealers, remote access Trojans, and other Trojans that can contain smaller viruses. Specifically, when you execute a program that contains a Password stealing Trojan horse on your computer, it can steal your passwords for a specific password-protected item such as log in accounts, system user accounts, and databases.  Then it will send them to the original programmer’s e-mail address. Once a hacker has these, he can gain access to items that were previously password protected. One such Trojan was the infamous “Hey You” Trojan, which hit America Online about 2 years ago. This Password Stealing Trojan was passed on via AOL’s email system in which AOL users received an email from other AOL users with an attachment (mine.exe or mine.zip), the subject line “Hey You”, and text in the email that claimed the attachment was a file containing pictures. It’s very common for AOL users to trade pictures via AOL’s Email account.  This is why many users got tricked into downloading the attachment that contained the Trojan horse, causing many computers running the AOL software to become infected. This Trojan was also called the “Buddy List Trojan” because when an AOL user logged on to the AOL service, the Trojan horse would also try to email it to all of the contacts listed in that member's Buddy List.  An example of how the Trojan Horse operates is one person with an infected computer trade pictures with friends, the Trojan then sends a fake email to everyone on their buddy list. Other computers become infected with the Trojan horse when they download and execute the fake, infected attachment. Their passwords are also sent back to the author who created the Hey You Trojan.

Some Trojans even provide a "backdoor" to your computer and its files from outside your network. These are called Remote Access Trojans. You are open to harm as long as the Trojan is installed and runs every time you start up your computer. A hacker or programmer uses a remote access Trojan for the sole purpose of gaining access to all your information without your knowledge. That is why they try to make Trojans as discreet as possible. If you log onto any kind of account, like email, a Trojan horse can see your passwords. If you do online banking, anyone can find your information. Certain E-commerce sites have the option to pay online with a credit card. If you have a standing account, you may have saved your credit card information somewhere on your computer. Website security is tightening, but if you have a Trojan horse, all that Internet security is in vain and your privacy has been invaded.

Some Trojans are more complex than others. They send information to the programmer, but also carry small viruses that can cause a great deal of damage to your computer. For example, a certain type of Trojan horse virus releases five small viruses that delete files every time you restart your computer. In due time, your computer will die and the hard-drive will need to be reformatted.  Another complex Trojan horse replicates itself many more times, which means you now have multiple Trojan horse viruses on your computer. The internally replicating Trojan is insurance so that if you do find and delete the original, the program writer will still have access to your account through the replicates.

 

How a Trojan Horse Can Get On Your Computer?

The password stealing Trojan horse is the most common form and targets anyone who has a computer that uses the Internet. As mentioned before, people using America Online are attacked often by a password stealing Trojan horses. Usually someone who has a Trojan horse on their computer is tricked into downloading and opening it. For example, someone on AOL might get email with a downloadable attachment. The programmer trying to use the Trojan will most likely pose as an AOL employee. They may write text in the email that claims the user can get free Internet access if the attachment is downloaded and the computer is registered with their online service. This catches the reader’s attention and he/she opens the email and begins to download the program. When they download the attachment it is usually a small file, around 30 to 200 kilobytes. Files this small take less than a minute to download and install with most internet connections. Once the file is executed, the user may get a message that says "File Not Found" or other such error prompt. They have just downloaded the Trojan horse into their computers memory.  The next time the user reboots their computer; the Trojan will begin running and steal the user’s passwords, sending them to a preset e-mail address that is accessed by the Trojan programmer. The hacker now has access to your account and files with the help of their Trojan horse password stealer.

Another way to become infected is by downloading shared music, movies, and software through file sharing programs such as Kazaa Media Desktop. Many of these peer-to-peer file-sharing programs are being used with no anti-virus filters. A large part of the Internet using community utilizes these file sharing programs so that they will not be charged for the original. Note that these programs are unsafe and should be used to download files with caution. You can pick up the Trojan horse if that file is saved on the infected computers “shared” files, or if a file you downloaded has a Trojan hidden within it.  It is a good idea to download from websites that are trustworthy. If you download a program from a hacker site, more than likely it’s going to have something extra. Be cautious when downloading.

 

How Can You Avoid Getting a Trojan Horse Virus on Your Computer?

Because of the discrete nature of the Trojan horse virus, you may not know if you have one on your computer. Any files downloaded from the Internet or from outside computers should be scanned with anti-virus software, even if a close friend sent the program. Some of the largest email providers, like MSN’s Hotmail accounts, have virus scanners check all incoming email attachments. Even if you use these accounts you should invest in anti-virus software for yourself or business. Your personal computer’s anti-virus software should be updated regularly, as well, because new mutations of viruses and Trojan horses are being created constantly.

There are anti-Trojan horse programs that have been made specifically for the purpose of detecting, removing, and repairing damage caused by Trojan horse viruses.  In addition to anti-Trojan horse programs, there are some firewalls that can prevent a Trojan horse from sending information to its original programmer. This does protect your computer from receiving a Trojan horse, and if it is a virus-releasing Trojan horse, or an internally replicating one, you may still have a problem. Some types of anti-virus software can detect Trojan horses, but virus scanners are not fully adequate because it can be difficult to catch the simple text of a Trojan horse. Because anti-virus software alone may not be able to fully protect your computer from a Trojan horse, they should be used in conjunction with anti-Trojan horse software.

 

Anti-Trojan Horse Software

There are many Trojans-scanning programs on the market right now available for purchase. There are also many trial versions of Trojan scanners that can be downloaded from the Internet that can help aid you in the detection and removal of a Trojan horse, as well as, for security purposes. We have dealt with a few Trojans ourselves and in the process, we have sampled many different anti-Trojan scanners

 

The first one is Trojan Remover, by Simply Super Software. This program scans for Trojans, worms and viruses. This is a very easy to use Trojan scanner with an exceptional graphical user interface. Another advantage of Trojan Remover is that it can perform a scan every time you start up your computer. This helps detect Trojans that load during boot up, never giving ther Trojans a chance to load. You can also run scans from within Windows Explorer, performing them on files, directories, or an entire drive. You can get the details on the Trojans that may be on your system, by using the integrated database, which contains information on over 5000 Trojan Horses. Unlike virus scanners that cannot remove Trojans that may be running on your system, Trojan Remover finds Trojan horses, then removes the offender and repairs the modified system files and registry for you. Trojan Remover works on WINDOWS 9x, ME, NT, & XP Operating Systems, and is only a 2 megabyte download for the full installation. You can also update your Trojan Remover as soon as the creators update it to the modified versions.

 

The only slight disadvantage of Trojan remover was that it is a trial version; only lasting 30 days and then it must be registered for $25. It’s not that bad of a disadvantage considering it can save your computer’s hard drive.

Tiny Trojan Trap, by Tiny Software is another great Trojan Scanning program, which also happens to scan for viruses too. It scans for known and unknown applications and controls their access to system resources, such as memory, the registry, and space on the hard drive. It protects workstations and networks from attacks by any kind of active content (ActiveX, Java, VBS, and other executable code) received from the Internet or by any other means.  Tiny Trojan Trap somewhat acts like a firewall, which can be an advantage and also a disadvantage. If they don’t know anything about firewalls, then Tiny Trojan Trap may be confusing. One definite advantage is that it protects your computer from software with bugs in it (preventing crashes) and detecting programs which may have a Trojan attached. Tiny Trojan Trap also sets up a firewall like action when using a web browser that will catch unknown applications or scripts being accessed through the browser. Tiny Trojan Trap works on WINDOWS 9x, ME, 2000, and XP Operating Systems. It is a 9.75-megabyte download.

Pest Patrol 4.2, wins the all-around award for Trojan Scanners. This scanner not only detects Trojans, worms and viruses, but also spyware, adware, spy cookies, hacker tools and other pests. It includes a memory scanner, and updates come out regularly. You can download the updates from the web site, so you’ll always have the best available protection for your computer. Pest Patrol also cleans up after the “BUGBEAR” Worm that installs a backdoor and a key logger. AntiVirus software cannot fix this problem, but Pest Patrol can. Pest Patrol works on WINDOWS 98, ME, NT, 2000, and XP Operating Systems. The download for Pest Patrol 4.2 is 5.3-mega-bytes.

As splendid as Pest Patrol might sound, it has a few disadvantages. One disadvantage is the graphical user interface. It may be a little confusing for non-experienced computer users. Pest Patrol will not catch Trojans, or any of the other pests it detects, the only way you can detect them with pest patrol is if you manually run the program and perform a scan. The memory scanner does not work too well against spyware, adware and hacker tools. Overall, it’s a good program that is a definite winner because it not only finds Trojans, but other mischievous spyware and adware.

The Cleaner 3.2, by MooSoft is an easy to use Trojan scanner. The interface is very easy to get along with, and it also scans archived files such as .zip, .ace, .rar, .cab and .arj files that may hide Trojans. It works on Windows 9x, 2000, and NT. The file size download is 1.8 mega-bytes, a definite advantage.

The disadvantages are that Cleaner 3.2 is pretty basic because it only scans for Trojans horses and worms. It is recommended that you use it alongside other anti-virus and firewall software, but then again, all Trojan scanners should be used with anti-virus software also. But, the main disadvantage was the price for the fully functional working copy of this Trojan scanner, $30. That’s too much for a program that doesn’t detect viruses. If you need a quick, easy to use, one-time scan of your system, this would be the scanner to download.

 

Anti-Trojan v5.5.405 5 is a very good program. This scanner checks archived files, email attachments, and also scans your registry for the Trojans. Anti-Trojan also determines if there are open ports on your computer. If it detects a Trojan horse, it can remove it for you and clean up any damage it may have caused. This Trojan scanner has a big database of about 8000 different Trojans. It has an easy to use graphical user interface, with tabs, making it easy for novice computer users to follow. Anti-Trojan v5.5.405 works on WINDOWS 9x, ME, 2000, NT, and XP Operating Systems. The download file size is 4.6 mega-bytes. This is a great scanner. The large database gives it an edge in that aspect over the other scanners.

The disadvantages are mainly the trial version and price to register. It would be nice to have a program like Anti-Trojan v5.5.405 or Trojan Remover and not have to pay for it. Unfortunately, it costs $22 to register Anti-Trojan v5.5.405. That is not too much to pay considering all that it can do.

Knowing is Half the Battle

The use of any Trojan Scanning software is a good way of protecting your computer. It gives you extra security for your system. However, the easiest and cheapest way to protect against Trojan horses is to know your computer and be knowledgeable about Trojans. It’s important to know your system. Take note of any changes to it and watch for suspicious activities. You should never change any important system files on your own, nor should you try to manually delete a Trojan horse. Let the aid of an anti-Trojan scanning program detect and remove a Trojan horse, as well as clean up any files the Trojan may have corrupted. Use caution when browsing the Internet and be careful of any suspicious scripts from mistrustful web sites. Try not to visit web sites that pertain to hackingcracking and other forms of mischievous activities. These sites can instantly add scripts and files to your computer, misleading you in the future into clicking on them. It’s also important to stay alert when checking email. [7] Watch out for unsolicited email attachments. Limit the downloading of programs from non-business web sites. And remember that purchased programs are always the safest to use. It may not be cheaper, but in the long run, a free, harmless looking program can be harmful and not only hurt your computer, but also your wallet.

 

How Trojans impact mobile devices?

Trojans aren’t problems for only laptop and desktop computers. They can also impact your mobile devices, including cell phones and tablets. In general, a Trojan comes attached to what looks like a legitimate program. In reality, it is a fake version of the app, loaded up with malware. Cybercriminals will usually place them on unofficial and pirate app markets for unsuspecting users to download. In addition, these apps can also steal information from your device, and generate revenue by sending premium SMS texts. One from of Trojan malware has targeted Android devices specifically. Called Switcher Trojan, it infects users’ devices to attack the routers on their wireless networks. The Cybercriminals cloud redirects traffic on the WI-FI connected devices and use it to commit various crimes.

 

How to help protect against Trojans?

Here are some does and doesn’t help protect against Trojan malware. Computer security begins with installing and running an internet security suite. Run periodic diagnostic scans with your software. You can set it up so the program runs scans automatically during regular intervals. Update your operating system’s software as soon as updates are made available from the software company. Cybercriminals tend to exploit security holes in outdated software programs.

In addition to operating system updates, you should also check for updates on other software that you use on your computer. Protect your accounts with complex, unique passwords. Create a unique password for each account using a complex combination of letters. Number, and symbols. Keep your information safe with firewalls. Backup your files regularly. If a Trojan infects your computer, this will help you to restore your data. Be careful with email attachments. To help stay safe, scan an email attachment first.

A lot of things you should do come with a corresponding thing not to do like, do be careful with email attachments and don’t click on suspicious email attachments.
 

Here are some more donuts.

 Don’t visit unsafe websites. Some internet security software will alert you that you’re about to visit an unsafe site. Don’t open a link in an email unless you’re confident it comes from a legitimate source. In general, avoid opening unsolicited emails from senders you don’t know. Don’t download or install programs if you don’t have complete trust in the publisher. Don’t click on pop-up windows that promise free programs that perform useful tasks. Don’t ever open a link in an email unless you know exactly what is.