Java-Gaming.org    
Featured games (79)
games approved by the League of Dukes
Games in Showcase (476)
Games in Android Showcase (106)
games submitted by our members
Games in WIP (533)
games currently in development
News: Read the Java Gaming Resources, or peek at the official Java tutorials
 
    Home     Help   Search   Login   Register   
Pages: [1] 2
  ignore  |  Print  
  TROJ_JAVADL.A  (Read 6092 times)
0 Members and 1 Guest are viewing this topic.
Offline DzzD
« Posted 2010-10-27 13:48:10 »

I just detect this Trojan on my computer, I just want to informs you as I mainly (only) execute Applet from JGOs

Offline Riven
« League of Dukes »

JGO Overlord


Medals: 743
Projects: 4
Exp: 16 years


Hand over your head.


« Reply #1 - Posted 2010-10-27 14:19:29 »

Update your JRE regularly, or suffer from infections.

Hi, appreciate more people! Σ ♥ = ¾
Learn how to award medals... and work your way up the social rankings
Offline DzzD
« Reply #2 - Posted 2010-10-27 14:26:06 »

Update your JRE regularly, or suffer from infections.
yes but unfortunatly this is on my office computer wich is set to auto-update java (ex: current version on this one is 1.6u22), problem I pointed is that I may/probably have got this malware from an Applet on JGOs

NB: I did not use any antivirus and/or firewall and usually never got any viruses (I just take care of what I trust and what I dont trust)

Games published by our own members! Check 'em out!
Legends of Yore - The Casual Retro Roguelike
Offline Riven
« League of Dukes »

JGO Overlord


Medals: 743
Projects: 4
Exp: 16 years


Hand over your head.


« Reply #3 - Posted 2010-10-27 14:32:58 »

That's not how security works.

In recent news it was shown that advertisement networks were infected and their advertisements contained malware, which was delivered to high profile sites. You can't trust anything. Not even slashdot, facebook, etc. any site with advertisements is vulnerable.

Not running antivirus/firewall software is just as dumb as not making backups.

Hi, appreciate more people! Σ ♥ = ¾
Learn how to award medals... and work your way up the social rankings
Offline zammbi

JGO Coder


Medals: 4



« Reply #4 - Posted 2010-10-27 14:45:07 »

1  
Not even slashdot, facebook, etc. any site with advertisements is vulnerable.

Not even this forum (outdated).

Quote
I mainly (only) execute Applet from JGOs
I'm sure others would have picked something up too if that was the case. I haven't seen any bad applets here so far.

Current project - Rename and Sort
Offline DzzD
« Reply #5 - Posted 2010-10-27 15:12:22 »

Quote
That's not how security works.
this is true for average (low knowledge on computer) users

I did backup of important data often that's IMO the most/only important thing in security (against virus as well as hard drive crash, fire , steal etc..) and periodically scan with severals differents online scanner (maybe twice a year or when I have doubt on an action I did), I (usually) dont get any viruses (maybe 2 over 10 years), I have few plugin enabled (only flash & java).


Quote
In recent news it was shown that advertisement networks were infected and their advertisements contained malware
ok but thoses advertisments should not be able to get into my system without an action from me (inded except if they are using a plugin security hole)

in a certain maner antivirus are useless, because they cannot detect home made virus, and well know viruses are usually not on serious website and/or detected/signaled fastly

I have programmed and then used a cupple of viruses (mostly C/assembly) in the (old) past. For exemple when I get in my university I tested its security (all computer was running a resident antivirus)... and after few days they all was also running a remote control sofwtare I made (and post into the university public forum) enabling me to view screen and take control of any computer I wanted.

I think that security should go on an other way than antivirus, it should not be an obligation to have such software installed and it is IMO a wrong way of securing (a better way for me is for example to use a low privileged user)

Offline DzzD
« Reply #6 - Posted 2010-10-27 15:16:46 »

Quote
I'm sure others would have picked something up too if that was the case. I haven't seen any bad applets here so far.
me too, I am absolutly not sure I really got it here but maybe 95% applets that I run are from here, I posted just in case of someone else got it

Offline Riven
« League of Dukes »

JGO Overlord


Medals: 743
Projects: 4
Exp: 16 years


Hand over your head.


« Reply #7 - Posted 2010-10-27 15:17:29 »

ok but thoses advertisments should not be able to get into my system without an action from me (inded except if they are using a plugin security hole)

I guess you never heard of javascript virii. You don't even need a plugin these days to get infected.

Your view of security is still very very wrong. I wouldn't feel secure if I had 2 virii in 10 years. One virus can steal all your FTP accounts and instantly infect every site you have access to.

It has happened to me, and it wasn't pretty.

Hi, appreciate more people! Σ ♥ = ¾
Learn how to award medals... and work your way up the social rankings
Offline DzzD
« Reply #8 - Posted 2010-10-27 15:37:51 »

Quote
I guess you never heard of javascript virii. You don't even need a plugin these days to get infected.
not in this term, but I already use thing like CreateObject("something" + "something") in email to pass secured proxy of society, what you told about are browsers security hole that will be patched in browsers, there is the same chance that you antivirus know it as your browser have been patched for.

It has happened to me, and it wasn't pretty.
no luck... just for the joke => it happend to you and you are running an antivirus (+firewall ?) and it does not happend to me and I am not running any of them , here is the funny thing => It happend to one of my friend too (bank code and about everything else) and he was also running an antivirus + firewall, the problem is to feel secure because you installed an antivirus and a firewall.

another important security point for me is to never feel secure with a computer and then never save important passwords on a computer ( once again it is good against viruses & physic steal )

I mean if I sent an executable file to you and you decide to execute it or use a new browser security hole, or a signed applet, what you antivirus can do against that ?


EDIT :
a good security would be to use a special computer account (with few rights) to navigate in a sandboxed environment but it will be boring, anitivirus definitly dont protect you and even worst they make you feel protected. they only protect you against people who have learn to make a copy/past on an existing viruses (wich are ususally not the most dangerous people as the hardest part is not to hack something but rather to not be catch / seen)

Offline Riven
« League of Dukes »

JGO Overlord


Medals: 743
Projects: 4
Exp: 16 years


Hand over your head.


« Reply #9 - Posted 2010-10-27 15:56:06 »

no luck... just for the joke => it happend to you and you are running an antivirus (+firewall ?) and it does not happend to me and I am not running any of them
So many conclusions, based on absolutely nothing. This was the reason for me to install antivirus, always. So much for your 'joke'.

Hi, appreciate more people! Σ ♥ = ¾
Learn how to award medals... and work your way up the social rankings
Games published by our own members! Check 'em out!
Legends of Yore - The Casual Retro Roguelike
Offline Preston

Senior Member


Medals: 4



« Reply #10 - Posted 2010-10-27 17:51:46 »

Riven is right, it's a must to have an installed Virus-Killer (an an Internet router firewall, too).

For example you (DzzD) could try the (free) AVG Antivirus from Europe, available for Windows or Linux: http://free.avg.com/
Offline DzzD
« Reply #11 - Posted 2010-10-27 19:03:55 »

Riven is right, it's a must to have an installed Virus-Killer (an an Internet router firewall, too).
For example you (DzzD) could try the (free) AVG Antivirus from Europe, available for Windows or Linux: http://free.avg.com/
yes it is always better to have one ( but no it is not a must ), I know AVG and always disable resident services when using an other computer than mine :p, did I mentioned that I am on Vista and have completly disable windows security center too Wink (but also take care to disable all dangerous services...) no more popup... everything just go super smooth...

you get more protection knowing what you do (also making critics data backup and etc...) then relying on the antivirus, inded it can only be done for people having computer knowledge or people having been sensibilized to security.

I have noticed that on a higly infected computer, if you try different antiviruses they do not find the sames viruses : wich probably means that they dont share virus signs

yes inded it is more secure to have an antivirus & a firewall (if you can support how slow they make your computer Sad ), but... it is just a little "more secure" not "secure"

what I was pointing is more that security must be thinked on a bigger scope than only antivirus & firewall, they are only a tiny part and basicaly all sucks because they use too much ressources, slowing computer, making lags on FPS game,etc... for a minor security upgrade as hundreds of new virus come out every days and perfect heuristic search is impossible

Offline Eli Delventhal

JGO Kernel


Medals: 42
Projects: 11


Game Engineer


« Reply #12 - Posted 2010-10-27 20:02:26 »

My brother runs everything in his computer with a very limited account, then has to enter an admin password to do anything.

See my work:
OTC Software
Offline JL235

JGO Coder


Medals: 10



« Reply #13 - Posted 2010-10-27 21:17:13 »

If you got infected then how would you know?

yes it is always better to have one ( but no it is not a must ), I know AVG and always disable resident services when using an other computer than mine :p, did I mentioned that I am on Vista and have completly disable windows security center too Wink (but also take care to disable all dangerous services...) no more popup... everything just go super smooth...
It also means malicious code can now run silently in the background since your admin. There is nothing for your PC to flag or question.

At the very least turn Windows Security on (that doesn't have to include UAC, although again that makes you more secure). It's pretty decent these days.

yes inded it is more secure to have an antivirus & a firewall (if you can support how slow they make your computer Sad ), but... it is just a little "more secure" not "secure"
I don't understand how being more secure is a bad thing, or a minor point. Wearing a seat belt in a car makes you less likely to be killed in a car crash but doesn't prevent you from dying. They make driving a fraction of a percent slower (like anti-virus software do to a PC), so does that mean you shouldn't wear one?

If the anti-virus software you've tried have been using large amounts of resources then I'd actually be worried as good anti-virus software doesn't. I suspect your issue is actually running a virus scan whilst playing a game; which you can turn off or have scheduled to be run at an entirely different time. I personally use Microsoft Security Essentials and have noticed no speed issues whilst it has found several viruses.

If your still dead set on trying to get as much performance as you can then I'd recommend partitioning your disk and installing two copies of Windows. At least this means your work partition can have a virus scanner and be secure whilst your gaming partition is insecure (although this is still a bad thing to do). My brother did similar with a partition for audio editing and it was blazingly fast (there was far more then anti-virus and security disabled) however he also kept it _permanently_ offline to help keep it safe.

My point is that there are better methods that you can use then just keeping everything insecure.

Offline cylab

JGO Ninja


Medals: 38



« Reply #14 - Posted 2010-10-27 23:14:23 »

Not running antivirus/firewall software is just as dumb as not making backups.

IMHO you pretty much describe 98% of the all people with internet access...

Mathias - I Know What [you] Did Last Summer!
Offline DzzD
« Reply #15 - Posted 2010-10-28 01:18:42 »

Quote
I suspect your issue is actually running a virus scan whilst playing a game
no, of course no, this is caused by live network trafic analysis, so if you got trouble on a network game just disable resident protection

Quote
My point is that there are better methods that you can use then just keeping everything insecure.
haha, this point is nice Smiley

Offline zammbi

JGO Coder


Medals: 4



« Reply #16 - Posted 2010-10-28 01:47:50 »

I also use microsoft secruity essentials. I have found it the least annoying, free, and doesn't suck cpu like the rest. It seems to pick anything that's dangerous. I just use the default windows firewall, that's good enough for me.

Current project - Rename and Sort
Offline JL235

JGO Coder


Medals: 10



« Reply #17 - Posted 2010-10-28 01:51:57 »

I am reposting this because I'd be interested in seeing your answer. If you got infected then how would you know?

Offline SwampChicken
« Reply #18 - Posted 2010-10-28 03:38:00 »

Interesting post.
I can say that AVG/SuperAntiSpyware/McAfee & Microsft Security Essentials is still not enough...(says the guy who just spent the whole last weekend removing 3 viruses and 2 rootkits from a laptop that had all 4 of these applications running)

Kaspsersky saved us in the end, we got control of the machine back (kind of) but I would have prefered that the machine was wiped. One interesting fact that I read while researching over the weekend was that some infections know how to actually go back and infect previous windows restore points... so not even a rollback will help you these days.

I really should install ubuntu one day.
Offline zammbi

JGO Coder


Medals: 4



« Reply #19 - Posted 2010-10-28 05:10:15 »

Quote
I can say that AVG/SuperAntiSpyware/McAfee & Microsft Security Essentials is still not enough...(says the guy who just spent the whole last weekend removing 3 viruses and 2 rootkits from a laptop that had all 4 of these applications running)
Usually if you install more that one virus checker it can cause more problems, or one will disable itself.


Current project - Rename and Sort
Offline bobjob

JGO Knight


Medals: 10
Projects: 4


David Aaron Muhar


« Reply #20 - Posted 2010-10-28 06:55:51 »

Quote
* Functions as a Java Applet is a component of a malicious Java archive file (.JAR) that is hosted in a malicious Web site. The said .JAR file contains the following files, detected as follows:
      o JavaUpdateApplication.class (622 bytes) as TROJ_JAVADL.A
      o JavaUpdateManager.class (5,496 bytes) as TROJ_JAVADL.B
* Contains function used by TROJ_JAVADL.B to exploit a known vulnerability in MidiSystem.getSoundbank function
MidiSystem, IMO the whole midi package needs a do over, at least on windows.

My Projects
Games, Webcam chat, Video screencast, PDF tools.

Javagaming.org with chat room
Offline DzzD
« Reply #21 - Posted 2010-10-28 11:41:45 »

I am reposting this because I'd be interested in seeing your answer. If you got infected then how would you know?
I try to not be, and try to not have to care if I have one (when using my computer, I say to my self that I may have a virus)

Usually you got infected when performing an insecure action (downloading an exe file as a video codec / soft crack from lowpopular website, launching a signed stuff (java or other maybe viewpoint / unity / etc..)

I always scan exe file I download using different online scanner (to be sure it is not infected), sometime (rarely) I trust : like signed stuff comming from well know JGO members, I never open unsecure attached file in email (even from friend) or I scan it, I take care of USB keys that I push inside my computer. (NB: if you want a nice way to introduce a malware code into a society, put your malware program into a USB key, go in that society for any reason and let the USB key somewhere before leaving, someone will find it and will probably use it, just use attracting name like : games/pingpong.exe)

full scan twice a year with different online scanner (usually three)

also perform scan when earing about powerfull worm or if I find anything strange on my computer (drive access when not doing anything / bandwith comsuption / process using cpu), as I am mainly programming (always watching cpu used / running process / etc...) and have very few services running I usually detect when something is not going normaly in my computer, but yes finally it is very specific to me as I only use my computer to program, not recommended and not the most secure way, dont know how but I can feel when a virus is in my computer, the infected file by TROJ_JAVADL.A was from 23/10/2010 I made the scan 26/10/2010

until now It have worked fine for me but yes it is a bit demagogic (I like to be) to say that using no antivirus is as secure than using one but it is still better to consider that you may be infected (with or without antivirus)

Offline Mads

JGO Ninja


Medals: 26
Projects: 3
Exp: 6 years


One for all!


« Reply #22 - Posted 2010-10-28 14:36:51 »

While security is on topic: What anti-malware software is best for Linux-Ubuntu?

Offline ryanm

Senior Member


Projects: 1
Exp: 15 years


Used to be bleb


« Reply #23 - Posted 2010-10-28 15:35:35 »

While security is on topic: What anti-malware software is best for Linux-Ubuntu?
I don't think there is any. If we analogise anti-malware software to anti-malarial drugs, linux users live on the shore of a sun-kissed fjord and have titanium skin, while windows users are splashing around naked in a leper colony in a sub-Saharan swamp.
Online Roquen
« Reply #24 - Posted 2010-10-28 19:25:30 »

Amusing mental imagery, but the rate of malware creation for a given desktop platform is almost directly proportional to the installed user base.

Security holes are a fact of life.  Have a quick peek: http://www.linuxsecurity.com/content/section/3/170/
Offline Mordan

Junior Member





« Reply #25 - Posted 2010-10-28 19:41:46 »

Amusing mental imagery, but the rate of malware creation for a given desktop platform is almost directly proportional to the installed user base.

Security holes are a fact of life.  Have a quick peek: http://www.linuxsecurity.com/content/section/3/170/

yea just live with it. like living beings do with real life viruses and bacterias. I knew i had a computer illness when IE kept crashing for no reasons. So I downloaed many medecines but only Ad-Aware cure my computer.

Anyways your Credit Card company insures you.
Offline Nate

JGO Kernel


Medals: 145
Projects: 4
Exp: 14 years


Esoteric Software


« Reply #26 - Posted 2010-10-28 21:36:48 »

I agree with DzzD. I don't run any antivirus crap. I am just careful what I run. The only way I'll get infected is some security hole in the software I use. It isn't all that likely that an antivirus would even stop this, and for me it isn't worth having an antivirus running.

I use Acronis for backups. I like that it can backup/restore over the network. I recently saw it has a feature you can turn on, install some malware, and then revert back to the complete state of your system when you turned the feature on. I haven't tried it though.

I use a hardware firewall. I used to use a software firewall too, Sygate Personal Firewall. Fantastic software that was. It pops up any time some piece of software tries network communication. However, unlike garbage like Zone Alarm, it wasn't intrusive and had a nice UI. Unfortunately it no longer exists, and old versions don't run on Windows 7. I haven't been able to find a replacement. Anyway, a software firewall is a good way to know if you are infected, since you'll see strange network activity. Sure, some virus could disable it, but you are never really 100% safe unless you just turn off your computer.

Does anyone know of a good software firewall for Windows 7?

Offline Matzon

JGO Knight


Medals: 19
Projects: 1


I'm gonna wring your pants!


« Reply #27 - Posted 2010-10-28 22:48:23 »

I've been using comodo as my software firewall and antivirus for some time. Works fine.

Offline JL235

JGO Coder


Medals: 10



« Reply #28 - Posted 2010-10-28 23:34:52 »

The only way I'll get infected is some security hole in the software I use. It isn't all that likely that an antivirus would even stop this, and for me it isn't worth having an antivirus running.
Actually they can and several do.

Online kappa
« League of Dukes »

JGO Kernel


Medals: 74
Projects: 15


★★★★★


« Reply #29 - Posted 2010-10-28 23:45:48 »

However, unlike garbage like Zone Alarm, it wasn't intrusive and had a nice UI. Unfortunately it no longer exists, and old versions don't run on Windows 7.

Zone Alarm was a pretty awesome firewall when it first came out, not sure what happened to it. The developers just went mad one release and added a super heavyweight system killing gui to it.
Pages: [1] 2
  ignore  |  Print  
 
 
You cannot reply to this message, because it is very, very old.

 

Add your game by posting it in the WIP section,
or publish it in Showcase.

The first screenshot will be displayed as a thumbnail.

pw (22 views)
2014-07-24 01:59:36

Riven (20 views)
2014-07-23 21:16:32

Riven (17 views)
2014-07-23 21:07:15

Riven (20 views)
2014-07-23 20:56:16

ctomni231 (48 views)
2014-07-18 06:55:21

Zero Volt (44 views)
2014-07-17 23:47:54

danieldean (35 views)
2014-07-17 23:41:23

MustardPeter (38 views)
2014-07-16 23:30:00

Cero (53 views)
2014-07-16 00:42:17

Riven (52 views)
2014-07-14 18:02:53
HotSpot Options
by dleskov
2014-07-08 03:59:08

Java and Game Development Tutorials
by SwordsMiner
2014-06-14 00:58:24

Java and Game Development Tutorials
by SwordsMiner
2014-06-14 00:47:22

How do I start Java Game Development?
by ra4king
2014-05-17 11:13:37

HotSpot Options
by Roquen
2014-05-15 09:59:54

HotSpot Options
by Roquen
2014-05-06 15:03:10

Escape Analysis
by Roquen
2014-04-29 22:16:43

Experimental Toys
by Roquen
2014-04-28 13:24:22
java-gaming.org is not responsible for the content posted by its members, including references to external websites, and other references that may or may not have a relation with our primarily gaming and game production oriented community. inquiries and complaints can be sent via email to the info‑account of the company managing the website of java‑gaming.org
Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines | Managed by Enhanced Four Valid XHTML 1.0! Valid CSS!