Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows XP SP3 Virtual machine testing


  • Please log in to reply
8 replies to this topic

#1 Vile Shadow

Vile Shadow

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:06 AM

Posted 29 July 2010 - 09:17 AM

Hey guys,

Recently I have installed XP under VMware for a bit of testing to see how vulnerable XP is to viruses. This is mainly to prove to friends of mine that XP is more susceptible to infection than Windows 7 as they are asking the question claiming XP has superior resistance to viruses compared to Windows 7. Even a few of them think that XP will continue it's support after SP3 which they are clearly wrong but they tend to argue that myself and others who also say that 'SP3 Extended support will end' are lairs.
My friends do not have much knowledge when it comes to computers but as years go by and XP is fully unsupported they will run into many issues and lose/damage valuable data. I do not want this to happen to them but since they are very concreted in to XP they need first hand evidence to show them what is more superior in terms of protection and resistance and even usability of Windows 7 itself.

I want to try and show them first off on how rogue software also known as Scare-ware can infect a PC and use scare tactics to scam a user so I can help them identify and avoid infection in the first place.
Secondly I need to show how a worm operates and sends spam or malicious emails to others or via other communication types such as Instant Messaging.
Thirdly I need to show them what happens when you do get a virus and how to remove virus using Anti-Malware tools, suites etc.

If I could ask... If somebody knows where to get a piece of rouge software for pure demonstration purposes only so I can show my friends exactly how it happens and what to look out for it would help me greatly and them as well from staying safe and protected in the future.

Though I've been looking everywhere for something and nothing comes up. I am hoping that some people on here recall where they caught one from which would help but I don't think posting it in the actual thread would be appropriate.

That is if it is all alright with the mods... or am I breaking some of the rules on the forums I really do hope not.
However if I have then I'm sorry if I broken some rules :thumbsup: but just give me a notice if I have that would be appreciated.

The reason I ask this is because a majority of them still run on SP1 or SP2 with updates being disabled sometimes too and the fact they end up with all these infections which involve me reinstalling the whole OS because there was so much damage to the OS leaving it slow or inoperable. The thing is it takes me time to fix this problems that occur since I am the only one they know personally who is good at this and they are becoming sick of being infected by viruses as they would notice from random popups, slowdowns, not being able to open programs, redirecting sites etc.

Thanks :flowers:

BC AdBot (Login to Remove)

 


#2 JonM33

JonM33

  • Banned
  • 503 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:06 PM

Posted 29 July 2010 - 09:58 AM

Recently I have installed XP under VMware for a bit of testing to see how vulnerable XP is to viruses. This is mainly to prove to friends of mine that XP is more susceptible to infection than Windows 7 as they are asking the question claiming XP has superior resistance to viruses compared to Windows 7. Even a few of them think that XP will continue it's support after SP3 which they are clearly wrong but they tend to argue that myself and others who also say that 'SP3 Extended support will end' are lairs.


They are wrong, you are right. All you need to tell them is that any process can run with full admin rights in Windows XP. This is not possible with Windows Vista or Windows 7 due to UAC.

Windows XP SP3 is supported until April 2014 according to Microsoft. End of debate.

#3 Dennis H

Dennis H

  • Members
  • 893 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 29 July 2010 - 10:37 AM

If you are looking for an infection, just go to a porn site.

#4 hamluis

hamluis

    Moderator


  • Moderator
  • 56,119 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:07:06 PM

Posted 29 July 2010 - 10:47 AM

<<This is mainly to prove to friends of mine that XP is more susceptible to infection than Windows 7 as they are asking the question claiming XP has superior resistance to viruses compared to Windows 7.>>

A very specious goal, IMO.

Unless you have a background commensurate with such a research effort...and the time/resources necessary to execute such...I doubt that you will "convince" anyone of anything.

The fact that you don't even seemingly know how to get infected...speaks volumes about your stated goal, IMO. Most users don't seem to have any trouble at all in finding ways to get their systems infected...and I suspect that many of your stated target audience...are among the users who find the way without trying.

There are tons of malware forums on the Web...including our own...that document the stages of infection and subsequent efforts to remove/overcome such...so I wonder why you posted this in the XP forum.

Malware is not an XP issue, nor is the O/S the primary weakness or point of attack. The weakness for malware lies in the practices/mindset of users, regardless of O/S employed, IMO.

Louis

#5 JonM33

JonM33

  • Banned
  • 503 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:06 PM

Posted 29 July 2010 - 11:48 AM

If you are looking for an infection, just go to a porn site.


I go to Twistys, DigitalDesire and the Playboy Cyber Club all the time. Porn sites are actually SAFER as they use SSL.

#6 hamluis

hamluis

    Moderator


  • Moderator
  • 56,119 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:07:06 PM

Posted 29 July 2010 - 12:25 PM

<<Porn sites are actually SAFER as they use SSL.>>

Now...that's what I call an oversimplified generalization...considering the likelihood that ALL porn sites that exist...fit that statement. I doubt seriously if anyone has been to a signifcant number of the multitude of porn sites...enough to make such a statement and mean it.

"Some" and "might" are two useful words when talking about such an expansive phenomenon, IMO.

Louis

#7 JonM33

JonM33

  • Banned
  • 503 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:06 PM

Posted 29 July 2010 - 12:41 PM

<<Porn sites are actually SAFER as they use SSL.>>

Now...that's what I call an oversimplified generalization...considering the likelihood that ALL porn sites that exist...fit that statement. I doubt seriously if anyone has been to a signifcant number of the multitude of porn sites...enough to make such a statement and mean it.

"Some" and "might" are two useful words when talking about such an expansive phenomenon, IMO.

Louis


Stick to the legitimate ones and not the ones you find on Google by searching for a name and you will be fine.

#8 Vile Shadow

Vile Shadow
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:06 AM

Posted 30 July 2010 - 03:17 AM

They are wrong, you are right. All you need to tell them is that any process can run with full admin rights in Windows XP. This is not possible with Windows Vista or Windows 7 due to UAC.

Windows XP SP3 is supported until April 2014 according to Microsoft. End of debate.


I do realize that XP extended support will last till 2014 but this will only include 'Critical updates' as meaning a dangerous exploit that can be used to attack a machine. Nothing much else would be ever released apart from that.
You are correct saying that Windows 7/Vista are safer as they use UAC which is great for people who aren't power users and do not know as much as I do e.g. My friends. For myself I tend to have UAC disabled.

Oh and hamluis I agree and disagree.
I have a firm belief that Windows 7 is much better protected from exploits and viruses due to the different kernel build and file names/directories making it hard for viruses to actually run their code properly. Vista is almost the same but I don't prefer it because it can be a slight resource hog than Windows 7. XP is at the bottom of my list but this is my opinions and I may be wrong. But remember most of my friends are still on SP2 or even SP1 with having automatic updates off this is why they tend to have all these issues.
I do defiantly agree with you saying that no matter what OS it tends to be the user who manages to get themselves infected and I think we all know that this is mostly via social engineering we sometimes see on the internet.

Porn sites don't seem to be the main way to get yourself infected honestly. I believe it is usually cracked programs that are found on various torrent websites.


I will continue to try and find a virus or some rogue software that will help me get some sense into my friends maybe to open their eyes to see how it can be easy to be infected on an unprotected system. I had to look at a close mates laptop today because he was continually logged out of Windows Live Messenger, Turns out he clicked on a link from somebody else which led him to a website where he input his email and password and that ended up with his account being used to send more password stealing website links to his contacts, changing his password fixed it up which is good. I've told him about to avoid clicking on links people send to him otherwise he will have a similar problem again hopefully he has the idea :thumbsup:

#9 JonM33

JonM33

  • Banned
  • 503 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:06 PM

Posted 30 July 2010 - 07:10 AM

Porn sites don't seem to be the main way to get yourself infected honestly. I believe it is usually cracked programs that are found on various torrent websites.


There are unofficial porn sites you can find through Google if you search for porn actresses' names. Generally these will try to install malware when you visit them. I do agree that keygens and cracks are also a major means of installing viruses and malware.

So illegal software and not browsing legitimate websites are the prime means of infection.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users