Is it normal for files to change from untrusted to trusted automatically after a certain amount of time. I have noticed some files i downloaded have changed without me ever having manually changed their status to trusted. I am pretty sure this happened after selecting the 'allow' option in file and registry tracks. I have also done some tests and have discovered when i cut some untrusted jpeg files from my Truecrypt F: Volume and pasted them into my C: drive sometimes the status of the files changed to trusted and sometimes it didn't, however i thought the status was never supposed to change if a file is simply cut from one drive and pasted to another. Is this normal or am i missing something here.

1. DefenseWall do not move untrusetd files to trusted automatically. Also, it doesn't happens this way with "allow" function of the "Rollback" diaalog.
2. JPEG files are not malicious.

I just downloaded a bunch of mpegs (about 50 files) and saved them into a folder on the C: drive. I then right clicked each of the files to check their status and they all said "untrusted + non secured +not allowed to be modified by untrusted". I then went into the file and registry tracks and highlighted them all and clicked allow+apply and now most of these same mpegs are showing up as being "trusted + non secured + not allowed to be modified by untrusted". I realise jpegs and mpegs are not harmful but shouldn't these files still remain as untrusted even after clicking allow+apply in file and registry tracks. You say this does not happen with rollback but it definitely happening with me. Are you sure i am not doing anything wrong.

For that files- no. DW do automatically remove them from internal list (not from the untrusted apps one) if they are not harmful (really MPEG and JPEG).

Not quite sure i understand your answer. Are you saying that it is normal for certain safe files like jpegs or mpegs that are downloaded through an untrusted web browser to change from untrusted to trusted even if i did not make the changes myself. Does Defensewall have a whitelist of safe file types.

In fact, DW has a black list of file types and extensions will be kept as untrusted until you trust them manually.

I've read somewhere that jpegs, and probably mpegs, can be harmful. Sometimes they are made to exploit the viewers vulnerabilities. Am i missing something here?

Thanks in advance

1. There is no need to cover mpegs as multimedia client must be covered as untrusted.
2. JPEG's are not harmful if you use buffer overflow protection like Hardware DEP enabled for all processes.

I have an old PC. How can I protect myself from Buffer overflow attacks? Will protection slow down my PC.

Best Regards

A detailed description of the Data Execution Prevention (DEP)

http://support.microsoft.com/kb/875352

My PC dont have hardware DEP. I have XP Sp3 but I dont know if the standard optout setting will protect me good enough or if I should buy Ilyas Defenseplus or something else. I am in deep waters asking about this since i am nontech and onlu know the terms, but dont know what they do..

Best Regards

QUOTE

maybe kees1958, creer or Ilya have suggestions.

Yes, DefencePlus can this case, but the project is not under development for a long time. And it doesn't slow down PCs- I had it installed on my old P2-450.

I have another quick question. How come sometimes when i download some jpegs occasionally they turn up in the untrusted applications list (most of the time they don't). If defensewall doesn't cover non malicious jpegs then they should not be appearing here as they are not executables. Is that correct ?

Interesting. If you meet this issue again- just let me know (with link), I'll try to reproduce.

It's probably not something that can be reproduced as it just happens randomly from time to time and not with any specific jpegs. Either way i'm not worried about it, i just thought it was strange that's all.

Anyway, I'd like to know more.