Home | Audio | DIY | Guitar | iPods | Music | Brain/Problem Solving | Links| Site Map
This work is licensed under a Creative Commons License.
Protecting Your Computer from Viruses
Computer viruses are deadly. They often spread without any apparent contact and can be a nuisance, or even worse, fatal to your computer. Individuals who create these viruses estimated at 10-15 new ones a day--are the electronic version of terrorists. Their goal is to inflict havoc and destruction on as many people as possible by disabling, stealing, damaging, or destroying computer and information resources. Often, they have no specific target in mind, so no one is safe. If you access the Internet, share files or your computer with others, or load anything from diskettes, CDs, or DVDs onto your computer, you are vulnerable to viruses. Fortunately, there are good guys working just as hard as the hackers to develop cures for viruses as quickly as they send them off into cyberspace. And there are many things you can do to keep your computer from catching viruses in the first place.
A virus is a small computer program that can copy and spread itself from one computer to another, with or without the help of the user. However, viruses typically do more than just be fruitful and multiply, which is bad enough in itself because it hogs system resources. Anything else viruses are programmed to do, from displaying annoying messages to destroying files, is called their payload. Often, they can’t deliver their payload until an unsuspecting user does something to make the virus execute its programmed function. This could be as simple as clicking on an innocent-looking file attachment with the .exe (executable) extension.
Catching a Virus
Most viruses are spread through e-mail attachments because it’s the easiest way to do it. Although Macintosh, Unix, and Linux systems can catch viruses, hackers are particular-ly keen on exploiting the security weaknesses in anything Microsoft, particularly Microsoft Outlook and Outlook Express. Because of the popularity of this software, hackers get maximum bang for their buck, and they probably get some satisfaction from continually reminding Microsoft that being big doesn’t mean you’re perfect.
Anti-Virus Software. Your first line of defense is to install anti-virus software. To be extra-safe, also install fire-wall software, which is now included in some anti-virus packages. This software can scan all your drives for viruses and neutralize them. Here are some features to consider when evaluating anti-virus software:
Compatibility with your operating system. Make sure the software works with your system, particularly if you are using an older operating system like Windows-95.
Firewall software. If it’s not included, find out if it’s available. If you must, buy it from another vendor.
Automatic background protection. This means your software will constantly scan behind the scenes for infections and neutralize them as they appear. This provides some peace of mind.
Automatic, frequent updates. Because new viruses appear every day, you’ll want regular updates. It’s even better if they occur automatically when you connect to the Internet. If automatic updating isn’t included, you’ll have to check the vendor’s Website and download updates yourself. This is vitally important, because you will not be protected from new viruses if your software is out of date.
Disaster recovery. Software with a recovery utility to help you get your system back to nor-mal after a virus attack is always good to have.
ICSA certification. The International Computer Security Association has standards for the detection rates of anti-virus software. Make sure your software has the ICSA certification seal.
Technical Support. It’s a good idea to select a package that offers free technical support, either online or through a toll-free number. If you’re ever felled by a virus, you may need it. Some anti-virus software vendors are Symantec Corporation (Norton AntiVirus), McAfee Corporation (McAfee VirusScan), Trend Micro Inc. (PC-cillin), and Central Command (Vexira Antivirus).
The Virus Scan If you receive a particularly juicy attachment that youíre dying to open, save it on your Windows desktop and run your anti-virus soft-ware on it first. To do this, click once gently on the file on your desktop donít actually open it-- then right-click and choose Scan with <Name of Anti-Virus Software> to activate a virus scan. If itís infected, your anti-virus neutralize it, or at least tell you the too dangerous to open. On the donít feel guilty if the very thought of saving a potentially damaging file anywhere on your system is enough to quell your eagerness to open it and make you delete it immediately.
Delete First, Ask Questions Later When in doubt about the origin of an e-mail, the best thing to do is delete it without previewing or opening it. However, some viruses, such as Klez, propagate by fishing in people’s address books and sending themselves from any contact they find to another random con-tact. You can spread a virus just by having people in your address book, even if you don’t actually e-mail them anything. They’ll receive it from someone else in your address book, which really makes life confusing. Because of the proliferation of porn on the Internet, e-mail viruses often tempt victims by using sexual filenames, such as nudes.exe. Don’t fall for it.
Beware of Virus Hoaxes E-mails warning you about viruses are almost always hoaxes. You may be tempted to believe them because you typically receive them from well-meaning friends, who received them from friends, etc. These e-mails them-selves usually aren’t viruses, but some have actually fallen into the hands of hackers who loaded them with viruses and forwarded them merrily on their way as a sick joke.
When in doubt about the origin of an e-mail, the bestí thing to do is delete it without previewing or opening it. One thing that you can do to protect yourself is to make sure you know where the link in question is going to send you. To do this make sure your "Status Bar" is turned on. In most browser merely go to View->Status Bar. When you put the mouse cursor over the link look at the bottom of the screen and your Status Bar will tell you where you are going. For example, if you have a receive an email that says there is a dispute on your PayPal account and there is a link provided, then by scrolling over the link you should see an address like https://www.PayPal.com/... If you see something that starts with a series of numbers then avoid at all costs. The latter is a bogus site. Notice the https://, this tells you that it is a secure page. You should check out all links and you should be familiar with the URL that you will be sent to according to your Status Bar, if not then avoid the site.
The proliferation of e-mail about virus hoaxes can become nearly as bad as a real virus. Think about it, if you obey an email that tells you to forward it to everyone in your address book, and then THEY do it, and this goes on long enough, you could bring the Internet to its knees. If you ever want to verify a virus warning, your anti-virus vendor may have a list of hoaxes on its Website. It’s in the business of providing the fixes, so it will know which viruses are real.
Beware of Filename Extensions The extension of a filename is the three characters that come after the dot. Windows L. now defaults to hiding file-name extensions, but it isn’t a good idea. Just being able to see a suspicious extension and deleting the file before opening it can save you from a virus infection.
To see filename extensions in all your directory listings, on the Windows XP desktop, click Start button Control Panels Folder Options View Tab. Clear the check box for Hide extensions of known file types. Click Apply I OK. System files will still be hidden, but you’ll be able to see extensions for all the files you need to be concerned with. Viruses often live on files with these extensions: .vbs, .shs, .pif, and these file types are almost never legitimately used for/as attachments.
Disable the .shs Extension One dangerous extension you can easily disable is .shs. Windows won’t recognize it and will alert you before attempting to open an .shs file. The extension is usually just used for Ascrap object@ files created in Word and Excel when you highlight text and drag it to the desktop for pasting into other documents. If this isn’t something you ever do, or you have Word and Excel 2000 or later, which allow you to have 12 items on the Clipboard, click the Start but-ton Control Panel Folder Options File Types tab. Under Registered file types, scroll down and highlight the SHS extension. Click Delete Yes Apply OK.
Dealing with Double Extensions When you turn on your extensions in Windows, you’ll be able to detect viruses that piggy-back themselves onto innocent looking files with a double extension, such as happybirthday.dOc.exe. NEVER trust a file with a double extension, it goes against Nature.
Beware of Unknown .exe Files A virus is a program that must be executed to do its dirty work, so it may have an .exe extension. Unfortunately, this is the same extension used by legitimate program files. So, don’t panic if you find files named Word.exe or Excel.exe on your system, they’re your Microsoft software. Just don’t EVER open any file with an .exe extension if you don’t know what the file’s purpose is.
Watch Out for Icons Viruses in attachment files have been known to assume the shape of familiar-looking icons of text or picture files, like the wolf in the hen house. If you receive an unexpected attachment, don’t open it without first running it through. your anti-virus software.
blabbing about you so you can receive more junk mail spam and phone calls from marketers trying to get inside your wallet.
Don’t Download from Public Newsgroups What better place for a hacker to lurk and stick his virus than in the middle of a crowd? Sooner or later, someone’s bound to download it and get the virus going. Don’t download files and programs from newsgrOups or bulletin boards, or open attachments sent from strangers in chat-rooms (A Let’s exchange pictures!@) without first scanning with your anti-virus soft-ware.
Solution I I
Avoid Bootleg Software This may seem like a no-brainer, but sometimes that tiny price tag on a popular-but-expensive package can be too good to resist. Resist it. Likewise, be careful about accepting application software from others. You don’t know where it’s been, and what may have started out as a perfectly clean package could have become infected during installation on someone else’s infected computer. Sites that serve pirated software should be avoided for several reasons. First, it is a hit-or-miss proposition on whether or not you will download a real piece of software or merely some black hat hackers idea of a bad joke. There are ways to find out if the software is a 'legit' running piece of software or a virus, but...quess what? We are so opposed to pirating that we will not share this information with you. If you do decide to download some pirated software, then you should know that they do have ways of tracking such and you risk some hefty fines and possible jail time. Our advice, use only legal software.
Protect Macros in MS Word, Excel and Powerpoint A common type of virus uses macros. Macros are sets of stored commands that users can save as shortcuts to perform long functions in just a few keystrokes. A macro virus may perform such mischief as changing file types from text files or spreadsheets into templates, locking up keyboards, and deleting files. Word, Excel, and PowerPoint come with macro virus protection. To make sure yours is activated, open each application, then click Tools menu | Macro | Security. On the Security Level tab, make sure Medium or High is selected. Click OK. If you are already infected with a macro virus, you may find that the steps of this procedure are unavailable because the virus has disabled them. In that event, run a virus scan on your system to see if your antivirus software can kill the virus.Solution 13
If you share your computer, it's a good idea to assign everyone a password. Passwords should be a combination of letters and numbers no less than eight characters long, and preferably nonsensical. Never write passwords and stick them anywhere near the computer. To assign passwords in Windows XP, click the Start button | Control Panel | User Accounts. Follow the prompts to assign/change passwords.Solution 14
Update Application Software Microsoft constantly issues patches for the security holes in its operating system and applications software. However, don't be lulled into complacency if you have Windows Update automatically checking things for you. Update checks for patches to repair bugs in the operating system, not for security problems.
To get the latest security hotfixes (as Microsoft calls them), visit www.microsoft.com and look for hotfixes for all your Microsoft software, particularly Outlook and Outlook Express.
Just to keep things fair, here is a link to the Apple Support page.
Microsoft also has a free downloadable package called Microsoft Baseline Security Analyzer (MBSA) that scans your system for missing hotfixes. It works with Windows 2000 and XP Home and Professional only. It doesn't support Windows 95, 98 or ME.
To download the MBSA, go to the TechNet section of the Microsoft website. Be warned that the information is written in techie language, so you may find it daunting
Test Your Anti-virus Software You can check your anti-virus and fire-wall software to see how effectively it’s protecting you. Some free tests you can find on the Web are EICAR Standard Anti-Virus Test File (www.eicar.org/antLvirus_test_file.htm), Command on Demand (www.commandondemand.com), or House calls (http:llhouse-call.antivirus.com/house call/starLpcc.asp).
Check for Worms A worm virus is particularly insidious because it can copy itself from one computer to another with little or no human intervention. If you suspect a worm has infected your computer, here’s a simple test that may give you the answer. Send your-self a blank e-mail. If it comes back with a zip or .exe attachment, you may be infect-ed and it’s time to run the full virus scan.
Visit these Website's to find more Solutions for viruses and spyware.
www.securityfocus.com www.securitystats.com www.spychecker.com
Solution I 7
Don’t Try This at Home Many viruses like to send themselves to everyone in your e-mail address book, so you may have read (or received a hoax e-mail) about this fix. All you have to do is create a dummy address in your book like 0000 or AAAAA, so it appears first on your list. It’s supposed to stop the virus in its tracks because the first e-mail the virus sends won’t go to the dummy address, which causes the virus to give up. This is the same logic used by the people who design strings of Christmas tree lights that go out if just one bulb blows.
This fix doesn’t work because most email programs send separately to every-one on a list. They return error messages on the e-mails that don’t go through. So, your dummy address wouldn’t receive the virus, but all your other contacts would.
Now that you know some ways for avoiding and dealing with viruses, let’s wrap things up with some Solutions you’ve probably heard before but have ignored.
Back up your files regularly. If a virus crashes your system, you’ll feel much better if you’ve got backup copies of all your important files. Make the backup copies on a media that’s separate from the computer, such as on diskettes, CDs, or zip disks. Scan them for viruses before you put them away to make sure they aren’t infected. If they are, they’ll do you no good if you ever have to use them because they will just transmit the virus right back onto your computer.
Make a boot disk. Create an emergency boot diskette before you have a problem so you can start your computer after a serious security problem. To make a boot diskette with Windows XP, put a blank floppy disk in the drive. Open My Computer, then right-click the floppy drive. Click Format. Under Format options, click Create an MS-DOS startup disk. Click Start. Keep the disk in a safe place. With luck, you’ll never need to use it.
Home | Audio | DIY | Guitar | iPods | Music | Links | Brain and Problem Solving | Site Map | Contact