Save Yourself: The Nitty Gritty on Computer Viruses

Virus: a program that replicates itself, usually without the Permission or knowledge to the limit in efforts to control the damage done by viruses and other virus-like programs, i.e, worms, trojans, and jokes.

 

Payload

Those who work for institutions or large companies usually have the

protection of firewalls and, if something slips through, they have access to technical support. But, those who work from home, for small companies, or have their own private practice are not as well protected.

 

They rarely have in-house help and have to rely on their own cunning to survive an infection.

 

First Steps

Virus protection software is a necessary first step in protecting computers against infection. Remember Melissa? Smell a RAT?

 

Melissa was a worm that became widespread in March 1999. Melissa’s creator was found, arrested, and pleaded guilty. A worm is a virus that spreads rapidly over network connections instead of within the environment they initially infected.

 

RATs are remote access Trojans that have become quite prolific since their inception in early 1999. A Trojan does not spread but compromises the security of the computer. A RAT attaches itself to a computer roviding remote access to that computer by the person who wrote the RAT or anyone else who discovers that the computer’s security has been compromised.

 

The person who controls the RAT can then steal data, install code or do whatever they wish to the victimized computer.

 

Users Beware Knowing how to identify potential viruses is key to avoiding activating one. Opening an unknown or uncommon executable file is a mistake, especially if it arrived as an attachment to an email (just because you know the person who sent it doesn’t necessarily mean that it isn’t a virus).

 

All anti-virus software is the same and having two different programs or virus scanners available is valuable when a questionable file is discovered. A second scanner will sometimes pick up a virus that the first one missed,

 

I remember years ago when my work PC was infected with the first virus

received at AR. It came in on a disk from one of our volunteer newsletter editors. Fortunately, the virus was discovered quickly, contained, and cleaned up easily.

 

I left a message for the editor to warn her that her computer had a virus. She called me back, guiltridden, and said she felt like she “had some social disease” and now had to tell everyone she had

shared disks with that she had a virus.

 

It was funny then. Viruses weren’t as common and neither were PCs. Most of us did not have email and the World Wide Web hadn’t even come into existence (imagine that if you can; it’s like a kitchen without a microwave).

 

Today, viruses are no laughing matter. They are so prevalent that we take chances every time we send or receive e-mail, boot from disk drives, or open an unknown executable file. Even our data files aren’t safe with the advent of macro viruses. Virus writers are prosecuted when they can be found and company resources are frequently stretched

 

Following are a few file extensions that should alert the user that something is remiss:

 

.dr — considered a dropper, this program drops the virus or worm onto the computer.

 

.enc — encrypted or encoded, this file extension is the sign of a

program that has replicated itself.

 

@m — a “mailer,” this program sends itself by e-mail when the user sends a message.

 

@mm — another “mailer” that sends to every e-mail address in the user’s address book.

 

Dial-up access via a modem helps limit exposure. Computers that are continuously online with DSL, T-1 or cable modem increase their chances of being “found” and infected.

Prevent Further Infections

Don’t use an infected computer. This not only increases the amount of damage to the computer and files but potentially spreads the virus to other computers. If there is no virus protection software on the computer, go to http://nct1.digitalriver.com/0001 and download a copy of Symantec’s trialware.

 

If the software won’t cure the virus, go to the Internet and check the web site of the anti-virus software company. They frequently have updated signatures (upgrades to the software for curing newly discovered viruses). If the software can’t eliminate the virus, there are a few options: another anti-virus program, technical assistance, or a reformat and reinstall on the infected computer.

 

Boot Virus — placed in the boot sector of the disk, this virus automatically executes when the computer boots up.

 

Companion Virus — a file that infects the operating system when a certain program is launched. It does not infect the program.

 

File Virus — attached to a program file, this type of virus loads when the program is executed.

 

Hoax — an e-mail message that gets forwarded describing a highly unlikely virus type.

 

Joke — harmless program that causes benign activities, i.e., a screen-saver

 

Macro Virus — similar to a file virus; copies the macro to templates or other application document files.

 

Script Virus — a type of program file used by writers of mass mailing viruses.

 

Trojan — a program that doesn’t replicate but compromises the security of the computer is some way.

 

Worm — a program that replicates itself over e-mail, network drives, or other transport mechanism.

 

Notify those who may have also received the infected file. This is acutely important in a work environment where the virus can be passed back and forth and really slow down production for weeks.

 

Remember that once your company has passed on a virus, your files become suspect for a very long time with those who endured the inconvenience of receiving the virus.

 

Although disks were once the main means of spreading viruses, today viruses spread quickly to hundreds of computers through e-mail and network connections. My husband’s work environment was brought to a halt when a virus replicated over their network and infected over 200 computers in minutes. It took them two weeks to recover fully.

 

Save Yourself

Knowledge is key. If you install anti-virus software, know how viruses are promulgated, investigate suspect file types, and avoid unknown executables, you will increase your chances of keeping your computer and your company virus-free. Keep in mind, however, there are no guarantees.

Return To Articles

 

  
 
AR Driving Directions 
About AR
Association Resources offers associations the convenience of experienced staff and a wide range of services, without the need to deal with personnel issues and expending funds on capital purchases. They gain shared buying power for supplies, stationery, hotels, conference services, and design/web/printing services.