Grafton Falls News

Latest Virus Threats Microsoft

Computer Viruses, Worms, and Trojan Horses Explained

Overview

Computer viruses, worms, and Trojan horses are malicious pieces of software that can cause considerable damage to your computer hardware, software, and information stored init. They can also slow down your PC, making it virtually unusable. This type of software falls into the category of malware (short for malicious software) since it is designed to harm or secretly access a computer system without the owner's informed consent. Computer virus hoaxes are also quite common, but harmless in nature.

An often asked question, particularly from people relatively new to computers, is "Where do computer viruses come from?" The answer is simple. People write computer viruses. A person writes the code, tests it to ensure that it will spread properly, decides what the virus will do, and releases it. There are many psychological reasons why someone would do this, and these virus authors are often compared to vandals or arsonists.

The Creeper Virus is generally accepted as the first computer virus. It was first detected on ARPANET, the forerunner of the Internet, in the early 1970's, infecting DEC PDP-10 computers running the TENEX operating system. Creeper gained access via the ARPANET and copied itself to the remote system where the message, "I'm the creeper, catch me if you can!" was displayed.

Computer viruses, as we know them today, were first widely seen in the late 1980s, and they came into existence because of several factors. The first factor was the spread of personal computers (PCs). During the 1980s, the IBM PC (released in 1982) and the Apple Macintosh (released in 1984) became very popular, with widespread use in businesses, homes and college campuses.

The second factor was the use of computer bulletin boards. Using a modem, people could dial up a bulletin board and download programs of all types. Games were extremely popular, and so were simple word processors, spreadsheets and other productivity software. Bulletin boards led to the precursor of the virus known as the Trojan horse.

The third factor that led to the creation of viruses was the floppy disk. In the 1980s, programs were small, and you could fit the entire operating system (usually MS-DOS), a few programs and other files onto a floppy disk or two. Many computers did not have hard disks, so when you turned on your machine it would load the operating system and everything else from the floppy disk. Virus authors took advantage of this to create the first self-replicating programs. Quite often these floppy disks were shared among computer users, allowing the virus to spread from one computer to another.

Viruses

A computer virus is a small piece of software that, like a human virus, is capable of replicating itself and spreading. In order to do this, a virus must be permitted to execute code and write to memory. For this reason, many viruses attach themselves to executable files (real programs), such as your favourite text editor program or other utility. If you launch the text editor program, the virus' code may be executed simultaneously, allowing it to replicate itself, and attach to other programs.

An e-mail virus travels as an attachment to e-mail messages, and usually replicates itself by automatically mailing itself to dozens of people in your e-mail address book. Some e-mail viruses don't even require a double-click -- they launch when you view the infected message in the preview pane of your e-mail software. Being a computer professional with over 30 years experience in the software industry, I have seen a lot of bogus e-mail, so receiving the following message recently was not a surprise:

Dear customer.
The parcel was send your home address.

And it will arrice within 7 bussness day.

More information and the tracking number are attached in document below.
Thank you.

2011 DHL International GmbH. All rights reserverd.

Of course, the e-mail also contained an attachment in the form of a ZIP file. Not only is the spelling bad, but the grammar is bad as well. And they claim to be DHL, a reputable company! My curiosity didn't get the better of me -- I decided not to open the attachment.

One of the more famous e-mail viruses appeared in March, 1999 and was known as the Melissa Virus. Anti-virus software vendors refer to this virus as the Melissa macro or W97M_Melissa virus. It propagated itself in the form of an e-mail message containing an infected Microsoft Word 97 or Word 2000 document as an attachment. It was so powerful that it forced a number of large companies, including Microsoft, to completely turn off their e-mail systems until the virus could be contained.

Virus Hoaxes

A computer virus hoax is a message warning the recipient of a non-existent computer virus threat. The message is usually a chain e-mail that tells the recipient to forward it to everyone they know.

Most hoaxes are sensational in nature and easily identified by the fact that they indicate that the virus will do nearly impossible things, such as blow up the recipient's computer and set it on fire, or less sensationally, delete everything on the user's computer. Quite often the e-mail message claims to originate from a reputable company, such as Microsoft, giving the hoax more credibility.

Virus hoaxes are usually harmless and accomplish nothing more than annoying people who identify it as a hoax and waste the time of people who forward the message. Nevertheless, a number of hoaxes have warned users that vital system files are viruses and encourage the user to delete the file, possibly damaging the system. Examples of this type include the jdbgmgr.exe virus hoax and the SULFNBK.EXE hoax.

Some consider virus hoaxes to be a computer worm in and of themselves. They replicate by social engineering -- exploiting users' concern, ignorance, and reluctance to investigate before acting.

The gullibility of novice computer users (my parents come to mind) convinced to delete files on the basis of hoaxes has been parodied in several popular jokes and songs. "Weird Al" Yankovic wrote a song called "Virus Alert" that makes fun of the exaggerated claims that are made in virus hoaxes, such as legally changing your name. Another parody is the honor system virus, which has been circulated under several different names including the Amish Computer Virus, the Blond Computer Virus, the Newfie Virus, and the Unix Computer Virus, is joke email claiming to be authored by the Amish who have no computers, programming skills or electricity to create viruses and thus ask you to delete your own hard drive contents manually after forwarding the message to your friends. The Tuxissa Virus is another parody of the virus hoax, based on the concept of the Melissa virus, but with its intent of installing Linux on the victim's computer without the owner's permission. The story says that it was spread via e-mail, contained in a message titled "Important Message About Windows Security". It was supposed to first spread the virus to other computers, then download a stripped-down version of Slackware and uncompress it on to the hard disk. The Windows Registry is finally deleted and the boot options changed. Then the virus removes itself when it reboots the computer at the end, with the user facing the Linux login prompt and all his Windows security problems solved for him.

Worms

A computer worm is a small piece of software that uses computer networks and security holes to replicate itself. Unlike computer viruses, worms do not need to attach themselves to programs, and don't require user intervention to spread. Worms are capable of replicating in great volumes, taking control of features on your computer that transport files or information. For instance, a worm called Code Red replicated itself more than 250,000 times in approximately nine hours onJuly 19, 2001, slowing down Internet traffic dramatically.

The ILOVEYOU (also known as LoveLetter) worm successfully attacked millions of Windows computers in 2000 when it was sent as an attachment to an email message with the text "ILOVEYOU" in the subject line. The worm arrived in email in-boxes with the simple subject of "ILOVEYOU" and an attachment "LOVE-LETTER-FOR-YOU.TXT.vbs". The 'vbs' extension was hidden by default, leading unsuspecting users to think it was simply a text file (when in fact it was a Visual Basic script). Upon opening the attachment, the worm sent a copy of itself to everyone in the Windows Address Book and with the user's sender address. It also made a number of malicious changes to the user's system.

Trojan Horses

A Trojan horse is a destructive computer program that masquerades as a valuable or entertaining tool. It claims to perform a desirable function, but in fact damages your computer system when it is run. A Trojan horse can be a virus or a remote control program. They are usually installed on a computer through an e-mail attachment.

The term is derived from the Trojan Horse story in Greek mythology. In this story, the Greeks give a giant wooden horse to their enemy, the Trojans, apparently as a peace offering. But after the Trojans drag the horse inside their city walls, Greek soldiers sneak out of the horse's hollow belly and open the city gates, allowing their compatriots to pour in and capture Troy.

Unlike viruses, Trojan horses do not replicate themselves but they can be just as destructive. One of the most crafty types of Trojan horse is a program that claims to rid a computer of viruses but instead introduces viruses onto the computer.

Back Orifice is a famous example of a Trojan Horse, written to demonstrate the lack of security in Microsoft Windows 98. It was the brainchild of Sir Dystic, a member of the U.S. hacker organization CULT OF THE DEAD COW. It was designed for remote system administration, based on a client-server architecture, allowing a user to control a computer running Microsoft Windows from a remote location (much like Microsoft's Remote Desktop Connection software). This required two components to work -- a client application running on the attacker's computer and a server application running on the victim's computer. Once installed, the attacker can perform any number of tasks on the victim's computer, including transferring files to and from the victim's machine, crashing the computer, data theft, installation of software including malware, and keystroke logging for the purpose of acquiring user ids and passwords. Back Orifice 2000, the sequel to Back Orifice, was later released and could run on Windows NT machines.

Another notable Trojan horse is called SubSeven. It was designed to attack computers running Microsoft Windows 95 and Windows 98. It is also similar in architecture to Back Orifice, but with a third component called a server editor (EditServer), which allowed the attacker to configure the infection. It provides many more options for attack than Back Orifice, however, allowing an attacker to issue virtually any command imaginable on a compromised system.

Trojan horses are becoming more and more common. According to a survey conducted by BitDefender from January to June 2009, "Trojan-type malware is on the rise, accounting for 83-percent of the global malware detected in the world". This virus has a relationship with worms as it spreads with the help given by worms and travel across the Internet with them.

Famous Computer Viruses And Worms

Throughout history there have been a lot of computer viruses and worms created. Here is a list (in no particular order) of the most dangerous ones.

• Mellissa (1999) -- The Mellisa Virus caused damage estimated at between $300 and $600 million. This virus gained huge fame on March 26, 1999, with experts claiming that between 15 and 20 percent of all business PCs on the planet were infected.
• ILOVEYOU (2000) -- ILOVEYOU was first detected in the Philippines on May 4. In just one day it spread worldwide, with about 10 percent of all Internet users being affected by the worm, and caused $5.5 billion damage. When activated, the computer worm overwrote all files on the host, attaching a copy of itself to each file. In addition, the worm sent a copy of itself to everyone in the user's address book.
• Nimda (2001) -- Nimda used seemingly every possible method to spread, and was very effective at doing so. Nimda is notable for being one of the fastest spreading and most widespread viruses ever.
• Code Red (2001) -- Code Red targeted Internet Information Services (IIS) on Windows servers. It also launched denial of service (DoS) attacks.
• Creeper (1971) -- Creeper is generally accepted as the first ever computer virus.
• SQL Slammer (2003) -- This tiny virus infected servers running Microsoft's SQL Server Desktop Engine, and was very fast to spread.
• Elk Cloner (1982) -- Possibly the first personal computer virus, Elk Cloner infected the boot sector of Apple II floppies.
• The Morris Internet Worm (1988) -- The Morris worm infected Unix systems and is considered the grandfather of computer worms.

Protecting Your Computer

You can protect your computer from viruses with a few simple steps:

• Run a more secure operating system such as UNIX.
• If you are using an unsecured operated system, then purchase good anti-virus software that automatically scans e-mail attachments or other downloaded files. Make sure you scan for viruses at least once a week.
• You can eliminate almost all infection from traditional viruses by simply avoiding programs from unknown sources (such as the Internet). Download software from trusted sites only. Better yet, install only commercial software from a CD.
• Avoid opening attachments or clicking on links in e-mail from unknown senders. In particular, attachments that are executable files (i.e have an extension of EXE, COM,or VBS) can do all sorts of damage to your computer.
• Due to the destructive nature of viruses, it is important that you back up your data on a regular basis, particularly those files you can't afford to lose.

Most up-to-date anti-virus programs, like McAfee VirusScan Plus, BitDefender, or CA Anti-Virus Plus, will guard against computer viruses and remove them should they be installed. Of course, they need to be updated with virus signature files to catch the latest variants that are released periodically. These signature files (sometimes called "definition files") can be obtained from the program vendor via the Internet.

 

 

About the Author

Visit digital-products.ca for digital products and services from several different categories including software, e-books, games, utilities, reference material, and services. You'll also find several informative articles and videos on some of the products offered.

Windows installer shut down?

How can I get it back?
I need the latest version of java on my computer to get into a program and I can't download it because I don't have Windows Installer.
When I try to download it says "to help protect your computer, windows has closed this program"
Name: Windows installer
Publisher: Microsoft coporation
then it says close message in a little box

and under that it says
Data Execution Prevention helps protect against damage from viruses and other security threats. (then it says in blue) What should I do?

Then when I close the message it asks if I could like to send an error report.

http://www.microsoft.com/downloads/details.aspx?FamilyID=889482FC-5F56-4A38-B838-DE776FD4138C&displaylang=en

Latest Virus Threats Microsoft
KASPERSKY ANTI-VIRUS 2009 + KKF ULTIMATE version

What is the Iexplore .Exe Virus and How Can I Protect My Computer From It?

What Is The Iexplore.Exe Virus

The Iexplore.exe file is the exe file (executable file )  for Internet Explorer, the well known web browser from Microsoft Corporation.

When you open the Task Manager on your Windows System (using the keyboard combination Ctrl+Alt+Del) when Internet Explorer is running, then you can see "iexplore.exe" as a running task on the Processes tab.

If you locate this process running in the Task Manager even when IE is not running, or if you observe two IEXPLORE.EXE running processes when your internet browser is open, and one of these tasks consuming around 90-95% of your processor then it is sure that your computer is infected by a virus/trojan.

As a result, you will receive frequent Iexplore.exe errors on your PC and your system's performance will decrease considerably.

In the next paragraphs we will discuss about what can cause iexplore exe virus in your Windows and how to prevent these problems.

How Iexplore.exe virus can infects my computer?

One of the most common threats that can put the iexplore.exe virus file on your system is a backdoor trojan, such as Backdoor.GrayBird (named after a Chinese remote access tool that can be programmed to run in the background on the computer being hacked).

These are the most dangerous, and most widespread, type of Trojan viruses. Backdoor Trojans provide the creator or "master" of the Trojan with remote "administration" of victim systems. Unlike legitimate remote administration programs, they install, launch and run invisibly, without the consent or knowledge of the user. Once installed, backdoor Trojans can be set to send, receive, execute and delete files, collect confidential data from the computer, log activity on that computer and more.

Backdoor application runs in the background on the system and cannot be detected by normal system check up processes.

Some of the actions that the Iexplore.exe can perform on a infected computer are:

*  Reboot the system

*  Access, modify or delete any file and folder

*  Capture and send screenshots

*  Turn on the Webcam or microphone

*  Retain username and passwords

*  Take full control of the virused system

The trojan Backdoor.Graybird is sent to the victim computer by a hacker. On that system, by default, the backdoor runs silently as "iexplore.exe".

The backdoor keeps trying to connect to its control server to let the remote server know that it is online on the user computer and can now be controlled.

After the hacker receive the message, he can now run the server-side software of the backdoor and see all computers on the user network that can be controlled with the help of the backdoor.

To protect your PC from backdoor trojan infections and prevent errors, such as iexplorer.exe error, you must follow the preventive measures listed below:

* Do not click links or open attachments that come with unsolicited emails, because email is the most used method to install backdoors on computers.

* Do not visit or download from untrusted or suspicious websites.

* Update your antivirus and anti-spyware software with latest definitions to be sure that your computer is protected against the latest viruses, backdoors, and spyware.

* Turn on the firewall and install intrusion protection tools to prevent any authenticated access to your computer or computer network.

* Keep your computer updated with the latest security patches from the OS manufacturer.

* Rewrite your passwords to minimize the damage that can be caused by virus and backdoor infection - you must be careful with computer passwords on a network.

* Disable services that you don't use on your computer such as FTP server, Web server, and Telnet because they open up your system to malicious attacks.

* Setup your email filters and email server to block file attachments with specific extensions, such as .scr, vbs, .pif, and .bat that are frequently used to plant viruses.

* Regularly scan your computer's registry, to keep the system registry free from malicious entries that can be related to the iexplore.exe virus file and other legitimate looking malicious entries planted by trojan backdoors.

I hope you will find these tips helpful in obtaining useful information about protecting and improving your computer's performance. Be sure to take a look at this article, plus a whole lot more advices and tips at ErrorsFix.info

About the Author

http://movies4free.info Is the site where you are always welcomed to watch movies online free, download and share them with friends.

Webroot Spy Sweeper Antispyware 5.x $0.99 Spy Sweeper...

Latest Virus Threats Microsoft