- Next »
- « Previous
Dangers of the Internet (Ad-ware, Spyware, Computer Virsues and Trojan Horse)
Copyrighted©2006 Seek Tech Support Services Inc. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, or otherwise, without prior written permission of Seek Tech Support Services Inc.
Ad-ware- Ad-ware is a background programs that runs after you download a free program or items on the internet which supports advertising. When an original desired program, such as Windows Update, is closed or not running ad-ware usually continues to run and generate advertising. The free software from the internet will install hidden software that will send other info from your computer and report it to websites that monitor your internet habits. It may send your email address to Spammers* that send you junk email that you don’t want. They may also take information on what websites you visited and how many times you go there as a way advertisers target you with pop-ups and spam*. A way not to have ad-aware on your computer is to install a program called Lavasoft Ad-aware SE Personal Edition and run it every time you get off the internet or run it every day or once a week.
*Spammers are companies that send you junk emails to advertise products or to steal your information. Many junk emails have information on credit cards or bank accounts that want to have you input your information. Also, some of the junk emails might have viruses built in and if you click one you might infect your computer. The best way to avoid getting viruses in your email is to scan each e-mail with an antivirus program. I would just delete all the junk emails that you get and don’t click on them.
Spyware- Spyware, a gathering software, used synonymously with Ad-ware is a sinister tool on the part of the person, author, publisher or service provider of an otherwise legimate system that has placed it onto your computer in an attempt to steal your private information, e.g. bank account numbers, credit card numbers, passwords, etc. It also gathers the users surfing habits on the web. A software company might put spyware on your computer to make sure the versions are kept up to date to provide proper services, software privacy so that you don’t have an illegal copy, software used for unacceptable purposes or illegal. I would recommend the software Syware Blaster. Spybot Search and Destroy, Microsoft Antispyware Beta.
Ways to Stop Spyware from Infecting your Computer
1. You should be checking for software updates to install once a week. If your software needs the latest updates download and then install the updates.
2. Install and use a Firewall. Most people don’t setup and run a personal firewall which can be potentially dangerous. When firewalls are running they protect against many potential problems including hackers, spyware, and data protection. If you use Windows XP it has a built in firewall, but make sure you have updated your system to Service Pack 2 (SP2). This update from Microsoft has added many security features and fixed bugs and should be updated ASAP. Some of the features that are in the Service Pack are a Pop-Up Blocker and a more visual Windows Firewall program.
Here are some of my recommendations for firewalls are:
a) ZoneAlarm [Free] and can be downloaded at:
http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp
b) Sygate Personal Firewall [Free] and can be downloaded at:
http://smb.sygate.com/download_buy.htm
c) Kerio Personal Firewall [Limited Free Edition] and can be downloaded at:
http://www.kerio.com/kpf_download.html
3.) Install and run a Spyware program. Here are some of my Spyware picks:
(a) Spyware Blaster
http://www.javacoolsoftware.com/spywareblaster.html
(b) Spybot Search and Destroy
http://spybot.safer-networking.de/en/download/index.html
(c) Microsoft Antispyware (Beta)
http://www.microsoft.com/downloads/search.aspx?displaylang=en
4.) Install and run Lavasoft Ad-Aware SE Personal Edition. Whenever Ad-Aware asks you to update with the latest files PLEASE download and install. To download Lavasoft Ad-Aware SE Personal Edition go to:
http://www.download.com/Ad-aware-SE-Personal-Edition/3000-8022_4-10045910.html?tag=prod
5.) Use an Anti-virus Program
See Page 11 for a list of Anti-Virus Programs
6.) Use an Alternative Internet Browser. Spyware programs target and exploit the many holes in Internet Explorer: My recommendations for Internet Browsers are:
a.) Avant Browser [Free] and can be downloaded at:
http://www.avantbrowser.com/download.html
b.) Netscape Browser[Free] and can be downloaded at:
http://channels.netscape.com/ns/browsers/download.jsp
c.) Mozilla Firefox [Free] and can be downloaded at:
http://www.mozilla.org/
Computer Viruses
Definition
A type of program that can replicate itself by making (possibly modified) copies of itself is called a virus. There are two main categories of viruses, macro viruses and worms, which are especially common today. Computer viruses are always man made and are never naturally occurring. The spread of computer viruses is not directly under human control once the virus is created and released. They can only damage software directly and cannot directly damage hardware, but the hardware software may be damaged. At the present time (2005) due to the popularity of the Internet computer viruses are somewhat less common than network-borne worms. An example of a computer virus is the Anna Kournikova virus which came in the form of a picture sent through an email attachment.
What is a Macro Virus?
A virus that exists as a macro attached to a data file is called a macro virus. Macro viruses are like all other viruses in most respects except that a macro virus are attached to a data file, document, rather than an executable program which is the main difference between a macro virus and the other types of viruses. One common problem with macro viruses is that many people don’t think that a virus can reside on a simple document file, but any program that supports document-bound macros that automatically execute is a potential haven for macro viruses.
A piece of code that can be embedded in a data file is called a macro. Programs like Microsoft Word, a word processor, and Microsoft Excel, a spreadsheet program, allow you to attach macros to the documents that you create. It gives the documents a way to control and customize the behavior of the programs that created them; which can extend the capabilities of the programs.
What is a Worm?
Computer programs that replicate functional copies of themselves, usually to other computer systems through network connections, and often, but not frequently, contain some functionality that will interfere with the normal use of a computer or a program are called worms which are very similar to viruses. Worms exist as a separate entity which is one of the differences that make this unlike all other viruses and they don’t attach themselves to other files or applications. They are often referred to as viruses because of their similarity.
Trojan Horse
I. Definition of a Trojan Horse
The Trojan horse is the most serious threat to computer security. Do you remember the Legend of the Trojan Horse in the fortified city of Troy? The Greeks presented a huge wooden horse full of warriors to Troy and that is how the Greeks won the Trojan War. This story is a way to explain what a computer Trojan horse is.
A Trojan Horse is security breaking program that is malicious and lays dormant until waken. It is a hidden file or program that rests in a program e.g. a game, a screen saver, or some other valuable program. For example, you download what seems to be a music file or movie, but instead when you click on it you release a dangerous program that causes your data on hard disk to be erased, sends your passwords and credit card numbers to a total stranger. It may also allow the stranger to commit attacks that are illegal denial service to will in operate some of your programs.
II. How did my computer get infected?
When you open a file a Trojan Horse may run and perform some type of action because Trojan Horse is an executable program. The “LOVE-LETTER-FOR-YOU.TXT.vbs” and “dmsetup.exe” are some actual Trojan filenames (If there are multiple extensions the only one that counts is the last one. Make sure you unhide your extensions so that you can see them.)
When you're online and downloading a free game, movie, song, etc. Trojans can be spread in the disguising of literally ANYTHING. Typically victims download the Trojan from a FTP or WWW archive or by opening some email attachment without first scanning the email with an anti virus program to determine if there is a virus. When a friend or other tell you that you are attacking them or trying to infect then this is a sign of trouble that you might have a Trojan laying somewhere on your computer.
Windows executable programs file extensions are:
* .exe- Executable File
Another name for a program is called an executable file. Program that run under Windows or DOS are virtually in .EXE format.
Note: If someone sends you a file with this extension it should be carefully scanned because these file types can be infected.
* .vbs- MPEG Movie Clip
* .com- AOL
* .bat- Batch Processing (DOS batch file)
An ASCII file of commands that runs as a program would run is called a batch file.
Note: If someone sends you a file with this extension it should be carefully scanned because these file types can be infected.
* .pif-Windows Program Information File
When you click on a file the information in the file is used by Windows to run some program is called a program information file; a PIF file a code can be included. Without any extensive knowledge of exactly what it will do a person must first never click on it if they received it though an email.
Note: If someone sends you a file with this extension it should be carefully scanned because these file types can be infected.
* .scr- Windows Screen Saver
* .ink- Mimio Ink File
* .js -JavaScript Source Code
When you run CTRL+ALT+DEL the Windows Task Manager will load, but the Trojan horse will hide from the Processors List.
III. Avoiding Getting Infected in the Future
When you download each file you must make sure of BOTH the source AND content! You must trust the file server or person that gave you the file to be sure it is safe to download, but also make sure the file contents are safe to.
To avoid getting affected (again) here are some practical tips:
1) If you are not 100% sure about the sites or from the person NEVER download blindly. It’s often just a matter of time before you fall victim to a trojan horse when you do a lot of downloading.
2) You must still make sure what the file is before opening it even if the file comes from a friend. If you have friends listed in a Windows Address Book or any other address books on your computer trojans will automatically try to spread themselves through emails. It is seldom reason for a friend to send you a file that you don’t know anything about or ask so when in doubt, contact your friend and ask them about the email then scan the attachment with a fully updated anti virus program.
3) PLEASE BEWARE of file extensions that are hidden! The last extension of a file by default is hidden if you use Windows. So for example if you had a innocuous-looking file “willy.jpg” it might be really “willy.jpg.exe”, an executable trojan.
4) IF your programs automatically get or preview files NEVER use the feature.
Programs that feature preview or automatically get files may seem to be convent, but they let anybody that is on the Internet to send you anything which is reckless. In outlook or any other email programs disable the preview mode.
5) If strangers mentions a web address and you don’t know what it is DO NOT TRY TO FIND OUT; if you are told to type commands by others or run pre- fabricated program or scripts (not even popular ones) NEVER run or type them if you don’t know what they are.
6) When you run your anti-virus program don’t fall prey to a false sense of security.
7) Finally, don't download any programs, an executable program, jut to “check it out”. The first time you run it and if it is a trojan you are already infected.
IV. Getting Rid of Annoying Trojans
Here are some of your many options and none of them are prefect. Read through all of the suggestions before rushing out and trying to run some program blindly.
Anti-virus Software
Most of the well know trojans can be detected by some anti-virus programs, but none are perfect. Whenever your anti-virus needs to be upgrade “Please” upgrade your software to make them updated with the latest files. The latest files for your anti-virus program will have the newest trojans or virus that they have found that would cause harm to your computer system, but if you don't update your ant-virus with the latest anti-virus files then your computer may be infected with a trojan. Anti-virus software will always play catch up because today's trojans evolve much quicker and come in many seemingly innocuous forms. Anti-virus software can give you a false sense of security if they fail to find every trojan such that you go on your daily business not realizing that you are still dangerously compromised. Here are some of the may anti-virus programs available in the market:
> AntiVir Personal Edition (Free)
> McAfee Virus Scan
> Norton Antivirus
> Trend Micro Pc-cillin Internet Security
Anti-trojan
Instead of scanning for viruses these program specialize in trojans. They will scan your computer and detect if you have any trojans on your computer. None of them will ever be effective against all trojans, but some of these programs are effective against most trojans. Make sure you have downloaded all the updated security patches with your Windows product by going to the Microsoft website. Here is the website to go to: http://v5.windowsupdate.microsoft.com/v5consumer/default.aspx?ln=en-us
Tech Support Forums
If you need help to find out how to get rid of trojans there are many tech support forums that you can goto to get expert help. These people (experts) will help you determine what is the best option to eliminate the trojan(s) on your computer. They will give tip and techniques to fix the problem. Here are some Tech Support Forums that you may want to go to:
Cyber TechHelp
http://www.cybertechhelp.com/forums/index.php
Microsoft Technet
http://www.microsoft.com/technet/sitemap.mspx
Tech Support Guy
http://forums.techguy.org/
Clean Re-installation
This is the last option and the only sure way to eradicte a trojan or virus. If you need help or your uncomfortable in doing this you can hire a professional repair service to do it. Here are the steps to do a clean re-installation:
a) Back-up your hard drive
b) Format the hard drive
c) Re-install the operating system using the System Recovery Cd's supplied by your Manufacture of the computer or from the original CD's.
d) Restore your user files from the backup if your certain they are not infected.
References
.bat [On-line] 2005. http://fileext.com, 15 Feb 2005.
.exe [On-line] 2005. http://fileext.com, 15 Feb 2005.
.js [On-line] 2005.http://fileext.com, 15 Feb 2005.
.pif [On-line] 2005. http://fileext.com, 15 Feb 2005.
.scr [On-line] 2005. http://fileext.com, 15 Feb 2005
Adware [On-line] 2005. http://www.ict4lt.org/en/en_glossary.htm#GlossA, 15 Feb 2005
Bonneau, Ray 2004, How to Stop Spyware from Infecting Your System [On-line] http://www.webpronews.com/it/itmanagement/wpn-18-20041220HowToStopSpywareFromInfectingYourSystem.html, 15 Feb 2005
Computer Viruses[On-line] 2005. http://en.wikipedia.org/wiki/Computer_virus, 14 April 2005
List of viruses and related programs[On-line] 2005. http://en.wikipedia.org/wiki/List_of_computer_virus, 14 April 2005
Lo, Joseph 2004, Trojan Horse Attacks [On-line] http://www.irchelp.org/irchelp/security, 15 Feb 2005.
Slade, Rob 2004, Glossary of Communications, Computer, Data, Information Services [On-line] http://sun.soci.niu.edu/~rslade/secgloss.htm, 15 Feb 2005
Spyware [On-line] 2005. http://www.ict4lt.org/en/en_glossary.htm#GlossS, 15 Feb 2005
Trojan Horse (Definition)[On-line] 2005.
http://www.bsu.edu/ucs/article/0,1370,4489-,00.html, 15 Feb 2005.
What are computer viruses, worms, and Trojan horses[On-line] 2005. http://kb.indiana .edu/data/aehm.html?cust=489566.51713.30, 14 April 2005.
