Computer Viruses
Page 1 of 3 123 LastLast
Results 1 to 10 of 24

Thread: Computer Viruses

  1. #1
    Senior Member
    Join Date
    Feb 2002
    Posts
    120

    Computer Viruses

    No more lies, Hope you all like this. {Aimed at the newbie}

    Computer viruses are a sensitive subject these days, and usually strike fear into the hearts of those who don't know enough about them. Computer viruses are a very powerful thing and are just like their biological counter-part. They are "rogue" programs that have the ability to replicate and spread themselves on their own by infecting other, legitimate, programs that they force to do their dirty work. The problem is, most viruses carry a malicious payload, when the original concept was to have a program spread itself over a network to upgrade files and perform system maintenance during idle cycles of the CPU. This would reduce the workload of the network administrator to allow him to do more important things and wouldn't require him to go machine to machine to fix common problems when a program could automate the entire process for him.

    Because of the usual malicious payload of formatting hard drives, corrupting file, or even displaying vulgar messages or images; viruses have received bad hype from the media which has scared computer users into making Anti-Virus development a very profitable industry to get into. McAfee and Symantec (Norton Anti-Virus) are two of the big players in the development of said software, both of which cash in on programs that reduce your system resources by always running in the background and consuming around 10% or more of your free resources. Not to mention slowing down disc and file accesses, misreporting files that are clean (which can mess up the installation of new programs), and not detect viruses because the industry cannot keep up with the all of the new viruses that are developed.

    These anti-virus packages have a tendency to boot up in the autoexec.bat file and are always resident in memory. Doing so consumes around 8% or more of your free system resources, which slow down everything you try to do. Anti-viruses also have TSR scanners that scan each file that is ran, this slows down all file accesses, and really puts a damper on a program than relies heavily on other files (registry, INI files, libraries, et cetera). The other way anti-viruses can put a damper on your day is misinterpret if a file is really a virus or not. This causes a horrid problem when attempting to install a program with an application like InstallShield or the Wise system. Then using them and the anti- virus is configured to scan the files, it will lock up or hang the installation until the background monitor is disabled. Misinterpretation of files also has other repercussions. Because of the nature of updated data files, where the user is relied upon to downloaded the newer versions, many systems go months without new data files, and the system gets infected by some new virus that wasn't available in the older data file. The other problem is that there are so many new viruses each day that you can never be protected against everything.

    Enough about how much of a waste anti-virus software is, let me discuss the virus and its many cousins. Again, the concept of the virus was to automate things over large networks, but instead, many virus programmers decided to add a malicious payload as opposed to deleting temp files. But this isn't a bad thing, viruses are very complex programs that if grown correctly can be greatly rewarding for automating tasks on a network, and for the advanced programming concepts that they employ.

    The big problem with viruses is that the media has hyped them as bad things, and there are a lot of other programs that are called viruses but aren't. Viruses have been hyped for quite a few years now, one of the biggest scares was the Michelangelo virus, and the more recent Y2K virus. The media takes things and blows them out of proportion. If the media would stress the reality behind the CIH virus, which is still one of the most common and destructive viruses to date, people would probably be able to combat against the virus better, but instead they are preparing for figments of people's imaginations. As mentioned, there are other programs out there that are referred to as viruses by the media, but are actually other types of rogue programs. Viruses are programs that infect files and replicate to other files, just like the HIV. Other programs that are out there including, but aren't limited to Trojans, software and logic bombs, rabbits and worms.

    Trojans are a very common phenomenon. They are programs, which create a way in, or a backdoor to a system without the victims consent. Just like the famed Trojan horse of lore, these programs trick the user. They can appear as a simple game, or even complex applications, all while opening a computer system up for another person to access it at a later time.

    The next misconception would be the 'bombs'; software and logic. They both are basically the same, but have the differences as well. Software bombs are straightforward programs that when ran will manipulate something on your computer. They can change the color settings on your machine, or just format your drive, but they will do this when the program is first executed. Logic bombs, like their counterpart, also destroy things on the computer they are executed on. The catch would be that the payload is released when a certain condition is met, time or day, date, specified number of boot ups, et cetera. This makes a logic bomb less volatile and sometimes completely harmless because the conditions can never be met.

    The last two types of programs that are confused for viruses are rabbits and worms. Like the software and logic bombs, these programs are similar yet different. Rabbits are a very basic program and can never be too harmful. Rabbits simply multiply themselves, but they don't infect other files like a real virus would do. They just copy their own program, and in some cases execute the spawned programs that also make copies of them. This is done to consume hard drive resources, and if the rabbit executes each copy it makes, it will also consume the free system resources, which will eventually cause the machine to come to a halt. Worms do this same thing, but they copy themselves over a network. On occasion, usually on badly coded worms, the program will try to send programs to systems that already have the file, or they try to send too many copies at once, or attempt other tasks that inadvertently can crash a system.

    There are other types of programs out there, but those mentioned are the main ones. Hopefully your mind has been exposed to the truth about viruses and you won't be influenced by the media, and hopefully deep six your anti-virus software so that you can increase your system performance.
    \"To follow the path:
    look to the master,
    follow the master,
    walk with the master,
    see through the master,
    become the master.\"
    -Unknown

  2. #2
    Senior Member
    Join Date
    Dec 2001
    Posts
    884
    Nice work dude, really. I didn't know viruses were first made for large network deletion of temp files, though...that's interesting.

  3. #3
    Senior Member
    Join Date
    Feb 2002
    Posts
    120
    Thanks everyone for the points and appreciation!
    \"To follow the path:
    look to the master,
    follow the master,
    walk with the master,
    see through the master,
    become the master.\"
    -Unknown

  4. #4
    Junior Member
    Join Date
    Dec 2001
    Posts
    2

    Nice,really nice

    That was well said 3ntropy ! I think that you arranged that in a way that everyone can get something out of it.
    I\'m not over the hill yet, but I\'ve got a good view of the valley.

  5. #5
    Senior Member
    Join Date
    Aug 2001
    Posts
    503
    Even tho I am quite familiar with virii and their workings, I still found this to be a very informative and easy to read post.

    Thank you!
    God bless,
    --PhirePhreak
    I know you\'re out there. I can feel you now. I know that you\'re afraid. You\'re afraid of us. You\'re afraid of change. I don\'t know the future. I didn\'t come here to tell you how this is going to end. I came here to tell you how it\'s going to begin. I\'m going to hang up this phone, and then I\'m going to show these people what you don\'t want them to see. I\'m going to show them a world without you, a world without rules and controls, without borders or boundaries. A world where anything is possible. Where we go from there is a choice I leave to you.

  6. #6
    Senior Member
    Join Date
    Feb 2002
    Posts
    170
    Why not post a link to the source instead of posting it as your own work?
    Either you are Darren Pierce or you have just quoted a text without stating your source, which is a crime against copyright laws in case you wasn't aware.

    "The Truth About Computer Viruses by Darren Pierce"
    Last Updated : 20:36:27 on 12 April 2000

    http://www.textfiles.com/uploads/virustruth.txt
    Mankan

    \"The purpose of abstraction is not to be vague, but to create a new semantic level in which one can be absolutely precise.\"
    - Edsger Dijkstra

  7. #7
    Senior Member
    Join Date
    Aug 2001
    Posts
    356
    -8-

    There are 10 types of people in this world: those who understand binary, and those who dont.

  8. #8
    Senior Member
    Join Date
    Jan 2002
    Posts
    154
    Good Infomation, was and intresting read.

    Kindred69
    ForeverLearning

  9. #9
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584

    Cool Types of Viruses

    to add to this thead, i'd like to post the different types of computer viruses..

    BOOT Virus are viruses that activate on start up, and are the most common type. They infect a system's floppy or hard disk, then spread to any logical disks available.

    File Viruses are actually programs which mist be executed to become active, and include executable files such as .com, .exe and .dll. Once extended, file viruses replicate and attatch to other executable files.

    Stealth Viruses are difficult to detect because they disguise their actions. Passove stealth virus can boost a file's size, yet appear to be the original file size, this evading integrity checking - one of the must fundamental detection tactics. Active stealth viruses may be written so they actually attack installed anti-virus software, rendering the product's detection tools useless.

    Encrypted Viruses are viruses who's viral code is masked, this making identification, as opposed to dectection, more difficult. Detection and prevention of recurring infection is harder even with frequent anti-virus software updates.

    Polymorphic Viruses are viruses with built-in mutation engine which creates random changes to the virus signature on given replications.

    Macro Viruses These viruses are spread by sharing document files from MS-Word (version 6.0 and above) or MS-Excel (version 5.0 and above). Macro viruses are a frequent cause of virus infections, and they can infect both PCs and Macintosh computers. After your computer is infected with a macro virus, any Word or Excel document you create or open may also contain the virus.

    Companion Virus Infects your files by locating all files with names ending in EXE. The virus then creates a matching file name ending in COM that contains the viral code.

    Dropper is an executable file, that when run, "drops" a virus. A Dropper file is capable of creating a virus and infect the user's system. The Anti-Virus scanner will then detect ONLY the virus it crated but not the Dropper itself.

    Memory Resident are viruses that stay in the active RAM, while other programs are running.

    Multipartite Virus is particularly the most DANGEROUS virus ever existed. Multipartite Virus is a virus that, unlike the other viruses, does more than one task. It can either be a memory resident BUT infects files and the BOOT sector at thesame time. And as it spreads it could also Mutate/Polymorph and Encrypt itself. In short, it can be a mix of everything. Multipartite viruses are particularly nasty because of the number of ways they can spread. Fortunately, a good one is hard to write.

    WORMS however are not viruses. why?

    WORM stands for Write Once Read Many. It is a program who's sole task is to SPREAD and Multiply and NOT damage the system.


    Thanks...

  10. #10
    AO Soccer Mom debwalin's Avatar
    Join Date
    Mar 2002
    Posts
    2,185

    Thumbs up

    To S0nic And 3ntropy:
    Thank you, thank you, thank you....these are the types of things I became a member of Antionline for.....I just copied pasted and printed the whole thing. With guys like you, us newbies can just sit back and read the info. It is very helpful and greatly appreciated when someone goes to an effort like this.
    Outside of a dog, a book is man's best friend. Inside of a dog it's too dark to read.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •