Friday, June 27, 2008

Virus? Oops Not again!!!

There are a lot of virus in the internet. Most of them come as a Keygen, crack, or through P2p. Some even act to be a codec application for some unknown video. Its better to install the some codec pack and let it take care of your codecs.

The most common virus found in colleges are that files that appear like folder. It often deceives the most professionals into double clicking such files. the reason is that people opening folders fastly might consider that as a folder when its inside a empty folder. a lot of viruses have started to use this methodology. so u cant predict that its the same virus that u seen before... and it might not be detected by ur antivirus also.

The next virus i like to say is a virus which changes the document files to exe files when u copy them. Recently my friend received such a virus in a mail under the title of call letter. unfortunately even i fell to this prank. thanks to bit defender v 10.

And this is the virus i'll never forget off. It came as a unknown file extension... my Mcafee spotted it as a virus. And disabled the antivirus and opened the file. Alas....

the virus removed my anti virus and silently settled in my system. In WIN me, the virus deleted the norton anti virus and displayed a icon in system tray as if norton 2002 is under updation process... i tried to close, rigth click the system tray icon; but to no avail. U can see a lot of exe files with the some name and having winzip icon(the old winzip 8.0). this virus silently sits inside ur system and maits for 2nd of the month and deletes all ur document files... .doc, .xls,etc

The virus scans for any folder by name antivirus and deletes such folder. thats the reason nowadays antivirus applications dont name any folder with the text antivirus and often Norton is the first target for virus/trojan programmers.

Search and delete all the files which have the icon of winzip and which are hidden system files. and goto program files and delete the same kind of files...

The best part is that windows folder does not have any hidden system files on clean install. so if u find any hidden system file in ur windows directory then that file can be a suspect. If u find such a file then check whether that file is signed by microsoft or any known company. better search in internet for the details of that file...

Some times whenever u try to scan ur system the antivirus comes and as soon as it starts, the program closes. to prevent such a happening, login to ur system using a limited account and launch the application as a administrator ie rightclick on the shortcut and select run as and enter ur admin username and password... that way u can execute the antivirus and make sure it scans ur system. the same can be done for taskmgr.exe .

The picture of a task manager of a clean system is shown. The first 4 processes and the 6th might not be present in ur system..

Hope this was useful...

The files such as winlogon.exe,lsass.exe, smss.exe,csrss.exe, alg.exe,spoolsv.exeare all important system files and they have only one instance in windows XP.

3 comments:

Visu said...

The virus i hate most is that "folder" one. I Once had it in my sys, luckily i also had ZA at that time which quarantined it. Thats the most annoying one, it automatically closes explorer and windowed programs.
But as far as i am concerned, if i find any trace of virus, I don't care about it until annoys me. And that time I will format the PC. :) As simple as that.

Aslam said...

i guess we all have shared similar virus experiences... apparently hitch hiked from college systems through the pen drives... the folder virus, the folder to exe virus... etc etc.. right clicking nd viewing the options , checking its size, a little less of unnecessary curiosity and common sense can go a long way in dealing with them...!!
As wise men have quoted before : "Windows is the biggest virus" and i totally support the view..!! :D

Visu said...

And hey, very recently i came to know that you can quarantine any dangerous virus by means of Nacl.
So, always have a packet of salt besides your PC. :P

"Windows, the biggest possible virus" , Yes Yes Yes...

and hey, remove this captcha, its annoying. Dont worry, no one would spam your blog.