Computer Viruses: Repel, Reveal, and Remove
Virus prevention is a little like dental cleanings.
Maybe you put it off longer than you should, even though deep down you know that’s a mistake. Then when something finally goes really, painfully wrong you smack yourself in the head for not taking care of it sooner.
I’ll try to make this as painless as possible.
When time and money are tight—say you’re a small or medium-sized nonprofit with no IT staff—it’s an awfully easy thing to let slide.
But please don’t, for your own sake.
Really.
Pretty please.
Anyone with a computer.
A scary story.
A probably-happy ending.
Suggestions on preventing infections.
Suggestions on finding and fixing infections.
A list of anti-malware tools to consider.
Cautionary Tale: When Bad Things Happen to Good Computers
Recently a client’s website was hacked. Someone used his login to connect to the website and upload a file with evil software, hoping others would be infected upon visiting his site.
Fortunately his web hosting company quickly noticed the problem, restored the non-evil version of his site, and emailed him with the scary news. If they hadn’t, besides infecting other peoples’ computers his site could have ended up on the blacklist for one or more search engines. While that’s not the end of the world, it’s a bit of a nuisance to get off of the blacklists.
How could someone get his password to hack his site?
Maybe they grabbed his password as it flew around the Internet or a wireless network. But the more likely explanation made me nervous: maybe somebody got the password by using some kind of virus or other malicious software (malware) and pulled it right off of his computer.
So I advised him in how to aggressively scan his computers for malware, clean them if needed, and minimize the risk of future infestations—much of the information that I’m providing in this article.
Yep, maybe someone used malware to pull the information off of his computer.
Or… wait a minute… maybe they pulled it off of my computer.
Uh-oh.
An Attack of e-pochondria
Now, I am profoundly risk-averse. I’m a very wary Internet user, and I religiously scan, update, backup up, clean, and maintain all my computers. Like the car buff who cleans her vintage Camaro’s dashboard with a toothbrush, except that I’m cleaning my operating system with a toothbrush.
In fact, someone looking at my behavior from outside my head might use words like “compulsive” or even “paranoid”. And I was okay with that: as far as I knew it had been at least a decade since any kind of malware had darkened my doorstep.
But as I thought about it…
Who’s watching my data? (Credit: the-g-uk)
Lots of little imperfections in my computer started looking less like annoyances and more like telltales of evil software lurking in the shadows. Slow startup? Problems with shutdowns? Intermittent hangs? My hard drive grinding away for no apparent reason? Maybe it was just Windows being Windows. Or maybe not.
The idea that his site might have been hacked because of malware on my computer seriously worried me besides generally weirding me out me out.
What followed was the geek equivalent of compulsive hand-washing: endlessly scanning my computers with a wide variety of tools, reading up on the latest system hacks and patches, and generally thinking too much about my computer instead of just working with my computer.
Alien Virus from the Future
The upshot of all this frenzied scanning? I’m clean.
Whew—clean!
Or if I’m not clean, I have some alien virus from the future that’s smart enough to fool me and a bunch of major and minor security vendors, in which case (and I’m writing this to the virus, which I’m sure is reading this)—I give up. You win. Take what you want from my hard drive, just don’t disintegrate my car or steal my house.
Are You At Risk? Mac vs. PC vs. That Other One
Nearly all the world’s personal computers (desktops and laptops) are using one of three operating system: Microsoft Windows, Apple Mac OS, and the free open source Linux.
Linux. Your risk is very low.
Mac. Your risk is pretty low, but you might want to consider anti-malware software.
Windows. You’re a prime target for every hairy-eyed hacker on the planet and it’s a minor miracle if you haven’t at some point experienced a malware infection, even if you weren’t (or aren’t) aware of it.
Is that because Windows is poorly made, or just because Windows is a better target, representing 85% to 90% of the computer market?
I use all three operating systems, I’ve seen the arguments, and I’ve come to this conclusion: I don’t care. I just know that right now Windows is the Valley of the Shadow of Death, so that’s where this article will walk.
Repel, Reveal, and Remove
1. Keep nasty software off your computer.
2. If nasty software gets through, minimize the damage it can do.
3. If nasty software gets through, find and remove it.
1. Keep Windows up to date with fixes from Microsoft.
2. Keep other software up to date too.
3. Browse Wisely
4. Let security software continually protect you.
5. Do periodic scans for malware.
Defense #1. Keep Windows up to date with fixes from Microsoft
Tired of taking flak for all the Windows malware outbreaks, Microsoft has become much more assertive about automatically installing updates on our computers. It does this through the Windows Update service, and in particular through Automatic Updates.
Windows Update
This service runs on your computer and continually monitors for patches and advisories from Microsoft, downloading and installing them as needed.
Some people find that intrusive and annoying. Those people are overlooking the fact that a malware infection is even more annoying.
Microsoft provides good information on automatic updates, including instructions on how to enable them. I strongly recommend using Microsoft’s recommended settings, which will automatically download and install updates without you need to do anything.
Pushy? You bet. Safer? Ditto.
Defense #2. Keep other software up to date too.
Besides Windows, other programs you use might accidentally let malware run on your computer. For example, in the last year or two Adobe Acrobat Reader has been the target of numerous attacks.
Most major software vendors make patches available if you go to their websites and download them. However, in the last few years many vendors have started doing the same kind of proactive checking that Windows does.
For example, Adobe, Apple, Google, and Microsoft all have system to automatically check for updates to their software, and generally you don’t need to do anything to make these services check for updates, though you can usually request updates on demand (often via the Help menu). In fact, you can check for updates to Microsoft Office using Windows Update.
An example of a software updater (Adobe Photoshop)
Defense #3. Browse Wisely
That malware has to come from somewhere, and more often than not it comes from the Internet, whether through email or browsing.
We’ll deal with email in the next section.
As for browsing, yes it’s possible for bad things to happen just by visiting a website. Never download a file from a site unless you have good reason to trust the site is safe, and generally avoid visiting sites unless you know them to be safe.
Search engines. Search engines like Google, Yahoo, and Bing keep tabs on sites and will flag ones that are known to be infected with malicious software. Don’t count on them to catch everything, but they’re better than nothing.
Security software. Most high-end security software (discussed in the next section) includes some form of website monitoring. These systems keep a database of known evil sites and will warn you if you’re about to visit one.
Web of Trust. There’s a great, free community-driven system called Web of Trust that lets community members rate sites on four criteria: Trustworthiness, Vendor Reliability, Privacy, and Child Safety. WoT provides add-ons for all major browsers. These add-ons will warn you if you’re about to visit a sketchy site. Not every site is rated, but an amazing number are. For extra protection I run WoT in addition to my paid security suite.
Web of Trust (Firefox Plugin)
Defense #4. Let security software continually protect you.
Keeping Windows and other software updated, and browsing wisely: that’s a good start. But it’s not enough. You need software that can prevent, detect, and eliminate malware infections.
If you can afford it, a paid, commercial security suite is a good investment. A security suite is a collection of software tools that protect you in many ways: automatically scanning your downloads and email, automatically updating the list of malware they fight, protecting you while you browse the web, and more.
Real-Time Protection
In just the last 2–3 years these programs have gotten much better, not only at detecting problems but at getting in your face as little as necessary. Throughout the year I often read magazine articles and authoritative websites that review and compare security suites. If you want to be sure you’re getting the current champion, find a recent comparative review from this kind of source.
Besides online sources like CNET.com, the following magazines run security roundups about once a year and will give you good information:
- Consumer Reports
– PC World
– Maximum PC
If you’re less concerned about the current champion (it does vary from year to year) and just want a solid security package, these generally rate well:
Qualified nonprofits can get security tools like Norton very inexpensively through TechSoup. For example, as of this writing Norton Internet Security, generally rated very highly among security suites, will run you just $6. Upgrading to Norton 360, which adds some nice backup features, only pushes the tab to $8.
But if you can’t afford a commercial suite, there are some very good free options too.
These typically don’t rate quite as well as the highly-rated commercial packages, though some rate better than low-rated commercial packages.
They also offer fewer features; for example, some will scan your hard drive when you ask them to, but won’t automatically scan in the background, scan your email, or warn you of risky websites. Most free security packages are “freemium” software: you can download the free version, but get a more powerful or convenient version by paying.
Important: Update Your Software
Security software is only as good as its knowledge. New malware is being invented at a ferocious rate, and the people inventing try to make it smarter than last week’s security software.
When new malware gets discovered, security vendors need to let their software know about the new threat by updating the software’s encyclopedia of threats and the traces they leave behind.
All paid security software, and some free software, will automatically download these definitions. Their frequency varies, with some updating many times a day. For most paid software packages, this is their hook to keep you paying: when you buy the software you get a certain period of free updates, typically a year. After that period you’ll have to pay for your “subscription” to be renewed. It might feel like larceny, but it’s worth the money to have the latest protection.
For some packages, though, you have to download the definitions manually. For example, some free security software will make you download updates manually, enabling automatic updates if you buy the paid version of the software.
So when you install your security software, check whether it supports automatic updates. If not, it’s critical that you create a periodic reminder (at least weekly) to download the latest definitions.
Manually updating Malware Bytes
Defense #5. Do periodic scans for malware.
Some free software, and all paid security suites, give you a good deal of automatic protection by monitoring your computer constantly.
Regardless, you should occasionally do a complete scan of your computer if your security software doesn’t do this for you automatically. Within your security software you should find an option called something like “Scan” or “Scan Now”. I recommend doing a complete system scan at least monthly in addition to whatever automatic protection your security software provides. I scan my own computers much more often than that, typically weekly, to be safe.
However, no security software tool can detect every kind of malware. For this reason, to be extra safe you might periodically scan with a different tool than your normal security software.
These tools aren’t adequate for your primary security protection, but they provide a reassuring (and free) second, or third, or fourth opinion:
Takeaways
In summary, doing these things will make a malware attack much less likely–and if one does happy, you’ll be much more likely to catch it and fix it.
Patch and Prevent
- Enable Automatic Updates Enable automatic updates for Windows and any other software that supports it.
- Download with Caution Use good sense with downloads.
- Get Monitoring Help Don’t trust your good sense: install a tool that flags dangerous sites.
Monitor and Eliminate
- Install a Security Suite Install security software that will monitor your computer continually.
- Update Security Software Keep your security software up to date.
- Periodic Scan Periodically (monthly or more) do an ad hoc security scan of your hard drive.
- Consider a Second Opinion For extra safety, consider occasional scans with a different security program.
Here’s wishing you good luck and good health through the continual virus season.
Latest Posts
- Choose the Right WordPress for Your Website
- WordPress Backups: The Hard Way and The Easy Way
- Caution: Do Your Really Own Your Domain Name?
- Choose the Right Technology: Goals, Tools, and Match
- Website Options for Nonprofits — Part 3: Use Your Browser to Build a Website
- Website Options for Nonprofits — Part 2: Web Editing Software
- Website Options for Nonprofits — Part 1: Big Picture
- Cut Through Computer Clutter
- More...