PCinfospace

What is it?

It is best described by using a definition:

A rootkit is a software system that consists of a program or combination of several programs designed to hide or obscure the fact that a system has been compromised. Contrary to what its name may imply, a rootkit does not grant a user administrator privileges, as it requires prior access to execute and tamper with system files and processes. An attacker may use a rootkit to replace vital system executables, which may then be used to hide processes and files the attacker has installed, along with the presence of the rootkit. Access to the hardware, e.g., the reset switch, is rarely required, as a rootkit is intended to seize control of the operating system. Typically, rootkits act to obscure their presence on the system through subversion or evasion of standard operating system security scan and surveillance mechanisms such as anti-virus or anti-spyware scan. Often, they are Trojans as well, thus fooling users into believing they are safe to run on their systems. Techniques used to accomplish this can include concealing running processes from monitoring programs, or hiding files or system data from the operating system. Rootkits may also install a "back door" in a system by replacing the login mechanism (such as /bin/login) with an executable that accepts a secret login combination, which, in turn, allows an attacker to access the system, regardless of changes to the actual accounts on the system.

Rootkits may have originated as regular applications, intended to take control of a failing or unresponsive system, but in recent years have been largely malware to help intruders gain access to systems while avoiding detection. Rootkits exist for a variety of operating systems, such as Microsoft Windows, Linux, Mac OS, and Solaris. Rootkits often modify parts of the operating system or install themselves as drivers or kernel modules, depending on the internal details of an operating system’s mechanisms.

How do you know you have one of these very aggressive Virus tools?

You will not be able to complete a Virus scan successfully.  It is trying to protect itself from deletion.  Some Anti-Spyware programs may find them but may not be able to get rid of them.  These are deeply embedded in the operating system and may have already done their damage by the time you suspect there is a problem.

What should you do?

Mainly do not wait.  You most likely will need to reload the entire operating system.  They are the carriers of Trojan horse viruses and worms as well as other devastating attacks on your computer and your privacy.  If you do nothing your computer may come to a screeching halt.  You may have your passwords for vital accounts (such as banking) compromised.  Entire bank accounts have been emptied by using this method. If you have a program that will take one of these nasty visitors don’t bet it’s gone.  It may propagate (multiply) and then resurface at a later time. I don’t play around with these.  Just do it right and you won’t have to do it over.

If you do reload your system don’t forget to back up your data.  Once you have it backed up reload your computer and reinstall a good updated Anti-Virus program.  Now scan the files you had backed up before you put them back in the current system.  They may be the source of the virus to start with.

First I need to say that when you create a Microsoft document such as Word or Excel the default storage location is My Documents folder.  Normally there is no reason to change the targeted location on the average.

How can I change the default location?

Left click start.  Right click My Documents. Left click properties. When the screen opens it will show as target location: C:\Documents and Settings\you\My Documents. You must to have the entire path typed and it must be exact.  Even a misspelling will cause it to fail. REMEMBER !! the location you specify must exist.  If you have it going to a folder you must create the folder before it can go there.  Example: If you change it to C:\temp you must go to the C:\ directory to create the temp folder for it to work.  To do this right click start. Left click explore. Now left click the C:\ (or other drive).  Once it opens, right click an open spot in the right frame. In the menu left click New and move your cursor to the word “folder”. Once the folder is visible and highlighted name the folder temp or what ever you have to.

Why would you want to change it to start with?

This is a question you should probably ask yourself.  Some companies may want to store files in a specific drive and/or folder (directory).  You may want to store files in a different drive such as a backup drive or USB drive.  Another reason might be if you are going to take files with you every day or that the files need to be moved to a Server that will then be backed up.

Another reason is if you have a small drive that is getting full and you don’t want to replace it.  With the recent development of large USB storage drives it would make sense to redirect your storage location to that drive.

Are there any problems with doing this?

Maybe! If you remove the device that you have the files going to you will get an error.  You MUST keep the storage location active at all times while you are working.  Also, if you change the location to a different location you will not have a backup created.  You would still need to back up the files in another drive, disk or storage location.

Online storage is also popular.  In that case any new file would be backed up to an external server automatically.  There is a fee involved so be sure to understand the terms before you do anything. Also be sure they have Virus protection for your data. www.carbonite.com is one example of this service.  In the event your computer gets stolen or destroyed or it is a victom of a fire or storm your data will be safe.

Why do you want to worry about cleaning your computer?

The main reason is that an accumulation of dust and dirt will cause the mother board an/or processor to overheat.  If you have an PCI or other cards installed they also could be at risk.

How does this happen?

In today’s world speed is the name of the game.  Therefore motherboards and processors needed to get faster.  In this attempt manufacturers also needed to keep everything small.  This meant they had to cram more and more transistors and other components into the same space. The smaller the components and the closer they are together, the hotter the components will get. Better fans were developed to cool the processors and computer case.  These fans also became a very good air cleaner for rooms since they draw in large amounts of dust and dirt.

Is there a way to prevent this?

Yes and no! You can locate the computer in an area that is less likely to drawing in dirt.  However, the fans are there for a reason.  They are there to cool the mother board and process and all other components.  In fact some computers have two or more case fans.  Other fans are located in the power supply also.  Some power supplies now have two fans and sizes have increase to about 120 mm.  Normally they were about 80 mm.

How do I clean the computer?

TURN OFF ALL POWER AND REMOVE THE POWER CORD BEFORE YOU START !! Be sure the computer has cooled down.  Do not spray a hot computer because it could crack the motherboard or other components.  Canned air is by far the best way to do this.  Spray by keeping the can upright.  The product used for cleaning is colder than regular ice.  Do not put your finger or hand in front of the nozzle.  It could cause a frost bite condition. Read the instructions on the can.  Do not allow any fluid to run into any component. Do not use any chemicals or a rag.  A rag can create static electricity which could destroy the processor and/or motherboard.  Chemicals may get into electrical component and cause them to short out.  Depending on which chemicals were used, it may deteriorate the case or other critical supports since many of them are now made of plastic.  It could render the case useless.

You can also use small vacuums that are specially made for this purpose.  You still may need to use the canned air in areas that can not be reached with the vacuum.

What Should I clean?

The main things to clean are all fans.  These get very dirty.  There may be more than one case fan. Spray out the fans in the power supply.  There may be more than one of these also.  Look at the heat sink that is under the processor fan.  Blow out the processor fan and the heat sink fins.   You may have to remove the processor fan to gain access to the heat sink in some cases.  Blow out any vents that may be plugged with dust or dirt.  Spot check the inside of the case and blow out any dirt you may see.  Inspect the outside also.  Some computers have intake ducts.   BE SURE !! to reboot the computer after your done to be sure everything still works  in the event you forgot to assemble something.  It should then be obvious.  It is possible to hit a wire or ribbon cable by mistake.

What if I don’t do this?

You will pay for it in every way.  It may cause the computer to constantly reboot due to overheating.  It may not boot at all. It is not cheap to replace a mother board and/or processor. Many times you need to replace both of them.

Inspect the insides of the computer at least once per year.  This could extend the life of a computer for many years.