PCinfospace

AVG is no longer safe. Fake Anti-Virus programs have figured out how to get around its protection. These fake programs are spy-ware and can steel your identity or badly damage your computer.

What is it?

It is best described by using a definition:

A rootkit is a software system that consists of a program or combination of several programs designed to hide or obscure the fact that a system has been compromised. Contrary to what its name may imply, a rootkit does not grant a user administrator privileges, as it requires prior access to execute and tamper with system files and processes. An attacker may use a rootkit to replace vital system executables, which may then be used to hide processes and files the attacker has installed, along with the presence of the rootkit. Access to the hardware, e.g., the reset switch, is rarely required, as a rootkit is intended to seize control of the operating system. Typically, rootkits act to obscure their presence on the system through subversion or evasion of standard operating system security scan and surveillance mechanisms such as anti-virus or anti-spyware scan. Often, they are Trojans as well, thus fooling users into believing they are safe to run on their systems. Techniques used to accomplish this can include concealing running processes from monitoring programs, or hiding files or system data from the operating system. Rootkits may also install a "back door" in a system by replacing the login mechanism (such as /bin/login) with an executable that accepts a secret login combination, which, in turn, allows an attacker to access the system, regardless of changes to the actual accounts on the system.

Rootkits may have originated as regular applications, intended to take control of a failing or unresponsive system, but in recent years have been largely malware to help intruders gain access to systems while avoiding detection. Rootkits exist for a variety of operating systems, such as Microsoft Windows, Linux, Mac OS, and Solaris. Rootkits often modify parts of the operating system or install themselves as drivers or kernel modules, depending on the internal details of an operating system’s mechanisms.

How do you know you have one of these very aggressive Virus tools?

You will not be able to complete a Virus scan successfully.  It is trying to protect itself from deletion.  Some Anti-Spyware programs may find them but may not be able to get rid of them.  These are deeply embedded in the operating system and may have already done their damage by the time you suspect there is a problem.

What should you do?

Mainly do not wait.  You most likely will need to reload the entire operating system.  They are the carriers of Trojan horse viruses and worms as well as other devastating attacks on your computer and your privacy.  If you do nothing your computer may come to a screeching halt.  You may have your passwords for vital accounts (such as banking) compromised.  Entire bank accounts have been emptied by using this method. If you have a program that will take one of these nasty visitors don’t bet it’s gone.  It may propagate (multiply) and then resurface at a later time. I don’t play around with these.  Just do it right and you won’t have to do it over.

If you do reload your system don’t forget to back up your data.  Once you have it backed up reload your computer and reinstall a good updated Anti-Virus program.  Now scan the files you had backed up before you put them back in the current system.  They may be the source of the virus to start with.

SPAM  is junk mail.  Certainly it is mail you don’t need or want.  It is an attempt by the sender to get your attention at all cost to you.  It may be trying to get you to buy something or even sell something.  It offers deals too good to be true.  It may attempt to get your personal information.  In fact this is now the number one threat.  It may (and often times does) carry a virus or spyware program that can damage your computer or obtain your personal information.

How do I get these to start with?

There is no one good answer to this. However, e-mail is the number one way. If you enter a so- called “bad site” (one that is infected) you may get a program that generates these unwanted visitors.  What is worse is you might spread them to others through email and/or infected files that are passed from one person to another. This is especially true if you are networked together like many are in small and large companies.  In larger companies the Virus or spyware program may reside on the server and infect every computer on the network and cause a large amount of damage before it is even detected. These “bad guys” can happen at anytime under any circumstance.

How can I protect myself?

Stay away from sites that may contain infections.  These are normally sites that contain unacceptable or even illegal materials. Don’t open e-mails that you don’t recognize.  Don’t send jokes or chain letters.  These are known to carry these unwanted programs. The main thing is to buy the best anti-virus and anti-spyware program you can afford.  Many companies combine these two types of programs.

Is there anything I have to do with anti-virus programs?

Yup! You need to make sure they are always up to date and activated.  If you let your program expire it will not protect you.  This is exactly what the virus writers are hoping for. By keeping your program current you protect yourself against the latest threats.  You need to totally replace the program as often as you can.  Each program has updates that will help you protect your computer. Be sure to scan your computer at least once per week and check for updates to the program. Don’t let the cost of the program be a road block to protection.

How do I know if I am infected?

You may start getting a lot of unknown and unacceptable mail.  Normally you also get a lot of pop ups.  It might even drive you crazy.  The computer usually slows way down.  It might be hard to get any work done because of this.  If you can not send or receive mail or get into the internet you may be infected.

What is a SCAM and how is it related to SPAM?

Normally SPAM is a SCAM.  SPAM is the vehicle of transport. The writer is secretly trying to get you to do something you don’t want to. They can obtain information they can use to commit identity theft or other illegal activity.  They may be trying to gain access to your money by planting a virus in your computer that will gather your personal information and then send it to the sender at a given time and place.  Entire bank accounts have been emptied using this method.

Some SCAMs have claimed that they are seeking money so they can get to the US etc.  They play on your sympathy.

You should report any SCAMs you think are real rip offs to your local authorities.

20% Discount on Kernel Data Recovery for Windows
Offer Expires 04/23/10

Coupon Code: KERNTAFFNOV

Did you ever type in a web site address in the URL space (know as address bar) and you get a totally different site? If you did you may be hijacked. That is to say you may have downloaded a spyware program without knowing it.
Redirects
A redirect is a special program put in a web page and/or imbedded in a spy-ware program that makes the web browser go to a page different from the one you typed in. This normally happens when you are infected with a virus or spy-ware.
How does this happen?
If you open an infected e-mail or web site you can easily get a Virus or spy-ware program. Even clicking on a picture or link on a web site can infect your computer’s hard drive instantly. New programs called Rootkits can do extensive damage to your computer or gather information about you that can be used for illegal reasons. These programs can run undetected for as long as they are written for. By the time you know it you’re infected it could be to late.
How can I protect myself?
• Do not go on Illegal sites or sites that contain pornography. These sites are designed to cause harm to you or your computer.
• Keep a quality Anti-Virus/spyware program running and activated at all times.
• Do not let you Anti-Virus/spyware program expire. This is the leading cause of infection.
• Purchase a new program every year or two to be sure you have the best protection available.
• Periodically check for updates.
• Scan your system on a schedule. This can be set up right inside the program.
• DO NOT assume you can install the program and forget it.
• Do not install cheap or free Anti-Virus/spyware programs. These normally do very little to protect you from the latest and greatest threat.
Do not underestimate what a Virus or Spy-ware program will do. They can destroy or change your information, they can obtain information that will lead to identity theft and much more.

Read about this malicious threat. You must know what this is!!!!

A worm is a type of virus or replicative code that situates itself in a computer system in a place where it can do harm. There are viruses (such as Melissa) that don’t “worm themselves in” to a place where they can do much harm and simply replicate themselves by e-mail to many computers. Worm.ExploreZip is an example of a worm. Like most computer viruses, worms usually come in Trojan horses

Learn more: Trojan Horses