More Information About Viruses and Hackers

Often times computers that are connected to a college network begin experiencing problems as a result of viruses that have been downloaded onto the host system. These problems can be so small that they cause only minor difficulties in accessing certain files and changing settings, or so damaging that they can essentially destroy your system. Here are the explanations of each type, but remember that they are all basically the same thing, a virus.

What exactly are these things that I need to avoid?

Viruses

A virus is a computer program written to maliciously affect the way a computer operates, with or without the knowledge or permission of the user, by loading itself into a system file. A virus replicates itself once it's on a system to prevent other programs from working. Viruses can interrupt the execution of programs, delete files, or destroy the contents of your hard drive. Some aren't designed to do any damage at all but simply annoy - bringing up text, video, and audio messages. They typically take up memory that could be used for other programs. This can cause your computer to become unstable and function erratically. Eventually, many viruses may cause your system to crash.

Trojans

Trojan Horses are named for their ability to pose as desirable files. These programs are malicious. They contain code that can result in the extermination or theft of data from your system by allowing a remote user access to your computer. For Trojans to run they must be downloaded onto your computer by downloading and running a file from the internet (such as an email attachment or a file transfer). Unlike viruses, Trojans generally don't replicate themselves.

Worms

Worms are quite similar to viruses in that they are usually spread with the transfer of an infected file. Worms usually try to spread itself and infect as many computers as quickly as possible. Worms can take up both memory and network bandwidth and often times destroy files.

Bots

A bot that has infected a machine typically sits quietly as a background program and listens for instructions. An entire network of machines infected with a particular bot is called a botnet, and the individual computers are often called zombies. Bots generally do not do much on a computer, until the owner of the botnet sends out instructions to the infected machines. The zombie machines might be used to send out email spam messages or other malicious and illegal activities, such as hacking into a server with sensitive information or bringing down a web server.

Why is Computer Security so important?

Malicious computer hackers, data-destroying viruses, email spam: these are all threats to your personal security. Without being properly protected, hackers can gain access to virtually any file or information stored on your computer through malicious programs. You could possibly lose all your data or have it manipulated to be come unusable. It is easy to prevent all this though and surf the Internet without the feeling of insecurity. Simply take a few precautionary measures listed below and use plain common sense.

But how often does it actually happen?

More than you'd think. This past summer, an online gaming site called GameSpy.com was providing Arcade Installers that they later realized had become infected with the Nimda-E worm, which allows outside users to access your computer system by creating an extra guest account with administrative rights in Windows. The program that contained the worm was downloaded an estimated 3,100 times in just two days. In addition, users of KaZaA are frequently exposed to malicious programs, one example being the Backdoor.K0wbot.1.3.B. worm, which contained a backdoor component that allowed remote users to manipulate the infected computer. The Backdoor worm is only one of the many viruses/worms that have been spread through a peer-to-peer program.

Hey no worries, I've got a Mac.

Although most viruses are targeted to injure systems using Windows, Macintosh computers can still be susceptible. See the section below for more information regarding Mac protection.

What does it mean if my machine has been 'hacked' into?

If your computer has been 'hacked' into, someone has gained accessed your computer, usually remotely, without your permission and/or knowledge. If your computer is hacked into, any private information you have may be shared or stolen through the network connection, and others can perform illegal activities through your computer (leaving you responsible), AND there is the possibility of losing all your data and programs.

How did I get infected with a virus or get hacked?

Computers that are most susceptible to being hacked are those running Windows NT/2000/XP with a blank administrator password. It is possible for Windows 95/98/ME machines to be hacked too. Viruses can be downloaded with other programs or files, so be careful when downloading any programs or files from the Internet, even from P2P programs like Kazaa, Morpheus, and Bearshare. Others can also access your computer through security holes in un-patched applications and operating systems you are running, so make sure you get all applicable security patches from the manufacturer's website.

What are some signs that my computer may be infected or hacked into?

  • If you start up your computer and see random 'black screens' (command prompts) pop up and close.
  • If your computer is really fast, but starts running slow all of a sudden. This could mean your computer is running programs that you don't know about.
  • If you are getting a lot of email returned with virus warnings
  • If you see your computer icons running away from you as you try to click on them, or if your computer decides to 'chat' with you
  • If you see black console screens open and close when you boot up your computer
  • If your computer has recently been running slower than usual

How to secure your computer from viruses and hackers:

The only method that is 100% is to isolate the computer from all other computers and the Internet. Obviously, this is not a realistic option, so you must take as many reasonable precautions that you can. Read on for instructions on securing your computer.

What to do if you think your machine has been infected or hacked:

  • Disconnect your machine from the network it is connected to until you find out more about the virus you have. This will keep your computer from infecting other computers.
  • From another computer, go here for step-by-step instructions for cleaning and securing your computer.
  • Call ResNet at (858) 534-3227 if you think your machine is infected or hacked.

What's the worst thing I can do if I do have a virus?

Ignore it. Ignoring the problem will not make it go away. In fact, it will help spread the virus to other places on the Internet (usually your friends and family).

If you suspect that your computer has become infected with a virus, please visit our Scan and Secure page for Windows machines, or you can contact our HelpDesk and bring your computer to our office, where one of our staff members will help you remove the virus.