At NovaCPU, we clean and remove many virus infections from computers on a weekly basis.  It’s only natural for our customers to be curious how their computer became infected in the first place and how that virus got past their security software.  Unfortunately, the answer is rarely 100% clear.  There are thousands of different computer viruses and many different methods of how those viruses spread.

Where do Viruses come from?  The answer to that is simple.  A person with knowledge of computer programming writes a virus.  That person may design the virus to delete important files, disable internet access on the computer, or display a barrage of pop-ups on the computer to name a few things.

How are they spread?  That answer is tricky.  There are many different ways a computer virus can spread, and it’s up to the virus writer on which method he/she will use.  Nowadays, most viruses are spread by malicious websites.  What does that mean?  Generally, it’s a website designed to look like a legitimate business website.  The website will somehow entice the user to click on a download and BAM… The computer has a virus.  The website may prompt the user to install an ActiveX control, install an ‘update’ to a video player that is really the virus itself, or use a popup message hoping the user clicks on ANY button (even the ‘Cancel’ or ‘Close’ button can be programmed by the writer to install the virus).

But why didn’t my security software stop it?  That usually has to do with the delivery method.  In the case of a malicious website, when the computer user is successfully enticed into clicking or downloading the virus, then that action by the user told the security software that “This is OK to do”.  The user probably didn’t realize what was happening.  But behind the scenes the security software was ‘told’ by the user to let the virus through. At that point, the security software may or may not be able to successfully remove the virus.  Many viruses are designed to disable certain security software before they begin to do whatever it is they were initially designed to do.

How can I protect myself?  First, have quality security software, and keep it updated.  Second, don’t be ‘Click Happy’.  If the website looks like a phishing site or just a bit odd, don’t install any software from that site.  If you get pop-ups from the site, don’t click on any button.  Use ‘Alt+F4’ to close the pop-up or shut down your computer immediately.  Third, do not click on links in emails or open attachments from people (even companies) that you do not know.

For a few tips on computer security, read this blog.

Kyle Greenup | Vice President
NovaCPU
www.novacpu.com

Email: kyle@novacpu.com
Office: 615.822.5454  |  Cell:  615.498.5789
111 Hazel Path | Hendersonville, TN | 37075

No doubt that you have heard of the Conficker virus by now, a.k.a. the ‘April Fools’ virus. The Conficker virus is technically a ‘worm’ which means it can spread without any user interaction. This particular worm spreads by exploiting a known vulnerability in the Microsoft Windows operating system – specifically the Windows 2000, Windows XP, Windows Vista, Windows Server 2003, Windows Server 2008, and Windows Server 2008 R2 Beta operating systems. That’s pretty much all of them in use today!

You may not know that protecting yourself from this horrible worm is extremely easy to do. If you are not already infected, you need to stop what you are doing and visit the Windows Update website. Obtain all patches listed for your machine, specifically the patch described in article MS08-067. This patch will protect you from being infected by the Conficker virus. If you are all patched up, then you are protected. This method will not remove the virus if you are already infected, but it will protect you if you are not infected.

Without the proper tools, Conficker is tricky to detect. Symptoms can vary but include diminished internet connection speed, diminished system performance, rouge tasks in the task manager, and denial of access to network resources.

If you think that you are infected, you need to turn off your machine or at least unplug the network cable or disable the wireless network adapter (or unplug your machine from the modem, depending on your setup). This will stop the worm from spreading from your machine. Next, you need to contact us at NovaCPU.  We have sucessfully removed this virus for our customers and can do the same for you!

Kyle Greenup | Vice President
NovaCPU
www.novacpu.com

Email: kyle@novacpu.com
Office: 615.822.5454  |  Cell:  615.498.5789
111 Hazel Path | Hendersonville, TN | 37075