Everyday new viruses is being spread over the net and most of this viruses are difficult to neutralize in one's PC.So, I was thinking to run description summary in some of the characteristics of this malicious programs(viruses) for you to have better understanding.
Viruses are categorize into two, these are the Potentially Unwanted Programs and Malware Programs.I will focus more in the malware programs category since this is that bring most damage to one's PC.
Potentially Unwanted Programs-are created not intended solely to inflict damage. However they can be used to breach the computer's security, includes adware, pornware and other potentially unwanted programs.
Malware Programs-are created with the purpose to damage a computer and its user, for example, to steal, block, modify or erase information, disrupt operation of a computer or a computer network.It is further divided into three subcategories: viruses and worms, Trojans programs and malware utilities.
1.Viruses and worms can create copies of themselves which are, in turn, capable of creating their own copies. Some of them run without user's knowledge or participation, others require actions on the user's part to be run. These programs perform their malicious actions when run.
2.Trojan programs do not create copies of themselves, unlike worms and viruses. They sneak into a computer, for example, via e-mail or using a web browser when the user visits an "infected" website. To be launched they require user's actions and start performing their malicious actions as they run.
3.Malware utilities are created specifically to inflict damage. However, unlike other malware programs, they do not perform malicious actions immediately as they are run and can be safely stored and run on the user's computer. Such programs have functions used to create viruses, worms and Trojan programs, arrange network attacks on remote servers, hacking computers or other malicious actions.
Viruses and Worms Sub-Category
A classic virus infiltrates into the system, it infects a file, activates in it, performs its malicious action and then adds copies of itself into other files.It reproduce only on the local resources of a certain computer, they cannot independently penetrate other computers. They can penetrate other computers only if it adds its copy into a file stored in a shared folder or on a CD or if the user forwards an e-mail messages with at infected attachment.
Code of a classic virus can penetrate various areas of a computer, operating system or application. Based on the environment, there is a distinction between file, boot, script and macro viruses.
Viruses can infect files using various methods. Overwriting viruses write their own code replacing the code of the file they infect and after they destroy the content of such file. The infected file stops working and cannot be disinfected. Parasitic viruses modify files leaving them fully or partially operating. Companion viruses do not modify files but create their duplicates. When such infected file is opened, its duplicate, that is the virus, will be run. There are also link viruses, (OBJ) viruses that infect object modules, viruses that infect compiler libraries (LIB), viruses that infect original text of programs, etc.
Worms - After it penetrates the system, the code of a network worm, similarly to the classic virus code, gets activated and performs its malicious action. The network worm received its name due to its ability to tunnel from one computer to another - without the user's knowledge - to send copies of itself through various information channels.
The major method of proliferation is the main attribute that differentiates various types of worms. The table below lists types of worms based on the method of their proliferation.
Click to download table in PDF form
To be continued...............
No comments:
Post a Comment