Skip to main content

Hiding Places for Malware

NETWORK TECH WORLD

 Hiding Places for Malware


Malicious software, or malware, does not simply place itself in an obvious location and may even move around your computer’s hard drive to prevent detection. This is part of what makes it so difficult to remove some infections that can cause sluggish behavior, Internet redirects, pop-up windows and even failure of your anti-virus software.
Restore Data
Software infections may hide in partitions on your computer’s hard drive that are dedicated to saving restore files. Typically, you don’t use these files on a daily basis. They exist as a backup should you need to restore your computer to an earlier date. Anti-malware programs may not be able to find or delete infected files in the restore partition. Because of this, sources such as the Computer Hope website, which gives troubleshooting advice, recommend turning off System Restore before running a scan with your anti-virus or anti-malware program. This is especially true if your computer uses Windows XP as an operating system. When your anti-virus program has removed all infections and behavior returns to normal, you can then enable System Restore once more.
Registry
The Windows Registry is a database of settings that your operating system relies on to run properly. The Registry uses a hierarchical structure to store these settings. Individual settings are stored in what are known as “keys,” and malicious software can change the values of these keys or add keys that are not necessary. For example, one Registry key can instruct your computer to not show file extensions. Thus, when you look for infected files, you may not be able to tell a legitimate file from malware. Some malware solutions may require you to open the Registry Editor, a component of Windows, and search for keys or values that are associated with malware.
Startup
Windows computers have a “Startup” folder that contains programs that begins as soon as you boot up. Malware may hide in this folder and execute itself in the background without your knowledge. Your anti-malware software may not be able to locate processes that are already running when you perform a scan, or if your software does find the infection, it may not be able to remove it because it is running and refuses to shut down. To remedy this situation, you can start your computer in Safe Mode. Restart and press the “F8″ key when you see the black screen with your manufacturer’s logo. Safe Mode prevents unnecessary applications from running at startup. It may show your screen in fewer colors than normal; however, this is normal. Perform your scans in Safe Mode to remove malware infections.
Miscellaneous
Other common places that may hide malware include the Hosts file, which contains a list of human-friendly URLS, like “google.com” and their corresponding computer-friendly Internet Protocol addresses, which used a numeric system. An alternative hiding spot for malware is in any file that allows embedded media. Screen savers, Web pages and presentations are just a few of the file types that allow embedded content. You may not know that this file is letting malicious software onto your computer when you open it. Real-time anti-virus protection applications can scan downloaded files to check for known infections.

Comments

Popular posts from this blog

What is network

NETWORK TECH WORLD What is network  A network is a group of devices, such as computers, servers, and printers, that are connected together and able to communicate with each other. Networks can be classified based on their size and scope, such as a local area network (LAN), which is a network that is confined to a small area, such as a single building or campus, or a wide area network (WAN), which is a network that spans a large geographical area, such as a city or a country. Networks can also be classified based on their communication protocols, such as the Internet, which is a global network that uses the Internet Protocol (IP) to connect devices around the world.

Google Tricks

AA few things you might want to try with Google: Hand type the following prefixes and note their utility: link:url Shows other pages with links to that url. related:url same as "what's related" on serps. site:domain restricts search results to the given domain. allinurl: shows only pages with all terms in the url. inurl: like allinurl, but only for the next query word. allintitle: shows only results with terms in title. intitle: similar to allintitle, but only for the next word. "intitle:webmasterworld google" finds only pages with webmasterworld in the title, and google anywhere on the page. cache:url will show the Google version of the passed url. info:url will show a page containing links to related searches, backlinks, and pages containing the url. This is the same as typing the url into the search box. spell: will spell check your query and search for it. stocks: will lookup the search query in a stock index. filetype: will ...

Network Protocols

NETWORK TECH WORLD A network protocol is a set of rules and standards that define how devices on a network should communicate with each other. Network protocols govern everything from the type of cable that is used to connect devices to the way in which data is transmitted between them. There are many different types of network protocols, each of which serves a specific purpose. Some common examples include: TCP (Transmission Control Protocol): This is a connection-oriented protocol that is responsible for breaking up data into packets, transmitting the packets over the network, and reassembling the packets at the destination. TCP is a reliable protocol that ensures that all packets are delivered to their destination. IP (Internet Protocol): This is a connectionless protocol that is responsible for routing packets between devices on a network. IP is an unreliable protocol that does not guarantee that packets will be delivered to their destination. HTTP (Hypertext Transfer Protocol): Th...