Viruses: What they are

Antivirus, Internet Security
Computer Protection Software
Comparisons, Reviews and Information
from Certified Security Experts and End Users

Antivirus

Prevention
Certification
Filtering
Features
Selection
Configuration
Avoid

Click Here for
Comparison Chart

BitDefender
eTrust
F-PROT
Kaspersky
McAfee
Norman ASA
Norton
Panda
PCSecurityShield
PC Tools

Bookmark Page

Viruses: What they are

Trojan Horses

First there were trojan horses, software you have to manually run, but do something malicious. Some of them are just practical jokes handed out to friends, like one that appear to mess with your computer's vertical hold, making the screen roll like an old television set, or the ones that pretended to format your hard drive.

But there are malicious trojan horses, too. An infamous one was the Dialer.Gola, which was an email that pretended to be porn but was actually a program that changed your internet connection to a long distance dialup.

Because trojan horses do not replicate by themselves, they are trackable back to the sender. The person who handed it to you usually knew it was a trojan horse. This is why malicious trojan horses are spread via forged email, or download sites operated from non-cooperative countries, or via p2p sharing, which is delibrately hard to backtrack.

Viruses

Computer viruses are pieces of code that attach themselves to other software. By analogy with biological viruses, they insert themselves into other programs, just like biological viruses to do to cells, and have the other program execute them. When executed, they replicate themselves and spread to other programs. These were the original computer threat, and have been around as long as programs have. They never spread beyond where they can see other programs, so the only way to get thems between computers is sharing files over the network or moving them around manually.

Computer viruses were famous for doing all sorts of weird things to your computer. Some of them even practiced extortion by holding your data hostage until you typed a password, and other such silliness. The very first virus, Elk Cloner, was a practical joke, and others have followed in those footsteps by merely poping up messages.

Worms

However, most people use the term 'virus' to also refer to computer 'worms', which are executable programs that copy themselves from computer to computer using security holes. Most 'viruses' these days are just that, a worm. 'Worm' sounds a bit more innocent than virus, but the reference is to parasitic worms that live inside living things, not the ones living in the ground. Computer worms are close to them in that there will only be one copy of them, they are much larger, and they don't make other programs do they copying for them, but are full programs. These come in via open ports, which a firewall can help with, or malicious web pages or email messages, from other machines that are infected.

Worms, on the other hand, hardly ever do anything noticable to your computer except slow it down and cause crashes. People often have a computer worm without knowing it, and that is by design. The first thing the worm does is start attacking other machines to look for the same security hole on that machine that they came in on. Then they turn your machine into what is called an '0wned' (meaning 'owned', with a zero at the start) machine, a machine controlled by hackers. The hackers can read every bit of data on it, and they lease it to spammers, causing you to spam others. (In addition to any worm-laden email you might be already sending.)

Why the change? Simple. Money. Viruses used to be written for fun, by bored programmers. Often they'd be contests to see how small they could be, or how tricky they could avoid detection by antivirus. There were actual toolkits to produce viruses that would guide you through the process.

Enter the internet. Suddenly, worms that spread themselves automatically were possible. The first one was a proof of concept more than anything else.

Then, enter spam. Suddenly, thanks to spam-fighters blocking any computer spammer set up, having a million machines became extremely valuable. So spammers, who were never that ethical to start with, started hiring hackers to create worms that take control of other machines, creating 'Owned' machines.

And the threat was off and running, and, yet, harder than ever to see. Almost all publicity is still on the 'created-for-fun' worms that actually do something noticable to your computer, while dozens of silent intruders sit on unwitting user's machines, relay spam, attack other machines, transmit personal information back to their controller, and silently control tens of millions of infected machines.