QSL Support - Virus Information

Viruses on your computer are a major nuisance. Perhaps the only sure way to erase one completely is to re-format your machine and restore earlier backups (see Resolutions below). The best way of not catching them is to practice a rigid avoidance policy.

Viruses can be easy to avoid. However, we all get pressured to ignore simple safeguards. Well intentioned friends and colleagues will pressure you to read their files. They might insist, badger, cajole, tell you they're safe, tell you "this is cute, you should see this", tell you how much time they spent programming it, tell you how much you'll benefit from this "amazing program", make you feel neurotic if you don't, get angry if you don't. Other common culprits are those who don't understand and have access to your computer - ie: kids. These will be passed to you as a file on a writable CD, floppy disk, or as an e-mail attachment (See Email Security).

• EXE viruses: Don't ever run an unsolicited EXE or COM file (regardless of pressure from colleagues or friends). Especially if from the web or email, from someone else's computer, from any floppy that's been in someone else's PC. Note - this includes self extracting EXE ZIP files. It is perhaps safe if someone with experience or a well founded organisation says so. Even passworded zip files are unsafe if emailed.
• DOC viruses: If you open word or excel doc's and you get a warning "This Doc contains Macros", select either "Open with Macros DISABLED" or don't open it at all. It's likely to have a virus. Only open such a document if your Administrator or Tutor (not friends) insists you should.
• Boot sector viruses: If you are given a floppy with apparently harmless data files on it, make very certain you take the floppy out as soon as you've copied over the desired files. They can generally only transfer to your PC if you leave the floppy in and reboot the PC by accident (very common mistake).
• Email Viruses: See sectionEmail Security

Things that generally can't contain viruses and are safe to transfer / read:

• Virtually any picture (*.JPG, *.PNG, *.BMP, *.GIF)
• Sound files. (*.WAV)
• AVI & MPEG files.
• TXT, WRI doc's.
• Plain HTML (internet Doc's, depending on your security settings).
• ZIP files (if not self extracting. Of course the content could include virus infected files).
• Word & Excel provided you observe the above precautions (and leave the Word & Excel security options on).

Notes:

• Anti Virus s/w is not necessarily recommended as often it causes instability due to complexity. (Such software can be nearly as bad as a virus - it invades everything because it checks everything you open, save and work on including emails). It depends on the intended use of your PC - seek advice from your IT department. If you are an inexperienced user or are constantly exposed due to a culture of program and game swapping or etc, Anti Virus S/W is highly recommended provided it is high quality and updated frequently. Even so, the effectiveness of such packages can be limited and most of the suggestions given here in still recommended. If you are using your PC commercially, especially for programming, consider not loading Anti Virus S/W as stability is usually of prime importance (but see avoidance policy above). Note that anti-virus software frequently comes in different flavours and unwitting buyers can spend quite heavily buying the wrong type (for example such packages may not include anti spyware/adware). Note also that installing anti-virus software after an infection is frequently unsuccessful.
• Rubbish programs (from friends, sample CD's, games, etc) without viruses can do just as much damage. Often they can be worse than a virus because they supersede important functionality (by overwriting important DLL's) and then can't be removed. Avoid programs that are not mainstream.
• Proliferation: Note that prolific installation of freeware and trial software (magazine CD's etc) can also have the general effect of making your PC (registry in particular) unstable. Until OS vendors make amendments to allow "casual installation" without overloading your PC (it is understood that such amendments are underway), it is recommended that only important programs be installed. Note that trying and then removing a program invariably leaves artefacts (files and settings that can cause future problems).
• Don't download and run a tool, utility, exe or update file from the Web unless advised to do so by someone with experience. Sometimes you will be browsing the internet and a message box will say "you need an upgrade to view this" or you need to "download this tool to view this". If the site is not known to be reputable, you may well inadvertently install ad-ware. On the other hand, such downloads may be virus free but can cause some standard functionality to become permanently unstable. If problems occur during download or installation, ongoing problems can occur from a partially aborted installation. Note that many upgrade notices are not necessary. For example, Flash demo's often run adequately on earlier versions already on your PC (just click "No" to the upgrade notice and see for yourself). Whilst for example Flash is regarded as high quality safe software, it is relatively easy for a disreputable site to make you think you are installing a Flash upgrade when in fact you are installing something else altogether. Ensure others with access to your PC (eg: children) dont do this.
• There is some concern that any file can contain a virus - true, but they generally need an EXE or COM file to activate them. You don't need to worry about this directly except to know that some warnings of viruses are exaggerated -- for example sometimes virus code can be hidden in an image but this payload cannot cause harm until it is activated -- thus it is generally safe to access image files (for example). However, note that some files appear to be a text file or graphic but are in fact an EXE (See Email Security Other active files to be avoided include .HTA .ASP .VBS .JS etc. DLL's and COM's can contain viruses too but it is rare that someone will try and distribute these.
• Note that the firewall included with Microsoft XP, especially earlier versions, maybe insufficient protection if you are connected directly to the Internet -- this is mainly because it is the most common firewall and thus it is the hacker's first point of attack. A hardware firewall as provided by a router is best (although it should also be complemented by a software firewall where the PC is vulnerable) -- consult your broadband supplier.

Resolutions:

• Backup your PC frequently. With Windows 98 and prior operating systems, this was easily done with a batch file using XCOPY. With the upgrade to Windows XP, XCOPY was not upgraded to allow all files to be copied. This is partly because it would make a mockery of the permissions associated with certain files (permissions are like locks on each file that are rarely understood or used by users but unfortunately exist regardless) and also because of the need for commercial protection to prevent cloning. As a result of this incomplete upgrade, you will need Norton Ghost or similar. Generally infections render the XP rollback function useless so do not rely on the XP system restore.
• Keep your user-data entirely independent of the operating system components. This is so that it can be more easily backed up and restored (consult your choice of backup software). This generally requires a lot of experience but for the inexperienced user, simply store your data in or under your My Documents folder. Do not store your data on your desktop as your desktop is sometimes actually a folder under the Windows operating system. Some programs (not many thankfully) store their data under the "Program Files" folder. Either the Windows folder or the Program Files folder are a little like the engine department of a car that is entirely unsuitable for storage of data where as the My Documents folders (including My Pictures etc) are equivalent to the boot space or trunk of a vehicle.
• If you get infected, rule number one is to disconnect your computer from the network/Internet and do not trade CD's & floppies. Viruses frequently upload your e-mail contacts to servers used for spam. People find themselves surprisingly unpopular when the source of a group infection is traced back to themselves. Careful connection via a file wall can usually be made -- consult an expert.
• To remove an infection. there is a lot of merit in simply reinstalling your operating system from scratch. This removes all trace provided one is careful not to reinstate the virus from the reinstated data directories. This requires quite a lot of expertise and you are advised to get in touch with your IT department or an expert.

Settings :

Keep your browser security at medium at all times (never at low. High is obviously safer but will prevent some browsing). This varies depending on the browser but for IE5, go to the Tools menu, Internet Options sub menu, Security Tab, Customise button:

This shows sample settings and indicates how to set Medium security.

Last reviewed mid 2009. Most points also apply to Vista.

Copyright information:

All contents of this web site are © QSL 1999, 2009
Last revised: August 10th, 2009.

See About Queensgate for more Copyright and Disclaimer information.

Back to Top