Your Field Guide to Computer Malware

Sun Feb 24, 2008 7:41PM EST

See Comments (16)

Viruses, worms, spyware... what's it all about? If you're a novice computer user, the variety of terms surrounding "bad" computer software (known collectively as malware) might confuse you to the point where you're too paralyzed to do anything to protect yourself. That's a mistake. So let's start by covering the bases and laying out what's what in the world of evil apps.

Virus - Technically a specific type of program that replicates itself from one computer to another by infecting an application, often doing damage along the way (but sometimes can be harmless). True viruses aren't actually that common any more (making up only 5% of malware infections), but the word "virus" has largely become a generic term to describe any form of malware.

Worm - Like a virus, but a worm doesn't need an application to infect to replicate itself. Much more common than a true virus these days.

Trojan - Trojans, or Trojan horses, make up the majority of malware infections today. Trojans are designed to look harmless (or look like nothing at all, installing themselves in the background) but actually go to work behind the scenes installing additional malware or performing nefarious activities like sending spam or grabbing your personal info. In contrast, worms and viruses are generally noticeable immediately.

Back Door - Also written as backdoor, this malware type is designed to give remote control of your PC to another user, over the internet.

All four of the above terms are used to describe methods by which malware gets on your PC. Once the malware gets on your computer, it can take any number of forms, as outlined below. 

Bot - Any of the above malware types can turn your computer into a "bot," also known as a zombie, one of the biggest security problems on the web today. Bots automatically perform nefarious actions like sending spam or firing off denial of service attacks (which aim to bring down web sites through a crush of traffic), all under the command of a botnet's master computer. As a user, you may never even notice a bot is installed on your PC, but in quantity, bots can be very dangerous to other computers on the web.

Spyware - A broad term for applications that steal info off your computer (like your address book or your passwords) and transmit them to the bad guys. Some spyware is relatively harmless, but at its worst, spyware can be extremely damaging and can result in identity theft.

Keylogger - A type of spyware that captures characters as you type them as a means of recording your private correspondence. Keylogger hardware also exists.

Downloader - Downloaders: Well, they download stuff. Typically, they download more malware, which in turn download even more malware. This is how a single malware infection can spiral out of control and turn into dozens of infections on a single PC to the point where the computer becomes wholly unusable. Many malware infections come with a downloader component.

Dialer - Got a modem? A dialer will run up a fat bill for you by auto-dialing 900 numbers (and similar toll numbers) while you sleep.

I'm leaving out some less common malware types, but those are the basics. It may sound overwhelming, but the good news is that no matter what type of malware infection you're facing, the prevention method is the same. And that's a subject we'll cover later this month... Stay tuned for Part 2: Prevention.

Comments on Your Field Guide to Computer Malware

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 1 Posted by classyscmale on Thu Sep 3, 2009 3:26PM EDT Report Abuse

    I remove malware an average of 30 hours a week from computers, so I am sitting on the edge of my seat for Part 2: Prevention. This is truly a bigger problem that Part 1 Field Guide addresses. We actually have hand-outs we give to folks who's computers were infected. However,they rarely share them with other family members and we invariably see them again. I have my fingers crossed you have the magic bullet. Just curious, ever struggled removing with a nefarious piece of malware?

  • 2 Posted by miller6994 on Thu Sep 3, 2009 7:20PM EDT Report Abuse

    Not really a problem, just a Microsoft annoyance. Prevention = Run Linux and put these worries behind you.

  • 3 Posted by agustin2489 on Thu Sep 3, 2009 2:47PM EDT Report Abuse

    miller, no OS is perfectly immune to exploits. Linux just cleans up faster. I find it funny that dialers exist. Then again, I'm from the view that broadband is mainstream.

  • 4 Posted by miller6994 on Thu Sep 3, 2009 7:20PM EDT Report Abuse

    The immunity of Linux speaks for itself over 95% of Linux users do not even run anti-virus software, that is just opposite of that in the MS world.

  • 5 Posted by godsinventor on Thu Sep 3, 2009 4:10PM EDT Report Abuse

    so true miller, I am running linux right now, no AV on my laptop (I do have clamav on here, but I haven't run it in over a year I will probably remove it I installed it just after switching from XP)

  • 6 Posted by dehnger2u on Thu Sep 3, 2009 3:40PM EDT Report Abuse

    Let's try to keep it in perspective. Malware exists as a reality that really only affects people in direct correlation to their usage and habits. I run no av software. In years now. And no viruses or other malware have been an issue for me. I also don't download anything for free that should cost money....or, surf porn or gambling sites...etc...malware has to have a door to come in, and you have to open it. Linux, obviously, is only useful to technically adept people....which as classyscmale pointed out....most malware infected users are not....so, primarily, Windows gets more attacks....because most non-literate users, use Windows. Prevention starts with knowing where and when you are at risk. Crisis management, properly applied, is avoiding the scenario completely, not trying to fix it after it strikes. As always, thanks for the article Christopher.

  • 7 Posted by dehnger2u on Thu Sep 3, 2009 3:40PM EDT Report Abuse

    Let's try to keep it in perspective. Malware exists as a reality that really only affects people in direct correlation to their usage and habits. I run no av software. In years now. And no viruses or other malware have been an issue for me. I also don't download anything for free that should cost money....or, surf porn or gambling sites...etc...malware has to have a door to come in, and you have to open it. Linux, obviously, is only useful to technically adept people....which as classyscmale pointed out....most malware infected users are not....so, primarily, Windows gets more attacks....because most non-literate users, use Windows. Prevention starts with knowing where and when you are at risk. Crisis management, properly applied, is avoiding the scenario completely, not trying to fix it after it strikes. As always, thanks for the article Christopher.

  • 8 Posted by mikeymixx on Thu Sep 3, 2009 7:20PM EDT Report Abuse

    Thanks for the article, it is great that everything in it is grouped, but I am waiting for the Part 2: Prevention. As my prevention consists of installing of 4 programs(Zone Alarm Pro, Privacy Keyboard, Spy Catcher and Norton) and it seems to me that they give me full protection, but I am almost sure that new ideas will come in handy anyway!

  • 10 Posted by paul_soares on Thu Sep 3, 2009 8:03PM EDT Report Abuse

    I can argue the OS argument as I'm running Vista without any a/v and I'm fine. In the end it all comes down to the user's tech savvy and safe (or unsafe, as the case may be) Internet habits.

More Posts: First Prev 1 2 Next Last

Post a Comment

Sign In to Post a Comment