Computer viruses, types and preventions
kingpremkumar
3,994 views
15 slides
Sep 22, 2016
Slide 1 of 15
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
About This Presentation
Maximum information guaranteed!
Slide Content
Computer Virus
By: Prem kumar
Nisha
kumari
Mani raj
Anusha
By: Prem kumar
Nisha
kumari
Mani raj
Anusha
Defining virus
•Vital information resourCes under siege
•A computer virus is a program made by hackers in order to multiply
insidiously and fast to other computers in network. It disrupts more
or less badly the operation of the infected computer. It can extend
through any means of digital data exchange such as the Internet
(Emails, attachments, insecure websites, links).
•Vital information resourCes under siege
•A computer virus is a program made by hackers in order to multiply
insidiously and fast to other computers in network. It disrupts more
or less badly the operation of the infected computer. It can extend
through any means of digital data exchange such as the Internet
(Emails, attachments, insecure websites, links).
most Common types of Viruses and
other maliCious programs
1. resident Viruses
This type of virus is a permanent which dwells in the RAM memory.
From there it can overcome and interrupt all of the operations
executed by the system: corrupting files and programs that are
opened, closed, copied, renamed etc.
Examples include: Randex, CMJ, Meve, and MrKlunky.
2. multipartite Viruses
Multipartite viruses are distributed through infected media and
usually hide in the memory. Gradually, the virus moves to the boot
sector of the hard drive and infects executable files on the hard
drive and later across the computer system
other maliCious programs
1. resident Viruses
This type of virus is a permanent which dwells in the RAM memory.
From there it can overcome and interrupt all of the operations
executed by the system: corrupting files and programs that are
opened, closed, copied, renamed etc.
Examples include: Randex, CMJ, Meve, and MrKlunky.
2. multipartite Viruses
Multipartite viruses are distributed through infected media and
usually hide in the memory. Gradually, the virus moves to the boot
sector of the hard drive and infects executable files on the hard
drive and later across the computer system
most Common types of Viruses and
other maliCious programs
(Contd.)
3. direCt aCtion Viruses
The main purpose of this virus is to replicate and take action when it
is executed. When a specific condition is met, the virus will go into
action and infect files in the directory or folder that it is in and in
directories that are specified in the AUTOEXEC.BAT file PATH. This
batch file is always located in the root directory of the hard disk and
carries out certain operations when the computer is booted.
4. oVerwrite Viruses
Virus of this kind is characterized by the fact that it deletes the
information contained in the files that it infects, rendering them
partially or totally useless once they have been infected.
The only way to clean a file infected by an overwrite virus is to
delete the file completely, thus losing the original content.
Examples of this virus include: Way, Trj.Reboot, Trivial.88.D.
other maliCious programs
(Contd.)
3. direCt aCtion Viruses
The main purpose of this virus is to replicate and take action when it
is executed. When a specific condition is met, the virus will go into
action and infect files in the directory or folder that it is in and in
directories that are specified in the AUTOEXEC.BAT file PATH. This
batch file is always located in the root directory of the hard disk and
carries out certain operations when the computer is booted.
4. oVerwrite Viruses
Virus of this kind is characterized by the fact that it deletes the
information contained in the files that it infects, rendering them
partially or totally useless once they have been infected.
The only way to clean a file infected by an overwrite virus is to
delete the file completely, thus losing the original content.
Examples of this virus include: Way, Trj.Reboot, Trivial.88.D.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
5. Boot Virus
This type of virus affects the boot sector of a floppy or hard disk.
This is a crucial part of a disk, in which information on the disk itself
is stored together with a program that makes it possible to boot
(start) the computer from the disk.
The best way of avoiding boot viruses is to ensure that floppy disks
are write-protected and never start your computer with an unknown
floppy disk in the disk drive.
Examples of boot viruses include: Polyboot.B, AntiEXE.
6. MaCro Virus
Macro viruses infect files that are created using
certain applications or programs that contain macros. These mini-
programs make it possible to automate series of operations so that
they are performed as a single action, thereby saving the user from
having to carry them out one by one.
Examples of macro viruses: Relax, Melissa.A, Bablas, O97M/Y2K.
other MaliCious prograMs
(Contd.)
5. Boot Virus
This type of virus affects the boot sector of a floppy or hard disk.
This is a crucial part of a disk, in which information on the disk itself
is stored together with a program that makes it possible to boot
(start) the computer from the disk.
The best way of avoiding boot viruses is to ensure that floppy disks
are write-protected and never start your computer with an unknown
floppy disk in the disk drive.
Examples of boot viruses include: Polyboot.B, AntiEXE.
6. MaCro Virus
Macro viruses infect files that are created using
certain applications or programs that contain macros. These mini-
programs make it possible to automate series of operations so that
they are performed as a single action, thereby saving the user from
having to carry them out one by one.
Examples of macro viruses: Relax, Melissa.A, Bablas, O97M/Y2K.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
7. direCtory Virus
Directory viruses change the paths that indicate the location of a file.
By executing a program (file with the extension .EXE or .COM)
which has been infected by a virus, you are unknowingly running the
virus program, while the original file and program have been
previously moved by the virus.
Once infected it becomes impossible to locate the original files.
8. polyMorphiC Virus
Polymorphic viruses encrypt or encode themselves in a different
way (using different algorithms and encryption keys) every time they
infect a system.
This makes it impossible for anti-viruses to find them using string or
signature searches (because they are different in each encryption)
and also enables them to create a large number of copies of
themselves.
Examples include: Elkern, Marburg, Satan Bug, and Tuareg.
other MaliCious prograMs
(Contd.)
7. direCtory Virus
Directory viruses change the paths that indicate the location of a file.
By executing a program (file with the extension .EXE or .COM)
which has been infected by a virus, you are unknowingly running the
virus program, while the original file and program have been
previously moved by the virus.
Once infected it becomes impossible to locate the original files.
8. polyMorphiC Virus
Polymorphic viruses encrypt or encode themselves in a different
way (using different algorithms and encryption keys) every time they
infect a system.
This makes it impossible for anti-viruses to find them using string or
signature searches (because they are different in each encryption)
and also enables them to create a large number of copies of
themselves.
Examples include: Elkern, Marburg, Satan Bug, and Tuareg.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
9. file infeCtors
This type of virus infects programs or executable files (files with an .EXE or
.COM extension). When one of these programs is run, directly or indirectly, the
virus is activated, producing the damaging effects it is programmed to carry
out. The majority of existing viruses belongs to this category, and can be
classified depending on the actions that they carry out.
10. enCrypted Viruses
This type of viruses consists of encrypted malicious code, decrypted module.
The viruses use encrypted code technique which make antivirus software
hardly to detect them. The antivirus program usually can detect this type of
viruses when they try spread by decrypted themselves.
11. CoMpanion Viruses
Companion viruses can be considered file infector viruses like resident or direct
action types. They are known as companion viruses because once they get
into the system they "accompany" the other files that already exist. In other
words, in order to carry out their infection routines, companion viruses can wait
in memory until a program is run (resident viruses) or act immediately by
making copies of themselves (direct action viruses).
Some examples include: Stator, Asimov.1539, and Terrax.1069
other MaliCious prograMs
(Contd.)
9. file infeCtors
This type of virus infects programs or executable files (files with an .EXE or
.COM extension). When one of these programs is run, directly or indirectly, the
virus is activated, producing the damaging effects it is programmed to carry
out. The majority of existing viruses belongs to this category, and can be
classified depending on the actions that they carry out.
10. enCrypted Viruses
This type of viruses consists of encrypted malicious code, decrypted module.
The viruses use encrypted code technique which make antivirus software
hardly to detect them. The antivirus program usually can detect this type of
viruses when they try spread by decrypted themselves.
11. CoMpanion Viruses
Companion viruses can be considered file infector viruses like resident or direct
action types. They are known as companion viruses because once they get
into the system they "accompany" the other files that already exist. In other
words, in order to carry out their infection routines, companion viruses can wait
in memory until a program is run (resident viruses) or act immediately by
making copies of themselves (direct action viruses).
Some examples include: Stator, Asimov.1539, and Terrax.1069
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
12. network Virus
Network viruses rapidly spread through a Local Network Area
(LAN), and sometimes throughout the internet. Generally, network
viruses multiply through shared resources, i.e., shared drives and
folders. When the virus infects a computer, it searches through the
network to attack its new potential prey. When the virus finishes
infecting that computer, it moves on to the next and the cycle
repeats itself.
•The most dangerous network viruses are Nimda and SQLSlammer.
13. nonresident Viruses
This type of viruses is similar to Resident Viruses by using
replication of module. Besides that, Nonresident Viruses role as
finder module which can infect to files when it found one (it will
select one or more files to infect each time the module is executed).
other MaliCious prograMs
(Contd.)
12. network Virus
Network viruses rapidly spread through a Local Network Area
(LAN), and sometimes throughout the internet. Generally, network
viruses multiply through shared resources, i.e., shared drives and
folders. When the virus infects a computer, it searches through the
network to attack its new potential prey. When the virus finishes
infecting that computer, it moves on to the next and the cycle
repeats itself.
•The most dangerous network viruses are Nimda and SQLSlammer.
13. nonresident Viruses
This type of viruses is similar to Resident Viruses by using
replication of module. Besides that, Nonresident Viruses role as
finder module which can infect to files when it found one (it will
select one or more files to infect each time the module is executed).
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
14. stealth Viruses
Stealth Viruses is some sort of viruses which try to trick anti-virus
software by intercepting its requests to the operating system. It has
ability to hide itself from some antivirus software programs.
Therefore, some antivirus program cannot detect them.
15. sparse infeCtors
In order to spread widely, a virus must attempt to avoid detection. To
minimize the probability of its being discovered a virus could use any
number of different techniques. It might, for example, only infect
every 20th time a file is executed; it might only infect files whose
lengths are within narrowly defined ranges or whose names begin
with letters in a certain range of the alphabet. There are many other
possibilities.
other MaliCious prograMs
(Contd.)
14. stealth Viruses
Stealth Viruses is some sort of viruses which try to trick anti-virus
software by intercepting its requests to the operating system. It has
ability to hide itself from some antivirus software programs.
Therefore, some antivirus program cannot detect them.
15. sparse infeCtors
In order to spread widely, a virus must attempt to avoid detection. To
minimize the probability of its being discovered a virus could use any
number of different techniques. It might, for example, only infect
every 20th time a file is executed; it might only infect files whose
lengths are within narrowly defined ranges or whose names begin
with letters in a certain range of the alphabet. There are many other
possibilities.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
16. spaCefiller (CaVity) Viruses
Many viruses take the easy way out when infecting files; they simply
attach themselves to the end of the file and then change the start of
the program so that it first points to the virus and then to the actual
program code. Many viruses that do this also implement some
stealth techniques so you don't see the increase in file length when
the virus is active in memory.
•A spacefiller (cavity) virus, on the other hand, attempts to be clever.
Some program files, for a variety of reasons, have empty space
inside of them. This empty space can be used to house virus code.
A spacefiller virus attempts to install itself in this empty space while
not damaging the actual program itself. An advantage of this is that
the virus then does not increase the length of the program and can
avoid the need for some stealth techniques. The Lehigh virus was
an early example of a spacefiller virus.
other MaliCious prograMs
(Contd.)
16. spaCefiller (CaVity) Viruses
Many viruses take the easy way out when infecting files; they simply
attach themselves to the end of the file and then change the start of
the program so that it first points to the virus and then to the actual
program code. Many viruses that do this also implement some
stealth techniques so you don't see the increase in file length when
the virus is active in memory.
•A spacefiller (cavity) virus, on the other hand, attempts to be clever.
Some program files, for a variety of reasons, have empty space
inside of them. This empty space can be used to house virus code.
A spacefiller virus attempts to install itself in this empty space while
not damaging the actual program itself. An advantage of this is that
the virus then does not increase the length of the program and can
avoid the need for some stealth techniques. The Lehigh virus was
an early example of a spacefiller virus.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
17. fat Virus
The file allocation table or FAT is the part of a disk used to connect
information and is a vital part of the normal functioning of the
computer.
•This type of virus attack can be especially dangerous, by preventing
access to certain sections of the disk where important files are
stored. Damage caused can result in information losses from
individual files or even entire directories.
18. WorMs
A worm is technically not a virus, but a program very similar to a
virus; it has the ability to self-replicate, and can lead to negative
effects on your system and most importantly they are detected and
eliminated by antiviruses.
Examples of worms include: PSWBugbear.B, Lovgate.F, Trile.C,
Sobig.D, Mapson.
other MaliCious prograMs
(Contd.)
17. fat Virus
The file allocation table or FAT is the part of a disk used to connect
information and is a vital part of the normal functioning of the
computer.
•This type of virus attack can be especially dangerous, by preventing
access to certain sections of the disk where important files are
stored. Damage caused can result in information losses from
individual files or even entire directories.
18. WorMs
A worm is technically not a virus, but a program very similar to a
virus; it has the ability to self-replicate, and can lead to negative
effects on your system and most importantly they are detected and
eliminated by antiviruses.
Examples of worms include: PSWBugbear.B, Lovgate.F, Trile.C,
Sobig.D, Mapson.
Most CoMMon types of Viruses and
other MaliCious prograMs
(Contd.)
19. trojans or trojan horses
Another unsavory breed of malicious code (not a virus
as well) are Trojans or Trojan horses, which unlike
viruses do not reproduce by infecting other files, nor do
they self-replicate like worms.
20. logiC BoMBs
They are not considered viruses because they do not
replicate. They are not even programs in their own right
but rather camouflaged segments of other programs.
Their objective is to destroy data on the computer once
certain conditions have been met. Logic bombs go
undetected until launched, and the results can be
destructive.
other MaliCious prograMs
(Contd.)
19. trojans or trojan horses
Another unsavory breed of malicious code (not a virus
as well) are Trojans or Trojan horses, which unlike
viruses do not reproduce by infecting other files, nor do
they self-replicate like worms.
20. logiC BoMBs
They are not considered viruses because they do not
replicate. They are not even programs in their own right
but rather camouflaged segments of other programs.
Their objective is to destroy data on the computer once
certain conditions have been met. Logic bombs go
undetected until launched, and the results can be
destructive.
General characteristics of
computer viruses
•Here are a list of some properties that computer viruses can occur and the
effects they produce. Not all viruses of this kind.
1. The virus can infect many records infected computer (and the network to which it
belongs because some virus residing in the memory as soon as a diskette or
program is loaded into the same, the virus is “very” or “adheres” to the memory
itself and then to infect any file on the computer that had access.
2. Can be Polymorphic: Some viruses have the ability to modify your code, which
means that a virus may have multiple similar variations, making them difficult to
detect.
3. They may be resident in memory or not: As mentioned earlier, a virus is capable
of being a resident, that is first loaded into memory and then infects the
computer. It can also be “non-resident when the virus code is executed only
every time a file is opened.
4. Can be furtive: stealthy viruses (stealth) first attach themselves to files on the
computer andthen attack the computer, this causes the virus to spread more
quickly.
5. The virus can bring other viruses: A virus can lead to another virus making it
much more lethal and help each other to hide or even assist you to infect a
particular section of the computer.
6. You can make the system never shows signs of infection: Some viruses can hide
the changes they make, making it much more difficult for the virus is detected.
Hard disk is formatted
7. They can stay on the computer even if the hard disk is formatted: Although very
few cases, some viruses have the ability to infect different parts of the computer.
computer viruses
•Here are a list of some properties that computer viruses can occur and the
effects they produce. Not all viruses of this kind.
1. The virus can infect many records infected computer (and the network to which it
belongs because some virus residing in the memory as soon as a diskette or
program is loaded into the same, the virus is “very” or “adheres” to the memory
itself and then to infect any file on the computer that had access.
2. Can be Polymorphic: Some viruses have the ability to modify your code, which
means that a virus may have multiple similar variations, making them difficult to
detect.
3. They may be resident in memory or not: As mentioned earlier, a virus is capable
of being a resident, that is first loaded into memory and then infects the
computer. It can also be “non-resident when the virus code is executed only
every time a file is opened.
4. Can be furtive: stealthy viruses (stealth) first attach themselves to files on the
computer andthen attack the computer, this causes the virus to spread more
quickly.
5. The virus can bring other viruses: A virus can lead to another virus making it
much more lethal and help each other to hide or even assist you to infect a
particular section of the computer.
6. You can make the system never shows signs of infection: Some viruses can hide
the changes they make, making it much more difficult for the virus is detected.
Hard disk is formatted
7. They can stay on the computer even if the hard disk is formatted: Although very
few cases, some viruses have the ability to infect different parts of the computer.
if you think you have a virus in
your computer just Go for below
options(preventions):
•Run anti-virus software: A good antivirus software is about Rs.500 for 1 pc and
important for the health of your computer. You can configure most of the utilities they
go in search of virus from the start of your machine and they notify you when they
detect infected files. A utility will also notify you if you try to open an infected file.
•Replace the files: If the antivirus is unable to repair the damage, you will then have no
choice but to delete the offending file and replace it with a safe copy you get from
your most recent backup.
•Restart from a healthy disk: In fact, some viruses attack a disk boot records (area of a
disk that are read starting instructions), which could even prevent you from starting
your computer. In case your computer does not start or crashes before you can not
open a program, you can start the antiviral software. You must shut down your
computer and restart it using a boot disk, write-protected.
•Run a diagnostic utility and disk repair: After rebooting with the boot disk. Windows
and Mac operating systems both provide utilities that you can use for
troubleshooting. Once your computer recovered, restart your antivirus so that it
checks your entire system.
•Reformat your hard disk: If launching a utility is unsuccessful, your hard disk is
probably damaged. Use in this case, a boot disk that provides the ability to reformat
the hard drive and reinstall your operating system from the original disc.
your computer just Go for below
options(preventions):
•Run anti-virus software: A good antivirus software is about Rs.500 for 1 pc and
important for the health of your computer. You can configure most of the utilities they
go in search of virus from the start of your machine and they notify you when they
detect infected files. A utility will also notify you if you try to open an infected file.
•Replace the files: If the antivirus is unable to repair the damage, you will then have no
choice but to delete the offending file and replace it with a safe copy you get from
your most recent backup.
•Restart from a healthy disk: In fact, some viruses attack a disk boot records (area of a
disk that are read starting instructions), which could even prevent you from starting
your computer. In case your computer does not start or crashes before you can not
open a program, you can start the antiviral software. You must shut down your
computer and restart it using a boot disk, write-protected.
•Run a diagnostic utility and disk repair: After rebooting with the boot disk. Windows
and Mac operating systems both provide utilities that you can use for
troubleshooting. Once your computer recovered, restart your antivirus so that it
checks your entire system.
•Reformat your hard disk: If launching a utility is unsuccessful, your hard disk is
probably damaged. Use in this case, a boot disk that provides the ability to reformat
the hard drive and reinstall your operating system from the original disc.
Thank you!
By: Prem kumar
Nisha Kumari
Mani raj
Anusha
By: Prem kumar
Nisha Kumari
Mani raj
Anusha
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 3,994
- Slides 15
- Favorites 4
- Age 3359 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
32 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
35 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
32 views
14
Fertility awareness methods for women in the society
Isaiah47
30 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
29 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
30 views