Rich Pasco's virus pagesby Rich Pasco
Here are some essays I've written in response to questions that my non-technical friends have asked me about e-mail and computer viruses. I am pleased to share them with you now. Please click on each of these links to read the full text of the essays. If you're in a hurry, you may just want to read the synopsis below right now, but please come back to click on these links:
A virus is defined as "that which tricks its host into making more copies of itself." There are two kinds of viruses in circulation today:
The kind that gets the most publicity is the poison e-mail which, when opened, does serious damage to the victim computer, and/or hijacks it for the purpose of spreading spam and/or copies of itself. This kind of virus is spread via an executable file that may ride as an attachment to a seemingly innocuous e-mail message, and when opened, commands the victim's computer to do its work.
However, a more common virus is the e-mail virus. This kind does not contain any executable attachment; it doesn't need it! It works by tricking the recipient's mind into believing that it is important to forward copies to his friends and relatives, usually by a dire-sounding warning or a heart-wrenching plea.
Things can get really confusing when an e-mail virus plays on the victim's fear of executable viruses. It may contain plausible-sounding advice like, "If you receive an e-mail [meeting some description] don't open it!" but then it continues, "Forward copies of this message to everyone you know!" This is a dead give-away that the warning message itself is an e-mail virus. Please do not forward it. Instead, please ask the person who sent it to you to read this web page. Send them a copy of this URL: http://www.richpasco.org/virus/ (and feel free to link to it).
Another confusing e-mail virus warns that you have probably been infected by a "virus" and contains instructions to remove an executable file from your system and to forward the warning to your correspondents. In fact, the file to which it refers is actually a useful component of Windows which should not be removed, and the e-mail is a cruel hoax which should not be forwarded. In variations of this hoax, different Windows files have been targeted. (Read about sulfnbk.exe from Symantec and McAfee. Read about jdbgmgr.exe from Symantec and McAfee.
To protect yourself from viruses, practice safe computing. Follow all these steps; don't depend on just one:
Copyright © 2001-2007 Richard C. Pasco. All rights reserved.