A couple days ago, I missed a day blogging because I had to remove malware from a computer (not mine). Though it wasn’t the computer I use for my blogging, the main idea still stands: Maintain your computer, and take care to avoid having harm come to it, or you could spend a day (or a week) dealing with an issue.
If you follow me on Twitter, you may have seen the epic saga unfold: #1, #2, #3, #4, #5, #6, #7, #8, #9, #10, #11, #12.
The malware that invaded the Dell laptop, which is mainly used by my parents, though my younger brother used it that day, is known as “VirusWebProtect2008.” It’s one of those “Smitfraud” faux antivirus software packages that installs itself via a compromised website, causes mayhem, and trys to sell you “antivirus software” that will supposedly remove the virus. Essentially it
- Changes the desktop background to a biohazard symbol (though technically it’s just a window-thing floating between the desktop and your shortcut icons.)
- Adds icons to your desktop that link to the website where you’re supposed to buy the fake virus scanner.
- Disables Task Manager and RegEdit.
- Hides drives in My Computer.
- Hides the “All Programs” menu in the Start Menu, as well as “Run,” “Control Panel,” and the like. (Though you can still press Windows+R and use it to access “C:\,” and the control panel.
- Disables Firefox and hijacks the Internet Explorer homepage.
- Gives frequent warnings about nonexistent security threats, in an effort to sell you their crapware.
- Changes your systray clock to say “VIRUS ALERT” after the time.
- Intercepts Google and Yahoo search results, and makes the links jump to fake cybersquatter pages, in an effort to stop you from finding out how to remove the thing. (I did my searching and downloading on my MacBook, and transferred the files over the network.)
- Blocks access to sites where you can download tools that could possible remove the infection.
- Though the malware wouldn’t run in Safe Mode, some of it’s effects persisted, and made things hard for me.
I spent 6+ hours of work trying to remove the virus (plus a couple breaks to eat, and to watch the Netflix movie), until I finally found a fix. By midnight the malware was finally gone. I’d spent most of the day trying to clean the computer out, and hadn’t managed to find the time to write a blog post. (Lucky I had a couple timestamped posts ready…).
Now imagine for a minute that I did my blogging on a Windows laptop like the Dell, instead of my MacBook, and it became infected by a drive-by malware installation somehow. I might have it back up and running in a day or two, and be able to resume blogging, or I could have had much worse happen. The malware could theoretically trash my documents and apps (instead of just hijacking the computer), or lock it down the point where a reformat was necessary, and it would take a long time to recover from that.
So keep your antivirus definitions up to date, make frequent backups, run antispyware software, and do all those maintennance tasks you hate doing. If you get hit with malware, your laptop gets stolen or damaged, or if your desktop overheats and catches fire, you could be without a computer for a few days. You could use a public computer at your local library or internet cafe, but they’re not terribly conveniant, and you’ll have to rush to get all your work done in an hour or so (most libraries limit time on their machines, and net cafes can have some steep rates if you plan on spending three hours on theirs).
Pingback: Bookmarks about Explorer