Ask Leo! by Leo A. Notenboom

Viruses: How do I keep myself safe from Viruses?

Search First! Then browse: Categories | Full Archive | By Date | Newsletter

Home » Viruses and Malware

Summary: Computer viruses are a fact of modern connected life. Anti-virus software is required, and both it and the database it uses should be kept up-to-date.

Computer viruses are a fact of modern, internet-connected life. At best, they're annoying performance sucking beasts, but at worst ... kiss all your data, and perhaps your bank account or identity, goodbye.

We all need to take steps to make sure that our computers are safe, or we risk infection. Complacency is simply not an option.

And yet, even after all the news, all the horror stories, all the warnings, and even after all this time ...

complacency remains all too common.

There are four important steps you should take:

1. Install and Run an Anti-Virus Program

There are many out there.

Personally, I run Malwarebytes Anti Malware on my primary machine. It was one of the first to recognize and clean up after some recently pervasive virus infections, and has garnered quite a good reputation.

"Download and install the package of your choice. Now. Before you forget."

I also run and have run other anti-virus solutions with good results on some of my other machines. Specifically, I've run the free versions of AVG and Avira. I also hear good things about the free version of Avast.

While I'm not a big fan of their product offerings, Symantec maintains one of the best reference sites for virus related security issues.

Not all virus scanners catch all viruses. I recommend having a selection of additional virus scanners to run as a "second tier". Most downloadable virus scanning solutions often include free trial periods that can also come in handy as one-time second-level scans.

Download and install the package of your choice. Now. Before you forget.

2. Update the Anti-Virus Database

After installing your anti-virus software, your first step should be to update the virus signature database that came with it. New viruses are being created every day, and the databases used by anti-virus programs are being updated frequently as well. You need to update to the latest database for your program right away.

Most of the programs have update functions that will locate, download and install the latest databases regularly and automatically. Make sure that this is enabled.

3. Run Regular Scans

Most of the anti-virus programs work automatically. Once installed, they are configured to scan all incoming and outgoing files, and often hook into your email in some way to double check that your received email is clean as well.

Unless you know what you're doing, make sure that this "real time" scanning is enabled. (Though email scanning can be turned off if it interferes with your email program.)

I also recommend periodically running scans of your hard disk(s). Certainly when you first install the software you should run a full scan. Then, depending on how heavily used your machine is, you should run a scan periodically as well.

Some programs will allow you to schedule such a scan to happen automatically. In my case, for example, since my computers are on 24 hours a day, I schedule full virus scans nightly, while I'm asleep.

4. Keep Windows Up-To-Date

Visit Windows Update regularly, or simply enable the automatic update feature in Windows.

All software has bugs. Some of those bugs are used to create the exploits that virus writers take advantage of to create viruses that can infect your system. As these bugs are found, Microsoft fixes the affected components in the operating system, and makes those fixes available for download and automatic installation using Windows Update.

The "problem", is that even once the bugs are discovered and publicized, and even when the fix is available, virus writers get busy writing viruses that still exploit them. Why? Because they know not everyone stays up-to-date.

As an example, one of my most popular articles is being read by many, many people each month who are still being affected by a virus using an exploit that was patched years ago. A vast number of infected machines become infected simply because they're not up to date and as a result vulnerable to attack.

Keep Windows up-to-date. Let someone else have the "fun" of being infected with the latest viruses. Visit Windows Update weekly, or enable automatic update.

Some additional Notes

Sadly, there is no "best" anti-virus program, and even which are better or worse changes over time. Each may miss some something that the other's catch. That's one of the reasons I list several alternatives above. The best advice is to use one, any one, and have the others "on call" for those cases when a virus sneaks past the one you use regularly.

If you do install more than one package, you should not enable the "real time" scanning for more than one at the same time - they will conflict with each other, and will cause, as they say, "unpredictable results".

(This is an update to an article originally published April 24, 2005.)

Related:

Helpful? Get new articles weekly by email in my FREE newsletter!

Your Name:
Your Email:


Why Subscribe?

Article C2339 - October 6, 2009

Recent Comments
34 Comments

Please help me
In my computer there is a big problem

in my task manager there are 3 programs running called csrss.exe lsass.exe smss.exe i dont know these are unknown programs my OS is XP Service pack 2

i think they are using my computer and when i use my computer it hangs after sometime(at least 10 minutes i can use) after system formatting they also remain here they cannot be removed by my any work i cannot remove them


can u have a simple complex any solution to remove these file

i also want to know that is these above programs are come with XP cd sp2

i usually take files from pen drive from cyber net

i collect net files by pen drive
i think they are really viruses

plese sent me some solution to remove them

Posted by: Yangyadatta at July 10, 2008 3:05 AM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

csrss.exe lsass.exe smss.exe are all part of Windows. Do
*not* remove them.

Leo


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)

iD8DBQFIdjizCMEe9B/8oqERAk+mAJ4oU15bOfsumf5JPa61VxzOrEUglgCfXwki
rehdsWQISE6yd+hbUw5jl/E=
=wEXC
-----END PGP SIGNATURE-----

Posted by: Leo at July 10, 2008 9:28 AM

Hey Leo,
My computer recently wouldnt let me access the task manager, so I started following the steps on your page http://ask-leo.com/why_is_my_task_manager_disabled_and_how_do_i_fix_it.html
Then discovered the run button is gone. Then it wouldn't let me go into regedit. Any suggestions. Already downloaded activescan 2.0

Posted by: Ian Flikkema at October 15, 2008 8:49 PM

i think my coptr is infected;
i hv 3 partitions c , d ,e
from i can not open e & d until i explore them
and whenever i open a folder in these drives
there is an additional folder in it with same name i can delete them niether i can shredd them.
i have avg antivirus but it can not detect any virus. tell me what to do, my task manager is disabled aslo & it has also deleted my intel graphics accelerator & i can not download it back either. i desperately need ur help.

Posted by: dhruv at February 9, 2009 2:05 AM

I've tried going to the referenced anti-virus programs and they're blocked. I tried pinging them and each site times out. When I first noticed this problem I tried running my already installed AVG and the program was blocked and I couldn't run any updates or scans. I tried going to their website and it was also blocked.

I cannot access my task manager, my desktop background changed to a message saying I have a dangerous spyware... it all started on livejournal. Also, internet explorer no longer works. I've been using Safari. When I tried to google or yahoo things on internet explorer, all the results were in big letters and when you clicked on them, several ads would pop up.

I know some of my registry has been infected. I'm not sure where to go from here. Help?

Posted by: tiffa at February 26, 2009 5:16 PM

well thank you for such a good article.

Posted by: www.pshycic.de.tl at April 18, 2009 7:27 PM

Leo, I've been reeading some of your recommended Virus Program articles. I have only 1 problem with one of them, Panda Security Active Scan 2. I had a suspected virus problem with my computer, even thoufgh I'm running McAfee (set up upload new data and scan daily) on it. PROBLEM: Panda allows you to FREE scan you computer for viruses and finds quite a few. Then to remove them you must subscribe. After you PAY, it runs another scan and FIND NOTHING!!!! Waste of time and money if you ask me...

Posted by: Rob at July 13, 2009 5:37 AM

I use Avast. I works as good as any free AV except it's a little harder to use tham AVG as its interface looks like a mp3 player. I also have the malwarebytes antimalware that Leo recommends installed. Since I didn't pay to register it,so I can only use it as a standalone virus scanner. This is fine as 2 background AVs running at the same time can cause conflict problems.

Posted by: Mark Jacobs at October 7, 2009 11:41 AM

The reason complacency is so rampant is due to over-inundation. Everyone who's peddling worthless software does his best to convince you of utter destruction just waiting to hit your computer. Add to that all the pseudo-experts who proclaim the sky is falling, and it sounds like computer euthanasia is more humane. I could complain that my computer stopped working after pushing it out a 5th floor window and still find people who proclaim it to be a virus that's responsible.

I've subscribed to the major PC magazines and have found them to be little more than extended hype for the products being advertised in their pages. While there may actually be a page or two of worthwhile information, the need to dredge several dozens of pages to reach it is not worthwhile.

And finally, as there is usually more than one way to accomplish a worthwhile task, there are still 'experts' who argue about which method is definitely The Best, and all others are invalid.

Email and occasional web surfing should not require your own personal IT department.

Posted by: Mike at October 13, 2009 1:08 PM

I have had my share of viral issues and used more than a few scanners? I was using McAfee as my main Internet Security + AV program along with Ad-Aware and Spybot as secondary scanners. This worked quite well for a while from 1999 to 2003! Then the company switched to Trend AV and so I switched to Trend at work and Norton 2003 at home and continued to use Ad-Aware and Spybot as secondary scanners. Then in 2006 I used Norton only and did fine until late 2008! So now I have Norton 360 and am using PC Tools Spyware Doctor along with Malwarebytes Anti Malware as secondary scanners which is working quite well! I do regular scheduled scans which I keep an eye on to see whats attempting to infect/invade my computer? I run full scans when the computer is not being used! I am also using a Registry Tool to keep my registry orderly and this has helped keep my computer speeding along! So far I have not had any compatibility or conflict issues between Norton and Spyware Doctor! I have been fortunate to not have issues with Norton since 2003 and it has done a decent job catching most threats, but as I say supplementing with a couple of secondary AV/Security programs is definitely recommended as Leo also stated! The only complaint is there Customer Service, it's not that they are rude or not helpful, just have a hard time understanding some of them on the phone cause their English is not great? The reality of the Cyberworld today demands preemptive action and as Leo stated "Complacency is simply not an option" not if you want your computing experience to be a happy, positive one? Just a thought, beware of the masquerade AV programs which are really malware and will install one of several Trojans on your computer which tell you your computer is infected with a bunch of viruses when it is actually not! Do some targeted research BEFORE downloading any AV/Security freeware or shareware programs! It's a brave new world out there!

Posted by: Shadmin at November 1, 2009 5:20 PM

Post a comment on "Viruses: How do I keep myself safe from Viruses?":






(Email Address will not be published.)

Remember Me?

By popular demand...
my tip jar
Cuppa Joe
Buy Leo a Latte!

(you may use HTML tags for style)

RSS feed Subscribe to the RSS Feed specifically for comments on this article.

Before commenting, please...

  • Read the article at the top of this page. If your comment shows you didn't, it'll be deleted and ignored.

  • Comment only on this article. Use the Google search box at the top of the page if you have a question about something else.

  • Don't include personal information in the comment. No email addresses. No phone numbers. No physical addresses.

  • Don't spam. Excessive links to unrelated sites within a comment or across multiple comments will cause all such comments to be removed.

  • Don't ask me to recover lost passwords or hacked accounts. I can't, and those comments will be deleted.

  • I can't respond to every comment. And I can't vouch for the accuracy of others who do.

Please wait. Your comment is being processed ...


Question? Ask Leo!