Summary: Computer viruses are a fact of modern connected life. Anti-virus software is required, and both it and the database it uses should be kept up-to-date.
Computer viruses are a fact of modern, internet-connected life. At best, they're annoying performance sucking beasts, but at worst ... kiss all your data, and perhaps your bank account or identity, goodbye.
We all need to take steps to make sure that our computers are safe, or we risk infection. Complacency is simply not an option.
And yet, even after all the news, all the horror stories, all the warnings, and even after all this time ...
complacency remains all too common.
•
There are four important steps you should take:
1. Install and Run an Anti-Virus Program
There are many out there.
Personally, I run Malwarebytes Anti Malware on my primary machine. It was one of the first to recognize and clean up after some recently pervasive virus infections, and has garnered quite a good reputation.
I also run and have run other anti-virus solutions with good results on some of my other machines. Specifically, I've run the free versions of AVG and Avira. I also hear good things about the free version of Avast.
While I'm not a big fan of their product offerings, Symantec maintains one of the best reference sites for virus related security issues.
Not all virus scanners catch all viruses. I recommend having a selection of additional virus scanners to run as a "second tier". Most downloadable virus scanning solutions often include free trial periods that can also come in handy as one-time second-level scans.
Download and install the package of your choice. Now. Before you forget.
2. Update the Anti-Virus Database
After installing your anti-virus software, your first step should be to update the virus signature database that came with it. New viruses are being created every day, and the databases used by anti-virus programs are being updated frequently as well. You need to update to the latest database for your program right away.
Most of the programs have update functions that will locate, download and install the latest databases regularly and automatically. Make sure that this is enabled.
3. Run Regular Scans
Most of the anti-virus programs work automatically. Once installed, they are configured to scan all incoming and outgoing files, and often hook into your email in some way to double check that your received email is clean as well.
Unless you know what you're doing, make sure that this "real time" scanning is enabled. (Though email scanning can be turned off if it interferes with your email program.)
I also recommend periodically running scans of your hard disk(s). Certainly when you first install the software you should run a full scan. Then, depending on how heavily used your machine is, you should run a scan periodically as well.
Some programs will allow you to schedule such a scan to happen automatically. In my case, for example, since my computers are on 24 hours a day, I schedule full virus scans nightly, while I'm asleep.
4. Keep Windows Up-To-Date
Visit Windows Update regularly, or simply enable the automatic update feature in Windows.
All software has bugs. Some of those bugs are used to create the exploits that virus writers take advantage of to create viruses that can infect your system. As these bugs are found, Microsoft fixes the affected components in the operating system, and makes those fixes available for download and automatic installation using Windows Update.
The "problem", is that even once the bugs are discovered and publicized, and even when the fix is available, virus writers get busy writing viruses that still exploit them. Why? Because they know not everyone stays up-to-date.
As an example, one of my most popular articles is being read by many, many people each month who are still being affected by a virus using an exploit that was patched years ago. A vast number of infected machines become infected simply because they're not up to date and as a result vulnerable to attack.
Keep Windows up-to-date. Let someone else have the "fun" of being infected with the latest viruses. Visit Windows Update weekly, or enable automatic update.
Some additional Notes
Sadly, there is no "best" anti-virus program, and even which are better or worse changes over time. Each may miss some something that the other's catch. That's one of the reasons I list several alternatives above. The best advice is to use one, any one, and have the others "on call" for those cases when a virus sneaks past the one you use regularly.
If you do install more than one package, you should not enable the "real time" scanning for more than one at the same time - they will conflict with each other, and will cause, as they say, "unpredictable results".
(This is an update to an article originally published April 24, 2005.)
Related:
-
Internet Safety: How do I keep my computer safe on the internet? Internet Safety is difficult and yet critical. Here are the seven key steps to internet safety - steps to keep your computer safe on the internet.
-
How do I remove a virus? Once you've been infected with a virus or other malware, there are steps you can take to try to remove it, but only one approach is guaranteed to work.
-
Spyware: How do I remove and avoid spyware? Spyware and other forms of malware are only becoming more common. We'll review the steps you need to take to avoid spyware and its fallout.
Article C2339 - October 6, 2009
Please help me
In my computer there is a big problem
in my task manager there are 3 programs running called csrss.exe lsass.exe smss.exe i dont know these are unknown programs my OS is XP Service pack 2
i think they are using my computer and when i use my computer it hangs after sometime(at least 10 minutes i can use) after system formatting they also remain here they cannot be removed by my any work i cannot remove them
can u have a simple complex any solution to remove these file
i also want to know that is these above programs are come with XP cd sp2
i usually take files from pen drive from cyber net
i collect net files by pen drive
i think they are really viruses
plese sent me some solution to remove them
Posted by: Yangyadatta at July 10, 2008 3:05 AM-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
csrss.exe lsass.exe smss.exe are all part of Windows. Do
*not* remove them.
Leo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
iD8DBQFIdjizCMEe9B/8oqERAk+mAJ4oU15bOfsumf5JPa61VxzOrEUglgCfXwki
Posted by: Leo at July 10, 2008 9:28 AMrehdsWQISE6yd+hbUw5jl/E=
=wEXC
-----END PGP SIGNATURE-----
Hey Leo,
Posted by: Ian Flikkema at October 15, 2008 8:49 PMMy computer recently wouldnt let me access the task manager, so I started following the steps on your page http://ask-leo.com/why_is_my_task_manager_disabled_and_how_do_i_fix_it.html
Then discovered the run button is gone. Then it wouldn't let me go into regedit. Any suggestions. Already downloaded activescan 2.0
i think my coptr is infected;
Posted by: dhruv at February 9, 2009 2:05 AMi hv 3 partitions c , d ,e
from i can not open e & d until i explore them
and whenever i open a folder in these drives
there is an additional folder in it with same name i can delete them niether i can shredd them.
i have avg antivirus but it can not detect any virus. tell me what to do, my task manager is disabled aslo & it has also deleted my intel graphics accelerator & i can not download it back either. i desperately need ur help.
I've tried going to the referenced anti-virus programs and they're blocked. I tried pinging them and each site times out. When I first noticed this problem I tried running my already installed AVG and the program was blocked and I couldn't run any updates or scans. I tried going to their website and it was also blocked.
I cannot access my task manager, my desktop background changed to a message saying I have a dangerous spyware... it all started on livejournal. Also, internet explorer no longer works. I've been using Safari. When I tried to google or yahoo things on internet explorer, all the results were in big letters and when you clicked on them, several ads would pop up.
I know some of my registry has been infected. I'm not sure where to go from here. Help?
Posted by: tiffa at February 26, 2009 5:16 PMwell thank you for such a good article.
Posted by: www.pshycic.de.tl at April 18, 2009 7:27 PMLeo, I've been reeading some of your recommended Virus Program articles. I have only 1 problem with one of them, Panda Security Active Scan 2. I had a suspected virus problem with my computer, even thoufgh I'm running McAfee (set up upload new data and scan daily) on it. PROBLEM: Panda allows you to FREE scan you computer for viruses and finds quite a few. Then to remove them you must subscribe. After you PAY, it runs another scan and FIND NOTHING!!!! Waste of time and money if you ask me...
Posted by: Rob at July 13, 2009 5:37 AMI use Avast. I works as good as any free AV except it's a little harder to use tham AVG as its interface looks like a mp3 player. I also have the malwarebytes antimalware that Leo recommends installed. Since I didn't pay to register it,so I can only use it as a standalone virus scanner. This is fine as 2 background AVs running at the same time can cause conflict problems.
Posted by: Mark Jacobs at October 7, 2009 11:41 AMThe reason complacency is so rampant is due to over-inundation. Everyone who's peddling worthless software does his best to convince you of utter destruction just waiting to hit your computer. Add to that all the pseudo-experts who proclaim the sky is falling, and it sounds like computer euthanasia is more humane. I could complain that my computer stopped working after pushing it out a 5th floor window and still find people who proclaim it to be a virus that's responsible.
I've subscribed to the major PC magazines and have found them to be little more than extended hype for the products being advertised in their pages. While there may actually be a page or two of worthwhile information, the need to dredge several dozens of pages to reach it is not worthwhile.
And finally, as there is usually more than one way to accomplish a worthwhile task, there are still 'experts' who argue about which method is definitely The Best, and all others are invalid.
Email and occasional web surfing should not require your own personal IT department.
Posted by: Mike at October 13, 2009 1:08 PMI have had my share of viral issues and used more than a few scanners? I was using McAfee as my main Internet Security + AV program along with Ad-Aware and Spybot as secondary scanners. This worked quite well for a while from 1999 to 2003! Then the company switched to Trend AV and so I switched to Trend at work and Norton 2003 at home and continued to use Ad-Aware and Spybot as secondary scanners. Then in 2006 I used Norton only and did fine until late 2008! So now I have Norton 360 and am using PC Tools Spyware Doctor along with Malwarebytes Anti Malware as secondary scanners which is working quite well! I do regular scheduled scans which I keep an eye on to see whats attempting to infect/invade my computer? I run full scans when the computer is not being used! I am also using a Registry Tool to keep my registry orderly and this has helped keep my computer speeding along! So far I have not had any compatibility or conflict issues between Norton and Spyware Doctor! I have been fortunate to not have issues with Norton since 2003 and it has done a decent job catching most threats, but as I say supplementing with a couple of secondary AV/Security programs is definitely recommended as Leo also stated! The only complaint is there Customer Service, it's not that they are rude or not helpful, just have a hard time understanding some of them on the phone cause their English is not great? The reality of the Cyberworld today demands preemptive action and as Leo stated "Complacency is simply not an option" not if you want your computing experience to be a happy, positive one? Just a thought, beware of the masquerade AV programs which are really malware and will install one of several Trojans on your computer which tell you your computer is infected with a bunch of viruses when it is actually not! Do some targeted research BEFORE downloading any AV/Security freeware or shareware programs! It's a brave new world out there!
Posted by: Shadmin at November 1, 2009 5:20 PM