Virii are written in a programming language and compiled into bytecode for use. When this "virus" is executed it runs the code it was written with. Virii's codes are malicious.
Some virii, called worms, replicate themselves hundreds of times over using up disk space and then send themselves to other people via the internet. They use address books and buddylists.
Trojans and rootkits are "malware , not technically virii but you can throw it in there" that leaves "backdoors" to be exploited by a "hacker" at a later time. They are usually disguised as a helpful program or as a game. Popular one's are subseven, back orifice, and netbus. These programs wait and listen on an obscure port for instructions from the remote user. It grants full administrative access to your computer to someone else.
Boot sector virii infect the boot sector or partition table of a disk. It disallows the mounting of an OS at startup. The computer is rendered useless until deletion of the virus via a bot disk.
Companion virii use the .COM extension which takes running precedance over the .exe extension. If it uses the same name, the virus is run first and then the real program afterwards...the works in DOS.
File infectors generally use the .exe or .com extension. Tey overwrite other programs' original code and turn the original programs in virii. The severeity of the payload here is staggering.
Macro viri are used in Microsoft word and Excel to execute a macro that performs malicious actions. It infects the default template making anything using the default template a macro virus as well.
Memory-resident virii are run and they infect other program sthat are using RAM.
Metamorphic virii re-compile themselves over and over through each generation of virus. It doesn't decrypt itself.
Polymorphic virii change themselves with each infection. They confuse anti-virus programs. Each copy of the virus looks different from the next.
Stealth virii are arguably the worst type of virus out there. It hides by encrypting its code. They attempt to cover their trails. When it infects it takes over the system function that reads files or system sectors. When something tries to access the program the virus reports that the original file is there while it, in reality, has been taken over by the virus.
Hope this helps, I'll answer any questions too.
|
Virus Paper Help!
Linear Mode
