Can malware infect executable files?

[human_male]

Hi. Do malware and viruses infect executable files on your computer, as in the files themselves? I've been using Comodo for a while and on a couple of occasions it's reported that game executables are infected (for example Drakensang.exe) and I'm forced to delete or quarantine them, and then I can't play the game (unless I reinstall it if I still have the disk). But I'm wondering if it's making a mistake.

So can internet nasties do that or can I ignore it when it says that?

Many thanks.

 

[BertrandRussell]

Sure they can. Remember, malware is execuatable stuff.
Do you have a false positive? Sorry, I can't say. Someplace there is probably a CRC or similar for your file so that you can determine if it is uncorrepted.

 

[cop1047]

Because I am lazy and don't want to type, http://forum.literotica.com/showthread.php?t=705376

 

[NightL]

If your computer is infected with malware etc... you will need to clean your computer of the problem. Deleting infected files or placing them into quarantine won't stop other files from being infected. The malware causing the problem can be very hard to get rid of. I take a multi-prong approach to cleaning computers and providing protection.

If a computer is heavily infected I would suggest Malwarebytes and Roguefix first. I would also install Ad-aware and Spywareblaster. Read instructions of these programs thoroughly.

The following is an example setup to combat and repair.

Links point to product websites. Many are free to domestic users or have a fully functional 30 day trial.

Counterspy (protection & cleanup)

Ad-aware (protection & cleanup) there is a free version

Malwarebytes (protection & cleanup) fully functional 30 day trial

Roguefix (cleanup) free

Scan with the above in Safe Mode if computer is infected.


Spywareblaster (protection) free

TuneUp Utilities (not security related, just general maintenance)


Others I have used...

Spybot Search & Destroy (protection & cleanup) free

Spysweeper (protection & cleanup)

Microsoft Security Essentials (protection & cleanup) free

SpywareGuard (protection) free


A good antivirus/internet security is always essential.
I suggest
Kaspersky Internet Security (antivirus and internet security / firewall)

or

ESET Smart Security
(antivirus and internet security / firewall)

These are products that have worked for me. I am sure there are many other solutions that are equal or if not better.

 

[jtf71961]

If your computer is infected with malware etc... you will need to clean your computer of the problem. Deleting infected files or placing them into quarantine won't stop other files from being infected. The malware causing the problem can be very hard to get rid of. I take a multi-prong approach to cleaning computers and providing protection.

If a computer is heavily infected I would suggest Malwarebytes and Roguefix first. I would also install Ad-aware and Spywareblaster. Read instructions of these programs thoroughly.

The following is an example setup to combat and repair.

Links point to product websites. Many are free to domestic users or have a fully functional 30 day trial.

Counterspy (protection & cleanup)

Ad-aware (protection & cleanup) there is a free version

Malwarebytes (protection & cleanup) fully functional 30 day trial

Roguefix (cleanup) free

Scan with the above in Safe Mode if computer is infected.


Spywareblaster (protection) free

TuneUp Utilities (not security related, just general maintenance)


Others I have used...

Spybot Search & Destroy (protection & cleanup) free

Spysweeper (protection & cleanup)

Microsoft Security Essentials (protection & cleanup) free

SpywareGuard (protection) free


A good antivirus/internet security is always essential.
I suggest
Kaspersky Internet Security (antivirus and internet security / firewall)

or

ESET Smart Security
(antivirus and internet security / firewall)

These are products that have worked for me. I am sure there are many other solutions that are equal or if not better.

dont forget AVG - http://download.cnet.com/AVG-Anti-V...39_4-10320142.html?tag=contentMain;contentAux

or

Super Anti-spy - http://www.superantispyware.com/download.html\

They are both free.

 

[cop1047]

Here's what every person who owns a computer needs and should be doing.

1 and ONLY 1 antivirus program
1 and ONLY 1 firewall, and not windows firewall
At least 1 malware scanning program, such as Malwarebytes, and update and use it at LEAST a weekly basis
At least one killbit piece of software, like spywareblaster and update it at LEAST on a weekly basis.
Update Java and Flash when aplicable
Stop using IE, unless its to download a different internet browser like Firefox or Chrome

If you do anything like online banking, paying bills, etc. and you're not doing the majority of the above, can I please have the contents of your bank account? Or perhaps take out a four or five figure loan out in your name? At least you'll know who did it and that he asked nicely

 

[jtf71961]

Here's what every person who owns a computer needs and should be doing.

1 and ONLY 1 antivirus program
1 and ONLY 1 firewall, and not windows firewall
At least 1 malware scanning program, such as Malwarebytes, and update and use it at LEAST a weekly basis
At least one killbit piece of software, like spywareblaster and update it at LEAST on a weekly basis.
Update Java and Flash when aplicable
Stop using IE, unless its to download a different internet browser like Firefox or Chrome

If you do anything like online banking, paying bills, etc. and you're not doing the majority of the above, can I please have the contents of your bank account? Or perhaps take out a four or five figure loan out in your name? At least you'll know who did it and that he asked nicely

I use 1 anti-virus, the free version of AVG, Then I also scan once a week with Super Anti-spyware and once in a while with Malwarebytes. Then also once in a while with CCleaner. Doing all that keeps the computer clean, running good and free from all the bad stuff. The only problem with CCleaner, is it clears out all your cookies and you will have to then relog into sites like this one.

 

[cop1047]

Cache clearing (cookies temp files etc.) is really just a maintenance thing. If you're computers starting to crawl along, its probably been two or three years since the cache has been cleared. But that usually means someone doesn't know what they're doing in the first place and clearing their cache is the least of their problems.

 

[coastal-boy]

Hi. Do malware and viruses infect executable files on your computer, as in the files themselves? I've been using Comodo for a while and on a couple of occasions it's reported that game executables are infected (for example Drakensang.exe) and I'm forced to delete or quarantine them, and then I can't play the game (unless I reinstall it if I still have the disk). But I'm wondering if it's making a mistake.

So can internet nasties do that or can I ignore it when it says that?

Many thanks.

They can, but they are relatively rare. From everything I have heard, most do not "change" the executable itself...this has already been compiled and it would require a compiling program. Most simply change registry files and startup code "redirecting" it to the bad stuff. Then when you "startup" the desired executable, it is not going where you think it is and bang...you're screwed. They can also reuse names of known files making it look like the proper file or add a hidden exe on the name of the infected file making it look normal. Then there are the ones that insert a couple lines of code into every product you may compile on your computer if present. And finally there are the decompiling ones. However, unless the virus or malware is carrying a compiling program (making it large) or can access one through the internet (or on your personal computer), I would say that the liklihood it is recompiling the executable is small.

Now having said this, there are alot of "cracked" executables available online. If you are using one of these, God fucking knows what you may have on your computer. ( a quick search for drakensang.exe for example gives you alot of info on this)

I have several programs that I use for work that are continually flagged. They are not infected. False positives are not rare. However, my false positives are flagged each and every time. If yours is not flagged one time and then are later, something is happening and may warrant deeper evaluation.

That's just my 2-cents worth. If someone can give me virus/malware name that can actually recompile an exe other than the situation I gave above, I'd love to learn more about it.

 

[human_male]

They can, but they are relatively rare. From everything I have heard, most do not "change" the executable itself...this has already been compiled and it would require a compiling program. Most simply change registry files and startup code "redirecting" it to the bad stuff. Then when you "startup" the desired executable, it is not going where you think it is and bang...you're screwed. They can also reuse names of known files making it look like the proper file or add a hidden exe on the name of the infected file making it look normal. Then there are the ones that insert a couple lines of code into every product you may compile on your computer if present. And finally there are the decompiling ones. However, unless the virus or malware is carrying a compiling program (making it large) or can access one through the internet (or on your personal computer), I would say that the liklihood it is recompiling the executable is small.

Now having said this, there are alot of "cracked" executables available online. If you are using one of these, God fucking knows what you may have on your computer. ( a quick search for drakensang.exe for example gives you alot of info on this)

I have several programs that I use for work that are continually flagged. They are not infected. False positives are not rare. However, my false positives are flagged each and every time. If yours is not flagged one time and then are later, something is happening and may warrant deeper evaluation.

That's just my 2-cents worth. If someone can give me virus/malware name that can actually recompile an exe other than the situation I gave above, I'd love to learn more about it.

Thanks for that. So if it says a game exec is infected, and I run the game and it starts alright, then it should be ok?

 

[human_male]

Here's what every person who owns a computer needs and should be doing.

1 and ONLY 1 antivirus program
1 and ONLY 1 firewall, and not windows firewall
At least 1 malware scanning program, such as Malwarebytes, and update and use it at LEAST a weekly basis
At least one killbit piece of software, like spywareblaster and update it at LEAST on a weekly basis.
Update Java and Flash when aplicable
Stop using IE, unless its to download a different internet browser like Firefox or Chrome

If you do anything like online banking, paying bills, etc. and you're not doing the majority of the above, can I please have the contents of your bank account? Or perhaps take out a four or five figure loan out in your name? At least you'll know who did it and that he asked nicely

We do online banking. I use Comodo that is a firewall and anti virus scanner. And Spybot Search and Destroy. Will that be enough (if I actually run them regularly obviously, which I do)? I also use Firefox, never Internet Explorer.

Thanks for that.

 

[NightL]

I'd probably give at least one run with Malwarebytes as well... even if you use the trial. Try running it in safe mode.

Spywareblaster is good product for protection and does not slow the computer down.

I usually run at least two clean & protect on my computer. Spybot and ad-aware are free, work well... and often pick up different things.

 

[cop1047]

The scanner part of malwarebytes is free, I would switch to that fom spybot. Spybot is out of date and isn't updating as it once was.

 

[CNYCarol]

NO,

"Malware" is a program, it does not have the ability to infect anything except a computer!

A legitimate executable can be edited to do malicious things.

A little clarification here.

1. Malware is a made up word used by small minds to describe nefarious software.

2. A "Virus" is a computer program that will try to infect your freinds and neighbors with copies of itself.

3. A "Worm" is a program that exploits programming errors in otherwise legitimate programs.

4. A "Trojan" is a small script that advertises unsecured computer systems, and brings in unwanted advertisements.

All of these items CAN be contracted by ANY computer! ...but they are not that difficult to get rid of.

These are the basics of Computer Security, I could go on indefinitely but why add confusion.

If you have a problem, you need to determine if it's a Virus, Worm or Trojan, before doing anything.

 

[tan43215]

try ubuntu or some other linux based os - i run all my computers - home and work -- no maleware and no virus