Defending against Viruses
Windows XP Service Pack 2 has many new features that make Windows XP the most secure Microsoft operating system to date. One of the new features, called execution protection, takes advantage of a new hardware protection found in the latest CPUs of modern computers.
One of the most common types of computer break-ins and virus exploits has to do with buffer overflows. These occur when data is being sent to a buffer faster than the CPU can process it. When the buffer becomes filled, the system can become unstable and sometimes can execute code that was placed in the buffer. This is how many types of viruses spread. They take advantage of an unchecked buffer and can get the CPU to execute their malicious code. One easy solution to solve this problem is to include a feature in the CPU that will disable executing of data in all buffers. By doing this, a virus might be able to get its code into the buffer, but because of limitations of the CPU, the code would never be executed, rendering the virus useless and unable to spread.
The new CPU level security can be found on the AMD Athlon 64 processor and new versions of the Intel Pentium 4 Prescott. If you have one of these chips with the execution protection feature, this feature is enabled by the operating system. However, having this feature enabled for all programs may cause some application errors because some need to be able to execute data in their buffers. To allow for this, Microsoft has created an exception list for such programs. You are advised to make sure every once in a while that no application has automatically added itself to the exception list. You really need to make sure that only the applications that truly need to be there are there. To do this, follow these steps:
- Right-click the My Computer icon located on the desktop or Start Menu and select Properties, when System Properties loads, click the Advanced tab. Then, click the Settings button under the Performance section.
- Next, click the Data Execution Prevention tab and make sure that Help Protect All Programs Except: is selected and then review the list and remove any apps except for the ones that you are 100 percent positive should be there.
- Click OK to save your changes and select OK once more to close System Properties.
Use an antivirus program
If you still are not running an antivirus program, then you really should reconsider your decision. Viruses, especially in e-mail attachments, are very prevalent these days. Install an antivirus program on your computer if you do not have any protection currently installed. Additionally, if your current virus definitions subscription has expired and you no longer can download updates to the data files, your antivirus program is almost completely useless. You must always be running up-to-date antivirus data files so that your computer is always protected from the latest viruses.
If you do not want to spend money on getting some antivirus software, you can avail yourself of the many free antivirus applications. My favorite free antivirus app is called AVG by GriSoft. AVG is a very good antivirus program that is free for home use. Follow these steps to get AVG up and running on your computer:
- Visit GriSoft's Web site at www.grisoft.com/us/us_dwnl_free.php.
- Scroll the bottom of the page and click the Download AVG Free Edition button. Be sure to enter a valid e-mail address on the form after the License Agreement page, because they will send you a serial number that you will need to use when installing AVG.
- Once you have downloaded and installed AVG, make sure to update the virus definitions with the Update Wizard that is shown the first time you run AVG.
- When you get your virus definitions updated, you are advised to do a full system scan by clicking the Run Complete Test button.