Internet, Networking, & Security Antivirus Virus vs. Worm: What's The Difference? Understanding the difference will help you protect yourself By Ryan Dube Writer Ryan Dube is a freelance contributor to Lifewire and former Managing Editor of MakeUseOf, senior IT Analyst, and an automation engineer. our editorial process Facebook Twitter LinkedIn Ryan Dube Updated March 04, 2020 Antivirus Browsers Cloud Services Error Messages Home Networking 5G Antivirus VPN Web Development Around the Web View More Tweet Share Email Do you know the difference between a virus and a worm? Before you can fully protect yourself from these forms of malware, it's important to know the difference. It's important to understand that both viruses and worms are a form of malware. Malware is a term used for all types of software that can infect and adversely affect computer systems. A worm is actually a type of virus, but it behaves differently than a standard virus. What is a Computer Virus What it Can Do Be run from a link, email, or malicious application. Access and manipulate the key workings of your computer. Collect information and send it back to a hacker. What it Can't Do Infect your computer without your action. Automatically infect a computer over a network. The main difference between a standard virus and a computer worm is how the software replicates to additional computers. A computer virus is an application that needs to be downloaded or otherwise transferred onto the host computer before the infection can take place. Usually, this also requires executing the program before the infection can actually happen. The most common source of computer viruses like this include: Clicking on an email attachment, downloading the file, and opening it.Downloading and running files from a malicious web page or FTP link.Running a file received in a random IM from a stranger.Streaming and opening files from a peer-to-peer tool like Torrent.Clicking a malicious social media ad and downloading a host file. In all these cases, the infection only occurs when you open the file. This makes standard viruses far less dangerous than a computer worm. What Is a Computer Worm? What it Can Do Spread automatically across a computer network. Run malicious code on your computer to modify it. Send information to a hacker or other infected computers. What it Can't Do Get through properly secured network shares. Beat a well configured firewall. Spread without a network connection. A computer worm is especially dangerous because it doesn't require any action from the user to infect a system. A computer worm is an application that accesses a computer over a network. That network could be an internal corporate network, or over the internet. It doesn't require the user to download or open any host application. The most common method computer worms use to infect computers include: Connecting to a network that has an infected computer, with a computer that has minimum security settings.Sharing a drive or folder to a network or the internet without any security permissions.Connecting to a peer-to-peer network with P2P software that doesn't have appropriate security protection.Connecting to any network with a computer that isn't properly updated with the latest security patches. A computer worm typically takes advantage of computers on a network that are running outdated operating systems, antivirus software that hasn't been updated, or have open ports or network protocols (like SMB network shares) that are unpatched. The source of worm infections are other computers on the internet or a network. Worms constantly scan all devices connected to a network to identify a vulnerable system. It then invades the system using the following steps. It accesses the drive or folder that lacks security protections.It installs a "backdoor" code, usually inside the system folder where a user will have difficulty locating it.The backdoor code downloads the rest of the worm code and executes itself on the system. A computer worm can sometimes run in the background on a computer without the user ever realizing it's there. Such computers are called "bots," since they're like robots that do the bidding of remote hackers. Both viruses and worms are extremely dangerous. At best, they can destroy your computer performance. At worst, they can spy on your computer activities, capture images from your webcam, turn your computer into a relay for spammers to send spam emails, or even completely destroy your system files and make your computer unusable. How to Protect Yourself From a Virus or Worm Protecting yourself from a standard virus is much easier than preventing a computer worm infection. Most importantly, follow all guidelines for safe computing. This means not clicking on attachments in emails, not downloading free software from unknown sources, and not using peer-to-peer file-sharing networks. The following steps will protect you from both viruses and worms. If you aren't already running antivirus software, there are plenty of high-quality free antivirus programs to choose from. Install one, make sure the virus definitions are updated, and run a full system scan. If you already have a virus or a worm, this will identify it and remove it from your system. Removing the virus is important, but keeping new viruses from infecting your system is just as important. Go into the settings of your antivirus software, and make sure that all security protections that are available in the free version are enabled. The primary method computer worms use to infect computers is through open ports. This is why it's a good idea to run a port scan tool on your computer to identify any ports that are open that you might be unaware of. DNSTools offers an online scanner you can run on your computer to check for open ports. If you find any open ports and don't have any software that needs those ports open, then you should close them to protect your system. To close individual ports: Select the Start menu, type Windows Firewall, and select Windows Defender Firewall.Select Advanced Settings from the left menu, and select New Rule on the Advanced Security window.In the Rule Wizard, select Port, then select Ports and type the port number in the Specific local ports field.Select Next, and then select Block the connection.Complete the Wizard to close that port. Another security vulnerability that can let computer worms get into your home network from the internet is when any port forwarding is enabled in your router. To check this, log into your home router as an administrator. Port forwarding is usually under the Advanced menu. If you see any port forwarding enabled, it's a good idea to disable it unless it's absolutely necessary for software on your network to work. The only protection from a computer worm is blocking it from accessing your network in the first place. And if you're connecting to a public network, your only protection from other infected computers is running good security software and enabling your Windows firewall so that no computer work can make its way onto your system.