lawajava
hould this ransom thing occur just remove and throw away your computer drives, put in new ones and restore from one of your back up drives. Painless. Ransome-free.

Throw away your drives?  I'm pretty certain reformatting them would be adequate.

dmbaer

lawajava
hould this ransom thing occur just remove and throw away your computer drives, put in new ones and restore from one of your back up drives. Painless. Ransome-free.

Throw away your drives?  I'm pretty certain reformatting them would be adequate.

Reformatting works on most malware except the ones that affect the disk outside of the OS.  In those cases throwing away the drive is unnecessary. There are tools for cleaning MBR and other non-os malware infections. An industrial strength magnet will likely do the trick as well.

An industrial strength magnet might make the data on the drives unreadable, if you mean the kind they use to lift cars in a scrapyard. The drives are pretty well protected from even strong permanent magnets. The NSA recommendation is to reduce them to fine dust in a grinder following degaussing since there is concern that even massive magnetic noise may be insufficient to hide everything. But you will not be able to use them for anything else after zapping them with a degausser. Aside from the damage to the mechanical parts and circuits, the platters themselves are factory formatted (like a "blank" CD) and if you erase that level of formatting via degaussing, you will not be able to format them for use under an OS.
https://www.kjmagnetics.com/blog.asp?p=hard-drive-destruction
 
Throwing away your drives is almost certainly overkill for any common virus. If you are not confident that your antivirus software can detect and remove suspected viruses, then the DBAN followed by fresh format is as far as you probably need to go. Modern hard drives have a firmware secure erase routine built in, but it is difficult to access from most OS's, and even blocked by some BIOS versions to prevent the accidental erasure of the drive. One way of calling the routine is here: http://cmrr.ucsd.edu/people/Hughes/secure-erase.html. Not for the faint of heart, but it does not require a second computer and once the sequence is initiated it is impervious to any interference by a program running on the computer.
 
That stuff applies mostly to destroying classified data. As far as removing a virus, like any other computer program, all you need to do is make a few bits unreadable to make it stop working. You do not have to remove all traces from the possibility of forensic recovery by state actors. A simple delete will kill it dead. 

I've only ever had one computer virus in my life and that was years ago after downloading and running a dodgy torrent. Lessons learned. As long as you're not doing anything stupid (downloading cracked software, installing software from untrusted sources, opening attachments in junk emails etc) then you're not going to get caught. I believe keeping your DAW offline is completely unnecessary. It seems to me that music producers are alone in this kind of paranoia - there are hundreds of other professions which rely on computers (web designers, graphic designers, architects, photographers etc) and you never hear about them advising each other to stay offline in case of viruses.

Ironically, the only times I've gotten a virus were when I wasn't doing anything stupid.

Somehow the myth of the safe website keeps re-surfacing. Although the dark web and porn sites are clearly risky places to find downloads, there is very good evidence that legitimate sites serve as the largest source of virus infections. While a legitimate website may not be designed from the ground up as a malware trap, they are clearly not immune from being hacked or otherwise infiltrated with dangerous links, downloads, or phishing forms. The largest and best financed sites at least have the resources to police such things, but they also offer the most return to those who can get access. Smaller (smaller than Google) commercial sites rarely have the staff or security expertise to diligently purge the inevitable breaches. Even Google has hosted malware on its ads and Apple's app store has served up poisoned product.
 
http://www.dailyfinance.com/2010/07/02/survey-legitimate-web-sites-more-likely-to-carry-a-virus-than-a/
 

Hi,
 
The computers (2 of them), that I do music on are not for anything else and all other programs are taken out. I have not tried it yet, but I'm also thinking of disabling the router port for the duration of the music making process to cut down issues. I did talk to F-Secure, and they said that you can disable the software and that it will not bother you -- which is a request I had for them, and I have tested it by leaving it off with the connection to the router unplugged and had no issues for an hour ... so far it's a good thing.
 
My other computers do all the mail and browsing. Period.

I use Sandboxie always when I surf online because any web site can potentially be possessed by malware which can infect users' computers. If I have understood correctly, Sandboxie isolates the user's system and data files from the internet and some other clever stuff. It has not failed me yet, as far as I know (but I've been fooled before). Sandboxie is also an easy to use program and configurable to give even better protection. I also use noscript and flash blocking plugins when surfing with firefox and Opera for extra protection. Also I use the free Comodo internet suite and Microsoft's EMET thingy. Sorry if I went OT.

sharke
I've only ever had one computer virus in my life

Same here.  It was Norton Anti-virus.  It was astonishing how hard it was to remove that piece of junk from my machine.

Many get viruses from social networking sites like facebook now.  Ever site carries some level of risk, but you are still far more likely to be exposed via a warez or porn site than logging into your cakewalk store to grab a PC module. Legit sites do transmit more viruses , but the distribution is typically done in chunks. A google or yahoo will infect the millions who happened to log on before exploit was irradicated.