A Windows XP help forum. PCbanter

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Go Back   Home » PCbanter forum » Microsoft Windows XP » The Basics
Site Map Home Register Authors List Search Today's Posts Mark Forums Read Web Partners

Ask Windows XP Expert Walter Clayton About Spyware



 
 
Thread Tools Display Modes
  #46  
Old August 12th 04, 04:02 PM
Shenan Stanley
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

pdthorin wrote:
My computer has so much spy-ware on it I'd prefer just to reformat
the hard drive and start fresh. The only problem is I bought my HP
desktop with XP already installed and I don't have a disc. Can I
reformat my drive without getting rid of XP?



Format - to erase everything.
In that lies your answer (which is NO.)

You CAN clean it up!

If you don't wish to follow all of the advice immediately, just want to
get rid of your current dilemma, then you are welcome to scroll down to
the section titled "SPYWARE/ADWARE/POPUPS", where your problem as
stated should be resolved by the applications and suggestions found in
that section. If this helps solve your problem then I again HIGHLY
suggest you follow the rest of the advice below (matter of fact, I
suggest it either way.)

Suggestions on what you can do to secure/clean your PC. I'm going to try
and be general, I will assume a "Windows" operating system is what is
being secured here.


SPYWARE/ADWARE/POPUPS
---------------------

There are annoyances out there you can get without
trying. Your normal web surfing, maybe a wrong click on a web page, maybe
just a momentary lack of judgment by installing some software packages
without doing the research.. And all of a sudden your screen starts filling
up with advertisements or your Internet seems much slower or your home page
won't stay what you set it and goes someplace unfamiliar to you. This is
spyware. There are a whole SLEW of software packages out there to get rid
of this crud and help prevent reinfection. Some of the products already
mentioned might even have branched out into this arena. However, there are
a few applications that seem to be the best at what they do, which is
eradicating and immunizing your system from this crap. Strangely, the best
products I have found in this category ARE generally free. That is a trend
I like. I make donations to some of them, they deserve it!

Two side-notes: Never think one of these can do the whole job.
Try the first 5 before coming back and saying "That did not work!"
Also, you can always visit:
http://mvps.org/winhelp2002/unwanted.htm
For more updated information.

Spybot Search and Destroy (Free!)
http://www.safer-networking.net/

Lavasoft AdAware (Free and up)
http://www.lavasoft.de

CWSShredder (Free!)
http://www.spywareinfo.com/~merijn/downloads.html

Hijack This! (Free)
http://mjc1.com/mirror/hjt/
( Tutorial: http://www.spywareinfo.com/~merijn/htlogtutorial.html )

SpywareBlaster (Free!)
http://www.javacoolsoftware.com/

IE-SPYAD (Free!)
http://www.staff.uiuc.edu/~ehowes/resource.htm

ToolbarCop (Free!)
http://www.mvps.org/sramesh2k/toolbarcop.htm

Bazooka Adware and Spyware Scanner (Free!)
http://www.kephyr.com/spywarescanner/index.html

Browser Security Tests
http://www.jasons-toolbox.com/BrowserSecurity/

The Cleaner (49.95 and up)
http://www.moosoft.com/

That will clean up your machine of the spyware, given that you download and
install several of them, update them regularly and scan with them when you
update. Some (like SpywareBlaster and SpyBot Search and Destroy) have
immunization features that will help you prevent your PC from being
infected. Use these features!

Unfortunately, although that will lessen your popups on the Internet/while
you are online, it won't eliminate them. I have looked at a lot of options,
seen a lot of them used in production with people who seem to attract popups
like a plague, and I only have one suggestion that end up serving double
duty (search engine and popup stopper in one):

The Google Toolbar (Free!)
http://toolbar.google.com/

Yeah - it adds a bar to your Internet Explorer - but its a useful one. You
can search from there anytime with one of the best search engines on the
planet (IMO.) And the fact it stops most popups - wow - BONUS! If you
don't like that suggestion, then I am just going to say you go to
www.google.com and search for other options.

One more suggestion, although I will suggest this in a way later, is to
disable your Windows Messenger service. This service is not used frequently
(if at all) by the normal home user and in cooperation with a good firewall,
is generally unnecessary. Microsoft has instructions on how to do this for
Windows XP he
http://www.microsoft.com/windowsxp/p...e/stopspam.asp


UPDATES and PATCHES
-------------------

This one is the most obvious. There is no perfect product and any company
worth their salt will try to meet/exceed the needs of their customers and
fix any problems they find along the way. I am not going to say Microsoft
is the best company in the world about this but they do have an option
available for you to use to keep your machine updated and patched from
the problems and vulnerabilities (as well as product improvements in some
cases) - and it's free to you.

Windows Update
http://windowsupdate.microsoft.com/

Go there and scan your machine for updates. Always get the critical ones as
you see them. Write down the KB###### or Q###### you see when selecting the
updates and if you have trouble over the next few days, go into your control
panel (Add/Remove Programs), match up the latest numbers you downloaded
recently (since you started noticing an issue) and uninstall them. If there
was more than one (usually is), install them back one by one - with a few
hours of use in between, to see if the problem returns. Yes - the process
is not perfect (updating) and can cause trouble like I mentioned - but as
you can see, the solution isn't that bad - and is MUCH better than the
alternatives. (SASSER/BLASTER were SO preventable with just this step!)

Windows is not the only product you likely have on your PC. The
manufacturers of the other products usually have updates as well. New
versions of almost everything come out all the time - some are free, some
are pay - some you can only download if you are registered - but it is best
to check. Just go to their web pages and look under their support and
download sections.

You also have hardware on your machine that requires drivers to interface
with the operating system. You have a video card that allows you to see on
your screen, a sound card that allows you to hear your PCs sound output and
so on. Visit those manufacturer web sites for the latest downloadable
drivers for your hardware/operating system. Always (IMO) get the
manufacturers hardware driver over any Microsoft offers. On the Windows
Update site I mentioned earlier, I suggest NOT getting their hardware
drivers - no matter how tempting.

Have I mentioned that Microsoft has some stuff to help secure your computer
available to the end-user for free? This seems as good of a time as any.
They have a CD you can order (it's free) that contain all of the Windows
patches through October 2003 and some trial products as well that they
released in February 2004. Yeah - it's a little behind now, but it's better
than nothing (and used in coordination with the information in this post,
well worth the purchase price..)

Order the Windows Security Update CD
http://www.microsoft.com/security/protect/cd/order.asp

They also have a bunch of suggestions, some similar to these, on how to
better protect your Windows system:

Protect your PC
http://www.microsoft.com/security/protect/


FIREWALL
--------

Let's say you are up-to-date on the OS (operating system) and you have
Windows XP.. You should at least turn on the built in firewall. That will
do a lot to "hide" you from the random bad things flying around the
Internet. Things like Sasser/Blaster enjoy just sitting out there in
Cyberspace looking for an unprotected Windows Operating System and jumping
on it, doing great damage in the process and then using that Unprotected OS
to continue its dirty work of infecting others. If you have the Windows XP
ICF turned on - default configuration - then they cannot see you! Think of
it as Internet Stealth Mode at this point. It has other advantages, like
actually locking the doors you didn't even (likely) know you had. Doing
this is simple, the instructions you need to use your built in Windows XP
firewall can be found he

http://support.microsoft.com/?kbid=320855

If you read through that and look through the pages that are linked from it
at the bottom of that page - I think you should have a firm grasp on the
basics of the Windows XP Firewall as it is today. One thing to note RIGHT
NOW - if you have AOL, you cannot use this nice firewall that came with
your system. Thank AOL, not Microsoft. You HAVE to configure another
one.. So we continue with our session on Firewalls...

But let's say you DON'T have Windows XP - you have some other OS like
Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in
firewall. My suggestion - upgrade. My next suggestion - look through your
options. There are lots of free and pay firewalls out there for home users.
Yes - you will have to decide on your own which to get. Yes, you will have
to learn (oh no!) to use these firewalls and configure them so they don't
interfere with what you want to do while continuing to provide the security
you desire. It's just like anything else you want to protect - you have to
do something to protect it. Here are some suggested applications. A lot of
people tout "ZoneAlarm" as being the best alternative to just using the
Windows XP ICF, but truthfully - any of these alternatives are much better
than the Windows XP ICF at what they do - because that is ALL they do.

ZoneAlarm (Free and up)
http://www.zonelabs.com/store/conten...eeDownload.jsp

Kerio Personal Firewall (KPF) (Free and up)
http://www.kerio.com/kpf_download.html

Outpost Firewall from Agnitum (Free and up)
http://www.agnitum.com/download/

Sygate Personal Firewall (Free and up)
http://smb.sygate.com/buy/download_buy.htm

Symantec's Norton Personal Firewall (~$25 and up)
http://www.symantec.com/sabu/nis/npf/

BlackICE PC Protection ($39.95 and up)
http://blackice.iss.net/

Tiny Personal Firewall (~$49.00 and up)
http://www.tinysoftware.com/

That list is not complete, but they are good firewall options, every one of
them. Visit the web pages, read up, ask around if you like - make a
decision and go with some firewall, any firewall. Also, maintain it.
Sometimes new holes are discovered in even the best of these products and
patches are released from the company to remedy this problem. However, if
you don't get the patches (check the manufacturer web page on occasion),
then you may never know you have the problem and/or are being used through
this weakness. Also, don't stack these things. Running more than one
firewall will not make you safer - it would likely (in fact) negate some
protection you gleamed from one or the other firewalls you ran together.


ANTIVIRUS SOFTWARE
------------------

That's not all. That's one facet of a secure PC, but firewalls don't do
everything. I saw one person posting on a newsgroup that "they had
never had a virus and they never run any anti-virus software." Yep - I used
to believe that way too - viruses were something everyone else seemed to
get, were they just stupid? And for the average joe-user who is careful,
uses their one-three family computers carefully, never opening unknown
attachments, always visiting the same family safe web sites, never
installing anything that did not come with their computer - maybe, just
maybe they will never witness a virus. I, however, am a Network Systems
Administrator. I see that AntiVirus software is an absolute necessity given
how most people see their computer as a toy/tool and not something
they should have to maintain and upkeep. After all, they were invented to
make life easier, right - not add another task to your day. You
can be as careful as you want - will the next person be as careful? Will
someone send you unknowingly the email that erases all the pictures of your
child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS
SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many
flavors, it's like walking into a Jelly Belly store - which one tastes like
what?! Well, here are a few choices for you. Some of these are free (isn't
that nice?) and some are not. Is one better than the other - MAYBE.

Symantec (Norton) AntiVirus (~$11 and up)
http://www.symantec.com/

Kaspersky Anti-Virus (~$49.95 and up)
http://www.kaspersky.com/products.html

Panda Antivirus Titanium (~$39.95 and up)
http://www.pandasoftware.com/
(Free Online Scanner: http://www.pandasoftware.com/activescan/)

AVG 6.0 Anti-Virus System (Free and up)
http://www.grisoft.com/

McAfee VirusScan (~$11 and up)
http://www.mcafee.com/

AntiVir (Free and up)
http://www.free-av.com/

avast! 4 (Free and up)
http://www.avast.com/

Trend Micro (~$49.95 and up)
http://www.trendmicro.com/
(Free Online Scanner:
http://housecall.trendmicro.com/hous...start_corp.asp)

RAV AntiVirus Online Virus Scan (Free!)
http://www.ravantivirus.com/scan/

Did I mention you have to not only install this software, but also keep it
updated? You do. Some of them (most) have automatic services to help you
do this - I mean, it's not your job to keep up with the half-dozen or more
new threats that come out daily, is it? Be sure to keep whichever one you
choose up to date!


SPAM EMAIL/JUNK MAIL
--------------------

This one can get annoying, just like the rest. You get 50 emails in one
sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well,
although there are services out there to help you, some email
servers/services that actually do lower your spam with features built into
their servers - I still like the methods that let you be the end-decision
maker on what is spam and what isn't. If these things worked perfectly, we
wouldn't need people and then there would be no spam anyway - vicious
circle, eh? Anyway - I have two products to suggest to you, look at them
and see if either of them suite your needs. Again, if they don't, Google is
free and available for your perusal.

SpamBayes (Free!)
http://spambayes.sourceforge.net/

Spamihilator (Free!)
http://www.spamihilator.com/

As I said, those are not your only options, but are reliable ones I have
seen function for hundreds+ people.


DISABLE (Set to Manual) UNUSED SERVICE/STARTUP APPS
---------------------------------------------------

I might get arguments on putting this one here, but it's my spill. There are
lots of services on your PC that are probably turned on by default you don't
use. Why have them on? Check out these web pages to see what all of the
services you might find on your computer are and set them according to your
personal needs. Be CAREFUL what you set to manual, and take heed and write
down as you change things! Also, don't expect a large performance increase
or anything - especially on todays 2+ GHz machines, however - I look at each
service you set to manual as one less service you have to worry about
someone exploiting. A year ago, I would have thought the Windows Messenger
service to be pretty safe, now I recommend (with addition of a firewall)
that most home users disable it! Yeah - this is another one you have to
work for, but your computer may speed up and/or be more secure because you
took the time. And if you document what you do as you do it, next time, it
goes MUCH faster! (or if you have to go back and re-enable things..)

Task List Programs
http://www.answersthatwork.com/Taskl...s/tasklist.htm

Black Viper's Service List and Opinions (XP)
http://www.blackviper.com/WinXP/servicecfg.htm

Processes in Windows NT/2000/XP
http://www.reger24.de/prozesse/

There are also applications that AREN'T services that startup when you start
up the computer/logon. One of the better description on how to handle these
I have found he

Startups
http://www.pacs-portal.co.uk/startup_content.php


That's it. A small booklet on how to keep your computer secure, clean of
scum and more user friendly. I am SURE I missed something, almost as I am
sure you won't read all of it (anyone for that matter.) However, I also
know that someone who followed all of the advice above would also have less
problems with their PC, less problems with viruses, less problems with spam,
fewer problems with spyware and better performance than someone who didn't.

Hope it helps.

--
- Shenan -
--
The information is provided "as is", with no guarantees of
completeness, accuracy or timeliness, and without warranties of any
kind, express or implied. In other words, read up before you take any
advice - you are the one ultimately responsible for your actions.


Ads
  #47  
Old August 12th 04, 04:22 PM
Ken Blake
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

In ,
pdthorin typed:

My computer has so much spy-ware on it I'd prefer just to
reformat
the hard drive and start fresh. The only problem is I bought
my HP
desktop with XP already installed and I don't have a disc. Can
I
reformat my drive without getting rid of XP?




That's like asking "if I take everything out of my house, will my
furniture still be there?"

No, formatting means that *everything* on the drive will be gone.

However, OEM vendors are required by their agreement with
Microsoft to give you a means of reinstalling, should it be
necessary. They can do this in one of three ways:

1. An OEM copy of Windows

2. A restore CD

3. A hidden partition on your drive, with restore information.

If you don't have 1 or 2, you should have 3, but you should
contact your vendor to find out.


--
Ken Blake - Microsoft MVP Windows: Shell/User
Please reply to the newsgroup


  #48  
Old August 12th 04, 10:41 PM
Walter Clayton
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Your choice, but as Ken and Shenan pointed out, that's not necessarily the
best solution. I had a personal client that called wanting me to look at why
they had to replace their modem just about every two to three weeks. Turns
out they were on cable attached via NIC, were in fact replacing their
internal modem then flatlining the system with an OEM image *without*
patching up and *without* changing any usage habits. When I sat down at the
machine it was so choked up with malware and crapware, including winsock
hijack, that the machine couldn't get out to the internet. Cleaning the
machine in place then holding a safe computing forum while watching the
clean up tools do their thing did wonders.

Back to your specific issue. If you want to flatline the system, that's
certainly an option. I do not recommend it since you'll immediately have to
download and install 70-80M of patches (if you're sitting at SP1) some of
which you'll need just to get online safely in order to patch unless you're
sitting behind a firewall (and yes, I stated that exactly the way I meant).

It's easier in a lot of ways, and generally safer with your data to clean in
place.

--
Walter Clayton - MS MVP(WinXP)
Associate Expert
http://www.microsoft.com/windowsxp/expertzone
Any technology distinguishable from magic is insufficiently advanced.
http://www.dts-l.org
http://support.microsoft.com/servicedesks/fileversion/default.asp|


"pdthorin" wrote in message
...
My computer has so much spy-ware on it I'd prefer just to reformat the
hard
drive and start fresh. The only problem is I bought my HP desktop with XP
already installed and I don't have a disc. Can I reformat my drive
without
getting rid of XP?


  #49  
Old August 16th 04, 01:49 AM
JR
external usenet poster
 
Posts: n/a
Default Pls help

Hi Chris,
Just to let you know that I'm a person who knows nothing much when it comes
to technology.I have a spybot- search and destroy software installed on my
laptop which I run on a daily basis.I notice a spyware 'DSO EXPLOIT'
appearing everyday and actually everytime I run the spy catching program.I
wonder what I can do in order to block it for good.Again I'm not sure if this
spy comes from some imp site I visit everyday.Pls advise.
Regards

"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.”

Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community




  #50  
Old August 16th 04, 02:15 AM
Shenan Stanley
external usenet poster
 
Posts: n/a
Default Pls help

JR wrote:
Just to let you know that I'm a person who knows nothing much when it
comes to technology.I have a spybot- search and destroy software
installed on my laptop which I run on a daily basis.I notice a
spyware 'DSO EXPLOIT' appearing everyday and actually everytime I run
the spy catching program.I wonder what I can do in order to block it
for good.Again I'm not sure if this spy comes from some imp site I
visit everyday.Pls advise.
Regards


You need to uninstall Spybot S&D 1.2 or the Release Candidate for 1.3 and
install the FULL version of 1.3 and update it.

Other advice to follow:

Suggestions on what you can do to secure/clean your PC. I'm going to try
and be general, I will assume a "Windows" operating system is what is
being secured here.


UPDATES and PATCHES
-------------------

This one is the most obvious. There is no perfect product and any company
worth their salt will try to meet/exceed the needs of their customers and
fix any problems they find along the way. I am not going to say Microsoft
is the best company in the world about this but they do have an option
available for you to use to keep your machine updated and patched from
the problems and vulnerabilities (as well as product improvements in some
cases) - and it's free to you.

Windows Update
http://windowsupdate.microsoft.com/

Go there and scan your machine for updates. Always get the critical ones as
you see them. Write down the KB###### or Q###### you see when selecting the
updates and if you have trouble over the next few days, go into your control
panel (Add/Remove Programs), match up the latest numbers you downloaded
recently (since you started noticing an issue) and uninstall them. If there
was more than one (usually is), install them back one by one - with a few
hours of use in between, to see if the problem returns. Yes - the process
is not perfect (updating) and can cause trouble like I mentioned - but as
you can see, the solution isn't that bad - and is MUCH better than the
alternatives. (SASSER/BLASTER were SO preventable with just this step!)

Windows is not the only product you likely have on your PC. The
manufacturers of the other products usually have updates as well. New
versions of almost everything come out all the time - some are free, some
are pay - some you can only download if you are registered - but it is best
to check. Just go to their web pages and look under their support and
download sections.

You also have hardware on your machine that requires drivers to interface
with the operating system. You have a video card that allows you to see on
your screen, a sound card that allows you to hear your PCs sound output and
so on. Visit those manufacturer web sites for the latest downloadable
drivers for your hardware/operating system. Always (IMO) get the
manufacturers hardware driver over any Microsoft offers. On the Windows
Update site I mentioned earlier, I suggest NOT getting their hardware
drivers - no matter how tempting.

Have I mentioned that Microsoft has some stuff to help secure your computer
available to the end-user for free? This seems as good of a time as any.
They have a CD you can order (it's free) that contain all of the Windows
patches through October 2003 and some trial products as well that they
released in February 2004. Yeah - it's a little behind now, but it's better
than nothing (and used in coordination with the information in this post,
well worth the purchase price..)

Order the Windows Security Update CD
http://www.microsoft.com/security/protect/cd/order.asp

They also have a bunch of suggestions, some similar to these, on how to
better protect your Windows system:

Protect your PC
http://www.microsoft.com/security/protect/


FIREWALL
--------

Let's say you are up-to-date on the OS (operating system) and you have
Windows XP.. You should at least turn on the built in firewall. That will
do a lot to "hide" you from the random bad things flying around the
Internet. Things like Sasser/Blaster enjoy just sitting out there in
Cyberspace looking for an unprotected Windows Operating System and jumping
on it, doing great damage in the process and then using that Unprotected OS
to continue its dirty work of infecting others. If you have the Windows XP
ICF turned on - default configuration - then they cannot see you! Think of
it as Internet Stealth Mode at this point. It has other advantages, like
actually locking the doors you didn't even (likely) know you had. Doing
this is simple, the instructions you need to use your built in Windows XP
firewall can be found he

http://support.microsoft.com/?kbid=320855

If you read through that and look through the pages that are linked from it
at the bottom of that page - I think you should have a firm grasp on the
basics of the Windows XP Firewall as it is today. One thing to note RIGHT
NOW - if you have AOL, you cannot use this nice firewall that came with
your system. Thank AOL, not Microsoft. You HAVE to configure another
one.. So we continue with our session on Firewalls...

But let's say you DON'T have Windows XP - you have some other OS like
Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in
firewall. My suggestion - upgrade. My next suggestion - look through your
options. There are lots of free and pay firewalls out there for home users.
Yes - you will have to decide on your own which to get. Yes, you will have
to learn (oh no!) to use these firewalls and configure them so they don't
interfere with what you want to do while continuing to provide the security
you desire. It's just like anything else you want to protect - you have to
do something to protect it. Here are some suggested applications. A lot of
people tout "ZoneAlarm" as being the best alternative to just using the
Windows XP ICF, but truthfully - any of these alternatives are much better
than the Windows XP ICF at what they do - because that is ALL they do.

ZoneAlarm (Free and up)
http://www.zonelabs.com/store/conten...eeDownload.jsp

Kerio Personal Firewall (KPF) (Free and up)
http://www.kerio.com/kpf_download.html

Outpost Firewall from Agnitum (Free and up)
http://www.agnitum.com/download/

Sygate Personal Firewall (Free and up)
http://smb.sygate.com/buy/download_buy.htm

Symantec's Norton Personal Firewall (~$25 and up)
http://www.symantec.com/sabu/nis/npf/

BlackICE PC Protection ($39.95 and up)
http://blackice.iss.net/

Tiny Personal Firewall (~$49.00 and up)
http://www.tinysoftware.com/

That list is not complete, but they are good firewall options, every one of
them. Visit the web pages, read up, ask around if you like - make a
decision and go with some firewall, any firewall. Also, maintain it.
Sometimes new holes are discovered in even the best of these products and
patches are released from the company to remedy this problem. However, if
you don't get the patches (check the manufacturer web page on occasion),
then you may never know you have the problem and/or are being used through
this weakness. Also, don't stack these things. Running more than one
firewall will not make you safer - it would likely (in fact) negate some
protection you gleamed from one or the other firewalls you ran together.


ANTIVIRUS SOFTWARE
------------------

That's not all. That's one facet of a secure PC, but firewalls don't do
everything. I saw one person posting on a newsgroup that "they had
never had a virus and they never run any anti-virus software." Yep - I used
to believe that way too - viruses were something everyone else seemed to
get, were they just stupid? And for the average joe-user who is careful,
uses their one-three family computers carefully, never opening unknown
attachments, always visiting the same family safe web sites, never
installing anything that did not come with their computer - maybe, just
maybe they will never witness a virus. I, however, am a Network Systems
Administrator. I see that AntiVirus software is an absolute necessity given
how most people see their computer as a toy/tool and not something
they should have to maintain and upkeep. After all, they were invented to
make life easier, right - not add another task to your day. You
can be as careful as you want - will the next person be as careful? Will
someone send you unknowingly the email that erases all the pictures of your
child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS
SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many
flavors, it's like walking into a Jelly Belly store - which one tastes like
what?! Well, here are a few choices for you. Some of these are free (isn't
that nice?) and some are not. Is one better than the other - MAYBE.

Symantec (Norton) AntiVirus (~$11 and up)
http://www.symantec.com/

Kaspersky Anti-Virus (~$49.95 and up)
http://www.kaspersky.com/products.html

Panda Antivirus Titanium (~$39.95 and up)
http://www.pandasoftware.com/
(Free Online Scanner: http://www.pandasoftware.com/activescan/)

AVG 6.0 Anti-Virus System (Free and up)
http://www.grisoft.com/

McAfee VirusScan (~$11 and up)
http://www.mcafee.com/

AntiVir (Free and up)
http://www.free-av.com/

avast! 4 (Free and up)
http://www.avast.com/

Trend Micro (~$49.95 and up)
http://www.trendmicro.com/
(Free Online Scanner:
http://housecall.trendmicro.com/hous...start_corp.asp)

RAV AntiVirus Online Virus Scan (Free!)
http://www.ravantivirus.com/scan/

Did I mention you have to not only install this software, but also keep it
updated? You do. Some of them (most) have automatic services to help you
do this - I mean, it's not your job to keep up with the half-dozen or more
new threats that come out daily, is it? Be sure to keep whichever one you
choose up to date!


SPYWARE/ADWARE/POPUPS
---------------------

So you must be thinking that the above two things got your back now - you
are covered, safe and secure in your little fox hole. Wrong! There are
more bad guys out there. There are annoyances out there you can get without
trying. Your normal web surfing, maybe a wrong click on a web page, maybe
just a momentary lack of judgment by installing some software packages
without doing the research.. And all of a sudden your screen starts filling
up with advertisements or your Internet seems much slower or your home page
won't stay what you set it and goes someplace unfamiliar to you. This is
spyware. There are a whole SLEW of software packages out there to get rid
of this crud and help prevent reinfection. Some of the products already
mentioned might even have branched out into this arena. However, there are
a few applications that seem to be the best at what they do, which is
eradicating and immunizing your system from this crap. Strangely, the best
products I have found in this category ARE generally free. That is a trend
I like. I make donations to some of them, they deserve it!

Two side-notes: Never think one of these can do the whole job.
Try the first 5 before coming back and saying "That did not work!"
Also, you can always visit:
http://mvps.org/winhelp2002/unwanted.htm
For more updated information.

Spybot Search and Destroy (Free!)
http://www.safer-networking.net/

Lavasoft AdAware (Free and up)
http://www.lavasoft.de

CWSShredder (Free!)
http://www.spywareinfo.com/~merijn/downloads.html

Hijack This! (Free)
http://mjc1.com/mirror/hjt/
( Tutorial: http://www.spywareinfo.com/~merijn/htlogtutorial.html )

SpywareBlaster (Free!)
http://www.javacoolsoftware.com/

IE-SPYAD (Free!)
http://www.staff.uiuc.edu/~ehowes/resource.htm

ToolbarCop (Free!)
http://www.mvps.org/sramesh2k/toolbarcop.htm

Bazooka Adware and Spyware Scanner (Free!)
http://www.kephyr.com/spywarescanner/index.html

Browser Security Tests
http://www.jasons-toolbox.com/BrowserSecurity/

The Cleaner (49.95 and up)
http://www.moosoft.com/

That will clean up your machine of the spyware, given that you download and
install several of them, update them regularly and scan with them when you
update. Some (like SpywareBlaster and SpyBot Search and Destroy) have
immunization features that will help you prevent your PC from being
infected. Use these features!

Unfortunately, although that will lessen your popups on the Internet/while
you are online, it won't eliminate them. I have looked at a lot of options,
seen a lot of them used in production with people who seem to attract popups
like a plague, and I only have one suggestion that end up serving double
duty (search engine and popup stopper in one):

The Google Toolbar (Free!)
http://toolbar.google.com/

Yeah - it adds a bar to your Internet Explorer - but its a useful one. You
can search from there anytime with one of the best search engines on the
planet (IMO.) And the fact it stops most popups - wow - BONUS! If you
don't like that suggestion, then I am just going to say you go to
www.google.com and search for other options.

One more suggestion, although I will suggest this in a way later, is to
disable your Windows Messenger service. This service is not used frequently
(if at all) by the normal home user and in cooperation with a good firewall,
is generally unnecessary. Microsoft has instructions on how to do this for
Windows XP he
http://www.microsoft.com/windowsxp/p...e/stopspam.asp


SPAM EMAIL/JUNK MAIL
--------------------

This one can get annoying, just like the rest. You get 50 emails in one
sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well,
although there are services out there to help you, some email
servers/services that actually do lower your spam with features built into
their servers - I still like the methods that let you be the end-decision
maker on what is spam and what isn't. If these things worked perfectly, we
wouldn't need people and then there would be no spam anyway - vicious
circle, eh? Anyway - I have two products to suggest to you, look at them
and see if either of them suite your needs. Again, if they don't, Google is
free and available for your perusal.

SpamBayes (Free!)
http://spambayes.sourceforge.net/

Spamihilator (Free!)
http://www.spamihilator.com/

As I said, those are not your only options, but are reliable ones I have
seen function for hundreds+ people.


DISABLE (Set to Manual) UNUSED SERVICE/STARTUP APPS
---------------------------------------------------

I might get arguments on putting this one here, but it's my spill. There are
lots of services on your PC that are probably turned on by default you don't
use. Why have them on? Check out these web pages to see what all of the
services you might find on your computer are and set them according to your
personal needs. Be CAREFUL what you set to manual, and take heed and write
down as you change things! Also, don't expect a large performance increase
or anything - especially on todays 2+ GHz machines, however - I look at each
service you set to manual as one less service you have to worry about
someone exploiting. A year ago, I would have thought the Windows Messenger
service to be pretty safe, now I recommend (with addition of a firewall)
that most home users disable it! Yeah - this is another one you have to
work for, but your computer may speed up and/or be more secure because you
took the time. And if you document what you do as you do it, next time, it
goes MUCH faster! (or if you have to go back and re-enable things..)

Task List Programs
http://www.answersthatwork.com/Taskl...s/tasklist.htm

Black Viper's Service List and Opinions (XP)
http://www.blackviper.com/WinXP/servicecfg.htm

Processes in Windows NT/2000/XP
http://www.reger24.de/prozesse/

There are also applications that AREN'T services that startup when you start
up the computer/logon. One of the better description on how to handle these
I have found he

Startups
http://www.pacs-portal.co.uk/startup_content.php


That's it. A small booklet on how to keep your computer secure, clean of
scum and more user friendly. I am SURE I missed something, almost as I am
sure you won't read all of it (anyone for that matter.) However, I also
know that someone who followed all of the advice above would also have less
problems with their PC, less problems with viruses, less problems with spam,
fewer problems with spyware and better performance than someone who didn't.

Hope it helps.

--
- Shenan -
--
The information is provided "as is", with no guarantees of
completeness, accuracy or timeliness, and without warranties of any
kind, express or implied. In other words, read up before you take any
advice - you are the one ultimately responsible for your actions.


  #51  
Old August 16th 04, 02:23 AM
Walter Clayton
external usenet poster
 
Posts: n/a
Default Pls help

That's an issue with Spybot.
http://www.safer-networking.org/en/contact/bugs.html

--
Walter Clayton - MS MVP(WinXP)
Associate Expert
http://www.microsoft.com/windowsxp/expertzone
Any technology distinguishable from magic is insufficiently advanced.
http://www.dts-l.org
http://support.microsoft.com/servicedesks/fileversion/default.asp|


"JR" wrote in message
news
Hi Chris,
Just to let you know that I'm a person who knows nothing much when it
comes
to technology.I have a spybot- search and destroy software installed on my
laptop which I run on a daily basis.I notice a spyware 'DSO EXPLOIT'
appearing everyday and actually everytime I run the spy catching program.I
wonder what I can do in order to block it for good.Again I'm not sure if
this
spy comes from some imp site I visit everyday.Pls advise.
Regards

"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by
the Windows XP Expert Zone Community. This is a new trial effort and our
goal is to make it easy for you to ask questions and find answers on a
specific topic from a recognized expert in the online community. We’ll
continue this discussion in the newsgroups for one week and our volunteer
expert will select one or two questions each day and respond. Other
experts and users online may also chime in with advice. At the end of the
week, we hope to have a single thread filled with good information that
can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be
discussing the topic of spyware and adware and his experience helping
users in the newsgroups deal with spyware issues. Walter is an IT
professional from Frankfort, Kentucky. He is a self-trained computing pro
with 20 years of experience, and he has been helping people in the online
community for many years. Walter is a recipient of the Microsoft Most
Valuable Professional (MVP) award for his volunteer efforts helping
Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn.
Everyday I get a slightly different perspective on something or see a new
situation or problem. There is also the challenge of keeping
communication skills sharp. Determining the answer to a problem, and
communicating it in the newsgroups can present its own set of challenges,
especially at times when the wrong answer can leave the user in a no-boot
situation.”

Our Ask the Experts discussion is different from the live chats hosted on
the Windows XP Expert Zone Community site
(http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will
check-in at a time convenient for them and answer questions. You can post
a question any time. Then you may want to add the discussion to your
Favorites list in Internet Explorer (Click Favorites, and then click Add
to Favorites). You should check back later in the day, or the next day,
to see if your question has been answered. Click the Refresh button to
see if any new posts were added while you have been reading. If you’re
more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based
newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what
you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread,
select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are
appreciated. We’ll keep links to these discussions in the Windows XP
Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community





  #52  
Old August 16th 04, 02:30 AM
JAX
external usenet poster
 
Posts: n/a
Default Pls help

I'm not one of the whiz bangs you addressed your post to, but I can tell
you, DSO exploit is a known issue with Spybot S&D. You will see 5 entries
each time you run S&D. There is nothing to worry about and a fix is supposed
to be on the way. Do a Google search and it will confirm what I say.

JAX

"JR" wrote in message
news
Hi Chris,
Just to let you know that I'm a person who knows nothing much when it
comes
to technology.I have a spybot- search and destroy software installed on my
laptop which I run on a daily basis.I notice a spyware 'DSO EXPLOIT'
appearing everyday and actually everytime I run the spy catching program.I
wonder what I can do in order to block it for good.Again I'm not sure if
this
spy comes from some imp site I visit everyday.Pls advise.
Regards

"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by
the Windows XP Expert Zone Community. This is a new trial effort and our
goal is to make it easy for you to ask questions and find answers on a
specific topic from a recognized expert in the online community. We'll
continue this discussion in the newsgroups for one week and our volunteer
expert will select one or two questions each day and respond. Other
experts and users online may also chime in with advice. At the end of the
week, we hope to have a single thread filled with good information that
can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be
discussing the topic of spyware and adware and his experience helping
users in the newsgroups deal with spyware issues. Walter is an IT
professional from Frankfort, Kentucky. He is a self-trained computing pro
with 20 years of experience, and he has been helping people in the online
community for many years. Walter is a recipient of the Microsoft Most
Valuable Professional (MVP) award for his volunteer efforts helping
Windows users over the past five years.
A quote from Mr. Clayton:
"I enjoy working the newsgroups because it forces me to think and learn.
Everyday I get a slightly different perspective on something or see a new
situation or problem. There is also the challenge of keeping
communication skills sharp. Determining the answer to a problem, and
communicating it in the newsgroups can present its own set of challenges,
especially at times when the wrong answer can leave the user in a no-boot
situation."

Our Ask the Experts discussion is different from the live chats hosted on
the Windows XP Expert Zone Community site
(http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will
check-in at a time convenient for them and answer questions. You can post
a question any time. Then you may want to add the discussion to your
Favorites list in Internet Explorer (Click Favorites, and then click Add
to Favorites). You should check back later in the day, or the next day,
to see if your question has been answered. Click the Refresh button to
see if any new posts were added while you have been reading. If you're
more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based
newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what
you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread,
select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are
appreciated. We'll keep links to these discussions in the Windows XP
Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community






  #53  
Old August 16th 04, 08:05 PM
chuckgolf
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware



"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.”

Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community

Have installed norton anti virue protection but since I have installed it my computer will not turn off. Have to push off button to get to turn off completly. Says windows is shutting down then it locks up. Also am recieving a script message that says ca version not defined email address is
Http://value ad.com/code? casn you tell me how to correct all these problems and how do you stop all the pop up ad wares have tried everthing I know even blocking all the address on internet options.


  #54  
Old August 16th 04, 10:32 PM
Walter Clayton
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Your system hang is probably unrelated to Norton directly. Most likely that
issue is a by product of your current situation.

First there are three free apps you'll need to download.

Trendmicro sysclean package from http://www.trendmicro.com/download/dcs.asp
and the virus signature package from
http://www.trendmicro.com/download/p...disclaimer.asp - be sure to
read and follow the instructions.

Get AdAwareSE from http://www.majorgeeks.com/download506.html and SpyBot
from http://www.majorgeeks.com/download2471.html

Run Trendmicro's scanner first. Once that completes run AdAware. Before
letting AdAware run the first time, make sure that you allow it to do an
update. This is *extremely* important. Failure to allow AdAware to update
can cause it to miss things. If AdAware requests a reboot in order to
complete cleanup then allow it to do so. After you run AdAware then run
SpyBot. Again, it is *extremely* important that you update Spybot before
first run. Repeat a scan with both products until clean. If they fail to
clean then post back.

Once you have the machine clean, go to
http://www.majorgeeks.com/download2859.html and download and install
SpywareBlaster. Follow the instructions.

To minimize pop-ups, once you're clean there are a variety of pop-up
blockers out there. I use Google Tool bar myself at
http://toolbar.google.com

--
Walter Clayton - MS MVP(WinXP)
Associate Expert
http://www.microsoft.com/windowsxp/expertzone
Any technology distinguishable from magic is insufficiently advanced.
http://www.dts-l.org
http://support.microsoft.com/servicedesks/fileversion/default.asp|


"chuckgolf" wrote in message
...


Have installed norton anti virue protection but since I have installed it
my computer will not turn off. Have to push off button to get to turn off
completly. Says windows is shutting down then it locks up. Also am
recieving a script message that says ca version not defined email address
is Http://value ad.com/code? casn you tell me how to correct all these
problems and how do you stop all the pop up ad wares have tried everthing
I know even blocking all the address on internet options.



  #55  
Old August 17th 04, 01:09 PM
Mushabbar
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Hello I would like to manage the windows 2000 active directory from my
windows XP professional PC, kindly help me on this topic you could also email
me on this ID


"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.”

Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (
http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community




  #56  
Old August 17th 04, 10:43 PM
Shenan Stanley
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Mushabbar wrote:
Hello I would like to manage the windows 2000 active directory from my
windows XP professional PC, kindly help me on this topic you could
also email me on this ID


Install the Windows 2003 Admin Kit

--
- Shenan -
--
The information is provided "as is", with no guarantees of
completeness, accuracy or timeliness, and without warranties of any
kind, express or implied. In other words, read up before you take any
advice - you are the one ultimately responsible for your actions.


  #57  
Old August 18th 04, 04:15 AM
Fran
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

I scrolled down the list of messages posted and didn't see any advice on
spyware removal software. I downloaded Spybot (free) and when I use it, it
keeps finding the same 5 or 6 windows-related changes to the registry. If I
click on "Fix the problem", it changes the registry. Is this really
necessary, or should I get rid of this software. I had Ad-aware before, and
it just removed suspicious cookies, never actually made any registry changes.
Please tell me which of these two programs is the best to use.
Fran

"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.”

Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community




  #58  
Old August 18th 04, 04:27 AM
Walter Clayton
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Both together. AdAware does in fact address registry issues. Spybot address
registry and some other things. The fact that you're clean and staying clean
does not mean that either product is not working.

If you want to see what really happens, load up with a boat load of
crapware. However that's not something I really recommend you do unless you
have a throw away copy of the OS. There's some serious stuff out there. ;-)

--
Walter Clayton - MS MVP(WinXP)
Associate Expert
http://www.microsoft.com/windowsxp/expertzone
Any technology distinguishable from magic is insufficiently advanced.
http://www.dts-l.org
http://support.microsoft.com/servicedesks/fileversion/default.asp|


"Fran" wrote in message
...
I scrolled down the list of messages posted and didn't see any advice on
spyware removal software. I downloaded Spybot (free) and when I use it, it
keeps finding the same 5 or 6 windows-related changes to the registry. If
I
click on "Fix the problem", it changes the registry. Is this really
necessary, or should I get rid of this software. I had Ad-aware before,
and
it just removed suspicious cookies, never actually made any registry
changes.
Please tell me which of these two programs is the best to use.
Fran


  #59  
Old August 18th 04, 08:02 AM
Shenan Stanley
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware

Fran wrote:
I scrolled down the list of messages posted and didn't see any advice
on spyware removal software. I downloaded Spybot (free) and when I
use it, it keeps finding the same 5 or 6 windows-related changes to
the registry. If I click on "Fix the problem", it changes the
registry. Is this really necessary, or should I get rid of this
software. I had Ad-aware before, and it just removed suspicious
cookies, never actually made any registry changes. Please tell me
which of these two programs is the best to use.
Fran


Not really sure how you missed the posts like this:

If you don't wish to follow all of the advice immediately, just want to
get rid of your current dilemma, then you are welcome to scroll down to
the section titled "SPYWARE/ADWARE/POPUPS", where your problem as
stated should be resolved by the applications and suggestions found in
that section. If this helps solve your problem then I again HIGHLY
suggest you follow the rest of the advice below (matter of fact, I
suggest it either way.)

Suggestions on what you can do to secure/clean your PC. I'm going to try
and be general, I will assume a "Windows" operating system is what is
being secured here.


SPYWARE/ADWARE/POPUPS
---------------------

There are annoyances out there you can get without
trying. Your normal web surfing, maybe a wrong click on a web page, maybe
just a momentary lack of judgment by installing some software packages
without doing the research.. And all of a sudden your screen starts filling
up with advertisements or your Internet seems much slower or your home page
won't stay what you set it and goes someplace unfamiliar to you. This is
spyware. There are a whole SLEW of software packages out there to get rid
of this crud and help prevent reinfection. Some of the products already
mentioned might even have branched out into this arena. However, there are
a few applications that seem to be the best at what they do, which is
eradicating and immunizing your system from this crap. Strangely, the best
products I have found in this category ARE generally free. That is a trend
I like. I make donations to some of them, they deserve it!

Two side-notes: Never think one of these can do the whole job.
Try the first 5 before coming back and saying "That did not work!"
Also, you can always visit:
http://mvps.org/winhelp2002/unwanted.htm
For more updated information.

Spybot Search and Destroy (Free!)
http://www.safer-networking.net/

Lavasoft AdAware (Free and up)
http://www.lavasoft.de

CWSShredder (Free!)
http://www.spywareinfo.com/~merijn/downloads.html

Hijack This! (Free)
http://mjc1.com/mirror/hjt/
( Tutorial: http://www.spywareinfo.com/~merijn/htlogtutorial.html )

SpywareBlaster (Free!)
http://www.javacoolsoftware.com/

IE-SPYAD (Free!)
http://www.staff.uiuc.edu/~ehowes/resource.htm

ToolbarCop (Free!)
http://www.mvps.org/sramesh2k/toolbarcop.htm

Bazooka Adware and Spyware Scanner (Free!)
http://www.kephyr.com/spywarescanner/index.html

Browser Security Tests
http://www.jasons-toolbox.com/BrowserSecurity/

The Cleaner (49.95 and up)
http://www.moosoft.com/

That will clean up your machine of the spyware, given that you download and
install several of them, update them regularly and scan with them when you
update. Some (like SpywareBlaster and SpyBot Search and Destroy) have
immunization features that will help you prevent your PC from being
infected. Use these features!

Unfortunately, although that will lessen your popups on the Internet/while
you are online, it won't eliminate them. I have looked at a lot of options,
seen a lot of them used in production with people who seem to attract popups
like a plague, and I only have one suggestion that end up serving double
duty (search engine and popup stopper in one):

The Google Toolbar (Free!)
http://toolbar.google.com/

Yeah - it adds a bar to your Internet Explorer - but its a useful one. You
can search from there anytime with one of the best search engines on the
planet (IMO.) And the fact it stops most popups - wow - BONUS! If you
don't like that suggestion, then I am just going to say you go to
www.google.com and search for other options.

One more suggestion, although I will suggest this in a way later, is to
disable your Windows Messenger service. This service is not used frequently
(if at all) by the normal home user and in cooperation with a good firewall,
is generally unnecessary. Microsoft has instructions on how to do this for
Windows XP he
http://www.microsoft.com/windowsxp/p...e/stopspam.asp


UPDATES and PATCHES
-------------------

This one is the most obvious. There is no perfect product and any company
worth their salt will try to meet/exceed the needs of their customers and
fix any problems they find along the way. I am not going to say Microsoft
is the best company in the world about this but they do have an option
available for you to use to keep your machine updated and patched from
the problems and vulnerabilities (as well as product improvements in some
cases) - and it's free to you.

Windows Update
http://windowsupdate.microsoft.com/

Go there and scan your machine for updates. Always get the critical ones as
you see them. Write down the KB###### or Q###### you see when selecting the
updates and if you have trouble over the next few days, go into your control
panel (Add/Remove Programs), match up the latest numbers you downloaded
recently (since you started noticing an issue) and uninstall them. If there
was more than one (usually is), install them back one by one - with a few
hours of use in between, to see if the problem returns. Yes - the process
is not perfect (updating) and can cause trouble like I mentioned - but as
you can see, the solution isn't that bad - and is MUCH better than the
alternatives. (SASSER/BLASTER were SO preventable with just this step!)

Windows is not the only product you likely have on your PC. The
manufacturers of the other products usually have updates as well. New
versions of almost everything come out all the time - some are free, some
are pay - some you can only download if you are registered - but it is best
to check. Just go to their web pages and look under their support and
download sections.

You also have hardware on your machine that requires drivers to interface
with the operating system. You have a video card that allows you to see on
your screen, a sound card that allows you to hear your PCs sound output and
so on. Visit those manufacturer web sites for the latest downloadable
drivers for your hardware/operating system. Always (IMO) get the
manufacturers hardware driver over any Microsoft offers. On the Windows
Update site I mentioned earlier, I suggest NOT getting their hardware
drivers - no matter how tempting.

Have I mentioned that Microsoft has some stuff to help secure your computer
available to the end-user for free? This seems as good of a time as any.
They have a CD you can order (it's free) that contain all of the Windows
patches through October 2003 and some trial products as well that they
released in February 2004. Yeah - it's a little behind now, but it's better
than nothing (and used in coordination with the information in this post,
well worth the purchase price..)

Order the Windows Security Update CD
http://www.microsoft.com/security/protect/cd/order.asp

They also have a bunch of suggestions, some similar to these, on how to
better protect your Windows system:

Protect your PC
http://www.microsoft.com/security/protect/


FIREWALL
--------

Let's say you are up-to-date on the OS (operating system) and you have
Windows XP.. You should at least turn on the built in firewall. That will
do a lot to "hide" you from the random bad things flying around the
Internet. Things like Sasser/Blaster enjoy just sitting out there in
Cyberspace looking for an unprotected Windows Operating System and jumping
on it, doing great damage in the process and then using that Unprotected OS
to continue its dirty work of infecting others. If you have the Windows XP
ICF turned on - default configuration - then they cannot see you! Think of
it as Internet Stealth Mode at this point. It has other advantages, like
actually locking the doors you didn't even (likely) know you had. Doing
this is simple, the instructions you need to use your built in Windows XP
firewall can be found he

http://support.microsoft.com/?kbid=320855

If you read through that and look through the pages that are linked from it
at the bottom of that page - I think you should have a firm grasp on the
basics of the Windows XP Firewall as it is today. One thing to note RIGHT
NOW - if you have AOL, you cannot use this nice firewall that came with
your system. Thank AOL, not Microsoft. You HAVE to configure another
one.. So we continue with our session on Firewalls...

But let's say you DON'T have Windows XP - you have some other OS like
Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in
firewall. My suggestion - upgrade. My next suggestion - look through your
options. There are lots of free and pay firewalls out there for home users.
Yes - you will have to decide on your own which to get. Yes, you will have
to learn (oh no!) to use these firewalls and configure them so they don't
interfere with what you want to do while continuing to provide the security
you desire. It's just like anything else you want to protect - you have to
do something to protect it. Here are some suggested applications. A lot of
people tout "ZoneAlarm" as being the best alternative to just using the
Windows XP ICF, but truthfully - any of these alternatives are much better
than the Windows XP ICF at what they do - because that is ALL they do.

ZoneAlarm (Free and up)
http://www.zonelabs.com/store/conten...eeDownload.jsp

Kerio Personal Firewall (KPF) (Free and up)
http://www.kerio.com/kpf_download.html

Outpost Firewall from Agnitum (Free and up)
http://www.agnitum.com/download/

Sygate Personal Firewall (Free and up)
http://smb.sygate.com/buy/download_buy.htm

Symantec's Norton Personal Firewall (~$25 and up)
http://www.symantec.com/sabu/nis/npf/

BlackICE PC Protection ($39.95 and up)
http://blackice.iss.net/

Tiny Personal Firewall (~$49.00 and up)
http://www.tinysoftware.com/

That list is not complete, but they are good firewall options, every one of
them. Visit the web pages, read up, ask around if you like - make a
decision and go with some firewall, any firewall. Also, maintain it.
Sometimes new holes are discovered in even the best of these products and
patches are released from the company to remedy this problem. However, if
you don't get the patches (check the manufacturer web page on occasion),
then you may never know you have the problem and/or are being used through
this weakness. Also, don't stack these things. Running more than one
firewall will not make you safer - it would likely (in fact) negate some
protection you gleamed from one or the other firewalls you ran together.


ANTIVIRUS SOFTWARE
------------------

That's not all. That's one facet of a secure PC, but firewalls don't do
everything. I saw one person posting on a newsgroup that "they had
never had a virus and they never run any anti-virus software." Yep - I used
to believe that way too - viruses were something everyone else seemed to
get, were they just stupid? And for the average joe-user who is careful,
uses their one-three family computers carefully, never opening unknown
attachments, always visiting the same family safe web sites, never
installing anything that did not come with their computer - maybe, just
maybe they will never witness a virus. I, however, am a Network Systems
Administrator. I see that AntiVirus software is an absolute necessity given
how most people see their computer as a toy/tool and not something
they should have to maintain and upkeep. After all, they were invented to
make life easier, right - not add another task to your day. You
can be as careful as you want - will the next person be as careful? Will
someone send you unknowingly the email that erases all the pictures of your
child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS
SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many
flavors, it's like walking into a Jelly Belly store - which one tastes like
what?! Well, here are a few choices for you. Some of these are free (isn't
that nice?) and some are not. Is one better than the other - MAYBE.

Symantec (Norton) AntiVirus (~$11 and up)
http://www.symantec.com/

Kaspersky Anti-Virus (~$49.95 and up)
http://www.kaspersky.com/products.html

Panda Antivirus Titanium (~$39.95 and up)
http://www.pandasoftware.com/
(Free Online Scanner: http://www.pandasoftware.com/activescan/)

AVG 6.0 Anti-Virus System (Free and up)
http://www.grisoft.com/

McAfee VirusScan (~$11 and up)
http://www.mcafee.com/

AntiVir (Free and up)
http://www.free-av.com/

avast! 4 (Free and up)
http://www.avast.com/

Trend Micro (~$49.95 and up)
http://www.trendmicro.com/
(Free Online Scanner:
http://housecall.trendmicro.com/hous...start_corp.asp)

RAV AntiVirus Online Virus Scan (Free!)
http://www.ravantivirus.com/scan/

Did I mention you have to not only install this software, but also keep it
updated? You do. Some of them (most) have automatic services to help you
do this - I mean, it's not your job to keep up with the half-dozen or more
new threats that come out daily, is it? Be sure to keep whichever one you
choose up to date!


SPAM EMAIL/JUNK MAIL
--------------------

This one can get annoying, just like the rest. You get 50 emails in one
sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well,
although there are services out there to help you, some email
servers/services that actually do lower your spam with features built into
their servers - I still like the methods that let you be the end-decision
maker on what is spam and what isn't. If these things worked perfectly, we
wouldn't need people and then there would be no spam anyway - vicious
circle, eh? Anyway - I have two products to suggest to you, look at them
and see if either of them suite your needs. Again, if they don't, Google is
free and available for your perusal.

SpamBayes (Free!)
http://spambayes.sourceforge.net/

Spamihilator (Free!)
http://www.spamihilator.com/

As I said, those are not your only options, but are reliable ones I have
seen function for hundreds+ people.


DISABLE (Set to Manual) UNUSED SERVICE/STARTUP APPS
---------------------------------------------------

I might get arguments on putting this one here, but it's my spill. There are
lots of services on your PC that are probably turned on by default you don't
use. Why have them on? Check out these web pages to see what all of the
services you might find on your computer are and set them according to your
personal needs. Be CAREFUL what you set to manual, and take heed and write
down as you change things! Also, don't expect a large performance increase
or anything - especially on todays 2+ GHz machines, however - I look at each
service you set to manual as one less service you have to worry about
someone exploiting. A year ago, I would have thought the Windows Messenger
service to be pretty safe, now I recommend (with addition of a firewall)
that most home users disable it! Yeah - this is another one you have to
work for, but your computer may speed up and/or be more secure because you
took the time. And if you document what you do as you do it, next time, it
goes MUCH faster! (or if you have to go back and re-enable things..)

Task List Programs
http://www.answersthatwork.com/Taskl...s/tasklist.htm

Black Viper's Service List and Opinions (XP)
http://www.blackviper.com/WinXP/servicecfg.htm

Processes in Windows NT/2000/XP
http://www.reger24.de/prozesse/

There are also applications that AREN'T services that startup when you start
up the computer/logon. One of the better description on how to handle these
I have found he

Startups
http://www.pacs-portal.co.uk/startup_content.php


That's it. A small booklet on how to keep your computer secure, clean of
scum and more user friendly. I am SURE I missed something, almost as I am
sure you won't read all of it (anyone for that matter.) However, I also
know that someone who followed all of the advice above would also have less
problems with their PC, less problems with viruses, less problems with spam,
fewer problems with spyware and better performance than someone who didn't.

Hope it helps.

--
- Shenan -
--
The information is provided "as is", with no guarantees of
completeness, accuracy or timeliness, and without warranties of any
kind, express or implied. In other words, read up before you take any
advice - you are the one ultimately responsible for your actions.


  #60  
Old August 18th 04, 10:11 AM
windana1
external usenet poster
 
Posts: n/a
Default Ask Windows XP Expert Walter Clayton About Spyware



"Chris Norred [MSFT]" wrote:

Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future.

This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years.
A quote from Mr. Clayton:
“I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.”

Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077).

In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do.

To post a question or reply in this discussion, using the Web-based newsgroup reader:
1. Click Reply.
2. If prompted, sign in with your .NET Passport.
3. Edit the subject line if you like.
4. In the Reply form, type your message or question in the Message box.
5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post.
6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box.
7. Click Send.

This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive
(http://www.microsoft.com/windowsxp/e...s/archive.mspx).
Truly
Chris Norred
Editor
Windows XP Expert Zone Community




 




Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
I click on my spyware exe and Windows begins to install Windows Office XP Snapper The Basics 5 July 22nd 04 02:56 PM
I click on my spyware exe and Windows begins to install Windows Office XP Snapper The Basics 2 July 22nd 04 11:13 AM
I click on my spyware exe and Windows begins to install Windows Office XP Snapper The Basics 5 July 22nd 04 10:09 AM
How do I remove Spyware? Julian Milano General XP issues or comments 7 July 16th 04 08:20 PM
How do I remove Spyware? Julian Milano General XP issues or comments 5 July 16th 04 04:18 PM






All times are GMT +1. The time now is 02:50 PM.


Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright 2004-2024 PCbanter.
The comments are property of their posters.