If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#76
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Can you tell me whether there is ny protection from spyware when you log into
Windows XP Home Edition without administrative privileges? Since this type of user is not supposed to be able to install software, why does spy and ad software get through - if it does? Could this possibly be an update that could be made by Microsoft themselves. or should there be a third type of user that would allow no changes whatsoever? |
Ads |
#77
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
"bdhutch" wrote in message
... Can you tell me whether there is ny protection from spyware when you log into Windows XP Home Edition without administrative privileges? Only some protection. The problem is that a lot of the stuff operates within the context of the user without violating existing security constraints. Other users may be unaffected but the infected user has a miserable experience. Since this type of user is not supposed to be able to install software, why does spy and ad software get through - if it does? Several reasons, including the one above. There are escalation exploits that happen as well, but that's typically a 'true' virus/trojan/worm behaviour that's going to typically be caught by classic active AV scanning apps. Some of these nasties exploit published security holes in unpatched systems, so unpatched systems can be vicitimized easier. Could this possibly be an update that could be made by Microsoft themselves. or should there be a third type of user that would allow no changes whatsoever? The latter does in fact exist on HE. It's called the guest account, but the user experience is pretty dismal. However enabling the guest account opens up it's own potential set of issues. -- Walter Clayton - MS MVP(WinXP) Associate Expert http://www.microsoft.com/windowsxp/expertzone Any technology distinguishable from magic is insufficiently advanced. http://www.dts-l.org http://support.microsoft.com/servicedesks/fileversion/default.asp| |
#78
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Simple question for a novice here. I have some crap default web page called
mypoiskovik pulling up no matter what I do. I can't delete the index that it comes from and it is loading porn crap into favorites. I have loaded everything Microsoft recommends and nothing....Can you tell me how to get rid of this annoying crap. "Chris Norred [MSFT]" wrote: Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future. This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years. A quote from Mr. Clayton: “I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.” Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077). In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do. To post a question or reply in this discussion, using the Web-based newsgroup reader: 1. Click Reply. 2. If prompted, sign in with your .NET Passport. 3. Edit the subject line if you like. 4. In the Reply form, type your message or question in the Message box. 5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post. 6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box. 7. Click Send. This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive (http://www.microsoft.com/windowsxp/e...s/archive.mspx). Truly Chris Norred Editor Windows XP Expert Zone Community |
#79
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Brad D wrote:
Simple question for a novice here. I have some crap default web page called mypoiskovik pulling up no matter what I do. I can't delete the index that it comes from and it is loading porn crap into favorites. I have loaded everything Microsoft recommends and nothing....Can you tell me how to get rid of this annoying crap. If you don't wish to follow all of the advice immediately, just want to get rid of your current dilemma, then you are welcome to scroll down to the section titled "SPYWARE/ADWARE/POPUPS", where your problem as stated should be resolved by the applications and suggestions found in that section. If this helps solve your problem then I again HIGHLY suggest you follow the rest of the advice below (matter of fact, I suggest it either way.) Suggestions on what you can do to secure/clean your PC. I'm going to try and be general, I will assume a "Windows" operating system is what is being secured here. SPYWARE/ADWARE/POPUPS --------------------- There are annoyances out there you can get without trying. Your normal web surfing, maybe a wrong click on a web page, maybe just a momentary lack of judgment by installing some software packages without doing the research.. And all of a sudden your screen starts filling up with advertisements or your Internet seems much slower or your home page won't stay what you set it and goes someplace unfamiliar to you. This is spyware. There are a whole SLEW of software packages out there to get rid of this crud and help prevent reinfection. Some of the products already mentioned might even have branched out into this arena. However, there are a few applications that seem to be the best at what they do, which is eradicating and immunizing your system from this crap. Strangely, the best products I have found in this category ARE generally free. That is a trend I like. I make donations to some of them, they deserve it! Two side-notes: Never think one of these can do the whole job. Try the first 5 before coming back and saying "That did not work!" Also, you can always visit: http://mvps.org/winhelp2002/unwanted.htm For more updated information. Spybot Search and Destroy (Free!) http://www.safer-networking.net/ Lavasoft AdAware (Free and up) http://www.lavasoft.de CWSShredder (Free!) http://www.spywareinfo.com/~merijn/downloads.html Hijack This! (Free) http://mjc1.com/mirror/hjt/ ( Tutorial: http://www.spywareinfo.com/~merijn/htlogtutorial.html ) SpywareBlaster (Free!) http://www.javacoolsoftware.com/ IE-SPYAD (Free!) http://www.staff.uiuc.edu/~ehowes/resource.htm ToolbarCop (Free!) http://www.mvps.org/sramesh2k/toolbarcop.htm Bazooka Adware and Spyware Scanner (Free!) http://www.kephyr.com/spywarescanner/index.html Browser Security Tests http://www.jasons-toolbox.com/BrowserSecurity/ The Cleaner (49.95 and up) http://www.moosoft.com/ That will clean up your machine of the spyware, given that you download and install several of them, update them regularly and scan with them when you update. Some (like SpywareBlaster and SpyBot Search and Destroy) have immunization features that will help you prevent your PC from being infected. Use these features! Unfortunately, although that will lessen your popups on the Internet/while you are online, it won't eliminate them. I have looked at a lot of options, seen a lot of them used in production with people who seem to attract popups like a plague, and I only have one suggestion that end up serving double duty (search engine and popup stopper in one): The Google Toolbar (Free!) http://toolbar.google.com/ Yeah - it adds a bar to your Internet Explorer - but its a useful one. You can search from there anytime with one of the best search engines on the planet (IMO.) And the fact it stops most popups - wow - BONUS! If you don't like that suggestion, then I am just going to say you go to www.google.com and search for other options. One more suggestion, although I will suggest this in a way later, is to disable your Windows Messenger service. This service is not used frequently (if at all) by the normal home user and in cooperation with a good firewall, is generally unnecessary. Microsoft has instructions on how to do this for Windows XP he http://www.microsoft.com/windowsxp/p...e/stopspam.asp UPDATES and PATCHES ------------------- This one is the most obvious. There is no perfect product and any company worth their salt will try to meet/exceed the needs of their customers and fix any problems they find along the way. I am not going to say Microsoft is the best company in the world about this but they do have an option available for you to use to keep your machine updated and patched from the problems and vulnerabilities (as well as product improvements in some cases) - and it's free to you. Windows Update http://windowsupdate.microsoft.com/ Go there and scan your machine for updates. Always get the critical ones as you see them. Write down the KB###### or Q###### you see when selecting the updates and if you have trouble over the next few days, go into your control panel (Add/Remove Programs), match up the latest numbers you downloaded recently (since you started noticing an issue) and uninstall them. If there was more than one (usually is), install them back one by one - with a few hours of use in between, to see if the problem returns. Yes - the process is not perfect (updating) and can cause trouble like I mentioned - but as you can see, the solution isn't that bad - and is MUCH better than the alternatives. (SASSER/BLASTER were SO preventable with just this step!) Windows is not the only product you likely have on your PC. The manufacturers of the other products usually have updates as well. New versions of almost everything come out all the time - some are free, some are pay - some you can only download if you are registered - but it is best to check. Just go to their web pages and look under their support and download sections. You also have hardware on your machine that requires drivers to interface with the operating system. You have a video card that allows you to see on your screen, a sound card that allows you to hear your PCs sound output and so on. Visit those manufacturer web sites for the latest downloadable drivers for your hardware/operating system. Always (IMO) get the manufacturers hardware driver over any Microsoft offers. On the Windows Update site I mentioned earlier, I suggest NOT getting their hardware drivers - no matter how tempting. Have I mentioned that Microsoft has some stuff to help secure your computer available to the end-user for free? This seems as good of a time as any. They have a CD you can order (it's free) that contain all of the Windows patches through October 2003 and some trial products as well that they released in February 2004. Yeah - it's a little behind now, but it's better than nothing (and used in coordination with the information in this post, well worth the purchase price..) Order the Windows Security Update CD http://www.microsoft.com/security/protect/cd/order.asp They also have a bunch of suggestions, some similar to these, on how to better protect your Windows system: Protect your PC http://www.microsoft.com/security/protect/ FIREWALL -------- Let's say you are up-to-date on the OS (operating system) and you have Windows XP.. You should at least turn on the built in firewall. That will do a lot to "hide" you from the random bad things flying around the Internet. Things like Sasser/Blaster enjoy just sitting out there in Cyberspace looking for an unprotected Windows Operating System and jumping on it, doing great damage in the process and then using that Unprotected OS to continue its dirty work of infecting others. If you have the Windows XP ICF turned on - default configuration - then they cannot see you! Think of it as Internet Stealth Mode at this point. It has other advantages, like actually locking the doors you didn't even (likely) know you had. Doing this is simple, the instructions you need to use your built in Windows XP firewall can be found he http://support.microsoft.com/?kbid=320855 If you read through that and look through the pages that are linked from it at the bottom of that page - I think you should have a firm grasp on the basics of the Windows XP Firewall as it is today. One thing to note RIGHT NOW - if you have AOL, you cannot use this nice firewall that came with your system. Thank AOL, not Microsoft. You HAVE to configure another one.. So we continue with our session on Firewalls... But let's say you DON'T have Windows XP - you have some other OS like Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in firewall. My suggestion - upgrade. My next suggestion - look through your options. There are lots of free and pay firewalls out there for home users. Yes - you will have to decide on your own which to get. Yes, you will have to learn (oh no!) to use these firewalls and configure them so they don't interfere with what you want to do while continuing to provide the security you desire. It's just like anything else you want to protect - you have to do something to protect it. Here are some suggested applications. A lot of people tout "ZoneAlarm" as being the best alternative to just using the Windows XP ICF, but truthfully - any of these alternatives are much better than the Windows XP ICF at what they do - because that is ALL they do. ZoneAlarm (Free and up) http://www.zonelabs.com/store/conten...eeDownload.jsp Kerio Personal Firewall (KPF) (Free and up) http://www.kerio.com/kpf_download.html Outpost Firewall from Agnitum (Free and up) http://www.agnitum.com/download/ Sygate Personal Firewall (Free and up) http://smb.sygate.com/buy/download_buy.htm Symantec's Norton Personal Firewall (~$25 and up) http://www.symantec.com/sabu/nis/npf/ BlackICE PC Protection ($39.95 and up) http://blackice.iss.net/ Tiny Personal Firewall (~$49.00 and up) http://www.tinysoftware.com/ That list is not complete, but they are good firewall options, every one of them. Visit the web pages, read up, ask around if you like - make a decision and go with some firewall, any firewall. Also, maintain it. Sometimes new holes are discovered in even the best of these products and patches are released from the company to remedy this problem. However, if you don't get the patches (check the manufacturer web page on occasion), then you may never know you have the problem and/or are being used through this weakness. Also, don't stack these things. Running more than one firewall will not make you safer - it would likely (in fact) negate some protection you gleamed from one or the other firewalls you ran together. ANTIVIRUS SOFTWARE ------------------ That's not all. That's one facet of a secure PC, but firewalls don't do everything. I saw one person posting on a newsgroup that "they had never had a virus and they never run any anti-virus software." Yep - I used to believe that way too - viruses were something everyone else seemed to get, were they just stupid? And for the average joe-user who is careful, uses their one-three family computers carefully, never opening unknown attachments, always visiting the same family safe web sites, never installing anything that did not come with their computer - maybe, just maybe they will never witness a virus. I, however, am a Network Systems Administrator. I see that AntiVirus software is an absolute necessity given how most people see their computer as a toy/tool and not something they should have to maintain and upkeep. After all, they were invented to make life easier, right - not add another task to your day. You can be as careful as you want - will the next person be as careful? Will someone send you unknowingly the email that erases all the pictures of your child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many flavors, it's like walking into a Jelly Belly store - which one tastes like what?! Well, here are a few choices for you. Some of these are free (isn't that nice?) and some are not. Is one better than the other - MAYBE. Symantec (Norton) AntiVirus (~$11 and up) http://www.symantec.com/ Kaspersky Anti-Virus (~$49.95 and up) http://www.kaspersky.com/products.html Panda Antivirus Titanium (~$39.95 and up) http://www.pandasoftware.com/ (Free Online Scanner: http://www.pandasoftware.com/activescan/) AVG 6.0 Anti-Virus System (Free and up) http://www.grisoft.com/ McAfee VirusScan (~$11 and up) http://www.mcafee.com/ AntiVir (Free and up) http://www.free-av.com/ avast! 4 (Free and up) http://www.avast.com/ Trend Micro (~$49.95 and up) http://www.trendmicro.com/ (Free Online Scanner: http://housecall.trendmicro.com/hous...start_corp.asp) RAV AntiVirus Online Virus Scan (Free!) http://www.ravantivirus.com/scan/ Did I mention you have to not only install this software, but also keep it updated? You do. Some of them (most) have automatic services to help you do this - I mean, it's not your job to keep up with the half-dozen or more new threats that come out daily, is it? Be sure to keep whichever one you choose up to date! SPAM EMAIL/JUNK MAIL -------------------- This one can get annoying, just like the rest. You get 50 emails in one sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well, although there are services out there to help you, some email servers/services that actually do lower your spam with features built into their servers - I still like the methods that let you be the end-decision maker on what is spam and what isn't. If these things worked perfectly, we wouldn't need people and then there would be no spam anyway - vicious circle, eh? Anyway - I have two products to suggest to you, look at them and see if either of them suite your needs. Again, if they don't, Google is free and available for your perusal. SpamBayes (Free!) http://spambayes.sourceforge.net/ Spamihilator (Free!) http://www.spamihilator.com/ As I said, those are not your only options, but are reliable ones I have seen function for hundreds+ people. DISABLE (Set to Manual) UNUSED SERVICE/STARTUP APPS --------------------------------------------------- I might get arguments on putting this one here, but it's my spill. There are lots of services on your PC that are probably turned on by default you don't use. Why have them on? Check out these web pages to see what all of the services you might find on your computer are and set them according to your personal needs. Be CAREFUL what you set to manual, and take heed and write down as you change things! Also, don't expect a large performance increase or anything - especially on todays 2+ GHz machines, however - I look at each service you set to manual as one less service you have to worry about someone exploiting. A year ago, I would have thought the Windows Messenger service to be pretty safe, now I recommend (with addition of a firewall) that most home users disable it! Yeah - this is another one you have to work for, but your computer may speed up and/or be more secure because you took the time. And if you document what you do as you do it, next time, it goes MUCH faster! (or if you have to go back and re-enable things..) Task List Programs http://www.answersthatwork.com/Taskl...s/tasklist.htm Black Viper's Service List and Opinions (XP) http://www.blackviper.com/WinXP/servicecfg.htm Processes in Windows NT/2000/XP http://www.reger24.de/prozesse/ There are also applications that AREN'T services that startup when you start up the computer/logon. One of the better description on how to handle these I have found he Startups http://www.pacs-portal.co.uk/startup_content.php That's it. A small booklet on how to keep your computer secure, clean of scum and more user friendly. I am SURE I missed something, almost as I am sure you won't read all of it (anyone for that matter.) However, I also know that someone who followed all of the advice above would also have less problems with their PC, less problems with viruses, less problems with spam, fewer problems with spyware and better performance than someone who didn't. Hope it helps. -- - Shenan - -- The information is provided "as is", with no guarantees of completeness, accuracy or timeliness, and without warranties of any kind, express or implied. In other words, read up before you take any advice - you are the one ultimately responsible for your actions. |
#80
|
|||
|
|||
I need help!
Which Drive.. A or C...
"Me" wrote in message ... My disc drive dosen't show up, at all, what should I do? P.S. Only 11, need help fast! |
#81
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Nasty critter:
http://www.google.com/search?hl=en&i...&q=mypoiskovik Follow some of the links above for running CWShredder in safe mode followed by HijackThis and if you're still having problems, post back with a HT log. Note: Do *NOT* launch IE until the the homepage, etc. for IE have been reset or you'll reinfect your self. -- Walter Clayton - MS MVP(WinXP) Associate Expert http://www.microsoft.com/windowsxp/expertzone Any technology distinguishable from magic is insufficiently advanced. http://www.dts-l.org http://support.microsoft.com/servicedesks/fileversion/default.asp| "Brad D" Brad wrote in message ... Simple question for a novice here. I have some crap default web page called mypoiskovik pulling up no matter what I do. I can't delete the index that it comes from and it is loading porn crap into favorites. I have loaded everything Microsoft recommends and nothing....Can you tell me how to get rid of this annoying crap. |
#82
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
"Michel" wrote: "Walter Clayton" wrote: Generally all I use is AdAware first followed by SpyBot. There's a lot of overlap in the two tools, but they also concentrate on non-overlapping areas. It's also wise to follow up with installing SpywareBlaster. None of these require run time presences although SpyBot will offer to install such. No harm in doing so and in some instances, especially with multi-user machines, a necessity. The biggest issue is remembering to run them periodically after checking for updates. The latter is one of the reasons, other than not changing usage habits, that people get reinfected. It's easier to avoid being click happy than it is to clean up the mess afterwards. There are instances where AdAware/SpyBot may be neutralized or unable to clean something. I handle those on a case by case basis since you're looking at going with some highly specialized tools that if misused will leave the machine unbootable (note that there is a nasty that the current version of AdAware had been cleaning incorrectly that would make it impossible to log on to the machine without taking corrective action). Depending on your level of expertise there are some tools that circumvent issues with removing nasties that are resident in memory even in safe mode. If an XP machine is being disinfected I use a bootable CD created using Bart's tools with fully updated AdAware, Trendmicro, McAfee and Kaspersky tools (all free versions) incorporated. This also allows me to correct any registry issues on the host machine without any major hassles other than knowing what parts of the registry need be hacked. The reason I include and run AV scanners is generally if some one has a load of spyware it's not unusual they'll have nastier stuff as well. -- Walter Clayton - MS MVP(WinXP) Associate Expert http://www.microsoft.com/windowsxp/expertzone Any technology distinguishable from magic is insufficiently advanced. http://www.dts-l.org http://support.microsoft.com/servicedesks/fileversion/default.asp| "Andrew" wrote in message ... I already know what Spyware can do and all to your computers but what is the best Spyware and Ad-aware remover programs out there I'm using Spybot 1.3 and Ad-aware 6.0 from Lavasoft and I heard having two good Spyware and Ad-aware remover programs that it will remove about 90% of Spyware and Ad-aware off your computer and keep it out. |
#83
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
I am a complete novice. Sorry to insult you other readers. But, what is
spyware and how do you get it without installing it? "Michel" wrote: "Walter Clayton" wrote: Generally all I use is AdAware first followed by SpyBot. There's a lot of overlap in the two tools, but they also concentrate on non-overlapping areas. It's also wise to follow up with installing SpywareBlaster. None of these require run time presences although SpyBot will offer to install such. No harm in doing so and in some instances, especially with multi-user machines, a necessity. The biggest issue is remembering to run them periodically after checking for updates. The latter is one of the reasons, other than not changing usage habits, that people get reinfected. It's easier to avoid being click happy than it is to clean up the mess afterwards. There are instances where AdAware/SpyBot may be neutralized or unable to clean something. I handle those on a case by case basis since you're looking at going with some highly specialized tools that if misused will leave the machine unbootable (note that there is a nasty that the current version of AdAware had been cleaning incorrectly that would make it impossible to log on to the machine without taking corrective action). Depending on your level of expertise there are some tools that circumvent issues with removing nasties that are resident in memory even in safe mode. If an XP machine is being disinfected I use a bootable CD created using Bart's tools with fully updated AdAware, Trendmicro, McAfee and Kaspersky tools (all free versions) incorporated. This also allows me to correct any registry issues on the host machine without any major hassles other than knowing what parts of the registry need be hacked. The reason I include and run AV scanners is generally if some one has a load of spyware it's not unusual they'll have nastier stuff as well. -- Walter Clayton - MS MVP(WinXP) Associate Expert http://www.microsoft.com/windowsxp/expertzone Any technology distinguishable from magic is insufficiently advanced. http://www.dts-l.org http://support.microsoft.com/servicedesks/fileversion/default.asp| "Andrew" wrote in message ... I already know what Spyware can do and all to your computers but what is the best Spyware and Ad-aware remover programs out there I'm using Spybot 1.3 and Ad-aware 6.0 from Lavasoft and I heard having two good Spyware and Ad-aware remover programs that it will remove about 90% of Spyware and Ad-aware off your computer and keep it out. |
#84
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Barbara wrote:
I am a complete novice. Sorry to insult you other readers. But, what is spyware and how do you get it without installing it? What is Spyware? http://webopedia.internet.com/TERM/s/spyware.html More advice about Spyware and everything else to help protect you from the evils of the Internet. (Note that SP2 does have some additional security features for those running Windows XP Home or Windows XP Professional (or superset of.) You should install SP2 as soon as you can, but still follow the advice given below.) If you don't wish to follow all of the advice immediately, just want to get rid of your current dilemma, then you are welcome to scroll down to the section titled "SPYWARE/ADWARE/POPUPS", where your problem as stated should be resolved by the applications and suggestions found in that section. If this helps solve your problem then I again HIGHLY suggest you follow the rest of the advice below (matter of fact, I suggest it either way.) Suggestions on what you can do to secure/clean your PC. I'm going to try and be general, I will assume a "Windows" operating system is what is being secured here. SPYWARE/ADWARE/POPUPS --------------------- There are annoyances out there you can get without trying. Your normal web surfing, maybe a wrong click on a web page, maybe just a momentary lack of judgment by installing some software packages without doing the research.. And all of a sudden your screen starts filling up with advertisements or your Internet seems much slower or your home page won't stay what you set it and goes someplace unfamiliar to you. This is spyware. There are a whole SLEW of software packages out there to get rid of this crud and help prevent reinfection. Some of the products already mentioned might even have branched out into this arena. However, there are a few applications that seem to be the best at what they do, which is eradicating and immunizing your system from this crap. Strangely, the best products I have found in this category ARE generally free. That is a trend I like. I make donations to some of them, they deserve it! Two side-notes: Never think one of these can do the whole job. Try the first 5 before coming back and saying "That did not work!" Also, you can always visit: http://mvps.org/winhelp2002/unwanted.htm For more updated information. Spybot Search and Destroy (Free!) http://www.safer-networking.net/ Lavasoft AdAware (Free and up) http://www.lavasoft.de CWSShredder (Free!) http://www.spywareinfo.com/~merijn/downloads.html Hijack This! (Free) http://mjc1.com/mirror/hjt/ ( Tutorial: http://www.spywareinfo.com/~merijn/htlogtutorial.html ) SpywareBlaster (Free!) http://www.javacoolsoftware.com/ IE-SPYAD (Free!) http://www.staff.uiuc.edu/~ehowes/resource.htm ToolbarCop (Free!) http://www.mvps.org/sramesh2k/toolbarcop.htm Bazooka Adware and Spyware Scanner (Free!) http://www.kephyr.com/spywarescanner/index.html Browser Security Tests http://www.jasons-toolbox.com/BrowserSecurity/ The Cleaner (49.95 and up) http://www.moosoft.com/ That will clean up your machine of the spyware, given that you download and install several of them, update them regularly and scan with them when you update. Some (like SpywareBlaster and SpyBot Search and Destroy) have immunization features that will help you prevent your PC from being infected. Use these features! Unfortunately, although that will lessen your popups on the Internet/while you are online, it won't eliminate them. I have looked at a lot of options, seen a lot of them used in production with people who seem to attract popups like a plague, and I only have one suggestion that end up serving double duty (search engine and popup stopper in one): The Google Toolbar (Free!) http://toolbar.google.com/ Yeah - it adds a bar to your Internet Explorer - but its a useful one. You can search from there anytime with one of the best search engines on the planet (IMO.) And the fact it stops most popups - wow - BONUS! If you don't like that suggestion, then I am just going to say you go to www.google.com and search for other options. One more suggestion, although I will suggest this in a way later, is to disable your Windows Messenger service. This service is not used frequently (if at all) by the normal home user and in cooperation with a good firewall, is generally unnecessary. Microsoft has instructions on how to do this for Windows XP he http://www.microsoft.com/windowsxp/p...e/stopspam.asp UPDATES and PATCHES ------------------- This one is the most obvious. There is no perfect product and any company worth their salt will try to meet/exceed the needs of their customers and fix any problems they find along the way. I am not going to say Microsoft is the best company in the world about this but they do have an option available for you to use to keep your machine updated and patched from the problems and vulnerabilities (as well as product improvements in some cases) - and it's free to you. Windows Update http://windowsupdate.microsoft.com/ Go there and scan your machine for updates. Always get the critical ones as you see them. Write down the KB###### or Q###### you see when selecting the updates and if you have trouble over the next few days, go into your control panel (Add/Remove Programs), match up the latest numbers you downloaded recently (since you started noticing an issue) and uninstall them. If there was more than one (usually is), install them back one by one - with a few hours of use in between, to see if the problem returns. Yes - the process is not perfect (updating) and can cause trouble like I mentioned - but as you can see, the solution isn't that bad - and is MUCH better than the alternatives. (SASSER/BLASTER were SO preventable with just this step!) Windows is not the only product you likely have on your PC. The manufacturers of the other products usually have updates as well. New versions of almost everything come out all the time - some are free, some are pay - some you can only download if you are registered - but it is best to check. Just go to their web pages and look under their support and download sections. You also have hardware on your machine that requires drivers to interface with the operating system. You have a video card that allows you to see on your screen, a sound card that allows you to hear your PCs sound output and so on. Visit those manufacturer web sites for the latest downloadable drivers for your hardware/operating system. Always (IMO) get the manufacturers hardware driver over any Microsoft offers. On the Windows Update site I mentioned earlier, I suggest NOT getting their hardware drivers - no matter how tempting. Have I mentioned that Microsoft has some stuff to help secure your computer available to the end-user for free? This seems as good of a time as any. They have a CD you can order (it's free) that contain all of the Windows patches through October 2003 and some trial products as well that they released in February 2004. Yeah - it's a little behind now, but it's better than nothing (and used in coordination with the information in this post, well worth the purchase price..) Order the Windows Security Update CD http://www.microsoft.com/security/protect/cd/order.asp They also have a bunch of suggestions, some similar to these, on how to better protect your Windows system: Protect your PC http://www.microsoft.com/security/protect/ FIREWALL -------- Let's say you are up-to-date on the OS (operating system) and you have Windows XP.. You should at least turn on the built in firewall. That will do a lot to "hide" you from the random bad things flying around the Internet. Things like Sasser/Blaster enjoy just sitting out there in Cyberspace looking for an unprotected Windows Operating System and jumping on it, doing great damage in the process and then using that Unprotected OS to continue its dirty work of infecting others. If you have the Windows XP ICF turned on - default configuration - then they cannot see you! Think of it as Internet Stealth Mode at this point. It has other advantages, like actually locking the doors you didn't even (likely) know you had. Doing this is simple, the instructions you need to use your built in Windows XP firewall can be found he http://support.microsoft.com/?kbid=320855 If you read through that and look through the pages that are linked from it at the bottom of that page - I think you should have a firm grasp on the basics of the Windows XP Firewall as it is today. One thing to note RIGHT NOW - if you have AOL, you cannot use this nice firewall that came with your system. Thank AOL, not Microsoft. You HAVE to configure another one.. So we continue with our session on Firewalls... But let's say you DON'T have Windows XP - you have some other OS like Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in firewall. My suggestion - upgrade. My next suggestion - look through your options. There are lots of free and pay firewalls out there for home users. Yes - you will have to decide on your own which to get. Yes, you will have to learn (oh no!) to use these firewalls and configure them so they don't interfere with what you want to do while continuing to provide the security you desire. It's just like anything else you want to protect - you have to do something to protect it. Here are some suggested applications. A lot of people tout "ZoneAlarm" as being the best alternative to just using the Windows XP ICF, but truthfully - any of these alternatives are much better than the Windows XP ICF at what they do - because that is ALL they do. ZoneAlarm (Free and up) http://www.zonelabs.com/store/conten...eeDownload.jsp Kerio Personal Firewall (KPF) (Free and up) http://www.kerio.com/kpf_download.html Outpost Firewall from Agnitum (Free and up) http://www.agnitum.com/download/ Sygate Personal Firewall (Free and up) http://smb.sygate.com/buy/download_buy.htm Symantec's Norton Personal Firewall (~$25 and up) http://www.symantec.com/sabu/nis/npf/ BlackICE PC Protection ($39.95 and up) http://blackice.iss.net/ Tiny Personal Firewall (~$49.00 and up) http://www.tinysoftware.com/ That list is not complete, but they are good firewall options, every one of them. Visit the web pages, read up, ask around if you like - make a decision and go with some firewall, any firewall. Also, maintain it. Sometimes new holes are discovered in even the best of these products and patches are released from the company to remedy this problem. However, if you don't get the patches (check the manufacturer web page on occasion), then you may never know you have the problem and/or are being used through this weakness. Also, don't stack these things. Running more than one firewall will not make you safer - it would likely (in fact) negate some protection you gleamed from one or the other firewalls you ran together. ANTIVIRUS SOFTWARE ------------------ That's not all. That's one facet of a secure PC, but firewalls don't do everything. I saw one person posting on a newsgroup that "they had never had a virus and they never run any anti-virus software." Yep - I used to believe that way too - viruses were something everyone else seemed to get, were they just stupid? And for the average joe-user who is careful, uses their one-three family computers carefully, never opening unknown attachments, always visiting the same family safe web sites, never installing anything that did not come with their computer - maybe, just maybe they will never witness a virus. I, however, am a Network Systems Administrator. I see that AntiVirus software is an absolute necessity given how most people see their computer as a toy/tool and not something they should have to maintain and upkeep. After all, they were invented to make life easier, right - not add another task to your day. You can be as careful as you want - will the next person be as careful? Will someone send you unknowingly the email that erases all the pictures of your child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many flavors, it's like walking into a Jelly Belly store - which one tastes like what?! Well, here are a few choices for you. Some of these are free (isn't that nice?) and some are not. Is one better than the other - MAYBE. Symantec (Norton) AntiVirus (~$11 and up) http://www.symantec.com/ Kaspersky Anti-Virus (~$49.95 and up) http://www.kaspersky.com/products.html Panda Antivirus Titanium (~$39.95 and up) http://www.pandasoftware.com/ (Free Online Scanner: http://www.pandasoftware.com/activescan/) AVG 6.0 Anti-Virus System (Free and up) http://www.grisoft.com/ McAfee VirusScan (~$11 and up) http://www.mcafee.com/ AntiVir (Free and up) http://www.free-av.com/ avast! 4 (Free and up) http://www.avast.com/ Trend Micro (~$49.95 and up) http://www.trendmicro.com/ (Free Online Scanner: http://housecall.trendmicro.com/hous...start_corp.asp) RAV AntiVirus Online Virus Scan (Free!) http://www.ravantivirus.com/scan/ Did I mention you have to not only install this software, but also keep it updated? You do. Some of them (most) have automatic services to help you do this - I mean, it's not your job to keep up with the half-dozen or more new threats that come out daily, is it? Be sure to keep whichever one you choose up to date! SPAM EMAIL/JUNK MAIL -------------------- This one can get annoying, just like the rest. You get 50 emails in one sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well, although there are services out there to help you, some email servers/services that actually do lower your spam with features built into their servers - I still like the methods that let you be the end-decision maker on what is spam and what isn't. If these things worked perfectly, we wouldn't need people and then there would be no spam anyway - vicious circle, eh? Anyway - I have two products to suggest to you, look at them and see if either of them suite your needs. Again, if they don't, Google is free and available for your perusal. SpamBayes (Free!) http://spambayes.sourceforge.net/ Spamihilator (Free!) http://www.spamihilator.com/ As I said, those are not your only options, but are reliable ones I have seen function for hundreds+ people. DISABLE (Set to Manual) UNUSED SERVICE/STARTUP APPS --------------------------------------------------- I might get arguments on putting this one here, but it's my spill. There are lots of services on your PC that are probably turned on by default you don't use. Why have them on? Check out these web pages to see what all of the services you might find on your computer are and set them according to your personal needs. Be CAREFUL what you set to manual, and take heed and write down as you change things! Also, don't expect a large performance increase or anything - especially on todays 2+ GHz machines, however - I look at each service you set to manual as one less service you have to worry about someone exploiting. A year ago, I would have thought the Windows Messenger service to be pretty safe, now I recommend (with addition of a firewall) that most home users disable it! Yeah - this is another one you have to work for, but your computer may speed up and/or be more secure because you took the time. And if you document what you do as you do it, next time, it goes MUCH faster! (or if you have to go back and re-enable things..) Task List Programs http://www.answersthatwork.com/Taskl...s/tasklist.htm Black Viper's Service List and Opinions (XP) http://www.blackviper.com/WinXP/servicecfg.htm Processes in Windows NT/2000/XP http://www.reger24.de/prozesse/ There are also applications that AREN'T services that startup when you start up the computer/logon. One of the better description on how to handle these I have found he Startups http://www.pacs-portal.co.uk/startup_content.php That's it. A small booklet on how to keep your computer secure, clean of scum and more user friendly. I am SURE I missed something, almost as I am sure you won't read all of it (anyone for that matter.) However, I also know that someone who followed all of the advice above would also have less problems with their PC, less problems with viruses, less problems with spam, fewer problems with spyware and better performance than someone who didn't. Hope it helps. -- - Shenan - -- The information is provided "as is", it is suggested you research for yourself before you take any advice - you are the one ultimately responsible for your actions/problems/solutions. Know what you are getting into before you jump in with both feet. |
#85
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Officially, spyware is software that installs itself without your explicit
permission that tracks your usage habits, hijacks your web experience and/or force feeds advertisements. Adware, it's more 'legally acceptable' cousin, does the same thing, supposedly with your explicit permission if you take the time to read the fine print way down at the bottom of some massive disclosure page so full of legalese that you're nodding off..... you get the point. Unfortunately, contrary to the legalese, there's no telling what kind of information is being captured and sold to whom ever. To complicate matters, even for official 'adware', some else then has permission to throw their crap on your machine with out your explicit permission and so on. It becomes an avalanche. In both instances the user experience is typically degraded since you're being blasted with unwanted pop-ups and web page spawning. For dial-up users it's really bad. There is also the usual degradation, generally severe, of machine performance as well since now your entire machine has typically been hijacked just to shove advertisement at you rather than letting you do what you want with it. How you get it is typically through two general methods. One is via using published and patched security flaws in the system but that's more typical of the more nasty variations which officially places them in category of true malware. Most of the crapware comes from clicking seeming innocuous links that purport to 'tune your system', 'make browsing faster', offer financial rewards, etc. Typical snake oil stuff. Or in some instances a pop-up is presented with only one option and that is to accept the install (most people don't know that at that time the best thing is to simply use task manager and kill your web browser). The latter tends to be done by some of the more nasty varieties. -- Walter Clayton - MS MVP(WinXP) Associate Expert http://www.microsoft.com/windowsxp/expertzone Any technology distinguishable from magic is insufficiently advanced. http://www.dts-l.org http://support.microsoft.com/servicedesks/fileversion/default.asp| "Barbara" wrote in message ... I am a complete novice. Sorry to insult you other readers. But, what is spyware and how do you get it without installing it? |
#86
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
I ran Spybot S&D this evening and found alot of entries that needed
attention. I am experiencing problems now when I am logged on as administrator, in IE6SP1. I can no longer access the internet options and I get a restriction message. ("this operation has been cancelled due to restrictions in effect on this computer. " please contact your system admin. Problem is, I am logged on as system admin. I am running XP and have multipul user logons for several family members, including a user account for myself, so I'm not compromising security surfing logged on as an administrator. I have seen posts about this problem related to WIN2000, WIN95, etc..., but nothing for XP. Since alot of the solutions required registry changes, I wanted advice , If you can help, about what happened and how to fix it? "Chris Norred [MSFT]" wrote: Hello and welcome to our first Ask-the-Experts discussion, moderated by the Windows XP Expert Zone Community. This is a new trial effort and our goal is to make it easy for you to ask questions and find answers on a specific topic from a recognized expert in the online community. We’ll continue this discussion in the newsgroups for one week and our volunteer expert will select one or two questions each day and respond. Other experts and users online may also chime in with advice. At the end of the week, we hope to have a single thread filled with good information that can be preserved for the benefit of other users in the future. This week, our expert host is volunteer MVP Walter Clayton who will be discussing the topic of spyware and adware and his experience helping users in the newsgroups deal with spyware issues. Walter is an IT professional from Frankfort, Kentucky. He is a self-trained computing pro with 20 years of experience, and he has been helping people in the online community for many years. Walter is a recipient of the Microsoft Most Valuable Professional (MVP) award for his volunteer efforts helping Windows users over the past five years. A quote from Mr. Clayton: “I enjoy working the newsgroups because it forces me to think and learn. Everyday I get a slightly different perspective on something or see a new situation or problem. There is also the challenge of keeping communication skills sharp. Determining the answer to a problem, and communicating it in the newsgroups can present its own set of challenges, especially at times when the wrong answer can leave the user in a no-boot situation.” Our Ask the Experts discussion is different from the live chats hosted on the Windows XP Expert Zone Community site (http://communities2.microsoft.com/ho...iteid=34000077). In these discussions, you may not get an immediate answer. The hosts will check-in at a time convenient for them and answer questions. You can post a question any time. Then you may want to add the discussion to your Favorites list in Internet Explorer (Click Favorites, and then click Add to Favorites). You should check back later in the day, or the next day, to see if your question has been answered. Click the Refresh button to see if any new posts were added while you have been reading. If you’re more comfortable using Outlook Express or another newsreader, please do. To post a question or reply in this discussion, using the Web-based newsgroup reader: 1. Click Reply. 2. If prompted, sign in with your .NET Passport. 3. Edit the subject line if you like. 4. In the Reply form, type your message or question in the Message box. 5. Review the text you typed in the Body box to make sure it says what you want; you cannot revise your message after you click Post. 6. To receive e-mail notification when someone posts to this thread, select the Notify me of replies check box. 7. Click Send. This is a new trial effort and your feedback and assistance are appreciated. We’ll keep links to these discussions in the Windows XP Expert Zone Community Columns Archive (http://www.microsoft.com/windowsxp/e...s/archive.mspx). Truly Chris Norred Editor Windows XP Expert Zone Community |
#87
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Michael wrote:
I ran Spybot S&D this evening and found alot of entries that needed attention. I am experiencing problems now when I am logged on as administrator, in IE6SP1. I can no longer access the internet options and I get a restriction message. ("this operation has been cancelled due to restrictions in effect on this computer. " please contact your system admin. Problem is, I am logged on as system admin. I am running XP and have multipul user logons for several family members, including a user account for myself, so I'm not compromising security surfing logged on as an administrator. I have seen posts about this problem related to WIN2000, WIN95, etc..., but nothing for XP. Since alot of the solutions required registry changes, I wanted advice , If you can help, about what happened and how to fix it? If possible, use Spybot to identify the nasty program associated with this behavior and let us know. In the mant time, try these fixes. 1. Open Control Panel/Internet Options/Programs tab and click the Reset Web Settings button. Exit and start IE to check if the problem is fixed. If no joy, try this. 2. Go to Start / Run and type regedit and click OK. This will open the registry editor. Navigate to the following key: HKEY CURRENT USER\SOFTWARE\Policies\Microsoft\Internet Explorer\Restrictions In the right pane, check to see if the Nobrowseroptions entry exists. If so, right click the Nobrowseroptions entry, then click on delete and confirm that you want to delete it. Press the F5 key and close the registry editor. -- Ronnie Vernon Microsoft MVP Windows Shell/User |
#88
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
I want to take time to say thank you to Walter Clayton and all of the experts who've contributed to this thread for sharing their time and experience over the past couple weeks. Also, thank you to the less-experienced users who've posted their questions here. This was a trial effort in linking from the Windows XP Expert Zone Web site to a thread in the public newsgroups. You all have contributed a wealth of information about adware and spyware to this thread and we'll do our best to make it easy for users to find it. There was a lot of useful feedback for us to consider also. The discussion thread will continue as long as there is interest, of course, and we will continue to link to it from the Expert Zone Web site archives on Microsoft.com. - Chris Norred Editor Windows XP Expert Zone Community |
#89
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
Hi,
we have been dealing with all this malevolent code for years, so I can understand the scepticism of some people out there saying that the necessary tools exist and that whoever tries to keep their workstations and servers acap (as clean as possible) and up'n'running, would already have the skills to do so in an effective way, or would be able to. However, we also know that advertising is an evolving and very aggresive market, a multi-million business. So although I'm sure there are thousands of similar threads to be found around the net (threads where actual useful info is exchanged), it does strike me as odd that M$ would invest time and (H)R at this specific moment to state the obvious. I guess it won't be long before M$ incorporates spyware/malware removal tools in its OS'es, if only to prevent users from using freeware. Pun intended... Think of it what you will, I think all this time and effort is more wasted than anything else if M$ keeps clinging to it's well-known patching strategy. Windows has become so over-patched that you could put holes in it the size of Alaska that no-one would know (care?) about until some 15yr-old writes an exploit for it and some ceo's grandma complains about unwanted porn or spam... Still, we've ended up with a ring of trusted software and hardware companies, a kind of guild if you will, making sure that everyone gets paid at the end of the day, making sure that what is shall always be. The circle of life is complete. you spend your breath discussing the beast you have created and cannot kill because it feeds your kids and pays your wives. It's like mobsters complaining over a cappucino that they dislike the fraud and the killing... I think it better that you just mail a bill to all six-and-change billion of us, just tell us what we owe you and we will pay like the sheep that we are, but please stop acting like you actually care, because it's getting old. |
#90
|
|||
|
|||
Ask Windows XP Expert Walter Clayton About Spyware
lol wow are you a MAC user
"The Unknown P" wrote: How in God's name do you think this is going to differ from the numerous NG's and the posts pertaining to this topic. In short this is not only a waste of space but a little redundant as we have been dealing with thousands of questions pertaining to spyware\adware for years. If this supposed eXPert has anything to add he or she can feel free to answer the questions posted in any number of these NG's as the rest of us unrecognized or unheralded individuals do. Please don't go out of your way for us or the general public. Like any of the people who reply to these NG's it is at our conveniance and we certainly don't need your majesty to point this out to us. }:~) -- There are three types of people in computing, those that can count and those that can't. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
I click on my spyware exe and Windows begins to install Windows Office XP | Snapper | The Basics | 5 | July 22nd 04 02:56 PM |
I click on my spyware exe and Windows begins to install Windows Office XP | Snapper | The Basics | 2 | July 22nd 04 11:13 AM |
I click on my spyware exe and Windows begins to install Windows Office XP | Snapper | The Basics | 5 | July 22nd 04 10:09 AM |
How do I remove Spyware? | Julian Milano | General XP issues or comments | 7 | July 16th 04 08:20 PM |
How do I remove Spyware? | Julian Milano | General XP issues or comments | 5 | July 16th 04 04:18 PM |