Computer Support Forum

How to Protect yourself from malware!

Question: How to Protect yourself from malware!

Make sure you get your system protected from ocurrences of malware problems. Below are some simple steps you can take to reduce the chance of infection in the future. I strongly encourage you to do them all. There is no perfect solution for totally preventing malware from getting on your PC, however, these steps will help.

Please do not make the false assumption that this thread is old or out of date based on the date the thread was started ( 10-10-04 21:52 ). Look at the Last Edited date at the bottom of this message as this procedures does evolve with time.

IMPORTANT NOTE: It is getting more and more difficult to find real true freeware these days that does not include bundleware, toolbars...etc and junk you just don't want. Make sure you pay attention during installation of anything you download and read license agreements. Be sure to uncheck check boxes for the bundleware and toolbars where you can so that you opt out because the defaults are always to opt in.


1. Visit Windows Update: Make sure that you have all the Critical Updates recommended for your operating system and IE. The first defense against infection is a properly patched OS. For anyone who is not yet running at least Windows 7 (which you really should be running at a minimum if your PC supports it) see the below link before updating. Note: Windows XP is not longer supported by Microsoft and is hence a security risk.

Windows 7 Upgrade Advisor
You should check for Windows Updates at least once a month. Use the below procedure to get your updates or check to see if you need any:

Use your Start menu to check for updates. Windows Update is included in Control Panel. To check for updates:

Click the Start button, click All Programs, and then click Windows Update.



Note: If you have problems getting your Windows Updates, see if the below thread helps:

Help with Windows Update
VERY IMPORTANT NOTE:

Before you decide to skip getting your Windows Updates for whatever reason you think you have, make sure you read the below link and understand the possible risks to your security.

Cleaning a Compromised System


2. Anti Virus: make sure you have one and keep it updated. Here are some good free ones if you don't have one already:

AntiVir Personal Edition - for Win 2K/XP/ Vista 32bit and 64 bit
TIP: Installing Avira without the AskToolbar junkware. See https://www.raymond.cc/blog/disable-avira-searchfree-ask-com-toolbar-popup-nag-alert/

Avast! Home Edition - Be careful of the bundleware and make sure you opt out.
Comodo AntiVirus - for Windows XP (SP2) / Vista (32 and 64 bit versions)
WARNINGS:
Make sure that you choose custom installation and don't allow Comodo to install any other junk you don't want or need. Like Ask Toolbar, Geekbuddy......etc.
This includes both the a firewall and an antivirus. Do not install the firewall part if you already have a firewall.
PC Tools AntiVirus Free Edition - forWin 2K/03/XP/Vista
Microsoft Security Essentials - Choose the proper version for your version of Windows. Note to Win 8/8.1 users: It comes with Windows Defender preinstalled. This is both anntivirus and antispyware in this version. It will self disable if you install a 3rd party antivirus.
These are better than Symantec/Norton or McAfee because they are free and because they are not so system resource hungry. The recent versions of Symantec/Norton and McAfee have become very bloated. This does not mean they do not work. If you have either of them and are happy with it, stick with them. But whatever you choose remember to Only Run ONE AV! You can also find some additional antivirus programs here: AntiVirus Downloads These are not the only choices. There are many other commerical tools. Who is the best is an ever changing debate as performance tests performed one month will be different the next month.

3) Firewalls

A firewall is software or hardware that acts like a gate to help protect your computer against hackers and some computer viruses and worms that try to find unprotected computers that are connected to the Internet. This gate allows you to you to accept connections from sources you trust, and it keeps the gate closed for ones you don't trust. A firewall works by examining information coming from and going to the Internet. It identifies and blocks information that comes from a dangerous location or seems suspicious. If you set up your firewall properly, hackers searching for vulnerable computers cannot detect your computer (often referred to as a stealthed connection


There are two kinds of firewalls:
Hardware Firewall - normally built into a router if you use one. If you do have a router with a firewall, make sure you enable it. And also password protect your router, especially if it is a wireless router. Wireless routers can be less secure because they use radio frequencies to communicate with your PC. So if you use a wireless router, you can help enhance the security of your network by enabling the firewall and by requiring a password to connect to your network. Make sure you also enable encryption on your wireless network.
Software Firewall - special software that you must install. Use a software firewall even if you do have a hardware firewall. But only use one software firewall. Running multiple software firewalls is unnecessary and using more than one software firewall on the same connection could cause issues with connectivity to the Internet or other unexpected behavior.
If you don't have a Software Firewall, get one of these below. You can try the ones listed below. They are listed in an order of best to worst based upon leaktesting that has been perfomed by Matousec You will notice that the Windows XP SP2 is the worst performer on the list. I don't care if you're on dial up or High Speed....you must have a firewall or you can get infected faster than you can download any tools to fix your problems. If you use Vista, make sure you check for compatibility before choosing a firewall. The firewalls list with blue links are free, the ones in green are not free.

Comodo Personal Firewall
WARNINGS:
Ask Toolbar may be installed by default but you can uncheck this during the install or uninstall it anytime afterwards if you decide you do not want this feature later.
This includes both the a firewall and an antivirus. Do not install the antivirus part if you already have an antivirus.
Private Firewall - highly rated like Comodo. See that Matousec link above for test results.
Outpost Firewall Free
Outpost Firewall Pro - this version includes the below protection
Advanced firewall for secure connections
Antispyware to keep your PC spyware-free
Host protection to block zero-day threats
Web control to protect your PC from web-borne threat

Jetico Personal Firewall - shareware version
PC Tools Firewall Plus <-- make sure you uncheck the options to install Google Toolbar and Threatfire free edition. There's is no sense in installing excess baggage. NOTE: While this free firewall will still likely work and is better than the Windows firewall, it has recently (Aug 2010) been retired to be included in their pay internet security suite.

ZoneAlarm Pro - this is not the free version
Jetico Personal Firewall v.1 - free version
Kerio Personal Firewall
Sygate Personal Firewall Free <--- with the Symantec acquistion of Sygate, I do not know how much longer this will be around or be free!
ZoneAlarmFree - no longer supports Win9x or Me platforms. Also not very highly rated anymore. The new 7 version of Zone Alarm free includes Zone Alarm Security Suite, making the download larger then it used to be. Do not install the Security Suite. Also the free firewall now has some minor nag screens.
Filseclab Personal Firewall Professional Edition
Notes:
For Win XP SP2 users, after installing any of these firewalls, you must make sure to disable the firewall that is part of WinXP SP2. It is enabled by default, and it does not provide adequate protection and is only an incoming (uni-directional) firewall. Similar to antivirus applications, you must use only one software firewall. The information in the following will help you disable the firewall: Windows Firewall Some of the above firewalls may automatically disable the Windows firewall for you, but it is best to check for your self.
For additonal info about the problems with Windows XP SP2 firewall read these:
How Secure is Windows Firewall
Is Microsoft's Firewall Secure?
Windows Firewall Flaw may hide open ports
For Vista users, your built-in firewall is better than the one in XP but most still feel that it is not a adequate firewall and lacks certain capabilities.
We often get questions about testing your firewall for security and open ports. You can use sites like the below to do this:
http://www.hackerwatch.org/probe/
http://www.auditmypc.com/
http://www.grc.com/lt/leaktest.htm
http://www.pcflank.com/
http://www.personalfirewall.comodo.com/onlinetest.html

4) Get a Temp File/Cookies Cleaner

CCleaner
5) AntiSpyWare Tools


Three types of tools exist:

Realtime blocking (i.e. protection) tools that may also be a scanner and removal tool
after the fact scanner
non-realtime protection no scanner
Realtime blocking tools - pay tools and free tools - ONLY USE 1 REALTIME BLOCKER
Pay Tools

SUPERAntiSpyware - (recommended purchase) if you purchase this, you get protection. It will only be a scanner (see below) if you don't buy it.
Malwarebytes Anti-Malware - if you purchase this, you get protection. It will only be a scanner (see below) if you don't buy it.
Spyware Doctor - if you don't buy it, it will not fix anything
Free Tools

AntiVir Personal Edition - includes antispyware, anti-rootkit and more ( see: http://www.free-av.com/en/pages/6/comparative_chart.html ). Do not install another AV if using this.
Microsoft Security Essentials for Windows Vista\Windows 7/8 - includes antivirus and antispyware
Comodo AntiVirus + Firewall - Provides antivirus and firewall protection.
WARNINGS:
Ask Toolbar will be installed by default but you can uncheck this during the install or uninstall it anytime afterwards if you decide you do not want this feature later.
This includes both the a firewall and an antivirus. Do not install this if you already have an antivirus.
IObit Malware Fighter - free and provides realtime protection too. Supports Win 2000 thru Win 7. Be sure to unselect any additional addons during installation.
Microsoft Windows Defender - this version is only for Windows 2003, XP and is not highly recommended as protection and scanning is not adequate.
Windows Defender for Vista
For Vista, Windows Defender has been much improved ( but still not the best choice but better than none ) and may be a useful free alternative and it comes already installed. On many PCs it is enabled by default. On others it is disabled by default. This may be a matter of the country where the PC is purchased.

After the fact scanning tools

SUPERAntiSpyware - free version has no realtime protection but provides a useful scan/removal feature. See the below link for a comparison of the free and paid version which is recommended
http://www.superantispyware.com/superantispywarefreevspro.html

Malwarebytes Anti-Malware - free versions is only a scan/removal tool.
Non-realtime protection no scanner

SpyWare Blaster Install it, click Download Latest Protection Updates, Check for Updates, and then Enable All Protection, then exit. SpywareBlaster is not a malware scanner or removal tool and uses no system resources except a little disk space. It does a great job of preventing malware from being installed in the first place! It blocks the popular spyware ActiveX controls, and also prevents the installation of any of them from malicious websites.
What do we recommend for antispyware?

One realtime blocking tool from the list. Malwarebytes would be top of the list.
SpywareBlaster with all protection enabled.
IMPORTANT NOTEs:
Use only one realtime blocker - I do not recommend using multiple full blown blocker/scanner/removal tools (like IObit MalwareFighter, Malwarebytes, MS Windows Defender, SpySweeper, and SUPERAntiSpyware) at the same time as a long term solution. Doing that temporarily to clean a system is okay, but long term you may find that it slows your system down too much. It is okay to run one of these, along with the other items listed antivirus programs above because the others are not too resource hungry.
Beware of Rogue Tools - There are loads of bad (also called rogue) anti-spyware programs available out there. You should familiarize yourself with the list maintained at the Spyware Warrior website. See: Rogue/Suspect Anti-Spyware Products & Web Sites
6) Install a backup browser just incase you run into problems with Internet Explorer

Some malware can affect your browser's ability to connect to the internet. Since Internet Explorer is the built-in default browser for Windows, most people still have and use it. Thus it is the most likely candidate for being attacked by malware. At the current time ( Jan 2010 ), Internet Explorer is actually more secure than FireFox, Chrome, Opera and Safari. And IE8 does a better job at blocking malware too. In the past, people used to say use Firefox, it's safer, this was never really true, it just was not used as much as IE and therefore you saw fewer people taking time to hack it. And also, this is not the case anymore since Firefox's popularity grew. And it is infact along with Chrome, a reason why we frequently now have more people requests for help in malware removal forums. In addition, recent reports show Firefox to have a greater number of security holes than IE.


The above being said, it is still a good idea to have a couple alternative browsers installed for the case where one gets broken ( either due to malware or for other reasons ) and internet access may be blocked with one browser and not the other. A few choices that you may want to look at are included below:

Mozilla FireFox
Google Chrome
Opera
Apple Safari for Windows
You must also remember that no browser will protect you from yourself. If you access questionable sites, download illegal pirated or cracked software, keygens...etc or go to porn type websites then no browser will be secure enough.


7) Make sure you are running the current version of Sun Java

See this: Updating Sun Java
Make sure you check that you have the lastest version of Sun Java installed by clicking the link. If you have an older version, install the new version and then remove all old versions. It would also be a good idea empty the Sun Java cache periodically because many baddies will store themselves there.
8) Disable the AutoRuns Feature used to spread malware
See this tool: Autorun Eater - Note that some protection software may falsely detect this program as an infection. For example, Malwarebytes will detect it as a Trojan.Injector.OM. You need to add the C:\Program Files\Autorun Eater\oldmcdonald.exe ( for x 64 >> C:\Program Files (x86)\Autorun Eater\oldmcdonald.exe ) file
to the Ignorelist.-
​9) Use Passwords & Create Restricted User Accounts


All user accounts should have password protection. Especially on Win NT, 2K, XP, and 2003 systems. Make sure you do not leave the Administrator password account password blank. This is the default. Also it is a good idea to completely disable the Guest account. When you choose your passwords, choose them wisely. Do not make them too short and do not choose anything that would be easy to guess. Make sure you use a strong password. This logic applies to everything you password protect. See the below link:

Create Strong Passwords
When creating user accounts on WinNT, 2K, XP, and 2003 systems, it would be a good idea to only have one account with administrator priviledges. Create all other user accounts as restricted users. Especially for your children. This will prevent them from installing anything that you do not approve and install for them. It will also save you a lot of time cleaning up the mess that will occur when they have unrestricted access to the PC.

It the most secure option would be to never surf the internet on an account having administrator priviledges, but doing this will cause certain difficulties for some people.


10) Security starts with you! Becareful what you download and from where!

There are loads of free programs and services out there that people just love to download from. These are programs like BitTorrent, uTorrent, Kazaa, Imesh, etc. They quite often come bundled with lots of malware that will cause you significant problems. Misconfiguring these programs can leave you open to sharing personal and sensitive information from your PC (even passwords and financial information). See the below on risks of identity theft:
http://www.consumer.ftc.gov/articles/0016-p2p-file-sharing-risks

You are downloading unknown/untested files which may be infected from unknown sources directly onto your PC and while these programs are running you are sharing your PC with the whole world since these programs will allow others access to your PC bypassing the firewall and other security programs. I strongly advise avoiding these programs and servers completely.

Avoid installing services and applications which you do not use in your normal daily routines. It is not necessary for them to be loaded all the time. The above P2P programs are a great example of this. Many programs that autoload at startup can just be run on an as needed basis.
Also it should go without saying but....avoid the porn sites! They are notorious spreaders of more than one kind of smut. In addition many porn (and some non-porn) sites that have various forms of videos that they are trying to get you to watch online or download and watch, are causing vast amounts of people to become infected. These infections typically occur because the trick you into downloading a codec required (supposedly) to view the videos. What you normally wind up with is an infection that is grouped into the SmitFraud aka Zlob family of infections! Thus, DO NOT DOWNLOAD CODECS from anywhere except from a reputable site like Major Geeks!
Don't download cracks, serial numbers, cheats etc for commercial programs. Besides being illegal, you will often find you are getting more than you bargained for (i.e. malware!!!!).
Also be very careful to read popups before clicking on them. You probably do not want what they are selling and sometimes the correct answer may be the opposite of what you think. They will choose wording meant to confuse you.
Do not open e-mails coming from unknown or distrusted sources. Many viruses and trojans spread via e-mail messages. You can always check with the originator to see if they sent something to you.
Especially be careful with attachments. Do not open the attachments of messages with a suspicious or unexpected subject. If you want to open them, first save them to your hard disk and scan them with an updated antivirus program.
Delete any chain e-mails or unwanted messages. Do not forward them or reply to their senders. This kind of messages is considered spam, because it is undesired and unsolicited and it congests the Internet even more than it already is. If you respond to their email where it says something like to be removed from our list, all you are doing is confirming your email address is valid and you just got yourself added to a load more spamming lists.
Never add any site to your Trusted Sites Zone unless it is absolutely necessary to run something you really need (like for work).
Finally, when installing any software, read the license agreement carefully before accepting. You may be surprised what you will find. Like thousands of people who had to have LOP infections and other malware removed from their PCs who did not read the license agreement in Messenger Plus (which is not related to Microsoft). Also make sure that you do not accept to install any &quot;optional software&quot; like toolbars or similar that frequently are package with free software. This is a common practice these days. Even antivirus/antispyware programs have the &quot;optional&quot; programs packaged into the installers and you have to read the info that comes up and tell it not to install them because the defaults are always to install.
11) The True Story About Cookies!
First let's get right to the point. Cookies are not problems that you need to be concerned with. Too many antispyware programs flag cookies and make them sound like they are high risk items. The truth is that they are not high risk problems and in most cases are actually very useful to you.
​This subject has long been debated on the internet and obviously there are many opinions about cookies. Cookies are not executable programs. They are simple text files stored on your PC to help websites (and you) track useful user settings and non-personal information, like which advertisement you last saw (which prevents you from seeing the same ad over and over again).
​Yes some cookies are often referred to tracking cookies, but tracking is more complicated then just having a cookie. Every website you visit would have to have knowledge of the particular cookie so that they could use it to add tracking info to it and to make use of it. You will see many antispyware programs indicating various cookies as tracking cookies and this can artifically make detection counts look very high. It is also a sore point when doing comparisons between antispyware programs. If one program detects cookies and another does not, it can make the one that does not detect them look like it is doing a bad job.
​Similarly it makes the one detecting them look like a great product since it picks up things the other missed. Thus most (not all) programs will detect cookies to avoid this hazard. Don't be fooled by cookie counting. If cookies are the only thing showing up, you are in good shape. They are not harmful and you can just ignore them or if so desired, you can easily clean them using your browser or other tools like CCleaner.
​12) What to do if you do get infected!
If you still get an infection or already have one, you should follow the procedure given here READ & RUN ME FIRST. Malware Removal Guide . If this does not fix your malware problems then follow the instructions in the READ & RUN ME and create a new thread in the Malware Forum requesting help. Be sure to attach all of the logs requested in the READ & RUN ME and clearly explain your remaining problems.
13) How often should you run scans?
A very common question is how often should I run scans. A good rule of thumb would be to run full scans at least twice a month. If you do an excessive amount of surfing and downloading (especially P2P or torrent downloading) you may want to make it a weekly scan.
​If twice a month is too much for your schedule then at a minimum you really should complete full scans once a month. And make absolutely sure that you keep all of your protection software up to date. Some scanners update multiple times per day so you should always update before running a scan.
​14) Miscellaneous Tips
Keep System Restore Enabled: Do not permanently disable System Restore. Many people do this and lose the safety net that it provides. It just could be the thing that saves you from having to do a total reinstall.
User Account Names: Since many people are sensitive about their real names being seen in logs (although we do not consider it an issue), it would be a good idea to not use your real names on user accounts you create on your PC. Also it is a good idea to not use spaces or special characters (like & or others) in your account names. And use separate accounts for each user. Do not use combined accounts. For example, Kathy & Jim should have separate user accounts named Kathy and Jim And My User Account should be MyUserAccount
Use Restricted User Accounts to Surf: It is highly recommended that you only use a Restricted User account ( note in Windows XP these are called Limited User accounts and in Vista they are called Standard User accounts ) while surfing the internet. This can help to keep certain malware infections off your PC since they may require admin level priviledges to do their dirty work. Some people find using restricted accounts full time to be too much of an annoyance. You can safely surf using an Admin account if you practice safe surfing, but many people are their own worst enemies and should really consider using Restricted User accounts.
In line with # 3 above, don't give administrator priviledges to all user accounts. Have one user account ( the most knowledgable and reasonsible person ) be the administrator to keep tabs on what is being installed and used on the PC.
[FONT=arial,sans-serif]Avoid Making Online Purchases On Public Computers - A hacker or thief can easily put a keylogger on a public computer that allows them to know everything you've typed including your credit card numbers and passwords. Stay away from public access computers when doing online shopping! [/FONT]
[FONT=arial,sans-serif]Don't Save Your Credit Card Numbers Online - Many reputable sites give you the option to save credit card numbers online to make future purchases easy. However, if the company's database is ever successfully hacked, your information could be exposed. It's safer to re-enter your numbers with each transaction. After all what is more important to you, you financial security or saving a little bit of time typing. [/FONT]
If you have Bluetooth software loading and Bluetooth is not required for mobile devices, it should be turned off. If you require its use, make sure that the device's visibility is set to Hidden so that it cannot be scanned by other Bluetooth devices. If device pairing must be used, make sure that all devices are set to Unauthorized, requiring authorization for each connection request. Do not accept applications that are unsigned or sent from unknown sources.

More replies
Relevance 100%
Preferred Solution: How to Protect yourself from malware!

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Relevance 52.48%

Ok this is weird. I run Ntl netguard, and Spyware Doctor. A few days ago, SpyDoc refused to auto update. Nothing strange thought I, site must be down.

Well its been four days now. Then I noticed I couldn't connect to Microsoft to do updates either. On further investigation, I found I can't connect to ANY legit malware sites. I have run Spybot, Ntl netguard, Malware Byte's anti malware, and Norton AV, none found anything wrong.

However, I tried setting up a proxy within Firefox, and CAN connect to the sites I couldn't otherwise. (albeit incredibly slowly).

As things stand, I can't update any malware software, and assume my poor PC must have caught something new and nasty.

Please help

Hi jack this follows:-

Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10:08, on 19/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ntl\ntl Netguard\fws.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Command Software\dvpapi.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterSer... Read more

Answer:Help Pls! Can't update Malware Protect or Visit Any Malware Sites

sorry, bump
 

2 more replies
Relevance 48.79%

How would you protect yourself from a fud?
 

Answer:How to protect yourself from a FUD malware?

LukeNukesEm said:





How would you protect yourself from a fud?Click to expand...

Supplement your security with something besides signatures.
 

34 more replies
Relevance 48.79%

Something (Malware ? ?) locked up my PC (Windows XP). I got a pop up message that my PC was infected and click "yes" to buy an AV program. I did not click "Yes", but every program I tried to run came up with the same message. I took it where I bought it and they fixed it by cleaning my hard drive and re-loading my OS. Fortunately, I had BU'd my personal files. They called the problem an "intercept". Norton AV did not catch it. They also loaded "Malwarebytes" for me.

What is the best way to protect for this kind of problem ?
 

Answer:How to protect against Malware ?

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide


and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.


After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 48.79%

i Just bought a new PC. i have a couple questions from the 'How to protect yourself from malware' thread.

My Pc is running windows 7.

In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.

In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?

In the disable the autoruns feature there is no update for windows 7?
 

Answer:How to protect yourself from Malware

avilo4u said:





In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.Click to expand...

While the Windows 7 firewall is better than what was in previous versions of Windows, it is still very inadequate.





avilo4u said:





In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?Click to expand...

No! MSE is and antivirus and antispyware. So is Avast. You can only have one of them installed.





avilo4u said:





In the disable the autoruns feature there is no update for windows 7?Click to expand...

Microsoft has never updated their info ( from here http://support.microsoft.com/kb/967715 ) for Windows 7 so I'm not sure if everything that is used for Vista would apply.

You can just run this >> Autorun Eater
 

6 more replies
Relevance 48.38%

Hi. I am rather a person with basic knowledge about computers so don?t be surprised if my question will sound stupid to you.
I have a Windows PC and I often use my thumb drive to print some documents in my university. I?m afraid that it will become infected someday so I thought it would be a good idea to use it only with Puppy Linux when I'm at home. This is why I made my thumb drive a bootable one with Puppy on board. What I want to do is to boot to Puppy, copy the files I need to print or use at the university to the USB drive, then close the system and disconnect the USB drive. To be clear, only one USB stick is involved in this process (Puppy and data are on the same USB stick). Would that prevent infecting my Windows PC? If not then how can I avoid viruses spreading through USB? Can malware do any harm to Windows OS when Puppy is booting?
 

Answer:Can puppy protect me from malware?

Good idea if I understood correctly
 

7 more replies
Relevance 48.38%

We maintain several PCs from a library, a research lab for students in a university. Just recently bunch of malwares swarm inside the lab and nearly affected all the machines. Most of these malwares are being imported from student's flash drives in which they're freely allowed to plug on the PC's. So cleaning the infections was really tedious. We cloned the drives and some were fixed using anti-malware softwares. 
 
Each computer is running a Microsoft Security Essentials for virus protection, and that's it.

Our main problem is, how should we setup each PCs so that we can prevent those viruses from porting inside the system? Is there any particular software or windows configurations that can offer such functionality? MSE merely detects all these viruses and most of it already infiltrated the system and removing each as I said is very tedious and time consuming.
Maybe you guys got some efficient workarounds with this type of predicament.NOTE:
All PCs have the same hardware and uses Windows 7 32bit.
 

Answer:How to protect PCs from USB-malware carriers?

Simple, look at:
 
http://www.bleepingcomputer.com/forums/t/541639/security-suggestions-post-3-of-7/
 
Have a great day!

 

11 more replies
Relevance 48.38%

I continue to get the "SysProtect" download window on both I.E. and Mozilla. Followed your steps listed to clean my system, but same "Virtumonde" files appear each time I run Ad-Aware. Here is the Hi-Jack this log (after running Ad-Aware, see end of log for HijackThis log generated after restarting computer w/o running Ad-Aware):Logfile of HijackThis v1.99.1Scan saved at 9:48:28 PM, on 5/18/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeC:\Program Files\Norton AntiVirus\navapsvc.exeC:\Program Files\Norton AntiVirus\IWP\NPFMntor.exeC:\WINDOWS\System3... Read more

Answer:Malware - Virtumonde & Sys Protect?

Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order in which they are mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes.Step #1Scan again with HijackThis and check the following items:R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.comR3 - URLSearchHook: (no name) - ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)O2 - BHO: WTLHelper Object - {6D33B121-5C4C-4450-9D1F-7B67085CC199} - C:\WINDOWS\system32\jkhhe.dllO20 - Winlogon Notify: jkhhe - C:\WINDOWS\system32\jkhhe.dllAfter checking these items, close all browser windows except HijackThis and click "Fix checked".Step #2Please download VundoFix.exe to your desktop.Double-click VundoFix.exe to run it.Put a check next to Run VundoFix as a task.You will receive a message saying vundofix will close and re-open in a minute or less. Click OKWhen VundoFix re-opens, click the Scan for Vundo button.Once it's done scanning, click the Remove Vundo button.You will receive a prompt asking if you want to remove the files, click YESOnce you click yes, your desktop will go blank as it starts removing Vundo.When completed, it will prompt that it will shutdown your computer, click OK.Turn your computer back on.Please go HERE to run Panda's ActiveScanOnce you are on the Panda site click the ... Read more

7 more replies
Relevance 48.38%

Hello - First, let me say thank you for helping me rectify a really poor choicesof opening software I wasn't 100% certain was verifiable. As a result I have the Virust Protect Pro problem (at a miniumum) which seems to tie up my machine a lot and causes problems with my wireless network adapter. I have used Spybot and Adware to no avail. I've copied and pasted the Hijack This log below and won't make any changes until I hear from you.
With great thanks for your help!
K

Logfile of HijackThis v1.99.1
Scan saved at 3:52:29 PM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program F... Read more

More replies
Relevance 48.38%

I have read this threadhttp://forums.majorgeeks.com/showthread.php?t=44525 and i am paying particular attention to #5 AntiSpyWare Tools, and it states ONLY USE 1 REALTIME BLOCKER So my question is, i use ESET'S nod32 Antivirus to protect my machine, but it has antispyware protection included. I also have Malwarebytes Pro providing real time blocking, so am i in effect useing more then 1 realtime blocker? If so what do i do about that? I paid for Malwarebytes Pro, not using it will defeat it's purpose and be considered a waste of money!
 

Answer:How to Protect yourself from malware Thread

You;re fine. One AV only, but you can have more than one AS (Anti-spyware ).
 

3 more replies
Relevance 48.38%

Hello,

Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.

Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.

Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.

Thanks.
 

Answer:How to protect yourself from malware (for Vista)

ablaze said:





Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.Click to expand...

It was not written for Win XP. It is for all versions of Windows althoough obviously there is more in there that relates to WinXP and older since they have been around longer.





ablaze said:





Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.Click to expand...

You should ask in the Software Forum. But reviews of AVs are typically out of date by the time they are published. This happens because many programs update 3 to 5 times per day and even just one update can drastically improve or reduce an AVs test score.





ablaze said:





Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.Click to expand...

You are not comparing apples to apples. Avast is just an antivirus. Comodo Internet Security includes all of the below:

firewall
antivirus
Host Intrusion Protection System (HIPS)
BOClean Anti-Malware is not being included in CIS

 

3 more replies
Relevance 47.56%

I have somehow acquired some malware titled system tool protect your pc. It comes up randomly, asks if I want to scan, says I have over 800 Infections, and constantly prompts me to sign up for it to erase my viruses. I know this is malware, and I aquired it after my Norton expired. How can I remove it? Thank you!

I am using a Hp Pavilion Vista.
 

Answer:System Tool Protect your pc (malware)

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide


and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.


After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 47.56%

I just got my degree and have not been able to find work so I can only thank all the people at MajorGeeks.
I am 'Gunk Free' but was reading the chaslang's post "dated 10-10-04, 21:52, How to Protect yourself from malware! - MajorGeeks Support Forums"; and under the firewalls to use "Outpost Firewall Free" is listed when I went to download it, it is Dated: 2009-05-08 is it still a good firewall to use?
Thank you in advance for your help.

At a point in time I was 01 of them that understood some binary.
 

Answer:How to Protect yourself from malware! post question

Yes, it is still a good firewall. Just make sure you keep it updated as you would with all other protection software.
 

1 more replies
Relevance 47.56%

Hey!
I am a web designer and I just got permission to work from home for the next week. I am allowed to take my work laptop home for it. I would like some advice regarding the security concerns before I start the work.
I have heard about spyware and malware attacks that can cause severe loss of data. I don't want such things happening to me in my work system. As of now it's clean and no malicious files are present in the system. It's installed with Kaspersky Internet Security and ExpressVPN when connecting to the Internet. Will it help in protection from spyware and malware? I have seen articles mentioning not clicking on emails and installing antivirus softwares will help, but still I have heard a lot about such attacks. What else can I do to ensure nothing harmful will happen?
 

Answer:Will Kaspersky and VPN protect from malware attacks?

It being a work laptop, you shouldn't replace any of the pre-installed software, correct?
 

3 more replies
Relevance 47.56%

Hello,
My son went to an untrusted site and the computer was infected with the conduit searchprotect.  I tried removing it with Eset Home Security.
 
However, my PC is still acting strange. I think the internet is a bit slower. As well, when I try to run some .exe files, such as Eset's ERARemover tool, windows gives me an error "this app can't run on your PC".  I have windows 8.1 64-bit and have tried both 32bit and 64bit programs.
 
I can't attach a DDS log because it's now win8.1 compatible.
 
thanks.

Answer:Conduit Search Protect and other malware?

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===These tools are compatible with your operating system.Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed by click... Read more

8 more replies
Relevance 47.56%

If I visit a malware site with latest version of Firefox with the NoScript extension without allowing any scripts, whats the chance of me getting infected if I don't download anything?
 
Also, I hope this is the right place to post this.

Answer:Will using NoScript protect you from a malware site if..?

COPIED FROM NoScript:
The NoScript Firefox extension provides extra protection for Firefox, Seamonkey and other mozilla-based browsers: this free, open source add-on allows JavaScript, Java, Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank).
NoScript also provides the most powerful anti-XSS and anti-Clickjacking protection ever available in a browser.
NoScript's unique whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known and even not known yet!) with no loss of functionality...
You can enable JavaScript, Java and plugin execution for sites you trust with a simple left-click on the NoScript status bar icon (look at the picture), or using the contextual menu, for easier operation in popup statusbar-less windows.Watch the "Block scripts in Firefox" video by cnet.
 
If I were using Windows and could only have one security program/ add-on....it would be NoScript. I use it in Ubuntu, too.
There is a learning curve. It is not just install and forget. Install it and go to a popular site and then view all the scripts you never knew
were active on that site and are now blocked from running. You can click to allow just the site's scripting and still block all the others.
The ones that you want to play videos on will be one that you will spend the most time learning which script to allow only the videos to play.

11 more replies
Relevance 47.56%

Topic title pretty much says it all. How can i prevent hijacking of my browser or even worse my entire computer? Last night i made a stupid move and attempted to download something off Pirate Bay, i read the comments and it looked legit. Since i didn't have a software that downloads the torrent i clicked on whichever one Pirate Bay offered me. The software was successfully installed and was downloading the program but it froze the halfway and my google chrome completely stopped working, Later on i found out that Conduit is a malware that sometimes installs itself without the user's permission and takes over the browser. Now i'm paranoid about downloading anything. By the way i have a supposedly good anti-virus : Bitdefender for which i paid good money! Very disappointed that it pretty much welcomed the bad malware with open hands and allowed it install itself. 

Answer:How to protect your computer from malware like CONDUIT??

attempted to download something off Pirate Bay : < Anything off these Torrents sites is 50 to 90% infected and not usually legalWinPatrol Free is one of the better programs to warn you if there is going to be an attempt to change your Home Page. This may help after you do a full scan with your Antivirus -Please download AdwCleaner by Xplode onto your desktop.*Close all open programs and internet browsers.*Double click on adwcleaner.exe to run the tool.*Click on Delete.*Confirm each time with Ok.*Your computer will be rebooted automatically. A text file will open after the restart.*Please post the contents of that logfile with your next reply.*You can find the logfile at C:\AdwCleaner[S1].txt as well.  Thank You -  

1 more replies
Relevance 47.56%

QUESTION _Sticky:" How to Protect yourself from malware! "

In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?

Thanks!


"6) Adjust Active X security settings

* In Internet Explorer, click Tools, Internet Options, Security. Click on the Internet globe. Then select Default Level, then click OK. Now select Custom Level and scroll down to the ActiveX controls and plug-ins section (some may already be set correctly):
o Set Download signed Active X controls to Prompt
o Set Download unsigned Active X controls to Disable
o Set Initialize and Script ActiveX controls not marked as safe to Disable
o Set Installation of desktop items to Prompt
o Set Launching programs and files in an IFRAME to Prompt
o Set Navigate sub-frames across different domains to Prompt
o Set Allow paste operations via script to Disable (see: http://support.microsoft.com/kb/224993 )
o Click OK and OK again. "
 

Answer:QUESTION _Sticky: How to Protect yourself from malware!

Re: QUESTION _Sticky:" How to Protect yourself from malware! "



jilter said:





In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?Click to expand...

Yes! Some applications will automatically launch IE sessions since that may be all the can use. Also you need to use IE to be able to get all of your Windows Updates. And some websites (just like some applications) do require IE.
 

1 more replies
Relevance 47.56%

Malware Protection is a rogue anti-virus application that runs a fake system scan and then concludes that your computer has a malware infection or serious security/privacy issues. To fix the malware infection you must pay a fee, about $50. The rogue program copies user interface elements from real programs and it looks like a legitimate application. Plenty of people shell out $50 to register this fraud and that's a big problem because if you're transacting with these guys online you're offering them your credit card details. Cyber criminals can later user that information to their benefit. You should protect yourself with common sense and legitimate anti-virus software because such fake anti-virus applications as Malware Protection now represent about 20% of all malware in circulation. If you made a mistake and purchased it, please contact your credit card company and dispute the charges. And if you still have this fake AV on your computer, please follow the removal instructions below to remove Malware Protection and related malware for free.

Manual Malware Protection removal instructions:

1. Right click on the "Malware Protection" icon, click Properties in the drop-down menu, then click the Shortcut tab.

The location of the malware is in the Target box.

NOTE: by default, Application Data folder is hidden. Malware files are hidden as well. To see hidden files and folders, please read Show Hidden Files and Folders in Windows.

Under the Hidden f... Read more

Answer:How to protect and clean your computer from malware

Is this a removal guide for this rogue or ?

 

1 more replies
Relevance 47.56%

Microsoft said:

A view of the current landscape
Criminal attacks continue to evolve and malware has become their standard weapon against anyone who uses the Internet?on traditional form-factor devices, as well as on mobile devices like tablets and phones. Malware targets all operating systems and browsers, and in recent years, criminal attacks against applications have increased substantially.

Criminals also use social engineering to trick you into performing actions that put you at risk. An increasingly common social engineering strategy uses online advertising campaigns to lure you to a site that installs malware on your computer.

An economy has developed around building reliable vulnerability exploits, which criminals buy to help distribute their malware. Criminals make money from their malware, so they invest in ways to keep it alive such as producing a higher quantity of malware, updating it more frequently?e.g. multiples times each day?and increasing its size and complexity. Some malware is as complex as commercial applications.

Secure by design
We use the Security Development Lifecycle (SDL) to build Windows with the best security design, development and testing practices available. Some highlights include:
Threat modeling and security design reviews. During the design process we consider how criminals might seek to attack features and scenarios, and incorporate this analysis into our designs.
Writing secure code. Training and code quality tools help to pre... Read more

Answer:Windows 8 will better protect users from malware

Well its like malware writers would take time to discuss how they will bypass those features. Its like Windows 8 were built in security and could led to few vulnerability probably.
 

6 more replies
Relevance 47.56%

Hello,I recently managed to aquire a virus that seems to have taken over my computer. There's a bar that appears right below the address bar for internet explorer telling me to download the latest antispyware to protect my computer. I cannot pull up my Task Manager, my computer prompts me that it has been disabled by my administrator. My desktop background has been changed to a message stating the computer has several fatal errors. and occasionally music will play at random that i've never heard before.here is my log:Deckard's System Scanner v20071014.68Run by Josh UWL on 2008-04-09 16:35:51Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --49: 2008-04-09 21:36:32 UTC - RP521 - Deckard's System Scanner Restore Point48: 2008-04-08 16:12:26 UTC - RP520 - Restore Operation47: 2008-04-08 16:08:59 UTC - RP519 - Last known good configuration46: 2008-04-08 16:08:42 UTC - RP518 - Restore Operation45: 2008-04-08 16:08:41 UTC - RP517 - Last known good configuration-- First Restore Point -- 1: 2008-04-08 16:08:11 UTC - RP473 - System CheckpointBacked up registry hives.Performed disk cleanup.Percentage of Memory in Use: 85% (more than 75%).Total Physical Memory: 447 MiB (512 MiB recommended).-- HijackThis Clone --------------------------------------------------... Read more

Answer:Protect.antivirus Malware Infection

Hi and welcome to Bleeping Computer! My name is Sam and I will be helping you. Please download ComboFix and save it to your desktop.Prior to running Combofix.exe you should disable your antivirus program and disconnect from the internet.Double click combofix.exe and follow the prompts.When it's done running it will produce a log for you. Please post that log in your next reply.Important Note - Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

10 more replies
Relevance 47.56%

I am getting three screens that come up when ever I try to do work on any program. (1) Windows Security alert (2) Spyware Protect 2009 alert (3) Spyware Alert

DDS (Ver_09-02-01.01) - NTFSx86
Run by Kim at 10:54:20.07 on Thu 02/19/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2430.1853 [GMT -5:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)

============== Running Processes ===============

J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
J:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
J:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\WINDOWS\system32\spoolsv.exe
J:\Program Files\McAfee.com\Agent\mcagent.exe
J:\WINDOWS\svcho.exe
J:\Program Files\AIM6\aim6.exe
J:\Program Files\Windows Live\Messenger\msnmsgr.exe
J:\Program Files\Messenger\msmsgs.exe
J:\WINDOWS\sysguard.exe
J:\Program Files\AIM6\aolsoftware.exe
J:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
j:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
j:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
J:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
J:\Program Files&... Read more

Answer:Spyware Protect 2009 malware

Hi,

Sorry for delayed response. Forums have been really busy. If you still need help with this post a fresh dds log, please.

2 more replies
Relevance 47.56%

Will Ad-Aware only detect the malware in its definitions during a scan, or does it also prevent it from being installed on your computer in the first place? What about A2? Many thanks. - Tye

Answer:Does Ad-Aware protect your computer from malware?

No on both counts. Try Spywareblaster click here

3 more replies
Relevance 47.56%

hello friends-i hope my title makes some sense. i wanted it to convey what i was asking about so people browsing could tell. cuz i couldn't find a question like mine.

i have a new hd completely installed and setup. my old hard drive is now the secondary master and although i still have the OS and programs installed, i never use it. lately i have been actively file-sharing via lime wire. i am behind a zone alarm firewall and running spyware blaster and AVG free. i also regularly scan with spybot S&D. i also scan each file with AVG b4 opening (thanks to majorgeeks for advising me on security)
however, i've been warned the limewire is notoriously risky as far as spyware etc. so my question is:

If i choose to open my secondary OS at start up, and browse and download these risky files to my secondary HD. will that protect my primary HD from infection?

if not, any other advice u have regarding the risks of file sharing are appreciated.

one thing i look out for is files that are too small to contain what they say they do. for example 100kb song files. i just dont download these.
 

Answer:2nd HD for dwnlds/protect primary from malware?

IMHO, I keep an operating system and a backup drive, without an operating system. Just put it on the same cable as primary slave. Frankly, if you are not dual booting 2 operating systems, theres no need to keep them both installed. That said, no any files on a second drive can, and probably will, affect the main drive, in your case, probably infect both drives. A drive formatted without an operating system for backup should be safe from virus and spyware infections, but can affect the other drive, in other words. Having that second drive is great for backups of important data in case of a need to format. I love having my spare drive. Your also correct about Limewire, but it is not specific to Limewire. Any file sharing application is a risk.

Did I answer what you needed?
 

2 more replies
Relevance 47.56%

If you know about security in website and computer then tell me how to secure Website from Malware Attack. And what is the role of Google Webmaster in security purpose?
 

More replies
Relevance 47.15%

To start let me thank you for putting all these great programs in one easy to download area! Just following this guide has cleaned out several items from my supposedly secure system.

I did find one broken link however and got lost going through the giant comodo forum trying to find another thread with a similar ease of use allure.

This one: Configuring CIS for Maximum Security with ZERO Alerts for Novices

If you could give me an updated link it would be much appreciated.
 

Answer:Broken link in: Sticky How to Protect yourself from malware!

Thank you for bringing it to our attention. We will see what can be done to fix that issue.
 

2 more replies
Relevance 47.15%

My computer is infected with a malware program called "Spyware Protect 2009" how do I get rid of it? I followed instructions and have copied DDS and Attach files below. popup windows keep appearing saying my computer is infected with a virus and I need to install their software.
DDS (Ver_09-03-16.01) - NTFSx86
Run by John Schlatterer at 2:44:20.15 on Mon 03/16/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.254.96 [GMT -4:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)
FW: McAfee Personal Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe
C:\WINDOWS\kdx\KHost.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
C:\Program Files&... Read more

Answer:remove malware, Spyware Protect 2009

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No input is needed, the scan is running.Notepad will open with the results, click no to the Optional_ScanFollow the instructions that pop up for posting the results.Close the program window, and delete the program from your desktop.Please note: You may have to disable any scri... Read more

2 more replies
Relevance 47.15%

I finally found a fix to the malware the the Virus Protect Pro created and it cleaned out everything. The free software (to use and clean) is called Super AntiSpyware (that's quite some name) and you can download the free home version at http://www.superantispyware.com/superantispywarefreevspro.html
I'm going over there now to donate some money as it was my stupidity that had me lose about 6 hours trying to fix what I did. It's always nice to find a hero.

With blessings for a great day.
K
 

More replies
Relevance 47.15%

> I am  using sify ISP with limited data tarnsfer package.>My ISP is showing that i have downloaded 1200 MB which is not true.>I did'nt turned  on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days>I think some one has hacked my system.So i am requesting you to tell the best way to protect my system from malware and internetThanks in advace.

Answer:Best way and best software to protect my system from malware and Internet?

Before anyone tells you that,   it may be that someone connected to your internet connection, via wireless?How are you connected to the internet?Because if your computer was off on those dates, even if a hacker got into the system the computer needs a physical connection to the internet, while the computer is off, there is no way of obtaining an internet connection.

3 more replies
Relevance 47.15%

> I am using sify ISP with limited data tarnsfer package.
>My ISP is showing that i have downloaded 1200 MB which is not true.
>I did'nt turned on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days
>I think some one has hacked my system.
So i am requesting you to tell the best way to protect my system from malware and internet
Thanks in advace.
 

Answer:Best way and best software to protect my system from malware and Internet?

Security is a wide topic. If you browse aound on this forum, you will find recomendations on Anti Virus and Anti Spyware and Firewalls.
If you have Windows XP Professional, MS published an XP Security Guide v2 and tells you how to harden XP Pro. It is available here:

http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx#ETE

If you have Vista, there is a Vista version of the Security Guide:

http://www.microsoft.com/downloads/...ed-7f35-4e72-bfb5-b84a526c1565&displaylang=en

Hardening an OS gives the attacker a smaller attack surface by disabling unnecessary features. XP after a fresh install is quite bloated and has a lot of places for an attacker to poke at.

Also you should consider running it daily using a limited user account, as that prevents some malware from working and prevents malware from making system wide changes. In the Unix world, nobody runs a machine daily using the admin account. MS acknowledges that and has made UAC for Vista to achieve the same end.

Here's more details about that:
http://www.mechbgon.com/build/security2.html

Also along the lines of protection and prevention, use Mcafee's Site Advisor, available here:

http://www.siteadvisor.com/

It places a site rating besides every google result and tells you about malware infested sites before you go clicking on them and instantly infecting your machine.
 

3 more replies
Relevance 47.15%

Hello. My kid's PC -- an HP (Model M7567C, with 2, 260 GB hard disks and 2 GB RAM) is infected by "Spyware Protect 2009" malware. The malware repeatedly displays at least 3 different pop-ups saying there's a spyware infection and offers to sell a fix; the program also prevents Explorer from working properly. There are no obvious programs/processes to shut down from the control panel. The machine has Zone Alarm Security Suite installed - I'm not sure if my kids ignored a warning or if the software mistakenly let something in. Zone Alarm technical support said to try running Malwarebytes' Anti-Malware automated removal tool, but the program doesn't seem to run (nothing happens after the program is downloaded and launched). I tried running Zone Alarm virus and spyware scans, but the program runs slowly and eventually hangs (I think I ran the Zone Alarm scan in the Windows Safe mode). I can boot the PC in Windows Safe mode, but unfortunately there is no useful restore point. I can boot the PC in the normal Windows mode but it takes 2 or 3 cold starts. I can use Microsoft Explorer (through a wireless LAN connection), but in the normal Windows mode Spyware keeps hi-jacking Explorer and displaying its rouge messages.

Before I give up and reformat the hard disk and re-imaging the disk from the backup system disks, I would like to try a less time consuming solution. Any suggestions are welcome! Thanks!

I ran the DSS scan as instructed. Here are the res... Read more

Answer:"Spyware Protect 2009" malware problem

I wanted to add some new information to my original posting that seems to be related to my problem.

When my spyware infected PC boots, I get the following messages:

"The application or DLL c:\windows\system32\digeste.dll is not a valid windows image."

"View Manager has encountered a problem and needs to close."

"Error loading c:\windows\griwapaxim.dll. The specified module could not be found."

I noticed that there was a Windows update available today (the February update of Microsoft's anti-spyware program). I installed this application; after this, Zone Alarm Suite was then able to run (up to now, it just hung up), and 2 items were quarintined: WIN32.SYSGUARD adn WIN32.TROJAN.FAKEALERT.IEH

However, there are still problems with my PC. I still can't get Malwarebytes' program to run, even when I rename the *.exe file to *.bat. It seems like whatever is still injecting my PC interferes with any anti-spyware/malware program from running properly and interferes with the operation of Explorer.

Thanks.

4 more replies
Relevance 47.15%

Hi everyone,
I want to tell my story about protection of ESS on my computer. Today, when my friend plug in his USB into my computer, I noticed that his USB shows only 1 USB shorcut in explorer. Before, my previous machine is infected by this malware type (malware creates USB shorcut) so I have experience with it. And when he plug his USB in, I run ESS Smart Scan but it found nothing. This afternoon, when I plug my USB in my machine, I saw that all things in my USB turn into 1 USB shorcut, I run Smart Scan again with my USB and found nothing, too (I also run a scan by Zemana AntiMalware, and it found nothing, too). After that, I installed MCShield AntiMalware Tool, and scan my USB with it. Magically, It found .ink malware in my USB and cleaned it sucessfully! This is screenshot about log of MCShield:

And now, I'm very disapointed with my ESET . It makes me got infected easily! . How do you think about my problem, please share with me.
 

Answer:ESET Smart Security can't protect me from .lnk malware

ESET protects against malware coming from USB devices.
Probably did not recognize the malware that caused the problem.
You have done well to use McShield.
 

71 more replies
Relevance 47.15%

I would really appreciate some assistance with "Internet secruity designed to portect" malware and/or virus.  I have attempted to remove this with no luck.  I did install and run Malware Bytes.  Initially it listed several virus which I removed.  However, I still have a problem.  Anytime I try to run/download anything it is blocked by this annoying virus.  What can I do? Any and all help would be greatly appreciated.

Answer:Internet Secruity Designed to Protect Malware Help Please

Hello, I moved you from WIN7 to the Am I Infected forum for now.
Please try following this GUIDE.

1 more replies
Relevance 47.15%

Hi Folks, Yes I've got the privacy protection Malware, currently running windows XP on a dell laptop and I cannot start up in the safe mode, no Internet start up or execution of any programs allowed. Looks like I can strip documents & information off but thats about it. Can anyone share my options to cure this problem?

Thanks in advance - L

Answer:OK I've got the Privacy protect malware & no safe mode

Hello LarsLind,I moved this to Am I Infected.For the connection try these...Please click Start > Run, type inetcpl.cpl in the runbox and press enter.Click the Connections tab and click the LAN settings option.Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.Now check if the internet is working again.ORGo to Start ... Run and type in cmdA dos Window will appear.Type in the dos window: netsh winsock resetClick on the enter key.Reboot your system to complete the process..Please follow our Removal Guide here Remove Privacy Protection (Uninstall Guide) .After reading how the malware is misleading you ...You will move to the Automated Removal InstructionsAfter you completed that, post your scan log here,let me know how things are.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.Also the other tool log.. A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.

1 more replies
Relevance 47.15%

How does comodo firewall protects against signed malware at cruelsister's settings? Also i can disable its processes via task manager. How its self protection?
I am going to use it on my system with cruelsister's settings but these issues are my main concern which do not let me believe in comodo's power.
So,help me out and give the required info.
Thanks.
 

More replies
Relevance 46.74%

I've been using AVG, and have bought the full version, yet was confused with what I had to do.  Can anyone tell me which product is user friendly, yet a good system choice.  Thanks,
Would be appreciated. 
 

Answer:What is a good product to buy to protect and remove virus, malware etc...

My personal choice is ESET NOD32 Anti-Virus if choosing a paid for program as it leaves a small footprint...meaning it is not intrusive and does not utilize a lot of system resources. Kaspersky Anti-Virus is also a good choice if looking for a paid for program. If you don't want to pay then I recommend avast! Free Antivirus.For more specific information to consider, please read:Choosing an Anti-Virus ProgramSANS Institute Choosing Your Anti-virus SoftwareImportant Fact: It has been proven time and again that the user is a more substantial factor in security than the architecture of the operating system or installed protection software. Therefore, security begins with personal responsibility and following Best Practices for Safe Computing.

6 more replies
Relevance 46.74%

Hi, i'm having a problem with my web browser since using the malwarebytes anti-malware scan. Before I ran the scan and removed the infections it found, I was able to open webpages and go to sites although when i would try to search it would redirect the page. After I ran the scan and deleted the infections, I tried to open a webpage and it said it couldn't display it although I was connected to the internet. One of the things the scan found said "adware.mywebsearch" I would assume that was the reason it was redirecting the page. As of right now, I have done a system restore to a point before i removed the infections so i could display a webpage to get help. If someone can please help me, I would be very grateful.

DDS (Ver_09-03-16.01) - NTFSx86
Run by Leslie at 14:54:14.01 on Wed 05/06/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.496 [GMT -4:00]

AV: CA Anti-Virus *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\SharedComponents\HIPSEn... Read more

Answer:malware agents/koobface,spyware protect removal

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

2 more replies
Relevance 46.74%

I have recently been infected with a fileless malware. I have run a scan with ksc and it reported some memory detection. So,i run a scan with fully updated avast free and emsisoft eek but they didn't find anything. Finally, i have to scan with zemana and only after it detected and removed a fileless malware,ksc was able to give my system a clean sheet. Does kaspersky and zemana the only one to protect against such attacks? I need a free tool to protect my system against such attacks. The detection by zemana was "trojan poweliks: fileless malware". I don't need any whitelisting software and i also sincerely think that even they cannot counter such attacks.
 

Answer:Do you know any free software to protect against fileless malware attacks?

avast and bitdefender free are both goof
 

23 more replies
Relevance 46.74%

Hey guys, I am sure you can relate to my current woes here. I have a family member who is just always getting malware on their computer. Getting tired of cleaning it up so frequently and I wanted to ask you guys what you do. Personall I install Chrome and MSE, and set MSE to a Full Scan once a week with real time monitoring. I also preach safe web surfing, but honestly, it's like telling a Crack Head that crack kills.

So what do you guys do to try to ease the pain of fixing a family members computer?
 

Answer:How do you Setup your family members computer to protect from malware?

They now have Macs
 

46 more replies
Relevance 46.74%

Hi

I was just wanting to know the reason why Spybot S&D was removed from the "How to Protect yourself from malware!" sticky.

I am using version 1.6.2 since I found the newer v2 to be quite bloated and annoying. Should I still be using 1.6.2 since it still downloads the lastest malware signatures? Or is there an important reason why it was removed as a recommended antispyware tool?

Cheers
Sam
 

Answer:Reason for Spybot S&D removal from How to Protect yourself from malware thread?

Just not that useful anymore and as you noted V2 is too bloated. We also never liked Teatimer.

You can still use the old version and make use of the bad download blocker and hosts file protection if you wish but I would not use Teatimer. Modern antivirus programs already included antispyware too.
 

1 more replies
Relevance 46.33%

Hi Guys,
Can I begin by saying a MASSIVE thank you to you all-I'd be totally lost without your help
Ok, down to business-I've done as the guide suggests, performed the XP clean up, ran the programs and I've got all the logs which are hopefully attached. The problems started a almost a week ago when the dreaded "spyware protect 2009" screen started popping up and the icon lodged itself in my system tray and I got suspicious when there was no option to get rid of it-it's disabled my windows firewall, is blocking/redirecting my IE browser with it's phony msgs etc. If you need any more info or if I've somehow left something out/attached the wrong logs just let me know-it's purely out of ignorance and not laziness if that's the case!!!:-o

Thanks again- Cheree :wave
 

Answer:vundo/spyware protect 2009 malware-logs attached

here's the last log
 

6 more replies
Relevance 45.51%

Hello,Please help!!! I only have a couple of days to fix this comp before I leave!!!I am receiving security popups, Spyware Protect 2009 (I did not download) is in my task bar and keeps popping up with infiltration alerts, and IE keeps redirecting to http://browser-security.microsoft.com/blocked.php?r=21.0 displaying "Internet Explorer Warning - visiting this web site may harm your computer!" Then offering to link me to Purchase Spyware Protect 2009.Here is my DDS Log file and attachment.Thanks!!!peace.b.DDS (Ver_09-03-16.01) - NTFSx86 Run by John at 9:11:09.81 on Sun 03/22/2009Internet Explorer: 8.0.6001.18702Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.223.43 [GMT -5:00]============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exeC:\Program Files\Analog Devices\SoundMAX\Smax4.exeC:\Program Files\HP\HP Software Update\HPWuSchd2.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Program Files\QuickTime\qttask.exeC:\PROGRA~1\Nero\data\Xtras\... Read more

Answer:Unkown Malware/Rootkit security popups - Protect Spyware 2009

thank you! topic is resolved through off-post email reply.

Malware-bytes removal is the best!

peace.b.

2 more replies
Relevance 44.69%

Hi once i have read some of your arhive threads last 6-27-08 i began to follow all of the steps from cleaning, defrag and Removal. I found out my PC had been infected with Trojan.Vundo(it was detected by malware)... I think it started when i downloaded last 6-26-08 a file at Bitlord. The first virus that was detected was a backdoor.trojan the Norton Anti-virus detect it and remove it. So i thought it was ok when i noticed my PC is slowing I already think that there are still problems with my PC. So i run again the Anti-virus and when it reaches 24% (estimated) my PC reboot and my keyboard got stalled and in my monitor it is BAD BIOS. but when i manually reboot it, it just jump to windows and didn't do the normal process when booting... and everytime I scan my PC with my AV it always reboot so i try to search the net and find you guys... a bit STRICT but helps us more to know and learn how to fix things with our PC

1. From cleaning guide my pc was running better than it was before...
2. From the Malware Removal Guide i don't know if i got the right proceedure
but got some problems...
a. SAS - it doesn't goes blue screen,but my problem here is when it attemps to scan my files it becomes stalled. the first time i ran it i left it for almost 6 hours... (thinking it would still work) so reading from the procedure if it doesn't work proceed to the next
b. Spybot - I dom't have problem here works really great
c. MAM - no problem he... Read more

Answer:Trojan.Vundo,Malware.Trace and Problems on boot and Norton Anti-virus Protect

here are the second logs of HJT and Combofix.

BTW,when i right-click all my folders and files and choose properties it seems that it has security tab and when i click the security tab there's been so much users and administrators in it. Is my files been publicly displayed or does this HighJacka** i mean Hacker get and manage my files...

Thanks...
 

16 more replies
Relevance 42.64%

Hi

What's the best password protect protect software for folders?

Also if the password was forgotten or lost..would there be any way to acceess the file?

Thanks.

More replies
Relevance 41.82%

The volunteer helping me on the "Am I infected" forum recommended I move my problem over here to this part of the site. I'm not sure if I'm at the point where I should reformat my computer, hope someone can help.Here's my original problems and the logs and help I've received so far: http://www.bleepingcomputer.com/forums/t/208885/ms-antivirus-2009-which-turned-into-another-one-and-now-its-that-nfrdll-error-and-malarebytes-and-superantispy-got-their-butts-kicked/I assume that you'll probably get a better explanation from my problems there, but here's the quick and dirty:Dell Laptop, currently disconnected from the Internet. (It was unable to access the bleeping computer forum anyway--just this site specifically, sites like Google, blogs, those kinds of things worked fine.)The problems started with the MS Antivirus 2009 fake spyware stuff, than the browser hijacks (I shut off proxy servers before coming to the forums), and then I got the Spyware Protect 2009 version of malware, and was only able to get Malwarebyte's to run by changing the extension to .bat after reading it here. Since I started working on these forums with DaChew, I've only followed his instructions.Currently working off my wife's computer, a Mac. Using a USB flash drive that DaChew had me immunize so that I can download the programs on this Mac and transfer them over to the infected Dell. Than I copy the logs onto the flash and move them here.Here's my DDS file, i've changed my name on it to USER.DDS (Ver... Read more

Answer:Serious Malware Infection, started with MS Antivirus 2009, Spyware Protect 2009, nfr.dll

Hello Thefactualopinion and welcome to Bleeping Computer,1. Please download GooredFix and save it to your Desktop.Select "2. Fix Goored" by typing 2 and pressing Enter. Make sure all instances of Firefox are closed at this point. Type y at the prompt and press Enter again. A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called GooredLog.txt).Note: If you receive a message saying that GooredFix needs your system to be restarted, please close all applications and reboot your system. Please also allow any registry changes that may be prompted by any of your security programs.2. Please read this tutorial carefully to download ComboFix from one of the locations specified, and save it to your Desktop.Double click the ComboFix icon to run it.If ComboFix askes you to install the Recovery Console, please do so..The Windows Recovery Console will allow you to boot up into a special recovery mode, in case your computer has a problem after an attempted removal of malware. This allows us to help you.Once the Recovery Console is installed, continue with the malware scan.Note: Make sure not to click ComboFix's window while it's running. That may cause it to stall or freeze.Please post the log from ComboFix (can also be found as C:\ComboFix.txt) in your next reply. If you have any questions along the way, STOP and ask them before proceeding !!Greetings,Thunder

6 more replies
Relevance 40.59%

The How to Protect yourself from malware! Guide is good very useful information but it lacks information on other tools that have actually been found more effective at stopping Malware than just using realtime Antivirus/antispyware engines, that can stop unknown malware like Host-based Intrusion Prevention (HIPS), the D+ in Comodo, or spyshelter, ECT or Virtualization software which also is not covered that can isolate a threat so it doesn't even affect your Original OS files, like Sandboxie which isolates browsers and other files, or the sandbox in comodo that Isolates unknown files, or Bufferzone Pro Free, Returnil or Wondershare TimeFreeze which isolates everything in a virtual OS ECT

Also I don't remember their being an option to install ASK toolbar in any current comodo set up, they removed it in 2009.

Comodo has changed allot and none of the important Comodo IS features are covered?

Sorry if I sound like a Bug but Computer security is advancing and their are better and more effective ways to protect yourself than just using a realtime antivirus engine. and by the looks of it the Tutorial needs more updating anyways.

A Combo I like to use is
Comodo Internet Security, in Proactive mode with sandbox, antivirus, Defense +, and Firewall Enabled.

MalwareBytes Pro Antimalware in Realtime.

SpyBot SD Resident, Immunized.

SandBoxie for browsing the unknown ect.

PeerBlock to block malicious servers/ip's.

ThreatFire, Helps protect against known and unk... Read more

Answer:The "How to Protect yourself from malware!" Guide.

Welcome to Major Geeks!

Thanks for your comments.

There are quite a few tools that we don't list. That does not make them bad nor does it mean they are good. Comodo is listed in the How to protect thread in the antivirus and also in the firewall area. We do not go into some of the other areas of protection in detail for a couple reasons. One, the thread is meant to be as useful to ALL people with all computers ( old and new ) as possible. The newer forms of protection can be problematic for older/slower PCs with smaller amounts of memory. The second reason is that experience as shown that if all of the instructions in that thread are properly followed, you don't need sandboxes or HIPS anyway and you will not suffer from the effects that they have on PCs. Many many people of complained to us about how slow their PCs were after using tools like Threatfire and sandbox type software. In addition, use of these tools caused many PC novices to intermediate users all kinds of other grief and loss of information and loss of settings that they did not realize they were losing due to the sandbox affects.

Also we have had many, many, many cases where people have had all this kind of protection you mention installed, and still have gotten severely infected. And all this protection just made it harder to manually clean the PC. It did not stop the infections. The educated end user ( which is what that sticky is pushing ) is the most important piece of protecti... Read more

1 more replies
Relevance 40.59%

There is a very helpful sticky on this forum called "How to Protect yourself from malware!" authored by Chaslang. See http://forums.majorgeeks.com/showthread.php?t=44525 It appears that it has not been updated since 2004.

I have a clean (I like to think) fairly new Windows 7 computer, and I want to keep it clean. Are there any new suggestions that supersede what is in Chaslang's old thread?
 

Answer:Updates to "How to Protect yourself from malware?"

Happy_Macomb said:





It appears that it has not been updated since 2004.Click to expand...

Very untrue. You are looking at the creation date, not the update date. See the end of the post where you will see:

Last edited by chaslang; 01-30-12 at 19:08.. Reason: Remove outdated tools
 

3 more replies
Relevance 30.34%

what is reg killer doing?

Answer:i want to protect my pc

probably gone to lunch!http://www.computing.net/howtos/sho...If you want good quality answers, review the link above Some HELP in posting on Computing.net plus free progs and instructions 7 Medals

2 more replies
Relevance 30.34%

Hi, I'm 17 and recently my 34 year old brother (dad's side) moved in, and well, i'll spare you the drama- I'm no longer speaking to him. this morning there was a bad argument, because I didn't say good morning which ended with him threatening me and my dad warning him that he had no right to do that and it will not be tolerated- and i ended up on his computer which he left on, and i found text files with my usernames and passwords to my myspace and facebook accounts, as well as to accounts I don't even remember having. Apparently he used "cain and abel" password cracker. Before this he had radmin server on my computer, and all computers in the house, so if i'm connected to the internet he can watch my screen and even control it. I've changed my passwords, deleted the text files from his computer, and now i'm going to clear my saved passwords on internet explorer and firefox. My question is- is this enough to protect myself? he's a computer repair tech who recently became interested in "ethical hacking" although obviously he's dropped the ethical part. I just installed norton antivirus to check for any keyloggers. How can I protect myself? my files, my conversations with friends- how do i keep that safe? He's on the network, does that give him easy access to my computer?
 

Answer:How can I protect myself from a spy?

Welcome to Major Geeks!

If you want us to check your PC for malware then you need to run the below:

READ & RUN ME FIRST. Malware Removal Guide


If you just want to look into protection methods, see the below:

How to Protect yourself from malware!
 

1 more replies
Relevance 30.34%
Question: Sys Protect

I am having a problem with Sys Protect pop-ups, but now it has started running scans on my computer. When this happens I close all the windows and uninstall the program, but it keeps coming back. Anyway, I was wondering if I could follow the same steps that you told another person to do. I have already done the Vundo fix, but don't want to proceed until I know this won't screw up my computer. Here is the VundoFix.txt:

VundoFix V6.1.2

Checking Java version...

Scan started at 12:14:52 PM 8/30/2006

Listing files found while scanning....

C:\WINDOWS\SYSTEM32\ausgttoy.exe
C:\WINDOWS\SYSTEM32\cvkfjrol.exe
C:\WINDOWS\SYSTEM32\fvfocnvd.exe
C:\WINDOWS\SYSTEM32\hknqkayw.exe
C:\WINDOWS\SYSTEM32\oaqtaoab.exe
C:\WINDOWS\SYSTEM32\oifschhm.exe
C:\WINDOWS\SYSTEM32\qfvgcvlu.exe
C:\WINDOWS\SYSTEM32\rliokngi.exe
C:\WINDOWS\SYSTEM32\rupwggdv.exe
C:\WINDOWS\SYSTEM32\uklkeokt.exe
C:\WINDOWS\SYSTEM32\vvublgyx.exe

Beginning removal...

Attempting to delete C:\WINDOWS\SYSTEM32\ausgttoy.exe
C:\WINDOWS\SYSTEM32\ausgttoy.exe Has been deleted!

Attempting to delete C:\WINDOWS\SYSTEM32\cvkfjrol.exe
C:\WINDOWS\SYSTEM32\cvkfjrol.exe Has been deleted!

Attempting to delete C:\WINDOWS\SYSTEM32\fvfocnvd.exe
C:\WINDOWS\SYSTEM32\fvfocnvd.exe Has been deleted!

Attempting to delete C:\WINDOWS\SYSTEM32\hknqkayw.exe
C:\WINDOWS\SYSTEM32\hknqkayw.exe Has been deleted!

Attempting to delete C:\WINDOWS\SYSTEM32\oaqtaoab.exe
C:\WINDOWS\SYSTEM32\oaqtaoab.exe Has been deleted!

Attempting to delete C:\WINDO... Read more

Answer:Sys Protect

14 more replies
Relevance 30.34%

I'm not an expert when it comes to computing, but I do like to use the internet, e-mail etc. However I seem to have been plagued by viruses and the like for the past couple of years.Two questions.1. Is it possible to get decent protection without paying through the nose for it.If so, suggestions please.2. If not, what is the best protection to buy at a reasonable cost.Thanks.

Answer:Help me protect my pc.

You can protect your pc for free,what are you using at tne moment?

3 more replies
Relevance 30.34%
Question: Sys Protect

This sysprotect and win anti virus is stopping me from using my computer. I would like to be able to put together a holiday video but cannot because of everything thts happening. Below is my hijack this logfile. Thanks in advance fo any help u guys can give me.

Steven

--------------------------------------------------------------------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 18:48:52, on 14/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\PMSveH.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\sy... Read more

Answer:Sys Protect

Hi, Welcome to TSG!!

Run HJT again and put a check in the following:

O4 - HKLM\..\Run: [win3208188869354] C:\WINDOWS\win3208188869354.exe
O4 - HKLM\..\Run: [TheMonitor] C:\WINDOWS\Duce6.exe
O4 - HKLM\..\Run: [NI.USYP_0003_N91M0908] "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USYP_0003_N91M0908NetInstaller.exe" -nag
O4 - HKLM\..\RunServices: [winlog] winlog.exe

Close all applications and browser windows before you click "fix checked".
1. Please download The Avenger by Swandog46 to your Desktop.
Click on Avenger.zip to open the file
Extract avenger.exe to your desktop

2. Copy the entire contents of the code box below to your Clipboard by highlighting it and pressing (Ctrl+C):

Files to delete:
C:\WINDOWS\win3208188869354.exe
C:\WINDOWS\Duce6.exe
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USYP_0003_N91M0908NetInstaller.exe

Folders to delete:
C:\Program Files\SysProtect Free
C:\Program Files\Common Files\{34F86325-05D8-2057-0106-05060220002c}
Click to expand...

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Now, start The Avenger program by clicking on its icon on your desktop.
Under "Script file to execute" choose "Input Script Manually".
Now click on the Magnifying Glass icon which will open a new window titled "View/edit script"
Paste the text copied to clipboard into this window by... Read more

1 more replies
Relevance 30.34%

IE Bug:Anybody know how I can protect myself from this new bug?Moved to a more appropriate forum ~acklan~

Answer:Ie Bug....protect Me !

The answer you seek is contained in the very link you provided. In order to be at risk, "....users would have to be lured to a malicious Web site and perform actions such as writing specific text in a field to be compromised." (emphasis added)By taking the normal precautions in travelling the web and entering data, you would thus be safe.Regards,John

1 more replies
Relevance 30.34%

The force of evil spirit is mighty. exorcism must be performed from time to time. Thou shall not commit sin and thou shall follow these steps:1) Place a Holy Bible on top of your PC with the cross facing up.2) Wrap all wires inside of your PC with Rosaries.3) Chop up as many garlics as you can and place them as close to your gazilion giga hertz cpu heat sink. 4) If the aroma does not drive the evil away, and the spirit persists, a drastic measurement is required-- make a 10 inch long wooden cross with the bottom end sharpened, aim the sharpened end at the heart of your PC, armed with a large hammer, punch in as hard as you can and say Die, Die ,Die three times. The sparks will kill the evil once and for all.5) Exorcism completed.6) Please restart your PC.B.

Answer:How to protect and fix your PC.

Works Great ! !

3 more replies
Relevance 30.34%

QuoteYou should know that Advanced computer users may have scripts that run with an autorun on the USB that will copy your personal information but I wouldn't worry about this.Can this be prevented? what is the best method?Please let me know...I am facing similar problemThanks

Answer:Re: how can we protect our PC...??

I went ahead and split this topic.What is the problem? Just to clarify, this is a USB Flash Drive Autorun.

5 more replies
Relevance 30.34%
Question: protect my new PC

What is the best way to protect my new pc. I have installed Ad-aware and Im on a free trial of Bullgaurd right now. Im really not sure what and if there doing anything. lol

Answer:protect my new PC

rather surprised it did not come with the dear old Norton preinstalled as most things seem to these days (this is NOT a suggestion that you go with norton either ::)))first time I for one have heard of the bullguardwhen the trial runs out there are plenty of free programs out there that will protect you if you keep them properly updated and run frequentlytry spybot click hereclick hereasquared FREE edtion for startersIF you wish an alternative antivirus, many of us are on avgclick heresee how that lot suits youand please keep any protection programs fully updated and run frequentlyP3

5 more replies
Relevance 30.34%

I have anti-virus and a firewall running on my PC. Is there anything else I need or that would be beneficial? I am using AOL Active Virus Shield and Sygate Personal Firewall.

Answer:What exactly do you need to protect PC?

At least one other is Lavasofts "AdAware SE Personal" free at click here

10 more replies
Relevance 30.34%
Question: protect my CD/DVD

I just want to protect my CD/DVD to be protected so that no body (a layman) can make copies of it or drag/copy the content on their hard disk.

Answer:protect my CD/DVD

If that is possible I would like to know too.

2 more replies
Relevance 30.34%

My brother's PC has managed to get infected, despite using Avast and Sandboxie for his browsing, so I'm looking at changing his account to a LUA and setting a SRP as per this guide to prevent programs running from other than the specified folders.
Preventing computer malware by using Software Restriction Policies. | Peter Gubarevich

I don't think this will be effective unless I change his account to a LUA, as otherwise malware could easily just change the registry key to disable the SRP. I think I also need to set the SRP to NOT apply to administrators, so that he can switch to an Admin account and do stuff that the SRP blocks under his LUA.

The issue I have though is how he will install/update software when he needs to. I know he can switch to the Admin account to do this but then won't the software be installed under that account (or the Administrators group) and thus not accessible to him? It's also quite inconvenient if he has a browser open that explains how to do something and then he finds it can't be done under the LUA, so he switches to the Admin account but then he can't see the guide anymore and has to keep switching back, or open a browser under the Admin account, copy the url from the LUA and then paste it into the Admin browser.

Also, Avast seems to run it's updater from the temp folder and I obviously can't include that in the SRP whitelist as then anything could run from there.

I found I can run some stuff with Shift+Right click -> Run as different... Read more

Answer:Using SRP and LUA to protect PC

Does the computer in question have the User Account Control (UAC - formerly LUA) turned on?

I would set it at the highest level and he should be using a standard account (also formerly called Limited User Account).

I've not used SRP - so I'll not comment on that.

Apps installed while logged on as admin might be available to all users - it depends on the app.

9 more replies
Relevance 30.34%
Question: Protect Your PC

Running WIndows 7
Protect your PC did a drive by download on my wife two days ago...now...it owns me.
Have tried the guide on bleeping.com and it appears that the trojan has morphed, or I have another virus as well.

Had rkill and malwarebytes on this from a previous version of this delightful trojan.
run rkill it says everything is good. Howeer, no .exe file can run in normal mode or safe mode
This means I cannot run malwarebytes.
Cannot open Task Manager to manually work, normal or safe.
Cannot open explore to move malwarebytes RKill, Kaspersky or others from USB or DVD onto desktop
Cannot get into regedit etc etc.
Trying any of these will get a PYPC pop up.

Managed to get Webroot up and running but it stops after two files on the winlogon.dll.

It was a cheap PC so the box I don't care about, need a small portion of the data, not backed up for a few months.

I am a relatively adept end user but not computer geek.

Suggestions?

Answer:Protect Your PC

Welcome aboard Download FixExec.exe to your desktop.Double click on downloaded file to run the fix.When the program has finished, it will generate a log on the desktop called FixExec.exe.Post the log in your next reply.NOTE. If for any reason you're not able to execute FixExec.exe rename it to FixExec.com, FixExec.pif or FixExec.scr.

1 more replies
Relevance 30.34%
Question: HOW TO PROTECT XP?

Could some one advise me on the best way to protect my comp? ive upgraded to XP and had to get rid of my norton because it wasnt compatible, im a student and cant afford to go out and buy, so im looking for freeware realy. i have AVG freeversion, but apart from that and the XP firewall thats my protection, but is this enough? i feel like i should have some thing more especially with so many security warnings about at the moment.ZT

Answer:HOW TO PROTECT XP?

The XP firewall is rubbish, get Sygate from click hereAlso, do you have any anti-spyware?

10 more replies
Relevance 30.34%

hi,

is it possible to use windows xp to put protection (like wep or wpa) on my wi fi?

thanks for any help in advance!
 

Answer:use win xp to protect wi fi?

7 more replies
Relevance 30.34%
Question: XP Pro... protect

Hey Im running XP Professional.. recently coming from home and my computer was filled with spyware so I went out and upgrade to professional for a change.So to prevent people getting on my computer browsing hazardous sites with out me knowning I wanted to know if theres a way to like password protect Internet Explorer. Like xp or IE ask for an password before letting you acess to IE?
 

Answer:XP Pro... protect

I would just take steps to remove such things as they begin to accumulate, since keeping them completely out can be a real pain in the ass. Ad-Aware and Spybot are my favorites for clean-up.
 

9 more replies
Relevance 30.34%

hiii...hows everyone...How can we protect our system by virus..?? that comes from usb..either if we have a good antivirus..and which is the most suitable antivirus for it??

Answer:how can we protect our PC...??

It sounds like you are asking for a recommendation for an anti-virus program.I like Avast!: http://www.avast.com/eng/programs.html - the Home Edition is free. This program combines anti-virus with anti-spyware and anti-rootkit protection.Keep checking back, other Forum members will have additional recommendations.Best of luck!

5 more replies
Relevance 30.34%
Question: BT net protect

Hi I enrolled for the net protect service from BT at £3.50 per month, but I had to format my hard disk and lost the program. I have been given a BT dedicated telephone number regarding re loading the program but there seems to be no one there at least they dont answer!. Any advice would be appreciaredregardsmervyn

More replies
Relevance 30.34%

Please can you tell me exactly what software I need to completely protect my PC?

I hear of so many anti virus, spyware programs, etc and I'm looking for the best ones that are available for free??

I wouldn't want them to interfere with gaming and music, etc and it'll be good if they're easy to use for non technical minded people like me
 

Answer:What Do I Need to Protect my PC?

Have a look at my reply to a similar post HERE - also if you need a good free Antivirus program to go with the listed free malware/spyware ones, then use AntiVir
 

14 more replies
Relevance 30.34%

After a week or so of Vista Forum membership, I have realized I know so little computing but am enabled with so much power to.. RUIN my PC. Yep, I confess I am a click trigger happy sort.

So, I activated the built in Administrator and made myself STANDARD account user. And right away I am confronted with issues I am clueless on:

Apparently if I create a password for built in Administrator, she (I always thought she is a lady, dunno exactly why) will lose EFS-encrypted files, personal certificates and stored passwords for Web sites or network resources.

Do I want to so divest her or ask to make a password reset floppy disk? Either way, I am clueless. And what are all those I typed in BOLD?

Help!

Answer:Protect your PC from yourself.

I would use a user account that stops you from doing stupid things. Only use the administrator to install new apps.

3 more replies
Relevance 30.34%

 

Hello,
First, I apologize for my rough syntax,but I'm French and I do not control verywell the language of Shakespeare.
I own a Z50 , and I would protect the theft tale. I created an administrator and user password for the bios, but apparently this does not prevent reinstallation of the system via OneKey Recovery.
Would there some way (eg password) to prevent reinstallation of the system?
Thank you.Mod's Edit: System model added to front of Subject line to improve visibility / clarity.

Answer:Z50 - Protect my PC

Hi Dwiri,
 
Welcome to the Community Forums.
 
What you need is Intel Anti-Theft Technology
 
The Z50 do not have this feature.
Lenovo Notebooks with Intel® Anti-Theft Technology are ThinkPad T , X and W series
Its is directly on the Intel processor itself that safeguards a pc against theft.
 
Other than the BIOS administrator password and harddrive password, you may want to check on other options with these article
Hope this helped you answer your query.
 
Regards,

5 more replies
Relevance 30.34%

I recently had some bad time with a person. Right now, I am in danger of being attacked by a hired hacker to destroy important data from my PC and denigrate my image in front of the ones I know. This would be a big hit for me, so I want to know what can I do to protect myself.

Right now i checked the following:
1. Antivirus software
2. Firewall configured with a list of trusted programs
3. Password manager application (no more passwords stored in browser)
4. Changed all the passwords to more powerful ones (15+ random generated characters)
5. Bought a VPN

Please let me know what else can I do. I don't think there are any law regulations in my country that can help me, so I'm on my own.
Please consider this as being serious. Thank you in advance.

Answer:Help me protect myself

Your questions are ones that are frequently asked, please take a look here: Answers to common security questions: Prevention & Choosing an Anti-virus or FirewallPlease keep in mind that nothing is 100% attack/bulletproof. The only way to achieve that, is not be connected to the web.

10 more replies
Relevance 30.34%

hello all,

i work as a manager in an internet cafe and i dont have great knowledge in networking or LAN connections.I have 33 PC connected through LAN to two servers . Both servers give 2 mb speed for all the computers. I have two problems..

the first is: one of the customers was able to hack into the network from a client's PC and stop one of the servers, he was able to monitor and cut off any other client connection he wishes to disconnect. How can i protect myself from such attacks and hacks? and how can i detect those who try to hack into the LAN ?

the second question is: how can i control the amount of internet speed given to each PC? because some customers mainly download stuff from the internet which causes the internet speed for the rest of the PCs in the cafe to become very slow ?

i wish someone can help..thanks
 

Answer:how to protect myself?

what OS's are running on the 33 PC's? Hopefully they are restricted user accounts on all of them which it sounds like they aren't. Do you have encryption on the network if it's wireless?
 

4 more replies
Relevance 30.34%

I'm tired of ppl messing up with my sisters pc, hehe, I just formatted the whole system and downloaded some security, I gotta head to work in 1 hour, what is the best way I can protect her pc?(malware, spybot etc) safe browsing.

any help?

ty
 

Answer:best way to protect pc

Take a look at SafeSpace or SandboxIE for running browsers in virtual space. Or if she can handle it, run the whole OS virtually with Returnil or DeepFreeze. For people who don't install a lot of things, it's ideal. You can even uninstall all the AV and still be pretty safe (Returnil includes AV) and the machine runs much faster.

Virtualization Solutions (Malware attacks become impossible because either the browser or the whole operating system are isolated from the real system):

SandboxIE (Virtualizes IE, Firefox, or any other browser and works on most other programs, too)
VMWare Browser Appliance (Runs in the free VMWare Player. The Player also will run any of 100's of preconfigured operating system and appliance images downloadable for free from VMWare, and you can even make your own VM's to run in it with the open-source VMmanager)
Artificial Dynamics Safe Space (Similar to SandboxIE, safe browsing and protection from malware and hackers)
Fortes Grand Virtual Sandbox
Microsoft Web Sandbox (Open-Source) (In development but usable)
Returnil Virtual System (The Premium version allows you to save all changes inside the virtual OS to the real system, but even the free version has a virtual drive where items can be saved outside the virtual container)
Windows Steady State (Now supports Vista, too)
 

1 more replies
Relevance 30.34%

How would you protect yourself from a fud?
 

Answer:How to protect yourself from a fud?

LukeNukesEm said:





How would you protect yourself from a fud?Click to expand...

Supplement your security with something besides signatures.
 

3 more replies
Relevance 30.34%
Question: Protect USB

Hi
I have this USB that I use on all computers at work. This has all the applications, utilities, anti-viruses etc that I need. I run a workgroup of 30 PCs. Every now and then a colleague comes with their or a friends laptop asking me to remove viruses/ install programs etc.

Now when i plug in the USB, it immediately gets infected. Before it was that hide file and folders in that unnamed folder. But now it is that cc**f** virus that goes onto corrupt files.

Question :Is it possible for my USB to be protected from being written to until i want to? Just remain read-only so I can use it for installation on any type of computer.

Nothing complex. Simple stuff will do.

Thank you
 

Answer:Protect USB

You need to buy a stick with a PHYSICAL write protect switch.
see http://www.fencepost.net/2010/03/usb-flash-drives-with-hardware-write-protection/
 

1 more replies
Relevance 30.34%

I was recently browsing and came across a suspicious website on IE8, and it proceeded to load on the ave.exe trojan. I ended its process tree in resource monitor and then found and deleted its keys in the registry. This seems to have removed it. It's a nasty bugger that runs itself again everytime an executable is opened.What concerns me is that I run very tight security zone settings in IE8 on a fully patched system, yet somehow this was able to get in without my consent. I also have Win7 set to prompt me anytime a program runs, but this didn't phase it a bit. I would like to know what hole this trojan is exploiting and what settings I might change in IE8 to prevent it from hijacking my computer again. Does anyone have any experience with this?

Answer:How to protect from AVE.EXE?

I can offer you a free utility that will monitor progs trying to install. Winpatrolhttp://www.winpatrol.com/download.htmlSome HELP in posting on Computing.net plus free progs and instructions Cheers

3 more replies
Relevance 30.34%
Question: Sys Protect

Dear Sirs,

I have had a problem with Sys Protect invading my computer. I have run Hijack This and can't find the virus on my computer.

At first, every time I tried to conncect to the internet, this pop up came up and asked me if I wanted to download Sys Protect on my computer. As a few of your users have already stated, we finally downloaded it to our computer and it wouldn't stop coming up with that pop up. Every time it came on, it went to Mozilla Firefox and it asked me if I would like to download this. If I didn't, it would shut down my computer. I finally downloaded it and it subsided for a while. Ever since I have deleted Mozilla, it has happened less frequently, but it still comes up every once in a while.

Our computer freezes occasionally and it has never done that before. I don't know if that has anything to do with it, but it has happened ever since that has been put on my computer.

Your help is greatly appreciated.

Thanks.

Paul
 

Answer:Sys Protect

14 more replies
Relevance 30.34%
Question: av-protect.com

I just fixed this problem for a friend. It's not too sophisticated.

Here's what's happening. Apparently someone inadvertently installs some antivirus protection (ESET). This program then gives a false warning, telling you to fix the problem you must purchase their full protection system at this address:
av-protect.com/purchase?r=57.4

Instead of reinstalling OP, here's what I did (BTW, the system infected was running XP)

1. Go to safe mode - F8.
2. go to RUN, then type "msconfig"
3. Go to 'Start Up', scroll down looking for fqtsftv and egui and disable
4. Go to control panel 'Add Remove' and look for anything related to "ESET" and uninstall
5. Go to Documents and Settings. In all profiles search 'Application Data' and 'Local Settngs' for anything EST. Delete. Also go to program files and find anything EST and delete
5. Go to Internet Explorer Browser and click on tools, internet options, connections, LAN SETTING...then undo proxy settings

You should be good to go

Answer:av-protect.com

I think you have it wrong, see http://safeweb.norton.com/report/show?name=av-protect.com.This is a known malware site, using the fake AV front.Louis

9 more replies
Relevance 30.34%
Question: sys protect

I've followed your forums and run pestpatrol and Vundofix but am still getting the sys protect popup. Please help. Also would it cause my system to occasionally run slow? Here is my hijackthis log.

Logfile of HijackThis v1.99.1
Scan saved at 11:09:03 AM, on 7/31/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\hphmon06.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\C... Read more

Answer:sys protect

6 more replies
Relevance 30.34%

Hello,My name is S_R_S and i'v been spending a  lot of time around hackers to understand how they think..I'm giving you guy's a quick few things to think about to protect yourselves.Part 1:What type of hackers are there?There are 2 main types of hackers.  The first kind is the kind we are all afraid of. We think and talk of these people as "Script kiddies" they use programs programmers make and use them to hurt people. Most of the computer crimes are happening by these people. Most of them are young and trouble makers.The second type are true hackers.  Most of these people are older, intelligent, and they want to see what they can do.These people are normally programmers and web designers as well.  This group of people are not harmful (not that I think hacking is ok) they just get a thrill out of hacking and they want to push themself to the limit.this thread is how to protect yourselves from both types.Part 2:staying safe from Viruses and worms..This part is mostly from protecting yourself from the first kind of hacker.Here  are some programs I use and like to protect myself:Symantec antivirus, (Virus protection)Macafee, (virus protection)Norton, (virus protection, not many people here like it ;p)Zone-Alarm,(Firewall)Ad-aware,(spyware/add remover)Spybot search and destroy,(spyware/add/trojan & more remover)Spyware terminator, (Key logger killer/deleter)Spyware sweeper, (spyware remover)and almost any pop up blocker to blo... Read more

Answer:How to protect yourself!

This is decent post, except for:QuoteI recommend Zone-alarm as the firewall and Norton as the Virus protection.Especially for Norton, there is a big NO from me.

14 more replies
Relevance 30.34%
Question: sys protect pop-up

Logfile of HijackThis v1.99.1
Scan saved at 5:50:59 PM, on 4/16/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Common Files\Virtual Token\vtserver.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\QCONSVC.EXE
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\System32\TPHDEXLG.EXE
C:\WINDOWS\system32\TpKmpSVC.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\Syn... Read more

Answer:sys protect pop-up

Edit: Nevermind, thought that log was the thread starter.
 

3 more replies
Relevance 30.34%

I've found some of your old posts and followed them but it didn't work. Please help!!
 

Answer:I have Sys Protect Can't get rid of it!

13 more replies
Relevance 30.34%

Recently I've also experienced Sys Protect, Adultfinder, and other related pop-ups. I have not clicked to install anything and I always close the windows immediately. Yet they keep coming and I can't do anything to stop them. I've also noticed that my computer is crashing and slowing down more. I'm totally inexperienced in these matters and I don't want to do something that will harm my precious computer. Please help. Thank you.
 

Answer:Sys Protect and associated pop-ups

7 more replies
Relevance 30.34%
Question: p/w protect?

I carry a floppy around with the backup to my financial info, I would like to password protect it but I am not sure how. Is there a FREE utility that can do this? Thanks in advance
 

Answer:p/w protect?

Well I use a program called Paranoid to password protect files and folders. It works well and it should work for what you want to do. There are other free one's but i haven't bothered to try them. But to access the files on the floppy after protecting them with Paranoid you'll need to have Paranoid installed on any pc you want to use the floppy on. You can get Paranoid v1.4 here:

prnoid14.zip

http://esca.atomki.hu/paradise/sac/security.html

A tip: If you unprotect a file or folder with Paranoid and it won't open, just close Windows Explorer and then reopen it and then the file or folder will open.

Another tip: If you have alot of files on the floppy, create a folder in Windows Explorer then transfer all the files from the floppy into that folder. Then right click the folder and click 'send to 3 1/2 Floppy' to send the whole folder to the floppy. Then just password protect the folder on the floppy rather than all the individual files seperately.

[Edited by Kento on 08-16-2001 at 02:25 AM]
 

1 more replies
Relevance 30.34%
Question: av-protect.com

SymptomsI get pop ups warning me of various security problems and virus infections and a bogus running of virus check.These lead me to av-protect.comAll programs now won't run.Even Task Manager won't run so I cannot monitor what is running or turn off services I suspect of causing problems.I can however get Firefox to run. Explorer won't.The only way I can get a sensible operating system is running in Safe Mode with Network Connection which gets me onto the internet.I did have Superantispyware Professional running.I had AVG Free version running.I have downloaded and run Malwarebytes antispyware.None of these find anything in Safe Mode and none will run in Normal Mode.I did a Trend online check in Safe Mode and got the following response: Trj/CI.A Virus Latent Show + Info Disinfected 1. c:\users\andrew\documents\from hard drive cop...ocuments\downloads\wdc4free (4).exe2. c:\users\andrew\downloads\wrc4free (4).exe3. c:\users\andrew\downloads\wrc4free (3).exe4. c:\users\andrew\downloads\wdc4free (4).exe5. c:\users\andrew\downloads\wdc4free (3).exe6. c:\users\andrew\downloads\wdc4free (2).exeThreats disinfected with the paid version (5)Low danger level (5) Cookie/Atwola Tracking Cookie Latent Show + Info 1. c:\users\andrew\appdata\roaming\netscape\navi...b.default\cookies.txt[.atwola.com/] Cookie/Adverti... Read more

Answer:av-protect.com

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.We need to create an OTL ReportPlease download OTL from one of the following mirrors:This is THE MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.In the custom scan box paste the following:CODEnetsvcsmsconfigsafebootminimalsafebootnetworkactivexdrivers32%systemroot%�... Read more

2 more replies
Relevance 30.34%
Question: BT Protect

Hi Guys
 
My internet provider is British telecom. and they are now offering AV and Anti malware protection through MacFee as part of the package. My maiin protection is MAMB premium and MSE, plus several online scanners.Is it worth ditching MSE and going with MacFee.?
 
regards
 
Cluey

Answer:BT Protect

When you say MacFee...I believe you are referring to McAfee.According to BT Customer Support, they offer BT NetProtect Plus anti virus which actually downloads McAfee.What is BT NetProtect Plus and why should I download and install it?Although McAfee is as good as any other well known anti-virus program, it requires numerous services and running processes that consume a lot of system resources and often results in complaints of high CPU usage. Anti-virus software components insert themselves deep into the operating systems core where they install kernel mode drivers that load at boot-up and create files/folders/registry entries in various locations. If you do a Google Search you will find there have been numerous complaints about it affecting system performance.Further McAfee products, like Symantec, are becoming difficult to remove and remnants are often left behind which require the use of a special removal tool, otherwise you may encounter problems installing a replacement anti-virus. To be fair, other vendors also recommend using removal tools for the same reason. Those issues plus the cost factor are the primary reason many folks look for a free alternative. IMO, McAfee is better utilized in an Enterprise system environment protecting many client computers.

3 more replies
Relevance 30.34%

I have been having problems with this popup for a few days now. I'm not sure I fixed it. Can someone take a look and let me know. Thanks.

Logfile of HijackThis v1.99.1
Scan saved at 12:58:13 PM, on 5/21/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\PE... Read more

Answer:Help with Sys Protect

4 more replies
Relevance 30.34%

Hello everybody,
I have been using my social security number for my taxation purposes. But I have been recently intimidated by my lawyer that since the crime of identity theft has been on the high I should be careful in using it. I am really concerned about this and need to know whether there are any ways by which we can protect them.
Thanks in advance!
 

Answer:Is there any way to protect SSN???

Im no lawyer but i think i know a few offhand:
1. If you are sending that information online, make sure the connection is not open, but encrypted. (Usually the url box or status bar will have a gold lock in it).
2. Make sure the computer used to transmit the information is not infested with any form of malware, or spyware. If there is any of these problems, never let that machine see ANY personal information till you know its clean! They can have key loggers or some other exploit that may extract this info. One idea if you do alot of banking and such online is to have a dedicated office pc possibly with internet content control to ensure you do not go anywhere that you can pick up something unfriendly accidentally.
3. Keep the card secure. Maybe if you have a filing cabinet or strongbox with this info, keep it all under lock and key.
Do all of that and you should not have any problems.
 

2 more replies
Relevance 29.93%
Question: virus protect pro

Hello I have the Virus protect pro malware on my computer having trouble removing it my McAffe has detected an infected file that cannot be repaired the file path is C:\Windows\system32\xtsyynm.dll here is a log from the Smitt frog fix
SmitFraudFix v2.212

Scan done at 15:34:45.03, Wed 08/15/2007
Run from C:\Documents and Settings\Troy.DADSPUTER\Desktop\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Common Files\M... Read more

Answer:virus protect pro

You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.

Next, please reboot your computer in Safe Mode by doing the following :
Restart your computer
After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, a menu with options should appear;
Select the first option, to run Windows in Safe Mode, then press "Enter".
Choose your usual account.
Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmd
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.

You will be prompted: "Registry cleaning - Do you want to clean the registry?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.

The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".

The tool may need to restart your computer to finish the cleaning process; if it doesn't, please restart it into Normal Windows.

A text file will appear onscreen, with results from the cleaning process; please copy/paste the content of that report into your next reply

The report can also be found at t... Read more

1 more replies
Relevance 29.93%

Hi,I was just wondering if anyone could recommend any good programs that would allow internet explorer to be password protected. It would be helpful if they only had to enter a password once per session rather then enter it everytime they clicked onto a different site.The computer is connected to the school network, windows 98,I.E explorer 5.Thanks.

Answer:Password protect I.E?

not too sure about this cos i havent used them but i seem to recall the hype about Cyberstitter and Net Nanny being able to provide this.i did try cybersitter but i didnt need to password protect so cant comment.both the programs will reduce the amount of surfing available (in the aim of protecting kids from the internet)as far as i know both are available as a trial or demoGood Luck

1 more replies
Relevance 29.93%
Question: PASSWORD PROTECT

Hi there.I was wondering if there was any way to put a lock or password on certain files on a computer so no-one else can access them?

Answer:PASSWORD PROTECT

click here - this will password protect files.

3 more replies
Relevance 29.93%
Question: password protect

When I got my computer some years back,I remember having to type in a password and my name (I think) to open Windows or to just enter the computer. I was thinking that you could do something to get rid of the sign in box and I did. So when i turn it on it starts up Windows.
Is there a password protection at startup I can install to prevent prying eyes from getting into my computer?
 

Answer:password protect

There is a BIOS password you can set that will not allow the system to boot up until the password is entered, so it won;t even go into Windows.

You do this by entering the Startup when your system is just starting to boot up. Usually you will see something along the lines of Pres F1 to enter Setup or maybe it'll be Delete, or something else. In the BIOS setup, you will be able to find the Security section that will allow you to enable the password, and set what the password is.

One word of warning though, don;t lose that password!!
 

2 more replies
Relevance 29.93%

Hi.
I'd like to write protect my usb pen drive (Kingston DataTraveler 2.0) but it has got no hardware switch. Is there any way to w/protect it via Windows 10 software?

Thank you!
Joe

Answer:How to write-protect USB pen?

Try option 3 in this TenForums tutorial: Enable or Disable Disk Write Protection in Windows Windows 10 Hardware Drivers Tutorials
HTH,
--Ed--

8 more replies