Computer Support Forum

Windows 8 will better protect users from malware

Question: Windows 8 will better protect users from malware

Microsoft said:

A view of the current landscape
Criminal attacks continue to evolve and malware has become their standard weapon against anyone who uses the Internet?on traditional form-factor devices, as well as on mobile devices like tablets and phones. Malware targets all operating systems and browsers, and in recent years, criminal attacks against applications have increased substantially.

Criminals also use social engineering to trick you into performing actions that put you at risk. An increasingly common social engineering strategy uses online advertising campaigns to lure you to a site that installs malware on your computer.

An economy has developed around building reliable vulnerability exploits, which criminals buy to help distribute their malware. Criminals make money from their malware, so they invest in ways to keep it alive such as producing a higher quantity of malware, updating it more frequently?e.g. multiples times each day?and increasing its size and complexity. Some malware is as complex as commercial applications.

Secure by design
We use the Security Development Lifecycle (SDL) to build Windows with the best security design, development and testing practices available. Some highlights include:
Threat modeling and security design reviews. During the design process we consider how criminals might seek to attack features and scenarios, and incorporate this analysis into our designs.
Writing secure code. Training and code quality tools help to prevent common coding issues from entering the Windows source code.
Penetration testing. Security engineers take an attacker?s perspective when reviewing a completed set of features that make up a scenario.
Security code reviews. Security engineers provide additional security-oriented code reviews for highly sensitive components.
Security tools. Tools continuously updated with the latest state of the art in finding and exploiting software provide a scalable solution to improve existing code.

Making it harder to create an exploit on Windows 8
With Windows XP SP2, we began creating defenses called mitigations that make it difficult to develop reliable exploits for security vulnerabilities. Each subsequent version of Windows has continued to expand and improve on these mitigations, because a single mitigation feature can break an entire class of exploits. Windows 8 includes mitigation enhancements that further reduce the likelihood of common attacks. Some of these improvements include:
Address Space Layout Randomization (ASLR). ASLR was first introduced in Windows Vista and works by randomly shuffling the location of most code and data in memory to block assumptions that the code and data are at same address on all PCs. In Windows 8, we extended ASLR?s protection to more parts of Windows and introduced enhancements such as increased randomization that will break many known techniques for circumventing ASLR.
Windows kernel. In Windows 8, we bring many of the mitigations to the Windows kernel that previously only applied to user-mode applications. These will help improve protection against some of the most common type of threats. For example, we now prevent user-mode processes from allocating the low 64K of process memory, which prevents a whole class of kernel-mode NULL dereference vulnerabilities from being exploited. We also added integrity checks to the kernel pool memory allocator to mitigate kernel pool corruption attacks.
Windows heap. Applications get dynamically allocated memory from the Windows user-mode heap. Major redesign of the Windows 8 heap adds significant protection in the form of new integrity checks to help defend against many exploit techniques. In addition, the Windows heap now randomizes the order of allocations so that exploits cannot depend on the predictable placement of objects?the same principle that makes ASLR successful. We also added guard pages to certain types of heap allocations, which helps prevent exploits that rely on overrunning the heap.
Internet Explorer. ?Use-after-free? vulnerabilities represented nearly 75% of the vulnerabilities reported in Internet Explorer over the last two years. For Windows 8, we implemented guards in Internet Explorer to prevent an attacker from crafting an invalid virtual function table, making these attacks more difficult. Internet Explorer will also take full advantage of the ASLR improvements provided by Windows 8.

Read moreClick to expand...

Relevance 100%
Preferred Solution: Windows 8 will better protect users from malware

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: Windows 8 will better protect users from malware

Well its like malware writers would take time to discuss how they will bypass those features. Its like Windows 8 were built in security and could led to few vulnerability probably.

6 more replies
Relevance 54.94%

I have this friend/client, knows little about computers, every time theirs a problem (no matter what it is) he does a system restore...

his grandson was playing online games and something stopped working, so they did a system restore. lol. a week ago I got his PC working, got the spyware off, and he commented how fast it is (or was). now it's messed up again.

part of the problem, I think, is he has an admin account... so perhaps I should make him a standard user? Limit what he can do on the system?

thoughts? good idea or bad? I feel odd doing this, its his PC not mine... so I dunno. not sure.

Answer:protect newbie users from themselves?

Let me answer in this fashion. Every computer must have an administrator account. There is no need that everyone should use one everyday. I feel very confident in my computer knowledge and yet I use a standard account. Why?
After a hard day or maybe a problem day, I can do something, wrong without thinking. With a standard account, I will get a notice that will make me think.
So, let the inexperienced always use a standard account. For the very young or very inexperienced an account with parantel controls would be suggested or with Vista a limited account.
You say its his computer, tell him that either you paid for it or if he paid, does he want to pay to get it fixed?

1 more replies
Relevance 54.94%

Whats the best software you've seen that prevents users from going to bad websites / porn etc?

I see that as the number 1 reason my customers infect there PC's with crap

Answer:Software to protect users from themselves?

seriously - that and limewire, etc.

24 more replies
Relevance 53.71%

Hi Dear Forum Members,

I have to make a program for Cyber cafe but I can't examin the port in VB by which i can connect to internet. Actually i have to design this software on the basis of facts gfiven bellow:
-> Users should still connected for limited hours
->Till user not login to this software one can't access internet facility.
Note:- The cafe internet connection is based on broadband cable.

Q1:- How can i detect the ip Address in VB.
Q2:- How can i protect users to login as i have mentioned.

So, give me informations and also codes(if possible) about hoe can i solve my questions in VB.
Loooking forard to hear from you.

[email protected]

Answer:How to detect an IP Address in VB an protect users to connect


Private Type QOCINFO
dwSize As Long
dwFlags As Long
dwInSpeed As Long 'in bytes/second
dwOutSpeed As Long 'in bytes/second
End Type

Private Declare Function IsDestinationReachable Lib "SENSAPI.DLL" Alias "IsDestinationReachableA" (ByVal lpszDestination As String, ByRef lpQOCInfo As QOCINFO) As Long

Private Sub Form_Load()
Dim IP As String
Ret.dwSize = Len(Ret)
'Put desired IP
IP = ""
If IsDestinationReachable(IP, Ret) = 0 Then
MsgBox "The destination cannot be reached!"
MsgBox "The destination can be reached!" + vbCrLf + _
"The speed of data coming in from the destination is " + Format$(Ret.dwInSpeed / 1048576, "#.0") + " Mb/s," + vbCrLf + _
"and the speed of data sent to the destination is " + Format$(Ret.dwOutSpeed / 1048576, "#.0") + " Mb/s."
End If
End Sub

3 more replies
Relevance 53.71%

What is the best way or best software to allow 2 siblings to share one PC safe in the knowledge that their files are private without usin XP Pro?Hanx!K

Answer:XP Home-2 Users-Password Protect Files?

One way. click here

2 more replies
Relevance 53.71%

I like to know how to password protect chrome users ... like when we open chrome we get window to select user and password.... i tried using ?enable-udd-profiles mode... but its not working now a days.....
Is there any other way i can setup like it.

Answer:Password Protect Chrome Browser Users

Hello mnr367,

You could have each user have their own user account in Windows, then password protect each user account that will effectively protect Chrome as well.

Hope this helps,

2 more replies
Relevance 53.71%

Any users have a Advent or Medion computer and found a way to get in the full bios on the main board.If you have a different comp tell me anyway it might work.

Answer:Any comp users get in a password protect bios?

You need to find the CMOS reset jumper and then use this to reset the CMOS. It should be shown in your motherboard manual its is normally a set of jumpers located ver near the BIOS cip on the motherboard.Warning this will reset your CMOS to default settings but it will wipe any passwords that have been put on.

9 more replies
Relevance 53.3%

Mozilla to protect Adobe Flash users - Update 2.

The upcoming Firefox 3.5.3 and Firefox 3.0.14 releases, currently in beta, will check the version of Adobe Flash plug-in installed in the browser and warn the user if that plug-in is out of date. Johnathan Nightingale, "Human Shield" (Security Lead) at Mozilla confirmed the new security feature to The H and said that the Flash version check was part of a wider commitment to "protect users from emerging threats online".

-- Tom

More replies
Relevance 53.3%


We?re always working to improve Chrome extensions while keeping our users as safe as possible. In May 2014 we announced a new policy to protect Windows users by enforcing that extensions be hosted on the Chrome Web Store. The results were encouraging: we saw a 75% drop in customer support help requests for uninstalling unwanted extensions. Consequently, we will expand the reach of this protection to all Windows and Mac users in the coming months.

We originally did not enforce this policy on the Windows developer channel in order to allow developers to opt out. Unfortunately, we?ve since observed malicious software forcing users into the developer channel in order to install unwanted off-store extensions. Affected users are left with malicious extensions running on a Chrome channel they did not choose. As such, starting today we will begin enforcing this policy on all Windows channels. Mac will soon follow, with enforcement for all channels beginning in July 2015.

Chromium Blog: Continuing to protect Chrome users from malicious extensions

More replies
Relevance 52.48%

Ok this is weird. I run Ntl netguard, and Spyware Doctor. A few days ago, SpyDoc refused to auto update. Nothing strange thought I, site must be down.

Well its been four days now. Then I noticed I couldn't connect to Microsoft to do updates either. On further investigation, I found I can't connect to ANY legit malware sites. I have run Spybot, Ntl netguard, Malware Byte's anti malware, and Norton AV, none found anything wrong.

However, I tried setting up a proxy within Firefox, and CAN connect to the sites I couldn't otherwise. (albeit incredibly slowly).

As things stand, I can't update any malware software, and assume my poor PC must have caught something new and nasty.

Please help

Hi jack this follows:-

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10:08, on 19/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\Program Files\ntl\ntl Netguard\fws.exe
C:\Program Files\Common Files\Command Software\dvpapi.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterSer... Read more

Answer:Help Pls! Can't update Malware Protect or Visit Any Malware Sites

sorry, bump

2 more replies
Relevance 51.66%

Global security company, G DATA, today announced the release of their free, PC cleaning tool, G DATA CLEAN UP, to protect against adware and potentially unwanted programs (PUPs), which together dominate the top 10 prevented attacks, according to G DATA SecurityLabs. Adware and PUPs are usually installed without the user?s consent and can become a serious nuisance, as they are very difficult to uninstall. CLEAN UP arms users against the most common types of adware and PUPs and helps to remove them reliably with just a few clicks.

With G DATA CLEAN UP, there is no need for installation. The user simply downloads and runs the CLEAN UP tool. Using a specialized technology, the tool detects nuisance adware and potentially unwanted programs that the user can then decide whether to keep or to delete.

?We created the free CLEAN UP tool to help all users, whether they are a current G DATA customer or not, guard their devices against annoying and potentially harmful programs that can be hidden and used for malicious purposes,? said Andy Hayter, security evangelist, G DATA. ?This is a great addition to our suite of antivirus products as well, as they work seamlessly together, providing protection across attack vectors against a wide array of threats.?

What is Adware?
Adware is any program, which is installed in the background without expressed consent by the user. Adware is not harmful in itself, but it can collect data on user behavior to display customized ads and to har... Read more

Answer:G DATA Launches CLEAN UP to Protect Users from Adware and Potentially Unwanted Programs

all these tools are useful and very welcome

3 more replies
Relevance 50.02%

Windows XP users already face far higher risks from malware ? with XP users facing infection rates six times higher than Windows 8 users, according to a report released by the company. Microsoft will withdraw support for the ageing platform in April next year ? despite the fact that one in five PCs on Earth still use it.

Per 1,000 PCs scanned, 9.1 XP machines had been infected ? as compared to 1.6 for Windows 8, according to a report by V3.

Microsoft Windows XP was released almost 12 years ago, which is an eternity in technology terms. While we are proud of Windows XP?s success in serving the needs of so many people for more than a decade, inevitably there is a tipping point where dated software and hardware can no longer defend against modern day threats and increasingly sophisticated cybercriminalsClick to expand...

Microsoft wrote in a statement this week.

To read more click here

Answer:Windows XP users already facing malware invasion – before Microsoft “pulls plug”

The company I work for tracks such things, and found that as far as 18 months ago malware that exploits XP vulnerabilities were being developed and hoarded until next year when their effectiveness (and selling price) will be magnified.

Abandon all hope, Ye who use XP.

13 more replies
Relevance 48.79%

Something (Malware ? ?) locked up my PC (Windows XP). I got a pop up message that my PC was infected and click "yes" to buy an AV program. I did not click "Yes", but every program I tried to run came up with the same message. I took it where I bought it and they fixed it by cleaning my hard drive and re-loading my OS. Fortunately, I had BU'd my personal files. They called the problem an "intercept". Norton AV did not catch it. They also loaded "Malwarebytes" for me.

What is the best way to protect for this kind of problem ?

Answer:How to protect against Malware ?

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide

and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:

If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 48.79%

Make sure you get your system protected from ocurrences of malware problems. Below are some simple steps you can take to reduce the chance of infection in the future. I strongly encourage you to do them all. There is no perfect solution for totally preventing malware from getting on your PC, however, these steps will help.

Please do not make the false assumption that this thread is old or out of date based on the date the thread was started ( 10-10-04 21:52 ). Look at the Last Edited date at the bottom of this message as this procedures does evolve with time.

IMPORTANT NOTE: It is getting more and more difficult to find real true freeware these days that does not include bundleware, toolbars...etc and junk you just don't want. Make sure you pay attention during installation of anything you download and read license agreements. Be sure to uncheck check boxes for the bundleware and toolbars where you can so that you opt out because the defaults are always to opt in.

1. Visit Windows Update: Make sure that you have all the Critical Updates recommended for your operating system and IE. The first defense against infection is a properly patched OS. For anyone who is not yet running at least Windows 7 (which you really should be running at a minimum if your PC supports it) see the below link before updating. Note: Windows XP is not longer supported by Microsoft and is hence a security risk.

Windows 7 Upgrade Advisor
You should check for Windows Updates at least once a ... Read more

More replies
Relevance 48.79%

How would you protect yourself from a fud?

Answer:How to protect yourself from a FUD malware?

LukeNukesEm said:

How would you protect yourself from a fud?Click to expand...

Supplement your security with something besides signatures.

34 more replies
Relevance 48.79%

i Just bought a new PC. i have a couple questions from the 'How to protect yourself from malware' thread.

My Pc is running windows 7.

In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.

In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?

In the disable the autoruns feature there is no update for windows 7?

Answer:How to protect yourself from Malware

avilo4u said:

In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.Click to expand...

While the Windows 7 firewall is better than what was in previous versions of Windows, it is still very inadequate.

avilo4u said:

In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?Click to expand...

No! MSE is and antivirus and antispyware. So is Avast. You can only have one of them installed.

avilo4u said:

In the disable the autoruns feature there is no update for windows 7?Click to expand...

Microsoft has never updated their info ( from here ) for Windows 7 so I'm not sure if everything that is used for Vista would apply.

You can just run this >> Autorun Eater

6 more replies
Relevance 48.38%

Hi. I am rather a person with basic knowledge about computers so don?t be surprised if my question will sound stupid to you.
I have a Windows PC and I often use my thumb drive to print some documents in my university. I?m afraid that it will become infected someday so I thought it would be a good idea to use it only with Puppy Linux when I'm at home. This is why I made my thumb drive a bootable one with Puppy on board. What I want to do is to boot to Puppy, copy the files I need to print or use at the university to the USB drive, then close the system and disconnect the USB drive. To be clear, only one USB stick is involved in this process (Puppy and data are on the same USB stick). Would that prevent infecting my Windows PC? If not then how can I avoid viruses spreading through USB? Can malware do any harm to Windows OS when Puppy is booting?

Answer:Can puppy protect me from malware?

Good idea if I understood correctly

7 more replies
Relevance 48.38%


Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.

Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.

Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.


Answer:How to protect yourself from malware (for Vista)

ablaze said:

Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.Click to expand...

It was not written for Win XP. It is for all versions of Windows althoough obviously there is more in there that relates to WinXP and older since they have been around longer.

ablaze said:

Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.Click to expand...

You should ask in the Software Forum. But reviews of AVs are typically out of date by the time they are published. This happens because many programs update 3 to 5 times per day and even just one update can drastically improve or reduce an AVs test score.

ablaze said:

Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.Click to expand...

You are not comparing apples to apples. Avast is just an antivirus. Comodo Internet Security includes all of the below:

Host Intrusion Protection System (HIPS)
BOClean Anti-Malware is not being included in CIS


3 more replies
Relevance 48.38%

Hello - First, let me say thank you for helping me rectify a really poor choicesof opening software I wasn't 100% certain was verifiable. As a result I have the Virust Protect Pro problem (at a miniumum) which seems to tie up my machine a lot and causes problems with my wireless network adapter. I have used Spybot and Adware to no avail. I've copied and pasted the Hijack This log below and won't make any changes until I hear from you.
With great thanks for your help!

Logfile of HijackThis v1.99.1
Scan saved at 3:52:29 PM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program F... Read more

More replies
Relevance 48.38%

I continue to get the "SysProtect" download window on both I.E. and Mozilla. Followed your steps listed to clean my system, but same "Virtumonde" files appear each time I run Ad-Aware. Here is the Hi-Jack this log (after running Ad-Aware, see end of log for HijackThis log generated after restarting computer w/o running Ad-Aware):Logfile of HijackThis v1.99.1Scan saved at 9:48:28 PM, on 5/18/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeC:\Program Files\Norton AntiVirus\navapsvc.exeC:\Program Files\Norton AntiVirus\IWP\NPFMntor.exeC:\WINDOWS\System3... Read more

Answer:Malware - Virtumonde & Sys Protect?

Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order in which they are mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes.Step #1Scan again with HijackThis and check the following items:R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = - URLSearchHook: (no name) - ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)O2 - BHO: WTLHelper Object - {6D33B121-5C4C-4450-9D1F-7B67085CC199} - C:\WINDOWS\system32\jkhhe.dllO20 - Winlogon Notify: jkhhe - C:\WINDOWS\system32\jkhhe.dllAfter checking these items, close all browser windows except HijackThis and click "Fix checked".Step #2Please download VundoFix.exe to your desktop.Double-click VundoFix.exe to run it.Put a check next to Run VundoFix as a task.You will receive a message saying vundofix will close and re-open in a minute or less. Click OKWhen VundoFix re-opens, click the Scan for Vundo button.Once it's done scanning, click the Remove Vundo button.You will receive a prompt asking if you want to remove the files, click YESOnce you click yes, your desktop will go blank as it starts removing Vundo.When completed, it will prompt that it will shutdown your computer, click OK.Turn your computer back on.Please go HERE to run Panda's ActiveScanOnce you are on the Panda site click the ... Read more

7 more replies
Relevance 48.38%

We maintain several PCs from a library, a research lab for students in a university. Just recently bunch of malwares swarm inside the lab and nearly affected all the machines. Most of these malwares are being imported from student's flash drives in which they're freely allowed to plug on the PC's. So cleaning the infections was really tedious. We cloned the drives and some were fixed using anti-malware softwares. 
Each computer is running a Microsoft Security Essentials for virus protection, and that's it.

Our main problem is, how should we setup each PCs so that we can prevent those viruses from porting inside the system? Is there any particular software or windows configurations that can offer such functionality? MSE merely detects all these viruses and most of it already infiltrated the system and removing each as I said is very tedious and time consuming.
Maybe you guys got some efficient workarounds with this type of predicament.NOTE:
All PCs have the same hardware and uses Windows 7 32bit.

Answer:How to protect PCs from USB-malware carriers?

Simple, look at:
Have a great day!


11 more replies
Relevance 48.38%

I have read this thread and i am paying particular attention to #5 AntiSpyWare Tools, and it states ONLY USE 1 REALTIME BLOCKER So my question is, i use ESET'S nod32 Antivirus to protect my machine, but it has antispyware protection included. I also have Malwarebytes Pro providing real time blocking, so am i in effect useing more then 1 realtime blocker? If so what do i do about that? I paid for Malwarebytes Pro, not using it will defeat it's purpose and be considered a waste of money!

Answer:How to Protect yourself from malware Thread

You;re fine. One AV only, but you can have more than one AS (Anti-spyware ).

3 more replies
Relevance 47.56%

hello friends-i hope my title makes some sense. i wanted it to convey what i was asking about so people browsing could tell. cuz i couldn't find a question like mine.

i have a new hd completely installed and setup. my old hard drive is now the secondary master and although i still have the OS and programs installed, i never use it. lately i have been actively file-sharing via lime wire. i am behind a zone alarm firewall and running spyware blaster and AVG free. i also regularly scan with spybot S&D. i also scan each file with AVG b4 opening (thanks to majorgeeks for advising me on security)
however, i've been warned the limewire is notoriously risky as far as spyware etc. so my question is:

If i choose to open my secondary OS at start up, and browse and download these risky files to my secondary HD. will that protect my primary HD from infection?

if not, any other advice u have regarding the risks of file sharing are appreciated.

one thing i look out for is files that are too small to contain what they say they do. for example 100kb song files. i just dont download these.

Answer:2nd HD for dwnlds/protect primary from malware?

IMHO, I keep an operating system and a backup drive, without an operating system. Just put it on the same cable as primary slave. Frankly, if you are not dual booting 2 operating systems, theres no need to keep them both installed. That said, no any files on a second drive can, and probably will, affect the main drive, in your case, probably infect both drives. A drive formatted without an operating system for backup should be safe from virus and spyware infections, but can affect the other drive, in other words. Having that second drive is great for backups of important data in case of a need to format. I love having my spare drive. Your also correct about Limewire, but it is not specific to Limewire. Any file sharing application is a risk.

Did I answer what you needed?

2 more replies
Relevance 47.56%

My son went to an untrusted site and the computer was infected with the conduit searchprotect.  I tried removing it with Eset Home Security.
However, my PC is still acting strange. I think the internet is a bit slower. As well, when I try to run some .exe files, such as Eset's ERARemover tool, windows gives me an error "this app can't run on your PC".  I have windows 8.1 64-bit and have tried both 32bit and 64bit programs.
I can't attach a DDS log because it's now win8.1 compatible.

Answer:Conduit Search Protect and other malware?

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===These tools are compatible with your operating system.Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed by click... Read more

8 more replies
Relevance 47.56%

Topic title pretty much says it all. How can i prevent hijacking of my browser or even worse my entire computer? Last night i made a stupid move and attempted to download something off Pirate Bay, i read the comments and it looked legit. Since i didn't have a software that downloads the torrent i clicked on whichever one Pirate Bay offered me. The software was successfully installed and was downloading the program but it froze the halfway and my google chrome completely stopped working, Later on i found out that Conduit is a malware that sometimes installs itself without the user's permission and takes over the browser. Now i'm paranoid about downloading anything. By the way i have a supposedly good anti-virus : Bitdefender for which i paid good money! Very disappointed that it pretty much welcomed the bad malware with open hands and allowed it install itself. 

Answer:How to protect your computer from malware like CONDUIT??

attempted to download something off Pirate Bay : < Anything off these Torrents sites is 50 to 90% infected and not usually legalWinPatrol Free is one of the better programs to warn you if there is going to be an attempt to change your Home Page. This may help after you do a full scan with your Antivirus -Please download AdwCleaner by Xplode onto your desktop.*Close all open programs and internet browsers.*Double click on adwcleaner.exe to run the tool.*Click on Delete.*Confirm each time with Ok.*Your computer will be rebooted automatically. A text file will open after the restart.*Please post the contents of that logfile with your next reply.*You can find the logfile at C:\AdwCleaner[S1].txt as well.  Thank You -  

1 more replies
Relevance 47.56%

Will Ad-Aware only detect the malware in its definitions during a scan, or does it also prevent it from being installed on your computer in the first place? What about A2? Many thanks. - Tye

Answer:Does Ad-Aware protect your computer from malware?

No on both counts. Try Spywareblaster click here

3 more replies
Relevance 47.56%

If I visit a malware site with latest version of Firefox with the NoScript extension without allowing any scripts, whats the chance of me getting infected if I don't download anything?
Also, I hope this is the right place to post this.

Answer:Will using NoScript protect you from a malware site if..?

The NoScript Firefox extension provides extra protection for Firefox, Seamonkey and other mozilla-based browsers: this free, open source add-on allows JavaScript, Java, Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank).
NoScript also provides the most powerful anti-XSS and anti-Clickjacking protection ever available in a browser.
NoScript's unique whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known and even not known yet!) with no loss of functionality...
You can enable JavaScript, Java and plugin execution for sites you trust with a simple left-click on the NoScript status bar icon (look at the picture), or using the contextual menu, for easier operation in popup statusbar-less windows.Watch the "Block scripts in Firefox" video by cnet.
If I were using Windows and could only have one security program/ would be NoScript. I use it in Ubuntu, too.
There is a learning curve. It is not just install and forget. Install it and go to a popular site and then view all the scripts you never knew
were active on that site and are now blocked from running. You can click to allow just the site's scripting and still block all the others.
The ones that you want to play videos on will be one that you will spend the most time learning which script to allow only the videos to play.

11 more replies
Relevance 47.56%

I am a web designer and I just got permission to work from home for the next week. I am allowed to take my work laptop home for it. I would like some advice regarding the security concerns before I start the work.
I have heard about spyware and malware attacks that can cause severe loss of data. I don't want such things happening to me in my work system. As of now it's clean and no malicious files are present in the system. It's installed with Kaspersky Internet Security and ExpressVPN when connecting to the Internet. Will it help in protection from spyware and malware? I have seen articles mentioning not clicking on emails and installing antivirus softwares will help, but still I have heard a lot about such attacks. What else can I do to ensure nothing harmful will happen?

Answer:Will Kaspersky and VPN protect from malware attacks?

It being a work laptop, you shouldn't replace any of the pre-installed software, correct?

3 more replies
Relevance 47.56%

Hello,I recently managed to aquire a virus that seems to have taken over my computer. There's a bar that appears right below the address bar for internet explorer telling me to download the latest antispyware to protect my computer. I cannot pull up my Task Manager, my computer prompts me that it has been disabled by my administrator. My desktop background has been changed to a message stating the computer has several fatal errors. and occasionally music will play at random that i've never heard is my log:Deckard's System Scanner v20071014.68Run by Josh UWL on 2008-04-09 16:35:51Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --49: 2008-04-09 21:36:32 UTC - RP521 - Deckard's System Scanner Restore Point48: 2008-04-08 16:12:26 UTC - RP520 - Restore Operation47: 2008-04-08 16:08:59 UTC - RP519 - Last known good configuration46: 2008-04-08 16:08:42 UTC - RP518 - Restore Operation45: 2008-04-08 16:08:41 UTC - RP517 - Last known good configuration-- First Restore Point -- 1: 2008-04-08 16:08:11 UTC - RP473 - System CheckpointBacked up registry hives.Performed disk cleanup.Percentage of Memory in Use: 85% (more than 75%).Total Physical Memory: 447 MiB (512 MiB recommended).-- HijackThis Clone --------------------------------------------------... Read more

Answer:Protect.antivirus Malware Infection

Hi and welcome to Bleeping Computer! My name is Sam and I will be helping you. Please download ComboFix and save it to your desktop.Prior to running Combofix.exe you should disable your antivirus program and disconnect from the internet.Double click combofix.exe and follow the prompts.When it's done running it will produce a log for you. Please post that log in your next reply.Important Note - Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

10 more replies
Relevance 47.56%

I have somehow acquired some malware titled system tool protect your pc. It comes up randomly, asks if I want to scan, says I have over 800 Infections, and constantly prompts me to sign up for it to erase my viruses. I know this is malware, and I aquired it after my Norton expired. How can I remove it? Thank you!

I am using a Hp Pavilion Vista.

Answer:System Tool Protect your pc (malware)

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide

and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:

If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 47.56%

I am getting three screens that come up when ever I try to do work on any program. (1) Windows Security alert (2) Spyware Protect 2009 alert (3) Spyware Alert

DDS (Ver_09-02-01.01) - NTFSx86
Run by Kim at 10:54:20.07 on Thu 02/19/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2430.1853 [GMT -5:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)

============== Running Processes ===============

J:\WINDOWS\system32\svchost -k DcomLaunch
J:\WINDOWS\System32\svchost.exe -k netsvcs
J:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
J:\Program Files\\Agent\mcagent.exe
J:\Program Files\AIM6\aim6.exe
J:\Program Files\Windows Live\Messenger\msnmsgr.exe
J:\Program Files\Messenger\msmsgs.exe
J:\Program Files\AIM6\aolsoftware.exe
J:\Program Files&... Read more

Answer:Spyware Protect 2009 malware


Sorry for delayed response. Forums have been really busy. If you still need help with this post a fresh dds log, please.

2 more replies
Relevance 47.56%

I just got my degree and have not been able to find work so I can only thank all the people at MajorGeeks.
I am 'Gunk Free' but was reading the chaslang's post "dated 10-10-04, 21:52, How to Protect yourself from malware! - MajorGeeks Support Forums"; and under the firewalls to use "Outpost Firewall Free" is listed when I went to download it, it is Dated: 2009-05-08 is it still a good firewall to use?
Thank you in advance for your help.

At a point in time I was 01 of them that understood some binary.

Answer:How to Protect yourself from malware! post question

Yes, it is still a good firewall. Just make sure you keep it updated as you would with all other protection software.

1 more replies
Relevance 47.56%

Malware Protection is a rogue anti-virus application that runs a fake system scan and then concludes that your computer has a malware infection or serious security/privacy issues. To fix the malware infection you must pay a fee, about $50. The rogue program copies user interface elements from real programs and it looks like a legitimate application. Plenty of people shell out $50 to register this fraud and that's a big problem because if you're transacting with these guys online you're offering them your credit card details. Cyber criminals can later user that information to their benefit. You should protect yourself with common sense and legitimate anti-virus software because such fake anti-virus applications as Malware Protection now represent about 20% of all malware in circulation. If you made a mistake and purchased it, please contact your credit card company and dispute the charges. And if you still have this fake AV on your computer, please follow the removal instructions below to remove Malware Protection and related malware for free.

Manual Malware Protection removal instructions:

1. Right click on the "Malware Protection" icon, click Properties in the drop-down menu, then click the Shortcut tab.

The location of the malware is in the Target box.

NOTE: by default, Application Data folder is hidden. Malware files are hidden as well. To see hidden files and folders, please read Show Hidden Files and Folders in Windows.

Under the Hidden f... Read more

Answer:How to protect and clean your computer from malware

Is this a removal guide for this rogue or ?


1 more replies
Relevance 47.56%

QUESTION _Sticky:" How to Protect yourself from malware! "

In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?


"6) Adjust Active X security settings

* In Internet Explorer, click Tools, Internet Options, Security. Click on the Internet globe. Then select Default Level, then click OK. Now select Custom Level and scroll down to the ActiveX controls and plug-ins section (some may already be set correctly):
o Set Download signed Active X controls to Prompt
o Set Download unsigned Active X controls to Disable
o Set Initialize and Script ActiveX controls not marked as safe to Disable
o Set Installation of desktop items to Prompt
o Set Launching programs and files in an IFRAME to Prompt
o Set Navigate sub-frames across different domains to Prompt
o Set Allow paste operations via script to Disable (see: )
o Click OK and OK again. "

Answer:QUESTION _Sticky: How to Protect yourself from malware!

Re: QUESTION _Sticky:" How to Protect yourself from malware! "

jilter said:

In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?Click to expand...

Yes! Some applications will automatically launch IE sessions since that may be all the can use. Also you need to use IE to be able to get all of your Windows Updates. And some websites (just like some applications) do require IE.

1 more replies
Relevance 47.56%

If you know about security in website and computer then tell me how to secure Website from Malware Attack. And what is the role of Google Webmaster in security purpose?

More replies
Relevance 47.15%

My computer is infected with a malware program called "Spyware Protect 2009" how do I get rid of it? I followed instructions and have copied DDS and Attach files below. popup windows keep appearing saying my computer is infected with a virus and I need to install their software.
DDS (Ver_09-03-16.01) - NTFSx86
Run by John Schlatterer at 2:44:20.15 on Mon 03/16/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.254.96 [GMT -4:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)
FW: McAfee Personal Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
C:\Program Files&... Read more

Answer:remove malware, Spyware Protect 2009

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No input is needed, the scan is running.Notepad will open with the results, click no to the Optional_ScanFollow the instructions that pop up for posting the results.Close the program window, and delete the program from your desktop.Please note: You may have to disable any scri... Read more

2 more replies
Relevance 47.15%

Hi everyone,
I want to tell my story about protection of ESS on my computer. Today, when my friend plug in his USB into my computer, I noticed that his USB shows only 1 USB shorcut in explorer. Before, my previous machine is infected by this malware type (malware creates USB shorcut) so I have experience with it. And when he plug his USB in, I run ESS Smart Scan but it found nothing. This afternoon, when I plug my USB in my machine, I saw that all things in my USB turn into 1 USB shorcut, I run Smart Scan again with my USB and found nothing, too (I also run a scan by Zemana AntiMalware, and it found nothing, too). After that, I installed MCShield AntiMalware Tool, and scan my USB with it. Magically, It found .ink malware in my USB and cleaned it sucessfully! This is screenshot about log of MCShield:

And now, I'm very disapointed with my ESET . It makes me got infected easily! . How do you think about my problem, please share with me.

Answer:ESET Smart Security can't protect me from .lnk malware

ESET protects against malware coming from USB devices.
Probably did not recognize the malware that caused the problem.
You have done well to use McShield.

71 more replies
Relevance 47.15%

> I am using sify ISP with limited data tarnsfer package.
>My ISP is showing that i have downloaded 1200 MB which is not true.
>I did'nt turned on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days
>I think some one has hacked my system.
So i am requesting you to tell the best way to protect my system from malware and internet
Thanks in advace.

Answer:Best way and best software to protect my system from malware and Internet?

Security is a wide topic. If you browse aound on this forum, you will find recomendations on Anti Virus and Anti Spyware and Firewalls.
If you have Windows XP Professional, MS published an XP Security Guide v2 and tells you how to harden XP Pro. It is available here:

If you have Vista, there is a Vista version of the Security Guide:

Hardening an OS gives the attacker a smaller attack surface by disabling unnecessary features. XP after a fresh install is quite bloated and has a lot of places for an attacker to poke at.

Also you should consider running it daily using a limited user account, as that prevents some malware from working and prevents malware from making system wide changes. In the Unix world, nobody runs a machine daily using the admin account. MS acknowledges that and has made UAC for Vista to achieve the same end.

Here's more details about that:

Also along the lines of protection and prevention, use Mcafee's Site Advisor, available here:

It places a site rating besides every google result and tells you about malware infested sites before you go clicking on them and instantly infecting your machine.

3 more replies
Relevance 47.15%

How does comodo firewall protects against signed malware at cruelsister's settings? Also i can disable its processes via task manager. How its self protection?
I am going to use it on my system with cruelsister's settings but these issues are my main concern which do not let me believe in comodo's power.
So,help me out and give the required info.

More replies
Relevance 47.15%

To start let me thank you for putting all these great programs in one easy to download area! Just following this guide has cleaned out several items from my supposedly secure system.

I did find one broken link however and got lost going through the giant comodo forum trying to find another thread with a similar ease of use allure.

This one: Configuring CIS for Maximum Security with ZERO Alerts for Novices

If you could give me an updated link it would be much appreciated.

Answer:Broken link in: Sticky How to Protect yourself from malware!

Thank you for bringing it to our attention. We will see what can be done to fix that issue.

2 more replies
Relevance 47.15%

> I am  using sify ISP with limited data tarnsfer package.>My ISP is showing that i have downloaded 1200 MB which is not true.>I did'nt turned  on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days>I think some one has hacked my system.So i am requesting you to tell the best way to protect my system from malware and internetThanks in advace.

Answer:Best way and best software to protect my system from malware and Internet?

Before anyone tells you that,   it may be that someone connected to your internet connection, via wireless?How are you connected to the internet?Because if your computer was off on those dates, even if a hacker got into the system the computer needs a physical connection to the internet, while the computer is off, there is no way of obtaining an internet connection.

3 more replies
Relevance 47.15%

Hi Folks, Yes I've got the privacy protection Malware, currently running windows XP on a dell laptop and I cannot start up in the safe mode, no Internet start up or execution of any programs allowed. Looks like I can strip documents & information off but thats about it. Can anyone share my options to cure this problem?

Thanks in advance - L

Answer:OK I've got the Privacy protect malware & no safe mode

Hello LarsLind,I moved this to Am I Infected.For the connection try these...Please click Start > Run, type inetcpl.cpl in the runbox and press enter.Click the Connections tab and click the LAN settings option.Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.Now check if the internet is working again.ORGo to Start ... Run and type in cmdA dos Window will appear.Type in the dos window: netsh winsock resetClick on the enter key.Reboot your system to complete the process..Please follow our Removal Guide here Remove Privacy Protection (Uninstall Guide) .After reading how the malware is misleading you ...You will move to the Automated Removal InstructionsAfter you completed that, post your scan log here,let me know how things are.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.Also the other tool log.. A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller. will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.

1 more replies
Relevance 47.15%

Hello. My kid's PC -- an HP (Model M7567C, with 2, 260 GB hard disks and 2 GB RAM) is infected by "Spyware Protect 2009" malware. The malware repeatedly displays at least 3 different pop-ups saying there's a spyware infection and offers to sell a fix; the program also prevents Explorer from working properly. There are no obvious programs/processes to shut down from the control panel. The machine has Zone Alarm Security Suite installed - I'm not sure if my kids ignored a warning or if the software mistakenly let something in. Zone Alarm technical support said to try running Malwarebytes' Anti-Malware automated removal tool, but the program doesn't seem to run (nothing happens after the program is downloaded and launched). I tried running Zone Alarm virus and spyware scans, but the program runs slowly and eventually hangs (I think I ran the Zone Alarm scan in the Windows Safe mode). I can boot the PC in Windows Safe mode, but unfortunately there is no useful restore point. I can boot the PC in the normal Windows mode but it takes 2 or 3 cold starts. I can use Microsoft Explorer (through a wireless LAN connection), but in the normal Windows mode Spyware keeps hi-jacking Explorer and displaying its rouge messages.

Before I give up and reformat the hard disk and re-imaging the disk from the backup system disks, I would like to try a less time consuming solution. Any suggestions are welcome! Thanks!

I ran the DSS scan as instructed. Here are the res... Read more

Answer:"Spyware Protect 2009" malware problem

I wanted to add some new information to my original posting that seems to be related to my problem.

When my spyware infected PC boots, I get the following messages:

"The application or DLL c:\windows\system32\digeste.dll is not a valid windows image."

"View Manager has encountered a problem and needs to close."

"Error loading c:\windows\griwapaxim.dll. The specified module could not be found."

I noticed that there was a Windows update available today (the February update of Microsoft's anti-spyware program). I installed this application; after this, Zone Alarm Suite was then able to run (up to now, it just hung up), and 2 items were quarintined: WIN32.SYSGUARD adn WIN32.TROJAN.FAKEALERT.IEH

However, there are still problems with my PC. I still can't get Malwarebytes' program to run, even when I rename the *.exe file to *.bat. It seems like whatever is still injecting my PC interferes with any anti-spyware/malware program from running properly and interferes with the operation of Explorer.


4 more replies
Relevance 47.15%

I finally found a fix to the malware the the Virus Protect Pro created and it cleaned out everything. The free software (to use and clean) is called Super AntiSpyware (that's quite some name) and you can download the free home version at
I'm going over there now to donate some money as it was my stupidity that had me lose about 6 hours trying to fix what I did. It's always nice to find a hero.

With blessings for a great day.

More replies
Relevance 47.15%

I would really appreciate some assistance with "Internet secruity designed to portect" malware and/or virus.  I have attempted to remove this with no luck.  I did install and run Malware Bytes.  Initially it listed several virus which I removed.  However, I still have a problem.  Anytime I try to run/download anything it is blocked by this annoying virus.  What can I do? Any and all help would be greatly appreciated.

Answer:Internet Secruity Designed to Protect Malware Help Please

Hello, I moved you from WIN7 to the Am I Infected forum for now.
Please try following this GUIDE.

1 more replies
Relevance 46.74%

Hi, i'm having a problem with my web browser since using the malwarebytes anti-malware scan. Before I ran the scan and removed the infections it found, I was able to open webpages and go to sites although when i would try to search it would redirect the page. After I ran the scan and deleted the infections, I tried to open a webpage and it said it couldn't display it although I was connected to the internet. One of the things the scan found said "adware.mywebsearch" I would assume that was the reason it was redirecting the page. As of right now, I have done a system restore to a point before i removed the infections so i could display a webpage to get help. If someone can please help me, I would be very grateful.

DDS (Ver_09-03-16.01) - NTFSx86
Run by Leslie at 14:54:14.01 on Wed 05/06/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.496 [GMT -4:00]

AV: CA Anti-Virus *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\CA\SharedComponents\HIPSEn... Read more

Answer:malware agents/koobface,spyware protect removal

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

2 more replies
Relevance 46.74%

I've been using AVG, and have bought the full version, yet was confused with what I had to do.  Can anyone tell me which product is user friendly, yet a good system choice.  Thanks,
Would be appreciated. 

Answer:What is a good product to buy to protect and remove virus, malware etc...

My personal choice is ESET NOD32 Anti-Virus if choosing a paid for program as it leaves a small footprint...meaning it is not intrusive and does not utilize a lot of system resources. Kaspersky Anti-Virus is also a good choice if looking for a paid for program. If you don't want to pay then I recommend avast! Free Antivirus.For more specific information to consider, please read:Choosing an Anti-Virus ProgramSANS Institute Choosing Your Anti-virus SoftwareImportant Fact: It has been proven time and again that the user is a more substantial factor in security than the architecture of the operating system or installed protection software. Therefore, security begins with personal responsibility and following Best Practices for Safe Computing.

6 more replies
Relevance 46.74%

Hey guys, I am sure you can relate to my current woes here. I have a family member who is just always getting malware on their computer. Getting tired of cleaning it up so frequently and I wanted to ask you guys what you do. Personall I install Chrome and MSE, and set MSE to a Full Scan once a week with real time monitoring. I also preach safe web surfing, but honestly, it's like telling a Crack Head that crack kills.

So what do you guys do to try to ease the pain of fixing a family members computer?

Answer:How do you Setup your family members computer to protect from malware?

They now have Macs

46 more replies
Relevance 46.74%

I have recently been infected with a fileless malware. I have run a scan with ksc and it reported some memory detection. So,i run a scan with fully updated avast free and emsisoft eek but they didn't find anything. Finally, i have to scan with zemana and only after it detected and removed a fileless malware,ksc was able to give my system a clean sheet. Does kaspersky and zemana the only one to protect against such attacks? I need a free tool to protect my system against such attacks. The detection by zemana was "trojan poweliks: fileless malware". I don't need any whitelisting software and i also sincerely think that even they cannot counter such attacks.

Answer:Do you know any free software to protect against fileless malware attacks?

avast and bitdefender free are both goof

23 more replies
Relevance 46.74%


I was just wanting to know the reason why Spybot S&D was removed from the "How to Protect yourself from malware!" sticky.

I am using version 1.6.2 since I found the newer v2 to be quite bloated and annoying. Should I still be using 1.6.2 since it still downloads the lastest malware signatures? Or is there an important reason why it was removed as a recommended antispyware tool?


Answer:Reason for Spybot S&D removal from How to Protect yourself from malware thread?

Just not that useful anymore and as you noted V2 is too bloated. We also never liked Teatimer.

You can still use the old version and make use of the bad download blocker and hosts file protection if you wish but I would not use Teatimer. Modern antivirus programs already included antispyware too.

1 more replies
Relevance 46.33%

Hello forum,

I have people around me that like to use my computer when I am not in front of it. Most of the time when I walk away from it I put it into sleep mode or do something to protect it... I have sleep mode set for 20 mins so if it's not active it protects itself... anyway sometimes I forget!

Does anyone know of a way I can have the computer auto protect itself every 5 mins popping up a window that says enter password or better still click on an icon or something to let it know I am the correct user?

Many thanks for any suggestions.

Answer:Need a tip to protect computer from other users while computer active.

Use an account password, and lock the computer when you step away from it using CTRL+ALT+DEL, and choosing the LOCK THIS COMPUTER option.

More info:
Password - Create for a User Account
Lock Computer - Create Shortcut

3 more replies
Relevance 46.33%

Hi Guys,
Can I begin by saying a MASSIVE thank you to you all-I'd be totally lost without your help
Ok, down to business-I've done as the guide suggests, performed the XP clean up, ran the programs and I've got all the logs which are hopefully attached. The problems started a almost a week ago when the dreaded "spyware protect 2009" screen started popping up and the icon lodged itself in my system tray and I got suspicious when there was no option to get rid of it-it's disabled my windows firewall, is blocking/redirecting my IE browser with it's phony msgs etc. If you need any more info or if I've somehow left something out/attached the wrong logs just let me know-it's purely out of ignorance and not laziness if that's the case!!!:-o

Thanks again- Cheree :wave

Answer:vundo/spyware protect 2009 malware-logs attached

here's the last log

6 more replies
Relevance 45.51%

Hello,Please help!!! I only have a couple of days to fix this comp before I leave!!!I am receiving security popups, Spyware Protect 2009 (I did not download) is in my task bar and keeps popping up with infiltration alerts, and IE keeps redirecting to displaying "Internet Explorer Warning - visiting this web site may harm your computer!" Then offering to link me to Purchase Spyware Protect 2009.Here is my DDS Log file and attachment.Thanks!!!peace.b.DDS (Ver_09-03-16.01) - NTFSx86 Run by John at 9:11:09.81 on Sun 03/22/2009Internet Explorer: 8.0.6001.18702Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.223.43 [GMT -5:00]============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exeC:\Program Files\Analog Devices\SoundMAX\Smax4.exeC:\Program Files\HP\HP Software Update\HPWuSchd2.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Program Files\QuickTime\qttask.exeC:\PROGRA~1\Nero\data\Xtras\... Read more

Answer:Unkown Malware/Rootkit security popups - Protect Spyware 2009

thank you! topic is resolved through off-post email reply.

Malware-bytes removal is the best!


2 more replies
Relevance 45.51%

User 1 logs in and works does whatever... Doesn't log out but screensaver goes back to user screen. 
User 2 logs in (switching users - not logging out user 1) and gets to work. 
Sometime later (ie. not right away) and not at a prescribed time, the network stops working.  
I try to disable / enable the network adapter and the machine freezes.   Reboot fixes problem.
If user 1 or user 2 is the only one logged in then never a problem.
Anyone heard of this? 
Thanks for any help!

Answer:Multiple Windows 7 Users-Switch between Users-network stops working

When switching users, it's always a good idea to have User 1 close out any applications and documents they have open and then log out before User 2 logs in. It sounds like you have fast user switching enabled, but I'm not aware of that causing any network issues -- unless User 1 was doing something that required a network connect.
Check the Event Viewer for error logs from the time it froze when you tried to disable and enable the network adapter. Post the event ID and description here if you need help diagnosing the issue from the log files. Perhaps another fix is to disable fast user switching, so that users are always forced to log out before someone else can log in.

1 more replies
Relevance 45.51%

hi guys,

really need some help on this one cause i cant seem to get how something that sounds so simple is so hard to do.

i got a client with a workstation that has a local user account on it.
they also have a domain which he has another account on there.

so i have local account joe1 and domain account joe2. now i need to get joe 1 to combind and merge outlook and my docs with joe2. and then get joe2 to stay on the server so that it remains a account that can be accesses on any computer on the domain network. with this in mind the user profile needs to be saved on the server and the profile can be copied to the computer that his sitting at when he loggs on.

anyway i can figure out how to move the local (joe1) account to the server (joe2)i have tried a command moveuser but i keep getting a parameter error on there (error 87) .

i typed it like this

moveuser joe1 (company doamin)\joe2 /c:\\(client machine)

please can anyone help me one this

Answer:migrating local users on xp to domain users on a windows 2003 server.

prob best n easiest way to do it would be to FAST the local profile to the server then log in with the domain profile and FAST it back

1 more replies
Relevance 45.1%

My sister has an android, I have a windows, She connects through facebook, but I have to use the gamertags. Is there anyway we can be neighbors?

More replies
Relevance 44.69%

I am a Media Center user and in my home its my only computer.
I use Win7 for Work and Taking Care of Stuff for the Home...
and about 2 years ago I went from a part time Media Center User to
a Hardcore record everything on cable before I cut the cord user.
But after I cut the cord and go to Antenna I am just at the range where
TV Signals arent stable unless I install a 50foot tower and a really large antenna.
But even so I will want to record everything that way when 2 shows conflict during primetime
I will have it to watch when Jerry Springer or Judge Judy is on.
I will also have everything I have recorded off of Cable and I will be Legal
meaning watching torrents won't get my internet shut off
Which means my Phone would also get cut off along with my ability to make money as
a developer part time...
Streaming might be the solution for some people but it comes with a cost.
Either you are paying for services that add up to a higher cost than your cable or dish packages.
You are forced to resort to illegal torrents or sites.
or you end up paying higher costs for internet because it takes a ton of bandwidth to stream HD 1080p to the living room, kids room, parents .. whatever all at the same time ..
That free Gigabit Google ain't no where to be seen... so you will be buying 100-200Mbit plans so you can keep your TV, Phone, Alarm / Video Surveillance online at the same time and still surf the web and update your android apps on your cell...
You ever had Video Streaming, someo... Read more

Answer:15% of Windows Users are Media Center Users that Can't Upgrade

Please check this DVBLink wiki
I used this app a while ago to watch and record IPTV on Windows Media Center. But I think they can do it with other sources too. The latest version can record TV server side so you don't need a Windows Media Center anymore. And now I use Plex server for all of my Video stuff instead of Windows Media Center.
It's really a shame MS stopped so many successful apps.

more replies
Relevance 44.69%

Hi once i have read some of your arhive threads last 6-27-08 i began to follow all of the steps from cleaning, defrag and Removal. I found out my PC had been infected with Trojan.Vundo(it was detected by malware)... I think it started when i downloaded last 6-26-08 a file at Bitlord. The first virus that was detected was a backdoor.trojan the Norton Anti-virus detect it and remove it. So i thought it was ok when i noticed my PC is slowing I already think that there are still problems with my PC. So i run again the Anti-virus and when it reaches 24% (estimated) my PC reboot and my keyboard got stalled and in my monitor it is BAD BIOS. but when i manually reboot it, it just jump to windows and didn't do the normal process when booting... and everytime I scan my PC with my AV it always reboot so i try to search the net and find you guys... a bit STRICT but helps us more to know and learn how to fix things with our PC

1. From cleaning guide my pc was running better than it was before...
2. From the Malware Removal Guide i don't know if i got the right proceedure
but got some problems...
a. SAS - it doesn't goes blue screen,but my problem here is when it attemps to scan my files it becomes stalled. the first time i ran it i left it for almost 6 hours... (thinking it would still work) so reading from the procedure if it doesn't work proceed to the next
b. Spybot - I dom't have problem here works really great
c. MAM - no problem he... Read more

Answer:Trojan.Vundo,Malware.Trace and Problems on boot and Norton Anti-virus Protect

here are the second logs of HJT and Combofix.

BTW,when i right-click all my folders and files and choose properties it seems that it has security tab and when i click the security tab there's been so much users and administrators in it. Is my files been publicly displayed or does this HighJacka** i mean Hacker get and manage my files...


16 more replies
Relevance 43.05%

Malware miscreants have crafted a cross-platform worm targeted at OpenOffice users that's capable of infecting Windows, Mac, and Linux computers.
The OpenOffice/StarBasic macro worm, dubbed BadBunny, is a proof-of-concept worm that's not been seen outside the lab. Most anti-virus firms describe it as a low-risk threat.

OpenOffice users are liable to get infected if they open an OpenOffice Draw file called badbunny.odg. If open, the file downloads and displays a pornographic jpg image of a man dressed as a rabbit making the beast with two backs with a scantily clad woman in a woodland setting.
How very fur-verted.
Meanwhile, a macro included in this payload performs different functions depending on whether victims are running Windows, MacOS, or Linux. On Windows, for example, a JavaScript virus is executed and a mIRC script is run. Linux boxes are infected with a tiny Perl script and an XChat script. Mac OS systems are infected with a Ruby script virus.
The dropped XChat and mIRC scripts are used to replicate in an attempt to distribute the virus. Sections of the code also attempt to knock out access to anti-virus websites.
The malware was writen by the d00mriderz VX team, a group that's written StarOffice malware in the past. The Stardust virus, created by the same group in May 2006, tried to download a picture of porn star Silvia Saint. BadBunny is the most complex sample of such malware to date and the first that attempts to infect multiple system platforms, at least in... Read more

More replies
Relevance 43.05%

Repaired a Dell dimension 3000 for a friend.Bad PS.Trying to clean up malware.Computer has 4 user accounts set up on it.he gave me his password and i'm cleaning it up with spybot,adaware and some other cleaners.Seems like before when i cleaned a computer up with multiple users i had to go into each users account to get all the malware off computer.I only have his password.Seems to be alot of crud on it.should i try and get the other 3 passwords or is there another way to make sure i get the malware off the entire computer?

More replies
Relevance 43.05%

kind of reiterating my other thread that didn't garner a response - the logs are brand new --
hi, I have the only admin account on a laptop I share with 3 other people. I really don't know what the teenage babysitter is doing when she is on. No one is supposed to be running any p2p or other bad stuff but I cannot say for certain.

It is running very slowly compared to a desktop on the same router. I tried to run Panda and gave up after almost 3 hours the first time - it wasn't even a tenth of the way through ---- this time no trouble??? log is below. It had found a cookie it labeled spyware,, that isn't on my cookie list. I'm guessing the babysitter may be the one but could be my spouse.

How do, and will I be, able to get rid of malware that the other users have gotten? Do I log on as my username with admin privileges, or is it different if I log in as Administrator?

I do not know the babysitter's password for her logon. I guess I could ask her for it but I would rather get rid of her malware and talk to her about what she has done later, without also being in the position of knowing about her online banking and whatnot that is none of my business and that I don't want to interfere with.

So - please help! As always, thank you.
I disabled kaspersky before I ran HijackThis.
No extra.txt was generated. I'm putting main.txt here and will attach the Panda log.

Deckard's System Scanner v20071014.68
Run by Administrator on 2007-12-06 13:07:53
Computer is... Read more

Answer:[SOLVED] laptop, several users, malware and s l o w

I'm not seeing any malware in these logs.

For a slow machine, have a look at this information out together by our colleague, Miekiemoes:


Open HijackThis and click on 'Do a System Scan Only'. Check the following entries if they exist (make sure you do not miss any) and click Fix Checked

O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) -
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} (Java Plug-in 1.6.0_01) -
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} (Java Plug-in 1.6.0_02) -

Close HijackThis now.


Other than that, I'm not seeing any issues. Cookies are really nothing to worry about.

They get installed on your computer everytime you visit any webpage. Now some of those are good cookies that get installed for ease of use for next time you visit the same page, but some cookies are spyware used for tracking users surfing habits.

Most of those cookies are third party cookies that can be blocked:

In Firefox go to Tools > Options > Privacy > Cookies

Click Exceptions, identify the site you want to block, and click on Block.

In IE go to Tools > Internet Options > Privacy and click on Advanced in the Privacy tab

Now put a check next to "Override automatic cookie handling"

Set first party cookies to... Read more

3 more replies
Relevance 42.64%

This may well be a stupid question - if so, I apologise.On my wife's laptop, I have her set up as a standard user, while I am the Administrator. We use Vista firewall, and AVG anti-virus. I also have SuperAntiMalware, which I use to scan the system each week.My question is, does such a scan (initiated by me) look at all the files/folders on the HDD? Or, does she need to run the scan as well?Thanks

Answer:Anti-malware scan on a computer with different users

If you are logged into an administrator account, any typical malware scanner should do all files and folders. Now, registry issues is what may be a concern. If there is a malware issue in HKEY_CURRENT_USER in another account, that will not be covered because it is not loaded. Otherwise, you should be good.

6 more replies
Relevance 42.64%

The past couple of months have seen the web come under attack in a series of high profile security breaches, and if there's a silver lining to it all, it's that the attacks have made PC security a hot topic. Turns out it's a much needed one, not just for corporations, but for end users as well. According to a new survey by G Data, users have a lot to learn when it comes to malware and taking proper security measures.

G Data's Security Survey 2011 (PDF) set out to discover how well informed Internet users are about the genuine threats in cyberspace, the perpetrators' methods, whether younger or older users are more astute in terms of IT security, and handful of other related questions. Here are some of the key findings of G Data's online survey of 15,559 Internet users in eleven countries between the ages of 18 to 65:.....

Read more at: Maximum PC | G Data Survey: Users Don't Know Jack About Malware

Answer:G Data Survey: Users Don't Know Jack About Malware

Hi Shawn

Great info, I downloaded the pdf to read later, afterwards I will let you know what I think.

Thank You Shawn,,,,


8 more replies
Relevance 42.64%
Now they are holding pirates up with a fake lawsuit notice...

ICCP Foundation claims to be an international company operating out of Switzerland. They say they are &#8220;committed to promoting the cultural and economic benefits of copyright&#8221; while assisting their partners to fight &#8220;copyright theft around the world&#8221;.

In fact what they really do is operate a scam to extort money from BitTorrent users....Click to expand...

Answer:New Phishing malware targets Torrent users

11 more replies
Relevance 42.64%

If you had the latest java update (45)  are you safe from this?

Answer:Malware attack that hit Yahoo Users - Question -

Exactly which vulnerabilities were exploited aren't known at this point. As far as I know, there isn't a known unpatched vulnerability in Java at the moment. So, while I won't say that you're "safe" simply because I don't have all the information, having the latest version of Java certainly reduces the odds that you have been affected.

2 more replies
Relevance 42.64%

Hi all
Although a W7 Forum there are a lot of people here running Linux
I just want to point out to users that it's very easy to get carried away thinking that Linux is fairly safe compared with Windows as far as viruses are concerned.

While the OS is itself of course safer in that regard -- drive by code executed by browsers and rogue sites for example trying to fool people into giving away passwords and bank codes STILL work with Linux. (HTML code / browser operation etc is common to both Windows and Linux).

So dangers STILL exist for Linux users too -- always be on your guard when using the web WHATEVER OS you are using.

Your OS won't be infected so often or even at all but your Bank account can still get emptied or worse.

Don't be lulled into a false sense of security because you are using Linux or even a Mac.


Answer:Linux users -- Browsers / Malware still EASILY possible

Great advice, especially with the Ubuntu 10.10 Thanks!

9 more replies
Relevance 42.64%

You longer have to look to pr0n sites or public torrents to get your daily dose of malware, IBM will now ship it directly to you! But wait there's more!

On a serious note to all our those [H]ardAdmins out there, this is something you at least need to be aware of; IBM Storwize USB Initialization Tool may contain malicious code.

IBM has detected that some USB flash drives containing the initialization tool shipped with the IBM Storwize V3500, V3700 and V5000 Gen 1 systems contain a file that has been infected with malicious code.

Affected Products:
The Initialization Tool on the USB flash drive with the partnumber 01AC585 that shipped with the following System models may have an infected file:
IBM Storwize V3500 - 2071 models 02A and 10A
IBM Storwize V3700 - 2072 models 12C, 24C and 2DC
IBM Storwize V5000 - 2077 models 12C and 24C
IBM Storwize V5000 - 2078 models 12C and 24C

IBM Storwize Systems with serial numbers starting with the characters 78D2 are not affected.

Answer:Malware Direct from IBM - Storwize Users Attention!

And that's just the malicious code they WANT you to find.

1 more replies
Relevance 42.64%

Hi there

@The Apple "lovers". You might be interested in THIS when you keep saying Windows is full of malware. !!!

BBC News - Apple malware affects mostly Chinese users


Answer:Apple Users aren't invincible to Malware !!!!

No No jimbo it can't be. Are you posting a joke? Is it April 1?
What is the world coming to?

A Apple product infected by the Chinese.

I can see Oberlin College setting up Apple rescue centers for the computer and withdrawal centers for the owners. It will probable be declared a disaster zone and send FEMA to help.

This is going to be very painful for the special people.

Oberlin College is a private institution that was founded in 1833. It has a total undergraduate enrollment of 2,894, its setting is suburban, and the campus size is 440 acres. It utilizes a 4-1-4-based academic calendar. Oberlin College's ranking in the 2015 edition of Best Colleges is National Liberal Arts Colleges, 23. Its tuition and fees are $48,682 (2014-15).

5 more replies
Relevance 42.64%


What's the best password protect protect software for folders?

Also if the password was forgotten or lost..would there be any way to acceess the file?


More replies
Relevance 42.23%

Having anti-virus software and keeping it up to date is no longer enough to keep from geting infected by malware.
A study by Panda Security revealed that 72 per cent of firms with up-to-date security software still had malware on their networks. The data - based on a sample of 1.5m users last year - also revealed that 23 per cent of home computers were infected. PCs protected by the security software from multiple vendors were affected by the problem.

The data comes from scans by users of Panda's ActiveScan online scanning tool.
Panda reckons the problem arises because the traditional anti-virus scanning approaches are no longer keeping up with the exponential growth in malware products. As a result, users are infected by threats that slip under the radar and leave little indication of their presence.
"The situation is getting out of control," said Luis Corrons, PandaLabs technologies manager.
In response to the problem, Panda Security is rolling out a change in its architecture so that malware detection is more automated. Clients are linked together through data centres that correlate data and push signature updates automatically. This approach, dubbed 'collective intelligence', is designed to overcome the shortcomings of the traditional approach of pushing out virus updates from a lab.
"We have automated the process and put it online," Panda's Pedro Bustamante explained, adding that the firm was moving towards the security as a service approach.
In ord... Read more

More replies
Relevance 42.23%

Firefox Users Targeted by Rare Piece of Malware (PC World)Posted on Thu Dec 4, 2008 6:51PM ESTResearchers at BitDefender have discovered a new type of malicious software that collects passwords for banking sites but targets only Firefox users. The malware, which BitDefender dubbed "Trojan.PWS.ChromeInject.A" sits in Firefox's add-ons folder, said Viorel Canja, the head of BitDefender's lab. The malware runs when Firefox is started.The malware uses JavaScript to identify more than 100 financial and money transfer Web sites, including Barclays, Wachovia, Bank of America, and PayPal along with two dozen or so Italian and Spanish banks. When it recognizes a Web site, it will collect logins and passwords, forwarding that information to a server in Russia. Firefox has been continually gaining market share against main competitor Internet Explorer since its debut four years ago, which may be one reason why malware authors are looking for new avenues to infect computers, Canja said.Users could be infected with the Trojan either from a drive-by download, which can infect a PC by exploiting a vulnerability in a browser, or by being duped into downloading it, Canja said. When it runs on a PC, it registers itself in Firefox's system files as "Greasemonkey," a well-known collection of scripts that add extra functionality to Web pages rendered by Firefox.BitDefender has updated its products to detect it, and other vendors will likely follow suit quickly, Can... Read more

Answer:FireFox Users Targeted By Rare Piece Of Malware.

Thank you Aussie for the info.

23 more replies
Relevance 42.23%

A pair of surveys focusing on end-users found some worrying patterns and misconceptions about Internet safety and poor security practices.

When it comes to enterprise security, user misconceptions of safe online behavior may be the weakest link, according to two recent research studies.

Users are in the dark about the "reality" of malware threats, according to G Data Software's global survey released June 24. The massive survey included responses from nearly 16,000 users worldwide, of which more than 5,500 were based in the United States.

More than 40 percent of the respondents from the U.S. said it was more dangerous to go to adult content sites than to hobby sites such as horseback riding, the survey found. In actuality, hobby sites are "usually easier" to attack and pose a "greater infection risk" than adult sites because visitors aren't expecting any danger, according to G Data.

"The level of awareness among Internet users is still inadequate and out-of-date in many respects," the researchers wrote in the report.

Nearly all the U.S.-based respondents said they would be able to recognize when their computer has been infected because their machines would crash, slow down or display pop-up windows, the survey found. These users don't realize that modern malware is usually stealthy and can exist on the computer for long periods to "surreptitiously" steal information without sounding any alarms, the research... Read more

Answer:Users Clueless About Malware, Careless About Security Measures

ouf ! i can still browsing porn sites without fear ! yeahhhh

2 more replies
Relevance 42.23%


by Dan Goodin
Microsoft developers have fortified Internet Explorer with new protections designed to prevent a type of attack commonly used to surreptitiously install malware on end-user computers.
The "isolated heap for DOM objects" made its debut with last week's Patch Tuesday. Just as airbags lower the chance of critical injuries in automobile accidents, the new IE protection is designed to significantly lessen the damage attackers can do when exploiting so-called use-after-free flaws in the browser code. As the name suggests, use-after-free bugs are the result of code errors that reference computer memory objects after they have already been purged, or freed, from the operating system heap. Attackers can exploit them by refilling the improperly freed space with malicious code that logs passwords, makes computers part of a botnet, or carries out other nefarious behavior.

More replies
Relevance 41.82%

The volunteer helping me on the "Am I infected" forum recommended I move my problem over here to this part of the site. I'm not sure if I'm at the point where I should reformat my computer, hope someone can help.Here's my original problems and the logs and help I've received so far: assume that you'll probably get a better explanation from my problems there, but here's the quick and dirty:Dell Laptop, currently disconnected from the Internet. (It was unable to access the bleeping computer forum anyway--just this site specifically, sites like Google, blogs, those kinds of things worked fine.)The problems started with the MS Antivirus 2009 fake spyware stuff, than the browser hijacks (I shut off proxy servers before coming to the forums), and then I got the Spyware Protect 2009 version of malware, and was only able to get Malwarebyte's to run by changing the extension to .bat after reading it here. Since I started working on these forums with DaChew, I've only followed his instructions.Currently working off my wife's computer, a Mac. Using a USB flash drive that DaChew had me immunize so that I can download the programs on this Mac and transfer them over to the infected Dell. Than I copy the logs onto the flash and move them here.Here's my DDS file, i've changed my name on it to USER.DDS (Ver... Read more

Answer:Serious Malware Infection, started with MS Antivirus 2009, Spyware Protect 2009, nfr.dll

Hello Thefactualopinion and welcome to Bleeping Computer,1. Please download GooredFix and save it to your Desktop.Select "2. Fix Goored" by typing 2 and pressing Enter. Make sure all instances of Firefox are closed at this point. Type y at the prompt and press Enter again. A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called GooredLog.txt).Note: If you receive a message saying that GooredFix needs your system to be restarted, please close all applications and reboot your system. Please also allow any registry changes that may be prompted by any of your security programs.2. Please read this tutorial carefully to download ComboFix from one of the locations specified, and save it to your Desktop.Double click the ComboFix icon to run it.If ComboFix askes you to install the Recovery Console, please do so..The Windows Recovery Console will allow you to boot up into a special recovery mode, in case your computer has a problem after an attempted removal of malware. This allows us to help you.Once the Recovery Console is installed, continue with the malware scan.Note: Make sure not to click ComboFix's window while it's running. That may cause it to stall or freeze.Please post the log from ComboFix (can also be found as C:\ComboFix.txt) in your next reply. If you have any questions along the way, STOP and ask them before proceeding !!Greetings,Thunder

6 more replies
Relevance 41.82%

A new Spam email campaign making the rounds in Germany are delivering a new variant of a powerful banking malware, a financial threat designed to steal users’ online banking credentials, according to security researchers from Microsoft.
The malware, identified as Emotet, was first spotted last June by security vendors at Trend Micro. The most standout features of Emotet is its network sniffing ability, which enables it to capture data sent over secured HTTPS connections by hooking into eight network APIs, according to Trend Micro.
Microsoft has been monitoring a new variant of Emotet banking malware, Trojan:Win32/Emotet.C, since November last year. This new variant was sent out as part of a spam email campaign that peaked in November.
Emotet has been distributed through spam messages, which either contain a link to a website hosting the malware or a PDF document icon that is actually the malware.
HeungSoo Kang of Microsoft’s Malware Protection Center identified a sample of the spam email message that was written in German, including a link to a compromised website. This indicates that the campaign primarily targeted mostly German-language speakers and banking websites.
The spam messages are written in such a way that it easily gain the attention of potential victims. It could masquerade as some sort of fraudulent claim, such as a phone bill, an invoice from a bank or a message from PayPal.
Once it infect a sy... Read more

More replies
Relevance 41.82%

detailed Malwarebytes Anti-Malware version 2.x online Users Guide
how to install

various scan options
Detailed info about general settings
Detailed info about various notifications
How to use malware exclusion, web exclusion

Malwarebytes Anti-Malware User Guide


Answer:Malwarebytes Anti-Malware version 2.x online Users Guide

whats the idea behind posting all these manuals ?

3 more replies
Relevance 41.82%

Hi I'm new (did I mention that I love you guys?)

So, I well actually my baby (my computer now referred to as 'my baby') contracted Vista Antivirus 2011. I was on youtube and getting zamzar to convert a file to an MP3 for me. I was downloading the MP3 as usually (never ever had problems with zamzar before!) and Vista Antivirus 2011 blocked all access to my files and the internet except to purchase their 'solution' product.

I'm not incredibly computer saavy but I knew something was up so I closed everything but everytime I tried to run anything (ex Microsoft Word) it prompted the 'Anti Virus Protection' and started the fake scan again.

I discovered that I could get onto the internet in the admin account. I then proceeded to have a long two hour conversation on my skype phone with my boyfriend before figuring out what to do about the problem...probably some 5 hours later I got to an online forum for fixing this (unfortunately it wasn't THIS forum and what they recommended didn't work).

I then followed their suggestions of saving and running a fix.reg file with these stats:

Windows Registry Editor Version 5.00

"Content Type"="application/x-msdownload"

[-HKEY_CLASSES_... Read more

Answer:Read and Run Me done, solutions don't transfer to other users- Antivirus 2011 malware

Re: Read and Run Me done, solutions don't transfer to other users- Antivirus 2011 mal

Here are the rest of the logs...

Again thank you in advance for your help. I can not purchase another computer at the moment and your assistance is saving my business! Blessings to Geek land!

Also, in some cases I did not know where to find the attachment (I told you...if it works I can use it so I copied the original log into a notepad, saved it unaltered to my desktop and send that instead. I hope this is ok. It seemed to have the same info.


10 more replies
Relevance 41.82%
Answer:MSFT exposes Firefox users to drive-by malware download

This would be a "goored" type of infection ... I'm not sure, but I think MalwareBytes' have been working on this bit of malware.

This is an example when scanned with Gooredfix:
=====Suspect Goored Entries=====

C:\Program Files\Mozilla Firefox\extensions\{E616A495-EBCA-4F9D-84B9-D04016D33CA9}

C:\Program Files\Mozilla Firefox\extensions\{775372EE-D619-4557-A9CC-44BB47A03EFA}

=====Dumping Registry Values=====

[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Mozilla Firefox 3.0.11\extensions]
"Plugins"="C:\Program Files\Mozilla Firefox\plugins"

[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Mozilla Firefox 3.0.11\extensions]
"Components"="C:\Program Files\Mozilla Firefox\components"

"{3f963a5b-e555-4543-90e2-c3908898db71}"="C:\Program Files\AVG\AVG8\Firefox"

"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\"

6 more replies
Relevance 41.41%

Malware distributed as UltraDefragger and SystemRecovery attempts to ensnare unwary users by displaying sensational and frightening alerts. A new twist: falsely notifying users that a hard drive is about to fail. Designed to trick users into purchasing an application to fix the non-existent "problems" that were detected. This malware goes beyond mere alerts, however. It moves files from All Users and the current Windows user?s profile into a temporary location, making it appear as though problems with the hard drive are causing files to disappear. It also disables a user?s ability to change wallpaper images and sets registry keys to hide certain icons ? giving the impression that programs are going missing as well.

Answer:New malware tricks users into thinking hard drive failure is imminent

I removed this malware scam from a friends computer last monday. I used the info found in this link to do it. was no access to files, no start button, task bar or desktop files, but following the instructions from the link seemed to do the job. If anybody knows differently, please let me know.

3 more replies
Relevance 41.41%

Facebook users just Beware!! Don’t click any porn links on Facebook. Foremost reason is that you have thousands of good porn sites out there, but there's an extra good reason right now.
Rogue pornography links on the world’s most popular social network have reportedly infected over 110,000 Facebook users with a malware Trojan in just two days and it is still on the rise, a security researcher warned Friday.
The Facebook malware disguised as a Flash Player update and spreads itself by posting links to a pornographic video from the Facebook accounts of previously infected users. The malware generally tags as many as 20 friends of the infected user.

"In the new technique, which we call it 'Magnet,' the malware gets more visibility to potential victims by tagging the friends of the victim in the malicious post," said Mohammad Faghani, a senior consultant at PricewaterhouseCoopers, in a mailing list post to the Full Disclosure infosec hangout. 
"A tag may be seen by friends of the victim's friends as well, which leads to a larger number of potential victims. This will speed up the malware propagation."

The malicious post will provide you a link to a porn video in one of your friend's posts. Once clicked, the malicious link will land you a website that will prompt you to quickly download and run a Flash update in order to play the video message purporting to be pornography.

Malware Poses as Flash Update Infects 110,000 Facebook Users within ... Read more

Answer:Malware Poses as Flash Update Infects 110,000 Facebook Users within 2 Days

Not just porn - I saw a guy infected with that sharing a gruesome vid of a car accident victim.

1 more replies
Relevance 41.41%

I posted a message and the malware teem and advance computer users seem to be in a debate on what is borderline not safe surfing.


Look I'm not here to debate on how you should secure OS or what programs you need has we can debate all year and the thread will get locked by the mod.There is enough threads here and tips here on how to secure OS and what software and tool you need.

But I find it shock the malware teem or Advance computer users did not point out the flaws in this thread

And this don't click on web sites or blogs blindly even if it is not free music , not free movies ,not free games ,not free software ,not free programs ,not porn ,not torrent or P2P,do not read every spam and junk mail !!!

I find it strange the malware teem or advance computer users did not point this out.

The malware teem or advance computer users was fast to point to threads on how to secure OS or what programs you need .But did not say much about borderline not safe surfing .

Please read a similar thread how to secure OS or wnat programs you need that will help.Click to expand...

I have not got any reply.Why no reply to this nessage .

Note I turn on the private messages now so please PM on what is the controversy.

Answer:malware teem and advance computer users in a debate over what is safe surfing

Greetings, nec209.

For what it's worth, the symptoms displayed by the original poster in this thread are not malware-related - this is clearly a browser crash problem, nothing more.

15 more replies
Relevance 40.59%

The How to Protect yourself from malware! Guide is good very useful information but it lacks information on other tools that have actually been found more effective at stopping Malware than just using realtime Antivirus/antispyware engines, that can stop unknown malware like Host-based Intrusion Prevention (HIPS), the D+ in Comodo, or spyshelter, ECT or Virtualization software which also is not covered that can isolate a threat so it doesn't even affect your Original OS files, like Sandboxie which isolates browsers and other files, or the sandbox in comodo that Isolates unknown files, or Bufferzone Pro Free, Returnil or Wondershare TimeFreeze which isolates everything in a virtual OS ECT

Also I don't remember their being an option to install ASK toolbar in any current comodo set up, they removed it in 2009.

Comodo has changed allot and none of the important Comodo IS features are covered?

Sorry if I sound like a Bug but Computer security is advancing and their are better and more effective ways to protect yourself than just using a realtime antivirus engine. and by the looks of it the Tutorial needs more updating anyways.

A Combo I like to use is
Comodo Internet Security, in Proactive mode with sandbox, antivirus, Defense +, and Firewall Enabled.

MalwareBytes Pro Antimalware in Realtime.

SpyBot SD Resident, Immunized.

SandBoxie for browsing the unknown ect.

PeerBlock to block malicious servers/ip's.

ThreatFire, Helps protect against known and unk... Read more

Answer:The "How to Protect yourself from malware!" Guide.

Welcome to Major Geeks!

Thanks for your comments.

There are quite a few tools that we don't list. That does not make them bad nor does it mean they are good. Comodo is listed in the How to protect thread in the antivirus and also in the firewall area. We do not go into some of the other areas of protection in detail for a couple reasons. One, the thread is meant to be as useful to ALL people with all computers ( old and new ) as possible. The newer forms of protection can be problematic for older/slower PCs with smaller amounts of memory. The second reason is that experience as shown that if all of the instructions in that thread are properly followed, you don't need sandboxes or HIPS anyway and you will not suffer from the effects that they have on PCs. Many many people of complained to us about how slow their PCs were after using tools like Threatfire and sandbox type software. In addition, use of these tools caused many PC novices to intermediate users all kinds of other grief and loss of information and loss of settings that they did not realize they were losing due to the sandbox affects.

Also we have had many, many, many cases where people have had all this kind of protection you mention installed, and still have gotten severely infected. And all this protection just made it harder to manually clean the PC. It did not stop the infections. The educated end user ( which is what that sticky is pushing ) is the most important piece of protecti... Read more

1 more replies
Relevance 40.59%

There is a very helpful sticky on this forum called "How to Protect yourself from malware!" authored by Chaslang. See It appears that it has not been updated since 2004.

I have a clean (I like to think) fairly new Windows 7 computer, and I want to keep it clean. Are there any new suggestions that supersede what is in Chaslang's old thread?

Answer:Updates to "How to Protect yourself from malware?"

Happy_Macomb said:

It appears that it has not been updated since 2004.Click to expand...

Very untrue. You are looking at the creation date, not the update date. See the end of the post where you will see:

Last edited by chaslang; 01-30-12 at 19:08.. Reason: Remove outdated tools

3 more replies
Relevance 39.36%

What antivirus are people using on Windows ME? My regular computer (with Windows XP) will not boot, so I am stuck using this older computer (with Windows ME) for now. I no longer have the Windows XP upgrade disk, or I would try to upgrade the OS, so I could get the latest browsers, etc. The Firefox version that works with ME is, and the latest version of IE that will work with ME is IE6!

What do I need to do to secure ME for use on the 'net?

I did find an earlier version of AVAST that works with ME, but it will take 2 hours to download at dial-up speed. I have DSL but cannot use a DSL connection from this computer (the port won't accept the ethernet cable, only a telephone wire for dial-up). Is it worth it to spend 2 hours downloading an old version of AVAST that was released in 2009?

If anyone has any suggestions for what I need to do to secure ME or how to find compatible anti-virus, please let me know. I am going round and round in circles on these searches for anti-virus. I think the answer is 'there is no current anti-virus for Windows ME'. Am I right?


Answer:How to Protect Windows ME?

Is it worth it to spend 2 hours downloading an old version of AVAST that was released in 2009?YES!If you're stuck using IE6 you need as much protection as you can get.I'd also look into seeing if you can obtain an alternative browserCheck out this link. I'd go with Avast! over AVG for a free AV.

6 more replies
Relevance 39.36%

I frequently recommend a Linux Live CD for WIndows system problems. If you do not have one, you would be well served to download one and burn for when the day arrives for you that you have a FURAR'ed Windows problem and you need to save your data before a reformat, or try to regaincontrol of your system.I recommend SLAX, but there are other great ones too. They are all FREE and just may save your *censored*. Google for the ones you want, then burn the file as an ISO with Nero or some other burning priogram and store it away, after you play with it for a little bit. A Linux LiveCD will write no files to your hard drive, so there is no danger. Itruns slower than Windows, because it runs totally from the CDROM and some (like Knoppix) have a LOT of compressed files that have to be decompressed "on the fly". This is an option that will not happen with Windows, by the way. Each contains basic software - wordprocessor, CD burning software, etc. and some, like Knoppix contain everything but the kitchen sink. These will run on computers that do not even have a hard drive installed. More RAM is a little quicker, but 256 is comfortable on SLAX. Linspire is the most WIndows like experience for a total newbie, but they are all pretty self explanatory. You will be able to reat and write FAT32, and read NTFS file systems.If you like Linux and want to try, most are quite happy with conventional hardware but don't think it is Windows. It's not and there will be some l... Read more

Answer:Protect Yourself When Windows Goes Down!

I would totally agree.  Linux Live CDs saved my *censored* a couple of times.  Good post.

11 more replies
Relevance 39.36%

All of a sudden today:

"Windows reports that computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the scan your computer. Your system might be at risk now."

Other windows popping up:
Antivirus software alert
"Application cannot be executed. The file wscntfy.exe is infected. Do you want to activate your antivirus software now?"

Can't run McAfee, or Malware, internet won't work.....but internet sites are popping up....not good ones!

I ran Malware in safe mode. it had picked up two infections. they were removed. but still the exact same thing is happenning. and now i am getting all the pop screens plus a red-x-shield in the bottom popping up a lot too


Answer:"windows security alert.....Windows reports that computer is infected. Antivirus software helps to protect..."


Please subscribe to your topic so that you will be notified as soon as I post a reply, instead of you having to check the topic all of the time. This will allow you to get an email notification when I reply.

To subscribe, go to your topic, and at the top right hand corner by your first post, click the Options button and then click Track this topic. The bullet the immediate notification bubble. Then press submit.

Lets take a look with Malwarebytes

Please download Malwarebytes' Anti-Malware from here:
Please rename the file BEFORE downloading to zztoy.exe instead of mbam-setup.exe

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

Double Click zztoy.exe to install the application.
* Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select "Perform Full Scan", then click Scan.
* The scan may take some time to finish,so please be patient.
* When the scan is complete, click OK, then Show Results to view the results.
* Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log w... Read more

9 more replies
Relevance 38.95%
Relevance 38.95%

I am looking for recommendations for keeping Windows 7 running smoothly. I used EaseToDo to go back to an earlier version of my operating system. That went smooth and I thought I should start protecting my system.

Currently I am using Microsoft Security Essentials.

Any recommendations for Anti-virus, Mal ware, etc would be greatly appreciated.



Answer:Software to protect Windows 7

Keep a read on this thread: New Security Needed

Along with MSE, MBAM, SAS, and CCleaner I also use Spyware Blaster, some use WinPatrol, and Windows Firewall - How To all free.

6 more replies
Relevance 38.95%

how to protect "WINDOWS" folder in xp? so that the files inside it cannot be deleted. because it happens to me that almost all of the files inside the WINDOWS folder are deleted and as a result the OS cannot be booted.

If you are thinking why i know that almost all of the files inside the WINDOWS folder are being deleted, well that is because i've make the harddisk (the one that has a problem) as a slave and found out that only 3 folders and 5 or 6 files are left inside the WINDOWS folder.

Answer:How To Protect "windows" Folder In Xp?

You will have to reinstall XP to get the computer working again
After that create a non-administrative ("Limited User") account and use that for day to day work so that you can't delete items within the Windows folder.

Be careful when installing programs or deleting files, and make sure you backup important data!

10 more replies
Relevance 38.95%

I'm running a P4 3.2 with 3gb ram. I recently had problems with the pc cutting out for no apparent reason and further to advice from people in more know than me, I have replaced first the fan unit on the graphics card (6800GT) and then the PSU with a Hiper Modular 580w unit. The latter seemed to solve the matter.Yesterday whilst surfing the net I suddenly hear the pc beside me go quiet - this is unusual as the cpu cooler is a large Gigabyte unit with a pretty loud fan atop a heavy sink. A moment later the system froze completely and dropped me to a blue screen with something like"Windows has closed to protect your pc. If this is the first time you've seen this screen please reboot as normal. If this is not the first time then please remove any recently installed equipment....."I rebooted the system ok, but quickly exited as I was freaked out.I can't reasonably remove the psu...I need it!Anyway the pc's been ok for a few days and obviously the psu works because of the reboot. Before the above occurred I was aware of but couldn't place, a modulating whine somewhere in the system which I now guess was the cpu's fan. Assuming that the sudden silence was the cpu fan cutting out, is it reasonable to guess that the system shut down to prevent the cpu frying?When I got the psu I also got a replacement sink and fan because I was already worried about these, is it equally reasonable to guess that the cpu fan is failing and I should go ahead and replace sink & fan?(Apologies if I'm aski... Read more

Answer:Windows has closed to protect your pc...

i am not much of a techie pc wise but i am with electronics and my first instinct is to say that you are right in your thinking and do exactly as your instict so far has told you (unless anyone out there with better knowledge advises otherwise)johhny.

1 more replies
Relevance 38.95%

hi,we have set up 1 server using windows server 2003 to our client who used one of our system/products. recently the server had been hacked and there was some changes on their website. so the question is, how and what can i use to prevent this thing from happening again in the future. pls proposed some ideas for both hardware and software.thanks..

Answer:how to protect server using windows OS from h

ADManager Plus: Active Directory Management, Reporting & Helpdesk Delegation SolutionApart from Bulk Management for all AD objects, ADManager Plus also offers 150+reports (for IT compliance) & helpdesk delegation! Specialty: Shortcuts for everyday AD & office management actions! Attraction: Affordable pricing and perfect scalability! Plus: Enterprise-Wide Password/Directory Self-Service Solution affordable even by SMBs!ADSelfService Plus is ?4 services sold at the price of 1?! This end-user product offers password self-service, Active Directory Self-Service Update, People Search, and Password Expiry Notifier (a very useful tool for VPN users). Plus: A tool for an in-depth auditing of Active Directory, Member & File Servers.ADAudit Plus is a valuable security tool that will help you be compliant with all the IT regulatory acts. With this tool, you can monitor user activity such as logon, file access, etc. A configurable alert system warns you of potential threats. Reporter Plus: A reporting and analysis solution for MS ExchangeThe tool offers Exchanger server traffic analysis, mailbox size, public folder size, & other important reports. It is also an important security tool as it points out inactive mailboxes and offers Mailbox & Public folder content reports!

3 more replies