The Mother Board
Collected Links : Virus/Spyware Information/Removal
Goto page Previous  1, 2, 3, 4, 5, 6, 7, 8  Next
 
Post new topic   Reply to topic    The Mother Board Forum Index -> Virus/Spyware/Security
View previous topic :: View next topic  
Author Message
Aussie
Mobo-fu Master
Mobo-fu Master


Joined: 22 Nov 1999
Posts: 10244
Location: Mackay, Queensland, Australia

PostPosted: Thu Nov 04, 2004 7:44 am    Post subject: Reply with quote

Fifteen free firewalls:-

http://security.tcmagazine.info/modules.php?op=modload&name=Reviews&file=index&req=showcontent&id=9




Aussie
_________________
Our lives begin to end the day we become silent about things that matter - Martin Luther King
Back to top
View user's profile Send private message
kltsin
Black Belt 2nd Degree
Black Belt 2nd Degree


Joined: 29 Jun 2004
Posts: 2792
Location: St. Augustine, Fl

PostPosted: Fri Nov 26, 2004 2:29 am    Post subject: Reply with quote

Hey all Im trying to write a page for newbies who want to learn more about internet security, I was pleased to find this sticky when trying to ask for opinions on my page

I know its very long and contains the same data somewhat but opionated.

it also has some plus's that werent talked about previously but i did not include many links to those, i will include those asap since they are a neccesity in my minds eye.....

Here it is...
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger
kltsin
Black Belt 2nd Degree
Black Belt 2nd Degree


Joined: 29 Jun 2004
Posts: 2792
Location: St. Augustine, Fl

PostPosted: Fri Nov 26, 2004 2:30 am    Post subject: Reply with quote

Keeping your PC Clean and other Security needs…

Safe Computing Habits…
What you don’t know can hurt you…
If you are going to use the internet you should be protected and know how to keep from getting into trouble.
Not knowing how and why things get installed and why a virus or other malicious program gets installed is more important and powerful than all of the software made to help protect you.
Think of it like putting a 8 year old girl behind the wheel of a bus and telling her how to start the bus and stop it and sending her on her way. Chances are she’s going to crash or go some where they shouldn’t.
Hey little girl want some candy…….
Yes I know that seems a bit harsh but in reality that happens everyday to millions of internet users who install Spyware or Malware on their systems looking for something free.
Sure you/she may get the candy but at what price, the seedy side often comes with the bad, basically don’t trust anything that is free and stay away from strangers.
All too often someone some one wants a cool screen saver or pretty icons on their system or to offer some other free game etc., they either download a .EXE file or allow a ActiveX script to install.
Many times this is the classic Trojan horse.
Take MINIGOLF for an example.
Sure it’s a really cute little FREE game, but it includes other software that opens a connection to a site and starts installing stuff on your system with out your knowledge.
This stuff I will simply call “MALWARE” even though it may include….
Spyware, watches where you go and other info about you.
Keyloggers (records every key stroke you make and sends it off to a someone)
Browser hijackers (creates a new start page and/or forces that all of your internet searches go through a site that you don’t want which then tricks the user to go to really shady sites that then install more crap on your system).
Adware, causes pop up ads to spontaneously show up when connected.
Dialers, using your modem to dial porn sites or 1 900 or over seas numbers..
Theres also more sophisticated programs that can see what you see, collect passwords etc..
(in general though Malware is not the correct term for all of this stuff but its easier to use than the above combined)
So if you are unsure of a program or ActiveX don’t install it!!!!
((((Pic of ActiveX certificate belongs here))))
Read the EULA when installing a EXE file and see if more than one program is being installed.
If you see something like …”would you like discounts blah blah or free blah blah when you install a program then definetly say NO, some decent software does include malware and gives you the option to not install it.
Chances are though that the initial program is not worth it if they are partnering with Malware dickheads and you can spend a few bucks to be safe.
P2P programs, well as far this goes they can be quite usefull.
I have lost many programs because of scratched cds or cant install a game because I don’t have the cd key because it was lost.
Even then I risked compromising my system.
If you STEAL then you have no one to blame but your self, if you download something and like it then buy it!!!!
Using cracks and hacks to steal a program is not condoned and what ever Trojan may lie in that file you deserve it even if you did previously own it.

Emails, if you don’t know who its from or even if you do don’t open exe files or scr files or zip files…
Even with scanning from a virus scan doesn’t mean they will be safe.


Programs To help Secure your system.


Security Holes in Windows.
Microsoft products will always be a target; everyone is looking for their vulnerabilities and exploiting them.
Although Microsoft is many steps behind in most cases, keeping your system updated with critical updates can definitely keep you safer than not doing so.
Again most of these instances deal with the Internet Explorer... But don’t fear SP2, if you have dial up then order the free CD from Microsoft from here.
Always check for security holes in your OS, there are a number of sites that can tell you whats missing from XP etc but simply using windows update twice a month should do the trick


Mozilla Firefox
Doesn’t Allow ANY Activex, great popup blocker, intuitive downloader, Tabbed browsing is awesome, its not a part of the system shell so if its damaged it can easily be uninstalled.
It also offers add ons such as thunderbird the email client you can use instead of outlook which is much safer than outlook as well since its not a Microsoft product..
It’s a must have program that far exceeds IE and can be downloaded in 10 minutes on a dial up connection.
http://www.mozilla.org/products/firefox/

Host files
A host file can block malicious web sites, any site put into a host file will be blocked.
Here are some good places to find host files.
(((links for that go here)))
Spybot S&D includes a very good one as does kazaa lite

Preventive Security Programs
These are programs that watch the systems, block malicious websites via the registry.
So if you click on the link of a malicious website it wont go there ever, or after its downloaded it can still block it from installing.
that’s a good thing..
SpywareBlaster from http://www.javacoolsoftware.com/spywareblaster.html
A must have !
SpywareGuard also from java cool keeps an eye on programs that try to replace or modify your home page or search engine and gives you the option to allow/deny changes http://www.javacoolsoftware.com/spywareguard.html
Spybot S&D’s Tea Timer is a very valuable thing, it watches over important registry changes, but even a veteran will have questions about it, its really hard to understand but if you want complete control this is the program for you. www.safer-networking.org
Spybot S&D also has a blocker for malicious websites and files.

Feel free to use these along side one another and overlap protection


Firewalls
Do to the availability of DSL/Cable and its decent price and speed benefits high speed bandwidth and size of internet content it is becoming more and more of a need more than a frill.
Having your PC on at all times it is nothing more than a house with the door wide open but you cant see someone trying to break in.
A firewall is basically a big door in-between your pc and everyone else’s, it allows some things to come in and to go out and can record what is trying to come in and go out of your system.
Although SP2 has a firewall as does XP in general it cant control ports and settings very well and has no log to speak of.
A good firewall does, most free ones cant be manipulated to close open ports but they do the job better than windows firewall can and windows firewall can do better than nothing at all.
If you have high speed internet definetly get a good firewall.
((( show firewalls and links here for the free bees)))
Only ever run ONE firewall at a time!
though XP’s can be used along with another I don’t recommend it.

Spyware / Malware Removal
Ad-Aware http://www.lavasoftusa.com/
Spybot S&D http://www.safer-networking.org/en/home/index.html
When it comes to removal of a Malware multiple programs are your best bet, some programs catch some while others catch the rest, this topic is based on freeware/donation ware as well.
Overlapping security and removers is a must.
Ad-aware does tend to put tracking cookies ahead to often when they really don’t screw up a system such as a real threat might. It also forces you to check each and every file in its critical list and check each one manually.

These 2 anti Malware programs are better than most Spyware programs though, only pest patrol is worth paying for and can stand alone as the best of the best, forget anything else.

Virus Removal
AntiVir- German based anti virus program, its not that bad but is often missing some newer definitions but it can scan single files unlike avg http://www.free-av.com/
AVG the leader in free anti virus programs, it can detect more issues than any other program or free online scan.
You cant install it if you don’t have an updated key, it may take 1.5 days or so on average to get the key to install the program, they key only lasts for 2 weeks.
What does this mean… it’s a pain in the ass to install, install antiVir instead until avg learns they need to change their install routine. http://www.grisoft.com/us/us_index.php complain to them as much as I have about why it takes so long.
Can you compare those two programs to Symantecs programs such as nortons anti virus?
Yes and no, Symantec can clean/find files better and can find more obscure virus’s and newer virus’s better, but Norton installs in every nook and cranny of the system and often is un-installable and is under attack by virus creators.
If a Symantec uninstall goes bad you are pretty much screwed, this happens a lot, I can remove almost any virus or Malware manually but I don’t stand a chance of removing a corrupt Norton uninstall.
Symantecs Norton AV and Mcafees AV cant compare to some other lesser name products though, both have been around along time though and use happen to have deals with any manufacturer of pc products to get their programs installed in one way or another…
Don’t pay for Norton and use avg or antvir instead until you pay for a product that is worth it.
Don’t get me wrong both are good but not the best.

Check your security settings.
Simply enough make sure you don’t have any weakness in your system.
I need to write a topic on fully encrypting ms passwords, file sharing, dealing with xp services and open ports?
This is an interesting topic and one that I feel I don’t know enough about and never will even though its simplicity is there.
Off hand default windows settings are okay, im not sure how sp1 and sp2 has handled some XP issues such as dcom, pnp and file sharing issues.
Also the law suite against MS made them change the way IE is installed and need to brush up on that as well.

Jasons toolbox offers OpenPorts.hta , this shows what is open on your system and what other users have faced via a open port.
I need to spend a month just going over the security policies in XP, but this link should be a great start and covers a ton of goodies.

(((links go here)))


Startup programs
This goes into 2 catagories programs that read startup items and identifying them.
Many programs read what is started and can modify them with ease and you never should have to pay for any of it like some programs boost about.
Finding out what each program is running is more important though, you should know what each file does.
Sysinfo.org has an online list also for clsids (BHO’s)
That info was created by pacman from pacs portal, he and Patrick Kolla (creator of spybot) and Tony klein and others helped build that list (I am one of the others ..). This is must have.
http://www.pacs-portal.co.uk/startup_content.php has all you need, well almost.

HiJackthis
This program is a nightmare for forum moderators like myself, everyone keeps posting HJT logs trying to get their system fixed.
It is an awesome tool and can be used to help fix a system but in no way in hell can half a million people post a log of HJT and expect a reply that is worthy
HJT logs are extremely informative but there just aren’t enough qualified techs to answer all of those questions properly.
There are beta versions of automated HJT log file sites that can help a user identify a possible issue but if adaware or spybot didn’t fix it don’t expect a miracle from this, you need a knowledgeable tech if you have issues.
http://www.spywareinfo.com/~merijn/downloads.html

Using msconfig…
I hate using it, in the old days of win 98 it was a lot worse than it is now but still msconfig is not a fix.

Any program that starts at boot should have an option to change that setting, if it doesn’t get rid of it.
Do you need real player or quick time to boot everytime your system does? NO!!!
Can you change it, not really. Both those programs hide that stuff or even if you delete the registry key real player comes back.
I hate that.
I really hate that.
The only thing that should boot when the system does is some security programs , graphics card task bar options and that’s it.
You can do away with real player and quick time too, there are other options such as the kl codec pak which uses an old ms media player to play everything from real player files to quick time to unfinished avi’s to xvid or divx, videolan from vcd can also do it and there are no nagging buy me screens

Winsock issues
Winsock utilities go here to repair corrupted winsocks

Other utilities
Some of the latest Spyware tries to block Spybot and ad aware from working properly.
Cool web search is one of them, well there’s cws shredder to kill cool web. http://www.spywareinfo.com/~merijn/downloads.html

Anti Trojan programs, most are not free since the complexity of it all is extremely difficult.
Once a few Trojans are installed all you can do is wipe the system and start from scratch, in most cases though running a simple SFC (system file checker can clean your system pretty good and replace most missing/corrupted files)

((link to sfc info)))


That’s all I can think of at this time, more worried about the missing links.
Surf safe

NOTE AVG has a new update avg 7 http://www.grisoft.com/us/us_index.php as of november 15th
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger
bdub
Black Belt 3rd Degree
Black Belt 3rd Degree


Joined: 19 Feb 2003
Posts: 3449
Location: Washington D.C.

PostPosted: Thu Dec 16, 2004 9:46 am    Post subject: Reply with quote

hijack this has bee updated to version 1.99

http://www.spywareinfo.com/~merijn/downloads.html
_________________
my main rig...
asrock 970 extreme3
AMD athlonII X3 440
zalman cpns5x performa hs/fan
crucial ballistix 2x4gb sport ddr3-1333
powercolor ax7750 1GBK3-H vga
antec neo he 650r
seagate 500GB 32M cache
toshiba 2TB HDD 64M cache sata3
seagate 1TB HDD 64M cache sata3
hitachi 2TB HDD 64M cache sata3
lg wh14ns40 bd burner
optiarc ad-7240s sata dvdrw (nec chipset)
Back to top
View user's profile Send private message
evasive
Mobo-fu Master
Mobo-fu Master


Joined: 06 May 2001
Posts: 36700
Location: Netherlands, Breda

PostPosted: Thu Dec 30, 2004 6:41 am    Post subject: rogue spyware removers and other stuff you do NOT want Reply with quote

pretty complete list:
http://www.spywarewarrior.com/rogue_anti-spyware.htm
_________________
We hate rut, but we fear change.



System error, strike any user to continue...
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger MSN Messenger
bdub
Black Belt 3rd Degree
Black Belt 3rd Degree


Joined: 19 Feb 2003
Posts: 3449
Location: Washington D.C.

PostPosted: Wed Jan 05, 2005 7:56 pm    Post subject: Reply with quote

I'd like to add a little tidbit to this post...
I use a program called "autogk" to do some video editing work, and i found out that somewhere along the line the author decided to put "dae.dll" into the install of autogk. i can only imagine it must be very recently (they are at 1.84 beta right now). Dae.dll shows up in hijackthis 1.99, and that's the only way i would have noticed it. did a search on it, and came up with this post...

http://forum.doom9.org/showthread.php?s=&threadid=87056

the author of the program does own up to doing it, and it turns out that a simple add/remove gets rid of it (with a reboot), so it's not all that damaging, but the practice does raise some questions which get delved into pretty deeply in the post. it's good reading for those interested.
_________________
my main rig...
asrock 970 extreme3
AMD athlonII X3 440
zalman cpns5x performa hs/fan
crucial ballistix 2x4gb sport ddr3-1333
powercolor ax7750 1GBK3-H vga
antec neo he 650r
seagate 500GB 32M cache
toshiba 2TB HDD 64M cache sata3
seagate 1TB HDD 64M cache sata3
hitachi 2TB HDD 64M cache sata3
lg wh14ns40 bd burner
optiarc ad-7240s sata dvdrw (nec chipset)
Back to top
View user's profile Send private message
Tramp
Brown Belt
Brown Belt


Joined: 22 Jan 2003
Posts: 303
Location: BFE - Washington

PostPosted: Thu Mar 03, 2005 10:18 am    Post subject: ONLINE SCANS Reply with quote

Here are all the online scans I could find
(repeated some from the first post)

I DO NOT know if they all will fix a Virus problem (or just id the Virus then try to sell you their product)

To me it does not matter I just use them to verify AVG. (free and good)

Trend Micro http://housecall-beta.trendmicro.com/en/start_corp.asp?id=scan
PandaSoftware http://www.pandasoftware.com/activescan/com/activescan_principal.htm
Norton http://www.symantec.com/cgi-bin/securitycheck.cgi
Mcafee http://ts.mcafeehelp.com/?siteID=1&resolution=&cid=13048
Back to top
View user's profile Send private message Send e-mail
netaces2k
Guest





PostPosted: Sun Mar 06, 2005 1:43 am    Post subject: Reply with quote

I think it's a good idea to go to http://www.grc.com/ and get a FREE security scan. It will test your general system for probes, pings and sweeps. Then it will test your firewall to see just how secure your system is.

Also, a security tip: Use a thing called IE SpyAd. It adds a list of banned sites to your IE browser, so that the browser itself will automatically refuse to allow the download and install of most spyware or adware software.

McAfee users: ftp://ftp.mcafee.com/pub/antivirus/datfiles/4.x/
This is where to get the SuperDAT file for McAfee VirusScan v4.x through v7.x. McAfee v8.x is a self updating system.
Back to top
evasive
Mobo-fu Master
Mobo-fu Master


Joined: 06 May 2001
Posts: 36700
Location: Netherlands, Breda

PostPosted: Sun Mar 06, 2005 3:12 am    Post subject: Reply with quote

Aussie wrote:
Fifteen free firewalls:-

http://security.tcmagazine.info/modules.php?op=modload&name=Reviews&file=index&req=showcontent&id=9




Aussie


Says invalid ID. confused
_________________
We hate rut, but we fear change.



System error, strike any user to continue...
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger MSN Messenger
EmilyB
Guest





PostPosted: Sun Mar 06, 2005 3:18 am    Post subject: Reply with quote

evasive wrote:
Aussie wrote:
Fifteen free firewalls:-

http://security.tcmagazine.info/modules.php?op=modload&name=Reviews&file=index&req=showcontent&id=9




Aussie


Says invalid ID. confused


mb_iagree:

Quote:
VirtuaNews Message
You have specified an invalid id, if you followed this link, please inform the webmaster here
Back to top
Display posts from previous:   
Post new topic   Reply to topic    The Mother Board Forum Index -> Virus/Spyware/Security All times are GMT - 8 Hours
Goto page Previous  1, 2, 3, 4, 5, 6, 7, 8  Next
Page 6 of 8

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2002 phpBB Group