Signup
LoginMalware Prevention
3 posts
-
-
Keep your system updated
Microsoft releases patches for Windows and Office products regularly to patch up Windows and Office products loopholes and fix any bugs found. Please ensure that you visit the following websites regularly or do update your system regularly.
Install the updates immediately if they are found. Reboot your computer if necessary, revisit Windows Update and Office update sites until there are no more updates to be installed.
To update Windows
Go to Start > All Programs > Windows Update
To update Office
Open up any Office program.
Go to Help > Check for Updates
Alternatively, you can visit the links below to update Windows and Office products.
Windows Update
Office Updates
If you are forgetful, you can change some settings so that you will be informed of updates. Here's how:
[*]Go to Start > Control Panel > Automatic Updates
[*]Select Automatic (recommended) radio button if you want the updates to be downloaded and installed without prompting you.
[*]Select Download updates for me, but let me chose when to install them radio button if you want the updates to be downloaded automatically but to be installed at another time.
[*]Select Notify me but don't automatically download or install them radio button if you want to be notified of the updates.
Java is another program that updates regularly to fix bug issues and loopholes in it. Here's the instructions for updating Java:
[*]Click here to visit Java's website.
[*]Scroll down to Java Runtime Environment (JRE). Click on Download.
[*]Choose the correct OS (Windows, Mac or Linux).
[*]Tick the Accept License Agreement box
[*]Click on Windows Offline Installation, Multi-language and save it to a convenient location.
[*]Run this installation to update your Java.
Remember to remove all previous versions of Java when you update it to a new version to prevent exploitation of the older versions left on your system.
Besides Windows and Java that need regular updating, antivirus, anti-spyware and firewall programs update regularly too.
Please make sure that you update your antivirus, firewall and anti-spyware programs at least once a week.
Backup regularly
You never know when your PC will become unstable or become so infected that you can't recover it. Follow this Microsoft article to learn how to backup. Follow this article by Microsoft to restore your backups.
Alternatively, you can use 3rd-party programs to back up your data. One example can be found at Bleeping Computer.
Make your Internet Explorer safer
For Internet Explorer 6
[*]Open Internet Explorer. Click on Tools > Options.
[*]Click on the Security tab.
[*]Click on the Internet icon.
[*]Click on the Custom Level button.
[*]Under Download signed ActiveX controls, select Prompt.
[*]Under Download unsigned ActiveX controls, select Disable.
[*]Under Initialize and script ActiveX controls not marked as safe, select Disable.
[*]Under Installation of desktop items, select Prompt.
[*]Under Launching programs and files in an IFRAME, select Prompt.
[*]Under Navigate sub-frames across different domains, select Prompt.
[*]Under Allow paste operations via script, select Disable.
[*]Click OK to apply these settings.
[*]If it prompts you as to whether or not you want to save the settings, press the Yes button.
[*]Press OK to exit the Internet Properties page.
For a pictorial guide, please refer to this article.
For Internet Explorer 7
Please read the article by Microsoft to configure Internet Explorer 7 properly.
Prevent a re-infection
[*]Get an antivirus
Here are some free antivirus programs, which offer real-time protection against most viruses.
Never have more than 2 antivirus programs running in real-time. This may cause conflicts within the PC and cause your PC to crash. If you wish to have 2 antivirus programs running, use the other one as an on-demand scanner.
AVG Antivirus Free
AntiVir for Windows 2000 and Windows XP
AntiVir for Windows 98 and Windows ME
avast! 4 Home Edition
PC Tools Antivirus
Norton, free with Google Pack
[*]Get a firewall
Here are some free firewalls to protect against intruders and know who is trying to communicate with your PC.
Online Armour Free
Sunbelt Kerio
Webroot Desktop Firewall --- need to register before you are able to download
Comodo Personal Firewall Pro version 2.4
[*]Winpatrol
Winpatrol is heuristic protection program, meaning it looks for patterns in codes that work like malware. It also takes a snapshot of your system's critical resources and alerts you to any changes that may occur without you knowing. You can read more about Winpatrol's features here.
You can get a free copy of Winpatrol or use the Plus version for more features.
You can read Winpatrol's FAQ if you run into problems.
[*]SpywareBlaster
SpywareBlaster is a program that is used to secure Internet Explorer by making it harder for ActiveX programs to run on your computer. It does this by disabling known offending ActiveX programs from running at all.
You can download SpywareBlaster from here.
If you need help in using SpywareBlaster, you can read SpywareBlaster's tutorial at Bleeping Computer.
[*]SnoopFree Privacy Shield
SnoopFree Privacy Shield is a real-time monitoring program that warns you whenever a programs tries to record your keystrokes.
You can get SnoopFree from here.
[*]SpywareGuard
Just as an antivirus program scans a file for viruses before opening it, SpywareGuard does the same thing, except that it scans it for spywares.
You can download SpywareGuard from Javacool.
If you need help in using SpywareGuard, you can SpywareGuard's tutorial at Bleeping Computer.
[*]IE-SPYAD
IE-SPYAD adds over 5000 sites to your Internet Explorer restricted zone so that you will be protected if the website turns out to be a bad one. Sites that are in the restricted zone of Internet Explorer can't have any scripts ran, no downloads and cookies. However, you can still connect to these sites.
You can download IE-SPYAD from Spyware Warrior. Be sure to read the whole website carefully for instructions on usage of IE-SPYAD.
A tutorial for IE-SPYAD can be found at Bleeping Computer.
[*]Hosts File
A Hosts file is like a phone book. You look up someone's name in the phone book before calling him/her. Similarly, your PC will look up the website's IP address before you can view the website.
Hosts file will replace your current Hosts file with another one containing well-known advertisement sites, spyware sites and other bad sites. This new Hosts file will protect you by re-directing these bad sites to 127.0.0.1.
Here are some Hosts files:
MVPS Hosts File
Bluetack's Hosts File
Bluetack's Host Manager
hpHosts
A tutorial about Hosts File can be found at Castlecops.
[*]Spybot Search & Destroy
Spybot Search & Destroy is another program for scanning spywares and adwares. Not only so, it has other preventive options as well. You are strongly encouraged to run a scan at least once per week.
Spybot Search & Destroy can be downloaded from here.
If you need help in using Spybot Search & Destroy, you can read Spybot Search and Destroy tutorial at Bleeping Computer.
[*]a-squared Free
a-squared Free is also another program for scanning spywares and adwares. It doesn't have preventive features like Spybot Search & Destroy though.
You can download a-squared Free from here.
[*]CounterSpy
CounterSpy is pretty much like Spybot Search & Destroy, but it isn't free. You can try CounterSpy for 15 days.
Before downloading any anti-spyware programs, always check the Rogue/Suspect list of anti-spyware programs. This will save you from a lot of trouble. If in doubt, don't ever download it.
[*]SiteHound
SiteHound is a toolbar that warns you if you go to a site that is known to scam people, that has potentially lots of viruses or spywares or has questionable contents. If you know the site, you can enter it; if you don't, it will bring you back to the previous page. Currently, SiteHound works for Internet Explorer only.
You can download SiteHound from here.
Use an alternative email client
If you are using Outlook Express as your default email client, try using Thunderbird or Pegasus Mail instead.
P2P Programs
The advice is not to use P2P programs. But if you wishes to, here are some P2P programs which are spyware-free.
List of Clean and Infected P2P Programs by Nexus7
List of Clean and Infected P2P programs by Spyware Info
List of Clean and Infected P2P programs by Patrick M. Kolla, maker of Spybot Search & Destroy
Download Managers
Download managers can help to make downloads faster, but some download managers are full of spywares or they bundled it with spyware.
A review of clean download managers can be found here.
Here are some more things to read about:
Safety when using P2P
Configuring Skype
Greater email safety
Phishing - what is it?
Configuring Outlook Express
Configuring Firefox 1.5
Securing Safari for Windows
The Unofficial Cookie FAQ
Securing your home wireless network
80 Super Security Tips
The different classes of security softwares
Child Lures Protection
The Children's Partnership
Counter Pedophilia Investigative Unit
Crimes Against Children Investigation Unit
Cyberlaw Enforcement Organization
Cybersmart
Child Sexual Exploitation and Abuse Agent
FBI - Crimes against Children
Get Net Wise
High Technology Crime Investigation Association (HTCIA)
National Center for Missing and Exploited Children
National Center for Missing and Exploited Children
National Center for Missing and Exploited Children
Predator Hunter
Internet Safety for Kids
Perverted Justice
Safe Kids
Safe Teens
Internet Browsers *
See this post
Be careful when downloading via P2P!
List of Do Not Go sites:[*]Software crack sites/keygen sites
[*]Pirated MP3/video/software sites
[*]Game cheat/hack web sites
[*]Pornography web sites (haha
)
When visiting untrusted sites,[*]Disable Java, Javascript, all plug-ins and all external content. Opera 8 users will find this easier to do -- simply hit F12 and uncheck the five checkboxes. Opera 9.0 TP2 users hit F12 and select Block Content.
[*]Make sure you have real-time spyware protection, like the Windows Antispyware.
[*]Set your firewall level to High.
[*]Make sure you patch Windows with latest updates from here. Beware of fake "Windows Update" sites! The exact one is http://update.microsoft.com/
FAQ[*]Why avoid Internet connections?
Some spywares will download updated versions which are harder to remove. Also, they will contact their "mothership" for instructions (like to wreck your computer, steal sensitive data, keylog your PC) or sometimes download other trojans and viruses!
[*]Why use Firefox/Opera only?
You need not use the above two recommended; use any browser your trust. If you are unsure, use the ones we recommend/provide.
[*]Sorry I don't have a legit Windows... how to patch?!
You can enable Automatic Updates. Microsoft provides critical updates to all users regardless of fake/legit versions. To enable Automatic Updates right-click My Computer, select Properties, select Automatic Updates tab, and click Automatic. Alternatively you can go to WinDiz Update which provide another means to patching, but releases patches much slower than Microsoft.
Another way is to buy legitimate Windows software.
[*]At any one time, only have ONE antivirus and firewall should be installed.
[*]More than one anti-spywares can be installed.
-
-
-
Some more reading to do - http://www.sgforums.com/forums/2250/topics/201632
-
-
-
Here are some tips to reduce the potential for spyware infection in the future:<!--colorc--><!--/colorc-->
1. <!--coloro:blue--><!--/coloro-->Make your Internet Explorer More Secure<!--colorc--><!--/colorc-->- From within Internet Explorer click on the Tools menu and then click on Options.
- Click once on the Security tab.
- Click once on the Internet icon so it becomes highlighted.
- Click once on the Custom Level button.
- Change the Download signed ActiveX controls to Prompt.
- Change the Download unsigned ActiveX controls to Disable.
- Change the Initialise and script ActiveX controls not marked as safe to Disable.
- Change the Installation of desktop items to Prompt.
- Change the Launching programs and files in an IFRAME to Prompt.
- Change the Navigate sub-frames across different domains to Prompt.
- When all these settings have been made, click on the OK button.
- If it prompts you as to whether or not you want to save the settings, press the Yes button.
- Next press the Apply button and then the OK to exit the Internet Properties page.
2. <!--coloro:blue--><!--/coloro-->Use and Update an Anti-Virus Software<!--colorc--><!--/colorc--> - I can not overemphasize the need for you to use and update your Anti-virus application on a regular basis. With the ever increasing number of new variants of malware arriving on the scene daily, you become very susceptible to an attack without updated protection.
3. <!--coloro:BLUE--><!--/coloro-->FIREWALL<!--colorc--><!--/colorc-->
Using a third-party firewall will allow you to give/deny access for applications that want to go online. Without a firewall your computer is susceptible to being hacked and taken over. Simply using a Firewall in its default configuration can lower your risk greatly. A tutorial on Firewalls and a listing of some available ones can be found <!--coloro:blue--><!--/coloro-->here<!--/colorc--><!--colorc-->
Do not install more than one firewall program because they will conflict with each other
4. <!--coloro:blue--><!--/coloro-->Make sure you keep your Windows OS current<!--colorc--><!--/colorc--> by visiting Windows update regularly to download and install any critical updates and service packs. Without these you are leaving the back door open.
5. <!--coloro:blue--><!--/coloro-->Consider a custom hosts file such as MVPS HOSTS<!--colorc--><!--/colorc-->. This custom hosts file effectively blocks a wide range of unwanted ads, banners, 3rd party Cookies, 3rd party page counters, web bugs, and many hijackers.
For information on how to download and install, please read this tutorial by WinHelp2002
Note: Be sure to follow the instructions to disable the DNS Client service before installing a custom hosts file.
6. <!--coloro:blue--><!--/coloro-->Download and install the free version of WinPatrol<!--colorc--><!--/colorc-->. This program protects your computer in a variety of ways and will work well with your existing security software. Have a look at this tutorial to help you get started with the program.
7. <!--coloro:blue--><!--/coloro-->Install Spybot - Search and Destroy<!--colorc--><!--/colorc--> - Download and install Spybot - Search and Destroy with its TeaTimer option. This will provide real time spyware and hijacker protection on your computer alongside your virus protection. You should scan your computer with the program on a regular basis just as you would with your anti-virus software. A tutorial on installing and using this product can be found here:
Instructions for - Spybot S & D and Ad-aware
8. Finally, I strongly recommend that you read TonyKlein's good advice <!--coloro:blue--><!--/coloro-->So how did I get infected in the first place?<!--colorc--><!--/colorc--> <!-- google_ad_section_end --><!--IBF.ATTACHMENT_445952-->found from whatthetech.com
Edited by kenn3th 01 May `08, 10:22AM
-
