Kalos
24-10-2007, 06:50 PM
Due to the recent issues with Phishing, I have decided to conduct a renovation of the software security and defence sticky that we have going here in the Technical Forum. I hope people make use of it, and that it actually manages to prevent some people from otherwise falling into the clutches of the scam artists out there.
Security and Protective Programs
My favourite Firewall: Zone Alarm http://www.download.com/3000-2092-10039884.html
My favourite Anti-Virus: Avast http://www.avast.com/eng/avast_4_home.html
My favourite Anti-Spyware: Spybot S&D http://www.safer-networking.org/en/index.html
As ever, the best thing of all you can do for your safety and security, keep up to date with your Operating System patches! http://update.microsoft.com/microsoftupdate/v6/
Please also ensure that Windows Restore has been switched on
This next section is adapted from the work of Tsurani http://wow.incgamers.com/forums/showthread.php?t=377450. It is a little less ordered, but it has some helpful general content, and deserved to continue to remain to help users, but it is more generally focused on resolving issues regarding stability and slowness, long and discriptive in approach, making it a bit of a mouthful and a task to read; however it contains useful information.
Slow System, Lag, Crashes? Possible Fix
What you might be experiencing is what we like to call Malware / Spyware / Trojans / bad things, here is a little "How To" to fix those issues. And after you are done scanning your system please Defrag your system, you would be surprised as to how much speed you will pick up.
This "How To" is simply to help folks that might otherwise not be familiar with some of these applications and processes. And none of these programs except the anti-virus run in your background nor do they take up any recourses other than when you run them.
==========================
Dealing with Viruses
Make sure you don't have any viruses. Make sure you have an up-to-date virus checker on your system, and *gasp* actually use it once in a while.
If you don't have a virus checker and can't afford to buy one, go to Trend Micro's Free online virus Scanner, HouseCall: http://housecall.trendmicro.com
Although everyone should have an Antivirus (AV) Scanner and they should update it Daily, if you don't set it up to update automatically you will have to click the Update button.
If you're looking for an excellent AV light on resources NOD32 is for you. You can at least give it a try: http://www.eset.com/home/home.htm
Another Good and FREE scanner is AVG: http://free.grisoft.com/doc/1
Another thing to always do is to keep your system up to date from Microsoft http://update.microsoft.com/microsoftupdate/v6/ .
==========================
Trend Micro Anti-Spyware
One of my Favorite Anti-Spyware utilities that are free comes from Trend Micro called (drum roll..............) Trend Micro Anti-Spyware which I have done some tests with it, verse Lavasoft and Spybot-S&D (which I go into more detail on how to use them below) and Trend Micro Anti-Spyware blows the doors off them. Best way to use Trend Micro Anti-Spyware is to download the trial (it lasts 30 days) and then go to the Help tab and update it.
http://www.trendmicro.com/spyware-scan
==========================
Ad Aware
If you don't already have it, download and install Ad Aware SE Personal http://www.lavasoft.com/products/ad_aware_free.php.
Download available updates:
1. Click "Check for updates now".
2. Click "Connect".
3. If updates (definitions) are available click "Ok", otherwise, click "Ok".
4. Click "Finish".
Configure Ad Aware to be as effective as possible:
1. Click the 'gear' in the upper-right hand corner of the Ad Aware Window.
2. Click Scanning, and check (tick) the following:
Scan within archives
Scan active processes
Scan registry
Deep-scan registry
Scan my IE Favorites for banned URLs
Scan my Hosts file
3. Click "Tweak".
4. Click "Scanning Engine", then check the following:
“Unload recognized processes & modules during scan”
5. Click "Cleaning Engine", then check the following:
Always try to unload modules before deletion
During removal, unload Explorer and IE if necessary
Let Windows remove files in use at next reboot
Delete quarantined objects after restoring
6. Then click "Proceed"
Now, let Ad Aware locate and remove anything it finds, by:
1. Click "Start".
2. Check (tick) "perform full system scan".
3. Click "Next".
Exit the program.
==========================
Spybot S & D
If you don't already have it, download, install and run Spybot S & D http://www.safer-networking.org/en/download/index.html
Download any available updates:
1. Click "Search for Updates".
2. Check (tick) all available updates.
3. Click "Download Updates".
4. Click "Search & Destroy".
5. Click "Check for Problems".
When the scan is completed:
1. Check everything that was found.
2. Click "Fix selected problems".
Click "Ok", then exit the program.
==========================
Ewido Security Suite
When running an Ewido scan no windows or programs should be open!. Do not use the Computer while the Ewido scan is running!
Please download the trial version of Ewido Security Suite here: http://www.ewido.net/en/download
When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu."
Launch ewido, there should be a big "E" icon on your desktop, double-click it.
The program will prompt you to update; click the "OK" button
The program will now go to the main screen
Update Ewido:
You will need to update ewido to the latest definition files.
On the left hand side of the main screen click update
Click on Start
The update will start and a progress bar will show the updates being installed.
After the updates are installed, exit ewido.
Do NOT run a scan yet.
Hidden Files
How to see hidden files in Windows: http://www.bleepingcomputer.com/foru...ows-tut62.html
Next, please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Select the first option, to run Windows in Safe Mode.
Ewido Security Suite
Click on scanner
Click Complete System Scan and the scan will begin.
During the scan it will prompt you to clean files, click OK
When the scan is finished, look at the bottom of the screen and click the Save report button.
Save the report to your desktop
Close Ewido
==========================
Warning regarding: Spy Sweeper
If you have Spy Sweeper installed. While this is a great program, we need to temporarily disable (not uninstall) the program because it might stop the next fix.
Disable Spy Sweeper:
Open it click > Options over to the left then > program options > Uncheck "load at windows startup".
Over to the left click "shields" and uncheck all there.
Uncheck "home page shield".
Uncheck "automatically restore default without notification".
Now HijackThis can complete its function properly.
HijackThis
Get HijackThis currently at version: 1.99.1: http://www.spywareinfo.com/~merijn/downloads.html
Run HiJackThis and click "Scan", then post your log at this site: http://www.hijackthis.de
Make sure that you extract HijackThis. DO NOT run it from within a zip file, as no backups will be saved.
==========================
CCleaner
Once that is all done and if you don't already have it, download, install and run CCleaner http://www.ccleaner.com
Cleans the following:
Internet Explorer and Firefox- Temporary files, URL history, cookies, Auto complete form history, index.dat.
Windows - Recycle Bin, Recent Documents, Temporary files and Log files.
Registry cleaner - Removes unused and old entries. Remember to always back up your registry file prior to editing anything; this program also comes with a backup feature to do this.
Third-party applications - Removes temp files and recent file lists (MRUs) from many apps including Opera, Media Player, eMule, Kazaa, Google Toolbar, Netscape, MS Office, Nero, Adobe Acrobat, WinRAR, WinAce, WinZip and others.
Security and Protective Programs
My favourite Firewall: Zone Alarm http://www.download.com/3000-2092-10039884.html
My favourite Anti-Virus: Avast http://www.avast.com/eng/avast_4_home.html
My favourite Anti-Spyware: Spybot S&D http://www.safer-networking.org/en/index.html
As ever, the best thing of all you can do for your safety and security, keep up to date with your Operating System patches! http://update.microsoft.com/microsoftupdate/v6/
Please also ensure that Windows Restore has been switched on
This next section is adapted from the work of Tsurani http://wow.incgamers.com/forums/showthread.php?t=377450. It is a little less ordered, but it has some helpful general content, and deserved to continue to remain to help users, but it is more generally focused on resolving issues regarding stability and slowness, long and discriptive in approach, making it a bit of a mouthful and a task to read; however it contains useful information.
Slow System, Lag, Crashes? Possible Fix
What you might be experiencing is what we like to call Malware / Spyware / Trojans / bad things, here is a little "How To" to fix those issues. And after you are done scanning your system please Defrag your system, you would be surprised as to how much speed you will pick up.
This "How To" is simply to help folks that might otherwise not be familiar with some of these applications and processes. And none of these programs except the anti-virus run in your background nor do they take up any recourses other than when you run them.
==========================
Dealing with Viruses
Make sure you don't have any viruses. Make sure you have an up-to-date virus checker on your system, and *gasp* actually use it once in a while.
If you don't have a virus checker and can't afford to buy one, go to Trend Micro's Free online virus Scanner, HouseCall: http://housecall.trendmicro.com
Although everyone should have an Antivirus (AV) Scanner and they should update it Daily, if you don't set it up to update automatically you will have to click the Update button.
If you're looking for an excellent AV light on resources NOD32 is for you. You can at least give it a try: http://www.eset.com/home/home.htm
Another Good and FREE scanner is AVG: http://free.grisoft.com/doc/1
Another thing to always do is to keep your system up to date from Microsoft http://update.microsoft.com/microsoftupdate/v6/ .
==========================
Trend Micro Anti-Spyware
One of my Favorite Anti-Spyware utilities that are free comes from Trend Micro called (drum roll..............) Trend Micro Anti-Spyware which I have done some tests with it, verse Lavasoft and Spybot-S&D (which I go into more detail on how to use them below) and Trend Micro Anti-Spyware blows the doors off them. Best way to use Trend Micro Anti-Spyware is to download the trial (it lasts 30 days) and then go to the Help tab and update it.
http://www.trendmicro.com/spyware-scan
==========================
Ad Aware
If you don't already have it, download and install Ad Aware SE Personal http://www.lavasoft.com/products/ad_aware_free.php.
Download available updates:
1. Click "Check for updates now".
2. Click "Connect".
3. If updates (definitions) are available click "Ok", otherwise, click "Ok".
4. Click "Finish".
Configure Ad Aware to be as effective as possible:
1. Click the 'gear' in the upper-right hand corner of the Ad Aware Window.
2. Click Scanning, and check (tick) the following:
Scan within archives
Scan active processes
Scan registry
Deep-scan registry
Scan my IE Favorites for banned URLs
Scan my Hosts file
3. Click "Tweak".
4. Click "Scanning Engine", then check the following:
“Unload recognized processes & modules during scan”
5. Click "Cleaning Engine", then check the following:
Always try to unload modules before deletion
During removal, unload Explorer and IE if necessary
Let Windows remove files in use at next reboot
Delete quarantined objects after restoring
6. Then click "Proceed"
Now, let Ad Aware locate and remove anything it finds, by:
1. Click "Start".
2. Check (tick) "perform full system scan".
3. Click "Next".
Exit the program.
==========================
Spybot S & D
If you don't already have it, download, install and run Spybot S & D http://www.safer-networking.org/en/download/index.html
Download any available updates:
1. Click "Search for Updates".
2. Check (tick) all available updates.
3. Click "Download Updates".
4. Click "Search & Destroy".
5. Click "Check for Problems".
When the scan is completed:
1. Check everything that was found.
2. Click "Fix selected problems".
Click "Ok", then exit the program.
==========================
Ewido Security Suite
When running an Ewido scan no windows or programs should be open!. Do not use the Computer while the Ewido scan is running!
Please download the trial version of Ewido Security Suite here: http://www.ewido.net/en/download
When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu."
Launch ewido, there should be a big "E" icon on your desktop, double-click it.
The program will prompt you to update; click the "OK" button
The program will now go to the main screen
Update Ewido:
You will need to update ewido to the latest definition files.
On the left hand side of the main screen click update
Click on Start
The update will start and a progress bar will show the updates being installed.
After the updates are installed, exit ewido.
Do NOT run a scan yet.
Hidden Files
How to see hidden files in Windows: http://www.bleepingcomputer.com/foru...ows-tut62.html
Next, please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Select the first option, to run Windows in Safe Mode.
Ewido Security Suite
Click on scanner
Click Complete System Scan and the scan will begin.
During the scan it will prompt you to clean files, click OK
When the scan is finished, look at the bottom of the screen and click the Save report button.
Save the report to your desktop
Close Ewido
==========================
Warning regarding: Spy Sweeper
If you have Spy Sweeper installed. While this is a great program, we need to temporarily disable (not uninstall) the program because it might stop the next fix.
Disable Spy Sweeper:
Open it click > Options over to the left then > program options > Uncheck "load at windows startup".
Over to the left click "shields" and uncheck all there.
Uncheck "home page shield".
Uncheck "automatically restore default without notification".
Now HijackThis can complete its function properly.
HijackThis
Get HijackThis currently at version: 1.99.1: http://www.spywareinfo.com/~merijn/downloads.html
Run HiJackThis and click "Scan", then post your log at this site: http://www.hijackthis.de
Make sure that you extract HijackThis. DO NOT run it from within a zip file, as no backups will be saved.
==========================
CCleaner
Once that is all done and if you don't already have it, download, install and run CCleaner http://www.ccleaner.com
Cleans the following:
Internet Explorer and Firefox- Temporary files, URL history, cookies, Auto complete form history, index.dat.
Windows - Recycle Bin, Recent Documents, Temporary files and Log files.
Registry cleaner - Removes unused and old entries. Remember to always back up your registry file prior to editing anything; this program also comes with a backup feature to do this.
Third-party applications - Removes temp files and recent file lists (MRUs) from many apps including Opera, Media Player, eMule, Kazaa, Google Toolbar, Netscape, MS Office, Nero, Adobe Acrobat, WinRAR, WinAce, WinZip and others.