Go Back   vb.org Archive > vBulletin Article Depository > Read An Article > General Articles
Reload this Page Got a virus/trojan or adware/spyware?
FAQ Community Calendar Today's Posts Search

Reply
Page 5 of 5 « First 34 5
 
Thread Tools
Got a virus/trojan or adware/spyware?
Dean C's Avatar
Dean C
Join Date: Jan 2002
Posts: 9,071

 

England
Show Printable Version Email this Page Subscription
Dean C Dean C is offline 07-02-2004, 10:00 PM
What are these grotesque things?
  • Virus - A computer program that can reproduce by changing other programs to include a copy of itself. It is a parasite program, needing another program to survive.
  • Trojan - A trojan is a program that does something undocumented that the programmer intended, but that some users would not approve of if they knew about it. According to some people, a virus is a particular case of a Trojan, namely one which is able to spread to other programs. According to others, a virus that does not do any deliberate damage is not a Trojan. Finally, despite the definitions, many people use the term "Trojan" to refer only to *non-replicating* malware, so that the set of Trojans and the set of viruses are disjoint.
  • Spyware - any software that covertly gathers information about a user while he/she navigates the Internet and transmits the information to an individual or company that uses it for marketing or other purposes; also called adware

How do they get on to your system?
  • You may have opened an attachment from someone you don't know or even someone you do know which contains some executable code within it.
  • There are flaws in one of the most major browsers out there known as Internet Explorer which hackers regularly exploit. It's vital to keep this up to date.
  • You may have gone onto a P2P file sharing program and downloaded a file which looked legitimate but in fact contained executable code as well as music for example.

Viruses/Trojans - How to keep clean
  • Don't open email attachments! This is the most common way that viruses and trojans are getting into users systems. If you don't know who the email is from it's simple. Do NOT open it. Also if you're not expecting an email off a friend especially with an attachment chances are they have got a virus and the virus has forwarded itself to you within the email from your friend.
  • Be careful what you download and where it's from! Many of the large P2P networks are now full of viruses and trojans. If you're stupid enough to download stuff off there, then chances are you're stupid enough to get the virus trojan too. It's simple and easy. Just go out and buy your music,software,games, movies You'll be much safer in the long run! (Note to RIAA: you can pay me later )
  • You should have a virus checker on your system at ALL times and keep it up to date and regularly scan There are now so many trojans and viruses out there it was inevitable that the software makers would have a huge market of innocent users to cash in on. There are lots and lots of virus scanners and trojan removers out there but which one is for you. That is not for me to decided and I won't sit down here and give my (possibly biased) personal opinion on each and every one of them but there is one virus scanner which stands out from the rest. Simply because it's a good free solution for those that don't want to spend the money on protecting themselves. This virus canner is AVG Anti-virus FREE EDITION. The definitions are updated on a daily basis and it's a good tool for helping you get rid of those nasty evil viruses
  • Get a firewall There's no excuse if you don't have one of these. Don't believe all this hype about microsofts firewall as I guarentee things will still manage to slip throug your system. You need a custom-built solution that is regularly updated. Again like anti-virus programs there are loads of firewalls out there and it's up to you and do the research, read the reviews on the best out there. Again I'm just going to offer you the most popular free solution which is Zone Alarm. It's free and whilst the pro version is far better it'll again provide a first line of defence of things trying to get in. And also things that are are already in trying to get out.
  • Just use your common sense You don't have to be a computer genius when browsing online. Don't go on silly sites which host warez, porn and other stuff as chances are they have viruses on their sites too. Just keep mainstream, enjoy the internet and have fun !

Spyware/Adware/Browser Hijackers
Now with spyware you need to take a different approach. You can follow the tips above but we also need to outline some other tips to keep yourself clean. The main way that these pesty things get into your system is via vulnrabilities in your browser. Their aim is to take your credit card details, log your keystrokes, take over your homepage, bombar you with popups.

Now a lot of people claim the cause of the huge rise in spyware is due to the flaws and vulnrabilities in internet explorer (IE). I myself have been using internet explorer for quite some time until about 6 months ago when I decided to migrate to another browser. The main reason for this was due to it's failure to follow standards and keep itself up to date. I wanted something new, fresh with new features and plugins. My answer was a great product released by the Mozilla foundation called Firefox. For me this is my favorite browser out right now. I just can't heap enough praise on it but I'm not going to bore you going on about it. I'm going to explain the security reasons why you should move away from IE and to an alternative browser and if you insist on carrying on to use IE then how to make it a little more secure.

The great browser war
Do you want to carry on using IE but make it a little more secure?
Go here and take a look at the great tutorial on how to beef up IEs security settings. The problem with IE is most of the security settings are disable by default and your average joe bloggs who knows little about computers is not going to know anything about tweaking software settings, let alone care about it. So what we need to do is heighten the security of it. Follow the instructions in the tutorial and you should be just a little bit more secure. However due to the regular exploits being discovered in IE and windows almost every month, unless Microsoft starts upgrading its software and adding functionality and more security then you're just going to be at constant risk if you don't update your security settings.

Also another important point to tweaking your security settings is to update your windows as often as possible. There's an option to enable auto-updated but I do it manually every day when I get on just to be safe. To go to windows update navigate to your start menu and go to 'Programs > Windows Update'. (It's in the first, far left column almost right at the top)

Want to move away from IE and step into the light?
The alternative browsers that are around right now are superb. We have new features, plugins, skins and lots more. There's several right now but two which stand out for me are:
  • Firefox - This browser is my favorite. Yes I'm biased, yes I love it and yes I will stand by it besides anybody elses genuine arguements against it It follows web standards, is upgraded regularly, has plugins, skins and renders pages much quickly compared to IE. Oh hold on. I forgot. It's FREE!
  • Opera - Another great browser. I've used it once and it worked quite nicely. A lot of people rave about this browser also just like they do about firefox. I'll leave that one up to you

You've got spyware already huh?
Ok well there are literaly hundreds of spyware/adware removers out there. Some are free, some are paid. Just be careful of what you're using and if you're reading reviews of them make sure they are coming from an unbiased source.

Freebies:
Ad-Aware - Probably the most popular free one out. They update their definitions on a regular basis and have an active community base for trying to resolve problems.
Spybot, Search & Destroy - Another hugely popular free one. I will warn you now though I've been using it for about 2 months and they haven't updated the definitions once. It's good and will clean up quite a lot of the clutter on your system and also prevent it from ever getting on your system but unless it keeps up to date with the latest spyware technologies it'll be of little use in the next year or so.

Paid or Free Trial:
SpySweeper - This one only recently came into my light but boy oh boy it does the job. It can run in the background, protect your memory and monitor cookies. Also it regularly updates its definitions and the scan finds a lot of stuff which the others will not.
PestPatrol - This one's great too. Ignore the horrific interface and navigation. It does the trick and finds so much horrible things on your PC. I've found all sorts from decompilers to tracking cookies. It's a great tool to have.
Reply With Quote
  #42  
Old 05-13-2007, 01:13 PM
superwoofy superwoofy is offline
 
Join Date: Aug 2006
Posts: 1
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
In response to the previous post above:

I had a very similar issue with starting my pc. Normally I would see the cpu specs etc. For the longest time - well, for two weeks - I thought i had some kind of a hardware based trojan. Later I learned what a rarity this is. I gotta give props to my computer guy. I found him on The Computer Guy Network and he hooked it up so thank YOCS . I had checked the bios and reset all the defaults. My problem was a combination of two things.

The first was, my boot was set to quick boot, which is why i was no longer seeing the POST displaying properly. The second WAS in fact a virus that had rooted itself in my startup. However, rather than getting a blue screen, my PC would just reboot. Basically it was a cycle of black screens that showed me nothing. YOCs showed me how to go into MSCONFIG (in safe mode) and uncheck the virus from loading at startup. I was then able to boot to the Operating System and remove the virus. Props to you YOCs and everyone here for their insight.
Reply With Quote
  #43  
Old 05-13-2007, 03:35 PM
Twinkie Twinkie is offline
 
Join Date: Mar 2007
Location: Nebraska
Posts: 7
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
You no longer have to pay a fee for Opera. The removed it during version eight, they're now at 9.2.0

Opera I <3 mainly because it is the only web browser that supports every single web standard. FF and espically IE has a lot of catching up to do. Opera is the first browser ever to support PNGs, so it annoys me when I see sigs that read, "FireFox is the web complaint browser...no security flaws...faster...Supports PNGs...The first to have a PNG package." everything in those sigs are usually wrong.

AVG is a great software but it can take up a lot of your CPU load. =)
Reply With Quote
  #44  
Old 08-26-2007, 05:27 AM
wolf32 wolf32 is offline
 
Join Date: Jan 2007
Location: Virginia Beach, VA
Posts: 145
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Isn't HijackThis somewhat considered Spyware because Merijn sold the application to Trend Micro and they did all sorts of mumbo jumbo to it. On a positive note, HijackThis is hands down the best combatant to Spyware, Hijackers, Adware, and just any type of Malware. It even scans for ADS....wait, why has this thread been sticked?
Reply With Quote
  #45  
Old 08-26-2007, 07:57 PM
southernlady's Avatar
southernlady southernlady is offline
 
Join Date: May 2005
Posts: 213
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
http://www.spywareinfo.com/~merijn/index.php

There are the details straight from the *horse's* mouth, LOL.

Quote:
I sold HijackThis because I had been sitting on an unfinished update for over a year and I still could not make enough time to finish it. My uni classes are taking up a lot of time and I want to set my goals a bit wider than just the antispyware business (though I still love it). Sitting on an unfinished product until it becomes obsolete is not useful, so I decided to transfer the responsibility to TrendMicro (who have also taken care of my CWShredder) so they can give it proper attention and support. Where the will take HijackThis, I do not know - but I am sure they will respect its goals and what it stands for.
Liz
Reply With Quote
  #46  
Old 09-30-2007, 01:58 PM
forumrunt forumrunt is offline
 
Join Date: Sep 2007
Posts: 177
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
OK here is a question. I know this topic is old. BUT spyware adware can people put code in their site to install this? How can I tell if it is installed on a site?
Reply With Quote
  #47  
Old 11-30-2007, 07:39 PM
SBoards SBoards is offline
 
Join Date: Oct 2007
Location: Albany, NY
Posts: 63
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
<a href="http://www.thescoreboards.com/forums/computers-technology/44469-hijackthis-logs-malware-removal.html" target="_blank">http://www.thescoreboards.com/forums...e-removal.html</a>

^my two cents^
Reply With Quote
  #48  
Old 07-21-2008, 05:35 PM
Abdu Abdu is offline
 
Join Date: Apr 2005
Posts: 5
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Check your hostfile

My personal favorites in security: ESET Smart Security + Kerio Sunbelt CounterSpy + Ad LavaSoft Ad-Aware + Spybot S&D + JavaCool SpywareBlaster + CCleaner + Roboform + Comodo BOClean

All on a Windows Vista Business platform
Reply With Quote
  #49  
Old 07-22-2008, 03:25 PM
Jase2 Jase2 is offline
 
Join Date: Dec 2007
Location: USA
Posts: 1,575
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
If you're using Windows Vista, then it is safe to use the built-in firewall. This is because it offers outbound protection, where as WindowsXP doesn't. Just thought I'd let you know on that.

The You've got spyware already huh? bit.

First of all, you've recommend two great "free" programs. However, unfortunately most malware/virus/spyware isn't that easy to remove. It is a lot more complex. Hijackthis is a good tool and is used a lot on malware removal forums, however, you really need to be under a trained helpers supervision. You should visit one of the forums listed here for malware problems:

http://www.merijn.org/forums.php

It can be very time consuming removing malware, so I really advise you visit one of the malware removal forums, where you can request help for "free", and of course, receive the best possible support -- for free!

If you have a slow computer, then is doesn't necessarily mean it is malware. I recommend reading this great article: http://www.castlecops.com/t175256-Sl...e_malware.html

Finally, for tuning IE7, read the following:

http://reliancepc.com/menu/tips/IE7tuning/index.php
http://support.microsoft.com/kb/936213
Reply With Quote
Reply
Page 5 of 5 « First 34 5

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 03:23 AM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.08767 seconds
  • Memory Usage 2,297KB
  • Queries Executed 23 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_article
  • (1)navbar
  • (4)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (9)post_thanks_box
  • (9)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (9)post_thanks_postbit_info
  • (8)postbit
  • (9)postbit_onlinestatus
  • (9)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete