Go Back   vb.org Archive > vBulletin Article Depository > Read An Article > General Articles
Reload this Page Got a virus/trojan or adware/spyware?
FAQ Community Calendar Today's Posts Search

Reply
Page 1 of 5 1 23 Last »
 
Thread Tools
Got a virus/trojan or adware/spyware?
Dean C's Avatar
Dean C
Join Date: Jan 2002
Posts: 9,071

 

England
Show Printable Version Email this Page Subscription
Dean C Dean C is offline 07-02-2004, 10:00 PM
What are these grotesque things?
  • Virus - A computer program that can reproduce by changing other programs to include a copy of itself. It is a parasite program, needing another program to survive.
  • Trojan - A trojan is a program that does something undocumented that the programmer intended, but that some users would not approve of if they knew about it. According to some people, a virus is a particular case of a Trojan, namely one which is able to spread to other programs. According to others, a virus that does not do any deliberate damage is not a Trojan. Finally, despite the definitions, many people use the term "Trojan" to refer only to *non-replicating* malware, so that the set of Trojans and the set of viruses are disjoint.
  • Spyware - any software that covertly gathers information about a user while he/she navigates the Internet and transmits the information to an individual or company that uses it for marketing or other purposes; also called adware

How do they get on to your system?
  • You may have opened an attachment from someone you don't know or even someone you do know which contains some executable code within it.
  • There are flaws in one of the most major browsers out there known as Internet Explorer which hackers regularly exploit. It's vital to keep this up to date.
  • You may have gone onto a P2P file sharing program and downloaded a file which looked legitimate but in fact contained executable code as well as music for example.

Viruses/Trojans - How to keep clean
  • Don't open email attachments! This is the most common way that viruses and trojans are getting into users systems. If you don't know who the email is from it's simple. Do NOT open it. Also if you're not expecting an email off a friend especially with an attachment chances are they have got a virus and the virus has forwarded itself to you within the email from your friend.
  • Be careful what you download and where it's from! Many of the large P2P networks are now full of viruses and trojans. If you're stupid enough to download stuff off there, then chances are you're stupid enough to get the virus trojan too. It's simple and easy. Just go out and buy your music,software,games, movies You'll be much safer in the long run! (Note to RIAA: you can pay me later )
  • You should have a virus checker on your system at ALL times and keep it up to date and regularly scan There are now so many trojans and viruses out there it was inevitable that the software makers would have a huge market of innocent users to cash in on. There are lots and lots of virus scanners and trojan removers out there but which one is for you. That is not for me to decided and I won't sit down here and give my (possibly biased) personal opinion on each and every one of them but there is one virus scanner which stands out from the rest. Simply because it's a good free solution for those that don't want to spend the money on protecting themselves. This virus canner is AVG Anti-virus FREE EDITION. The definitions are updated on a daily basis and it's a good tool for helping you get rid of those nasty evil viruses
  • Get a firewall There's no excuse if you don't have one of these. Don't believe all this hype about microsofts firewall as I guarentee things will still manage to slip throug your system. You need a custom-built solution that is regularly updated. Again like anti-virus programs there are loads of firewalls out there and it's up to you and do the research, read the reviews on the best out there. Again I'm just going to offer you the most popular free solution which is Zone Alarm. It's free and whilst the pro version is far better it'll again provide a first line of defence of things trying to get in. And also things that are are already in trying to get out.
  • Just use your common sense You don't have to be a computer genius when browsing online. Don't go on silly sites which host warez, porn and other stuff as chances are they have viruses on their sites too. Just keep mainstream, enjoy the internet and have fun !

Spyware/Adware/Browser Hijackers
Now with spyware you need to take a different approach. You can follow the tips above but we also need to outline some other tips to keep yourself clean. The main way that these pesty things get into your system is via vulnrabilities in your browser. Their aim is to take your credit card details, log your keystrokes, take over your homepage, bombar you with popups.

Now a lot of people claim the cause of the huge rise in spyware is due to the flaws and vulnrabilities in internet explorer (IE). I myself have been using internet explorer for quite some time until about 6 months ago when I decided to migrate to another browser. The main reason for this was due to it's failure to follow standards and keep itself up to date. I wanted something new, fresh with new features and plugins. My answer was a great product released by the Mozilla foundation called Firefox. For me this is my favorite browser out right now. I just can't heap enough praise on it but I'm not going to bore you going on about it. I'm going to explain the security reasons why you should move away from IE and to an alternative browser and if you insist on carrying on to use IE then how to make it a little more secure.

The great browser war
Do you want to carry on using IE but make it a little more secure?
Go here and take a look at the great tutorial on how to beef up IEs security settings. The problem with IE is most of the security settings are disable by default and your average joe bloggs who knows little about computers is not going to know anything about tweaking software settings, let alone care about it. So what we need to do is heighten the security of it. Follow the instructions in the tutorial and you should be just a little bit more secure. However due to the regular exploits being discovered in IE and windows almost every month, unless Microsoft starts upgrading its software and adding functionality and more security then you're just going to be at constant risk if you don't update your security settings.

Also another important point to tweaking your security settings is to update your windows as often as possible. There's an option to enable auto-updated but I do it manually every day when I get on just to be safe. To go to windows update navigate to your start menu and go to 'Programs > Windows Update'. (It's in the first, far left column almost right at the top)

Want to move away from IE and step into the light?
The alternative browsers that are around right now are superb. We have new features, plugins, skins and lots more. There's several right now but two which stand out for me are:
  • Firefox - This browser is my favorite. Yes I'm biased, yes I love it and yes I will stand by it besides anybody elses genuine arguements against it It follows web standards, is upgraded regularly, has plugins, skins and renders pages much quickly compared to IE. Oh hold on. I forgot. It's FREE!
  • Opera - Another great browser. I've used it once and it worked quite nicely. A lot of people rave about this browser also just like they do about firefox. I'll leave that one up to you

You've got spyware already huh?
Ok well there are literaly hundreds of spyware/adware removers out there. Some are free, some are paid. Just be careful of what you're using and if you're reading reviews of them make sure they are coming from an unbiased source.

Freebies:
Ad-Aware - Probably the most popular free one out. They update their definitions on a regular basis and have an active community base for trying to resolve problems.
Spybot, Search & Destroy - Another hugely popular free one. I will warn you now though I've been using it for about 2 months and they haven't updated the definitions once. It's good and will clean up quite a lot of the clutter on your system and also prevent it from ever getting on your system but unless it keeps up to date with the latest spyware technologies it'll be of little use in the next year or so.

Paid or Free Trial:
SpySweeper - This one only recently came into my light but boy oh boy it does the job. It can run in the background, protect your memory and monitor cookies. Also it regularly updates its definitions and the scan finds a lot of stuff which the others will not.
PestPatrol - This one's great too. Ignore the horrific interface and navigation. It does the trick and finds so much horrible things on your PC. I've found all sorts from decompilers to tracking cookies. It's a great tool to have.
Reply With Quote
  #2  
Old 07-03-2004, 05:44 PM
Dean C's Avatar
Dean C Dean C is offline
 
Join Date: Jan 2002
Location: England
Posts: 9,071
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Continued...

Still got spyware in IE?
Ok well this is not a foolproof method and you will need help unless you're a genius and can follow the jargon presented in the range of tutorials for this software. It's called HijackThis and was developed by a programmer not too long ago. It basically list the component parts of the registry used by legitimate programmers and also hijackers. It'll produce a log but I must urge you do not do anything with this program other than look at it unless you know what you're doing. I will not be held responsible if you use this program and end up with a mucked up PC. Now what I do reccomend you do is just generate your log file and pop on over to ComputerCops and they have a dedicated forum where users can post their HijackThis logs and have an expert analyse it and tell you what to edit/delete. Yet again I must stress this is something which should be done only if you know what you're doing and the people over at ComputerCops and myself cannot be held responsible for any accidental damage to your computer that you may cause.

That's about it
I hope you enjoyed reading the article and if you have any further resources which you reccomend then send me a private message with the link and I'll think about adding it to the list. Please only reccomend the software if you have personal experience with it.

Copyright/Disclaimer
This tutorial was written by Dean Clatworthy and is copyrighted material. It may not be posted on any forum or website without my written consent. If you wish to post this on your website then please contact me and I'll let you know if you can use it. Anyone found re-distributing, translating or modifying this article without permission will be reported to their appropriate host and internet service provider.

Also I will not be held responsible for any damaged caused to your PC as a result of information provided in this article. All software, changes to your sytem you do at your own risk.
Reply With Quote
  #3  
Old 07-04-2004, 12:39 AM
13th_Disciple 13th_Disciple is offline
 
Join Date: Jan 2003
Posts: 262
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
someone posting this on their forum/site and gives you credit for the article still has t ask permission?

what happened to people just offering information for the benfit of others?

no offense.. your material, i just find that a little over the top..
Reply With Quote
  #4  
Old 07-04-2004, 09:49 AM
Dean C's Avatar
Dean C Dean C is offline
 
Join Date: Jan 2002
Location: England
Posts: 9,071
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Anyone who wants to use this article has to ask for my permission privately yes There's nothing a little over the top about these pests. All I've tried to do is provide an informative article to people who are new to getting rid of them to try and help
Reply With Quote
  #5  
Old 07-08-2004, 09:38 PM
Tigga's Avatar
Tigga Tigga is offline
 
Join Date: Dec 2001
Location: Atlanta
Posts: 1,061
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Nicely written and informative.
Reply With Quote
  #6  
Old 07-12-2004, 01:29 AM
Andreas's Avatar
Andreas Andreas is offline
 
Join Date: Jan 2004
Location: Germany
Posts: 6,863
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Nice article, but I have to strongly disagree on one point: Firewalls.

First of all, a friewall can never-ever consist of a single product - be it Soft- or Hardware.
Furthermore, a "Firewall" on the system that should be protected doesn't make sense at all.
All those personal "firewall" software available is kinda risky, as it gives the user a false feeling of being save - which isn't and won't be the case. In fact, thos PFWs can be highly dangerous when it comes to remote managemant functions - they can open backdoors to your system that won't even exist if there was no such program.
As we all know, only closed ports are good ports. So if you don't have open ports there's no need for a "firewall" to block those
So the only case in which personal firewalls might be useful is to stop programs from "calling home", but even this doesn't work well.
Last point: Zone Alarm is the worst software of this type. If one really want's to use such software you'd better go with Tiny/Kerio Personal Firewall.

I don't use a personal firewall and haven't had problems with digital crap (eg. worms, virusses, etc.) so far, although I am using Windows.
Reply With Quote
  #7  
Old 07-12-2004, 07:09 AM
chet chet is offline
 
Join Date: Feb 2004
Location: Nottingham (UK)
Posts: 220
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
There is some info Here that you are free to use

Regards

Chet
Reply With Quote
  #8  
Old 07-30-2004, 06:45 PM
DrkFusion's Avatar
DrkFusion DrkFusion is offline
 
Join Date: Nov 2001
Posts: 1,926
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Why was this stickied?
Reply With Quote
  #9  
Old 07-30-2004, 08:35 PM
Dean C's Avatar
Dean C Dean C is offline
 
Join Date: Jan 2002
Location: England
Posts: 9,071
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
To try and help users, it'll disappear into the abyss otherwise
Reply With Quote
  #10  
Old 12-08-2004, 07:50 AM
MindTrix's Avatar
MindTrix MindTrix is offline
 
Join Date: Apr 2002
Location: United Kingdom
Posts: 1,833
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I know this thread is old, but Dean, when you link too http://www.grissoft.com/ near the top of your thread, the site doesnt exist anymore so you get one of the nasty search pages and lots of pop ups and download prompts. Just thought i would tell you.
Reply With Quote
Reply
Page 1 of 5 1 23 Last »

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 03:06 AM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04493 seconds
  • Memory Usage 2,304KB
  • Queries Executed 23 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_article
  • (1)navbar
  • (4)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (9)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete