10.09.2005

:: Use It Or Lose It

I'm really amazed at the number of regular computer users, folks I know personally, who are surfing the web without protection. I know, that sounds sort of like a public service message, but it's true..

I have talked to several friends recently who admit that they have been 'forced' to purchase a new machine because " my old one just got so slow I couldn't use it any more. I ran a virus checking program and it showed so much stuff on my machine I just gave up. I tried to remove some of it, but couldn't.."

When I ask if they had 'protection', they admit that they had McAfee or Norton "at one time", but after it expired they failed to either renew the programs or download new ones..

Folks.. there is no excuse for not having an appropriate firewall and anti virus installed on your machine. You can get a good basic level of protection for free, so what's your excuse?

I want you to do two things..

One- read the article below. And two- download a couple of programs to protect your computer. Don't think that just because you don't open attachments, all is well in your little world. You can get trojans simply by surfing the web. Certain trojans are concealed within the html of a sites info, others are located in those files you download from Kazaa or Limewire..

You can visit Kim Komando's site at: http://www.komando.com/bestshareware.asp
and download both AVG anti virus and either Kerio or Zone Alarm's firewalls for free. You can also do a Google search for any of these three and download at other locations as well.. There are others out there, but these three have been tested, used, run throught the ringer, and abused, and stand up well...

I slightly disagree with Martys idea of downloading any anti-virus, as any is far better than none. Downloading an unknown firewall or anti virus may well install, or otherwise compromise, your system. So stick with what we know works.. OK?


~::~::~::~::~::~::~::~::~::~::~::~::~::~::~::~::~::~::~::~

Four-Step Defense
Against Spyware and Parasites

By Marty R. Milette


Everyone knows about spyware, parasites and other malware. I won't review them all hëre -- but what you may not know about is a Proven, Four-Step defense that will virtually guarantëe that your computer is protected in a practical, simple manner.
Let me spoil the secrët before you even read the article!

The steps are:
1. Install a good anti-virus program.
2. Install Spybot Search and Destroy.
3. Install Microsoft Anti-Spyware.
4. Keep everything up to date!


Can it really be that simple? YES!!!

How do I know? This is exactly what I have done to clean and disinfect over 300 computers at two different companies -- keeping them operating parasite-free for the past two years! Below are the details...


1. Install a Good Anti-Virus Program.

If you are running any computer without a good anti-virus program
these days -- you're committing cyber-suicide!

It doesn't really matter which one you use. There is such stiff
competition between companies to keep up -- every one is pretty much
about the same -- or at least -- it will be very quickly. So don't
sweat it. Use ANY one you want -- but just be sure to use one!

(I personally use McAfee, and receive virus-laden emails every couple
of days that are automatically deleted.)

2. Install Spybot Search and Destroy.

I don't generally recommend products, but make the exception in this
case because this program REALLY WORKS -- and is FREE! (I DO
encourage you to make a donation!)

Get it here: http://www.safer-networking.org/en/download/

Another tip: DO USE the "Tea Timer" continuous protection. It is
turned off by default -- so when you see the prompt to enable it --
please do! It is much easier to PREVENT a problem, than to try and
cure it later.

3. Install Microsoft Anti-Spyware.

Many people believe that just because they have ONE particular
anti-spyware program, that they are covered.

DEFINITELY NOT! Spyware is one case where you absolutely MUST use
both a belt and suspenders.

You will find that there are many bits of malware that Spybot S&D
catches, but Microsoft doesn't -- and vice versa.

Also, one product may catch the parasite, but only the other one can
successfully remove it.

Microsoft Anti-Spyware is available here:

http://www.microsoft.com/athome/security/spyware/software/
If you have a LEGAL copy of Windows, the download is FREE! (But be
warned that they WILL CHECK your windows, and you must download and
install the checking too. No big worries.)

4. Keep Everything Up To Date!

Last, but certainly not least, you absolutely MUST keep your
operating system, anti-virus and anti-spyware products updated.

Microsoft releases patches and updates to all currently supported
versions of Windows almost weekly. Use the "Automatic Update" feature
to make sure you get them, or check manually at least once a week
through Internet Explorer's menu option.

Don't forget about keeping the other products updated also. In
previous versions of Spybot Search and Destroy, you needed to do this
manually.

Removal and Cleaning

Ideally, these four steps should be done just after the system is
first set up and before it ever hits the Internet -- but if this
isn't the case, don't be surprised at all the viruses, parasites and
malware you may find.

If this is the case, my recommended removal and cleansing method is a
'top-down' approach -- from the simplest and safest method -- down to
the more difficult and dangerous.

(Legal: Everything in this article is "At Your Own Risk".)

1. See if the application has a menu entry or an "Uninstall" or
"Remove" option anywhere. Most legitimate software (but ones that may
carry parasites as extra baggage) may be able to be removed (at least
partially) this way.

2. Under the Windows Control Panel, select the "Add/Remove Programs"
applet -- look for, and "Uninstall" anything that may be related to
the malware. Be aware that many "innocent looking" applications carry
spyware, malware and parasites. Remove anything in any way resembling
problems exposed through either of the anti-spyware programs.

3. Use the removal features of the anti-virus and anti-spyware
applications. I recommend doing this AFTER the previous two steps,
because sometimes the applications will be removed more 'cleanly' by
reversing their original installation process.

Note: After performing any step, be sure to repeat the scan with the
anti-virus and/or anti-spyware program to see if the problem was
really fixed. You should continue trying to remove the problem until
the scan comes up clean. This may also mean rebooting your computer
between removal attempts.

Spybot Search and Destroy will prompt you to reboot and attempt
removal during the reboot if it encounters a particularly stubborn
bug.

4. In some cases, no amount of scanning/cleaning/rebooting can remove
the malware. In this case, you have two options:

a) Boot the computer into "Safe Mode" and re-attempt the Spybot
and Microsoft scan/removal process. (To get your computer to boot
into Safe Mode -- press just after restart -- and select
"Safe Mode" from the boot menu.)

This may allow you to remove applications that are run
automatically at start-up, but that protect themselves by
preventing the file from being deleted while the bug is running.

b) Boot the computer into Safe Mode, Run "Regedit" or "Regedt32"
and try to clean the parasite by searching the registry for
strings that the anti-virus programs have found.

Note: I won't provide detailed instructions on registry editing
-- because if you don't know how to do it already -- you'd
probably better not try! It can mess you up.

==========================================
Marty R. Milette is a Microsoft Certified Professional with over 20
years of IT experience. He holds CTT+, MCT, MCSE+I, MCP+SB, MCSD,
MCSA and A+ certifications, publishes articles, developed and
delivered training to the US Military in Europe. Mr. Milette operates
over 200 web sites, including "All My Best Hotels"
(http://www.ambh.com) and is available for training and consulting
assignments throughout Europe. A Canadian citizen, he lives with his
wife and son in beautiful St. Petersburg Russia. Contact at:
marty@milette.com
==========================================

No comments: