hi all
i have a pc running xp home edition and i cant stop getting trojans and spy
ware
what should i do
thanx so much
Protect yourself. Please. For everybdy's sake.
How current is your virus protection? Try one or more of these free
online virus scans, which should complement your current protection:
<
http://www.bitdefender.com/scan/license.php>
<
http://www.pandasoftware.com/activescan>
<
http://www.ravantivirus.com/scan/>
<
http://security.symantec.com/ssc/home.asp>
<
http://housecall.trendmicro.com/housecall/start_corp.asp>
Now check for, and learn to defend against, additional problems. All
tools are free, so you have nothing to lose but time. And maybe some
few system resources.
Start by downloading each of the following free tools:
AdAware <
http://www.lavasoftusa.com/>
HijackThis <
http://www.majorgeeks.com/download.php?det=3155>
LSP-Fix and WinsockLSPFix <
http://www.cexx.org/lspfix.htm>
Spybot S&D <
http://www.safer-networking.org/index.php?page=download>
Create a separate folder for HijackThis, such as C:\HijackThis - copy
the downloaded file there. Spybot S&D has an install routine - run
it. The other downloaded programs can be copied into, and run from,
any convenient folder.
Next, run AdAware. First update it ("Check for updates now"),
configure for full scan (<
http://www.lavahelp.com/howto/fullscan/>),
then scan ("Start" - "Use custom scanning options" - "Next"). When
scanning finishes, select everything, and hit Next again.
Next, run Spybot S&D. First update it ("Search for updates"), then
run a scan ("Check for problems"). Trust Spybot, and delete
everything ("Fix Problems") that is displayed in Red.
Then, run HijackThis ("Scan"). Do NOT make any changes immediately.
Save the HJT Log.
<
http://forums.spywareinfo.com/index.php?showtopic=227>
Finally, have your HJT log interpreted by experts at one or more of
the following security forums (and post it, or a link to your forum
posts, here):
Aumha: <
http://forum.aumha.org/index.php>
Net-Integration: <
http://forums.net-integration.net/>
Spyware Info: <
http://forums.spywareinfo.com/>
Spyware Warrior: <
http://spywarewarrior.com/index.php>
Tom Coyote: <
http://forums.tomcoyote.org/>
Wilders Security<
http://www.wilderssecurity.com/>
If removal of any spyware affects your ability to access the internet
(some spyware builds itself into the network software, and its removal
may damage your network), run LSP-Fix and / or WinsockXPFIx.
Finally, improve your chances for the future.
Harden your browser. There are various websites which will check for
vulnerabilities, here are three which I use.
http://www.jasons-toolbox.com/BrowserSecurity/
http://bcheck.scanit.be/bcheck/
https://testzone.secunia.com/browser_checker/
Block Internet Explorer ActiveX scripting from hostile websites
(Restricted Zone).
<
https://netfiles.uiuc.edu/ehowes/www/main.htm> (IE-SpyAd)
Set up blocking of known dangerous scripts from installing.
<
http://www.javacoolsoftware.com/spywareblaster.html>
Block known spyware from installing.
<
http://www.wilderssecurity.net/spywareguard.html>
Harden your operating system. Check at least monthly for security
updates.
http://windowsupdate.microsoft.com/
Block possibly dangerous websites with a Hosts file. Three Hosts file
sources I use:
http://www.accs-net.com/hosts/get_hosts.html
http://www.mvps.org/winhelp2002/hosts.htm
(The third is included, and updated, with Spybot (see above)).
Maintain your Hosts file (merge / eliminate duplicate entries) with:
eDexter <
http://www.accs-net.com/hosts/get_hosts.html>
Hostess <
http://accs-net.com/hostess/>
Secure your operating system, and applications. Don't use, or leave
activated, any accounts with names or passwords with trivial
(guessable) values. Don't use an account with administrative
authority, except when you're intentionally doing administrative
tasks.
Use common sense. Yours. Don't install software based upon advice
from unknown sources. Don't install free software, without
researching it carefully. Don't open email unless you know who it's
from, and how and why it was sent.
Educate yourself. Know what the risks are. Stay informed. Read
Usenet, and various web pages that discuss security problems. Check
the logs from the other layers regularly, look for things that don't
belong, and take action when necessary.
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
