computer experts, need ur help!!

[niky]

no matter what PC browser you use, you will always get spy/mal/adware... only mac browsers are immune to this... i have not tested linux browsers just yet.

really? My Mozilla hasn't been infected yet... so far this year, I've received maybe three infections... but I never noticed them, as they went straight for my IE registers and never manifested. :p

Rumor has it, some team created a Mac virus, just to prove it could be done... but they never released it. :D :D :D

[pajerokid]

Yung mga spyware na yan runs on :80???

Kasi if not, you can just install SP2 (and pray it doesnt crash your system), and block it using Personal Firewall.

[mikaztro]

Originally posted by need4speed
infected in what way may i ask?

no matter what PC browser you use, you will always get spy/mal/adware... only mac browsers are immune to this... i have not tested linux browsers just yet.

I use the programs I stated in a corporate setting and IT Security is my profession.

FYI: even if you have the latest antivirus software, you still aren't safe. Symantec Antivirus Corporate Edition 9.0 does have a spy/mal/adware detection feature but it isn't done as extensively as the programs stated above (not to mention the 3 programs above are highly recommended by security sites and other reputable sites like cnet.com / zdnet / etc.)

-------
from cnet.com

#1 Ad-Aware SE Personal Edition popular
#2 Spybot - Search & Destroy popular
#22 22 SpywareBlaster popular

http://www.download.com/3101-2001-0-1.html?tag=pop

------------


staying away from exe / com / doc files is also not advisable due to them being important files that people need to use. com/exe files are the applications that you need to run. doc files are ms word files which are used extensively.

Yes sir, you are quite right. Sorry to burst your bubble but I am a former sysad consultant of one of the reputable internet companies in the Phil.

no matter what PC browser you use, you will always get spy/mal/adware... only mac browsers are immune to this... i have not tested linux browsers just yet.

-- I'm sorry to tell you but I don't get any spy/mal/adware on my Netscape. Have you tried 7.0? You are right in saying NO BROWSER is immuned to this -- but if you know how to deal with it, certainly, you can avoid it.

FYI: even if you have the latest antivirus software, you still aren't safe. Symantec Antivirus Corporate Edition 9.0 does have a spy/mal/adware detection feature but it isn't done as extensively as the programs stated above (not to mention the 3 programs above are highly recommended by security sites and other reputable sites like cnet.com / zdnet / etc.)

--Yes, even if you have updated versions of any of the top AVP will not be a guarantee. But at least, it gives the users a sense of security and source of prevention from updated AVPs than none at all. the 3 programs you have specified is quite good and in fact considered highly recommended. My point is, avoid getting those 3 programs from untrusted sites. Sometimes, when we browse/ surf, alot of website do advertise "FREE ANTI-SPAM, ANTI MALWARE, ANTI - SO ON AND SO FORTH". It gives the PC Newbies a sense of false direction and chances are, they will download it immediately.

staying away from exe / com / doc files is also not advisable due to them being important files that people need to use. com/exe files are the applications that you need to run. doc files are ms word files which are used extensively

--Of course they are important! How else can our system function without them? What I'm trying to say is that PC newbies should avoid downloading attachments and the likes thru email and other unknown-untrustworthy website. FYI, only files with extensions such as (doc, vbs, exe, php, scr and other less known but executable files) are susceptible to (trojan, macro, worms etc.)virus. Surely, AVPs cannot detect them all but with an ounce of prevention, it is all worth a pound of cure. Usually, a highly suspicious file or contains an embeded worm or trojan in it. After executing it will it only activate the virus and sends copies of itself thru (address book)email and will probably try to download a file and install an even more dangerous executable file via a web page wherein the hosts doesn't even know a thing. Often macro viri usually corrupts your most common used files such as (docs, dlls, exe, jpg, gifs), sends multiple copies via email OR worst, deletes your enitire Hard disk. The easiest way to attach a trojan virus is thru an (exe) executable file using patchers or file binders. The safest and only way I can detect a file if it has a virus on it is by using my old trusty Notepad or Ultraedit software. You can usually see the header of the file and see if it creates an entry in the registry for it to work. --This is a very lengthy discussion..better stop na.


Sir, I do not intend to refute your claims nor discredit your intelligence. I was just merely specifying or giving my own insights regarding a Newbie that needs help. To each his own views and opinion. If you still need an elaborate discussion about this topic, I will more than willing to explain it further. My previous post was in conformity for the Newbie's comprehension only and not to a person with a high degree of skill or knowledge.

[jim]

i also don't get spyware/adware with my current browser which is mozilla firefox. if you want a higher degree of security then install a personal firewall on your PC. if you can't configure a firewall try to use a free virus protection software. You can use AVG by Grisoft its 100% free with auto update feature. go to this site to download it:

http://free.grisoft.com/freeweb.php/doc/2/

[roninblade]

no matter what PC browser you use, you will always get spy/mal/adware... only mac browsers are immune to this... i have not tested linux browsers just yet.

really? why dont you try out other browsers first. i never had any problem with firefox and mozilla on my win2k before. only when i use ie do i get any sort of spyware. mac is not affected since, like linux, it is *nix based; darwin - the mac os x kernel - is based on freebsd. your post clearly shows that you have no idea what you're talking about. please try to research more in the future.

FYI: even if you have the latest antivirus software, you still aren't safe. Symantec Antivirus Corporate Edition 9.0 does have a spy/mal/adware detection feature but it isn't done as extensively as the programs stated above (not to mention the 3 programs above are highly recommended by security sites and other reputable sites like cnet.com / zdnet / etc.)

-------
from cnet.com

#1 Ad-Aware SE Personal Edition popular
#2 Spybot - Search & Destroy popular
#22 22 SpywareBlaster popular

http://www.download.com/3101-2001-0-1.html?tag=pop

anti-virus softwares are really only good for virus detection and removal. strictly speaking mal/ad/spyware is not a virus so you really need to use another tool, like the 3 mentioned above..

[mikaztro]

There is a very powerful tool in your Windows OS which you can use. It is called Msconfig.exe and Regedit.exe. It can be used to modify your registry and to manipulate your startup system wherein trojans usually reside.

Pajerokid is right! Firewalls do help a lot in preventing malicious programs etal.

[need4speed]

ok let me address some issues here.

to mikaztro:

with all due respect sir, i was merely asking as to how your friend got infected due to these removal tools for spy/mal/adware. and your comment about avoiding those extensions you mentioned are rather vague and can be misinterpretted by newbies. thus, I had to explain why this can't be avoided. since we're fellow tech brethren, i feel that we should explain things a little better to the non-techies. i am not offended and i did not mean to demean you as well. I just wanted to clariffy things.

--------

to roninblade:

my post shows i have no idea what i'm talking about ey? to disprove you... here's a screen capture of a freshly installed pc running firefox and netscape



i am not the chief it security specialist for the whole asia pacific region and north america if i do not know what i'm talking about.

even mikaztro agrees with me

"You are right in saying NO BROWSER is immuned to this -- but if you know how to deal with it, certainly, you can avoid it." - mikaztro...

and... I AM a Mac and Linux user. I do not have time to test if Linux browsers are immune coz i don't have time. I know Mac's are so far.


as you can see here in my home setup... I am running a few servers on redhat and suse linux... novell netware 6.5 win2k server / win2k3 server via vmware... and a whole lot of other stuff (mostly security related)... so I don't know what I'm talking about? hmm... ok.. if you say so

----

in any case, i rest my case. i don't want an argument. i was just here to help people. if you think you know better, then good for you, so teach the less knowledgeable your knowledge. ;)

[jim]

pa OT po:
nice setup need4speed. office mo na rin ba bahay mo? hehehehe :-) sir baka may kernel update ka ng RedHat 2.1 AS pwede makopya??? :-)

[need4speed]

di naman jim... it's just my testing environment... you gotta keep yourself updated to get ahead in this industry just like any other...

sorry sir, i don't have redhat 2.1

[need4speed]

some people have requested for the DSO fix that won't go away.

-----------------
before anything else, make a backup of your registry just to be on the safe side... I know this is for winxp... I can't recall if it worked for win2k... i'll have to follow up on that for you

just open wordpad or textpad

and put this in.... then save it and double click on the file to run.

(name it dso_fix.reg or whatever you like)

----------------

REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Internet Settings\Zones\0]
"1004"=dword:00000003

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Inter net Settings\Zones\0]
"1004"=dword:00000003

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Inter net Settings\Zones\0]
"1004"=dword:00000003

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Inter net Settings\Zones\0]
"1004"=dword:00000003

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Internet Settings\Zones\0]
"1004"=dword:00000003