Internet Security

  • Thread starter Thread starter Mark2006
  • Start date Start date
M

Mark2006

It is time for me to renew internet security subscriptions. At present, I
use AVG as anti-virus and zonealarm for firewall and spyware scanning.

I wanted to get other user's opinions about these products and also
recommendations if you think there are better programs or suites.

I have windows xp home pc's. Thanks!
 
Everybody has there own opinion on those. If what you have installed is
working correctly for you now and everything is protected then why change?
Why start possible problems?

Frank
 
Everybody has there own opinion on those.
True.

If what you have installed is working correctly for you now
and everything is protected

Please explain how everything can be protected. Have you invented a
silver bullet of some sort?
then why change?

Because security is not something you buy. In a home environment it's
mainly about what you do.
Why start possible problems?

You mean beside the problems that crappy software like ZoneAlarm
already impose on you?
 
It is time for me to renew internet security subscriptions.

Why pay for Internet security? It's free.

All a security software provider can provide you with is a good
*feeling* of security. If you find that worth paying for, fine with
me.
At present, I use AVG as anti-virus and zonealarm for firewall and spyware scanning.

That's irrelevant if you actually want to discuss security.
I wanted to get other user's opinions about these products and also
recommendations if you think there are better programs or suites.

What makes you think security is something you install? -It isn't.
 
While you comments are interesting, they are not particularly helpful. I am
assuming that you are saying that "security" involves much more than a suite
of programs. It involves in depth understanding of the types of risks and
greater familiarity with both intrusion detection and the impact of malicious
programming on the operating system. Further, it involves managing the risks
of having personal or sensitive data on a computer and seeing to it that it
does not get compromised. Still, concrete suggestions would prove more
useful considering that I am not a computer scientist. Thanks!
 
Mark2006 said:
It is time for me to renew internet security subscriptions. At present, I
use AVG as anti-virus and zonealarm for firewall and spyware scanning.

I wanted to get other user's opinions about these products and also
recommendations if you think there are better programs or suites.

I have windows xp home pc's. Thanks!

Straight said:
Why pay for Internet security? It's free.

All a security software provider can provide you with is a good
*feeling* of security. If you find that worth paying for, fine with
me.

That's irrelevant if you actually want to discuss security.
if you think there are better programs or suites.

What makes you think security is something you install? -It isn't.
While you comments are interesting, they are not particularly helpful. I
am
assuming that you are saying that "security" involves much more than a
suite
of programs. It involves in depth understanding of the types of risks
and
greater familiarity with both intrusion detection and the impact of
malicious
programming on the operating system. Further, it involves managing the
risks
of having personal or sensitive data on a computer and seeing to it that
it
does not get compromised. Still, concrete suggestions would prove more
useful considering that I am not a computer scientist. Thanks!

Okay...
Some research on your own is always useful...

Towards that end...

For the future - you and your friend may want to print and review this. It
may take some initial time to do - but if your friend had read and followed
it a year ago (or less) - they would likely not be in the situation they are
now. :-(

Microsoft has these suggestions for Protecting your computer from the
various things that could happen to you/it:

Protect your PC
http://www.microsoft.com/protect/

Outfitting an XP computer for the Net
http://www.microsoft.com/protect/computer/advanced/xppc.mspx

Getting started with a new PC
http://www.microsoft.com/athome/moredone/yournewpc.mspx

Although those tips are fantastic, there are many things you should
know above and beyond that. Below I have detailed out many tips
that can not only help you clean-up a problem PC but keep it clean,
secure and running at its best.

I know this text can seem intimidating - it is quite long and a lot
to take in for a novice - however I can assure you that one pass
through this list and you will understand your computer and the
options available to you for protecting your data much better -
and that the next time you go through these steps, the time it
takes will be greatly reduced - since many things can be setup
to automatically protect you.

Let's take the cleanup/securing of your computer step-by-step.
Yes, it will take up some of your time - but consider what you use
your computer for and how much you would dislike it if all of your
stuff on your computer went away because you did not "feel like"
performing some simple maintenance tasks - think of it like taking
out your garbage, collecting and sorting your postal mail, paying
your bills on time, etc.

Now is a great time to point you to one of the easiest ways to find
information on problems you may be having and solutions others have found:

Search using Google!
http://www.google.com/
(How-to: http://www.google.com/intl/en/help/basics.html )


Now, let's go through some maintenance first that should only have to be
done once (for the most part):

Tip (1):
Locate all of the software you have installed on your computer.
(the installation media - CDs, downloaded files, etc)
Collect these CD/DVDs and files together in a central and safe
place along with their CD keys and such. Make backups of these
installation media sets using your favorite copying method (CD/DVD Burner
and application, Disk copier, etc.) You'll be glad to know that if you
have a CD/DVD burner, you may be able to use a free application to make a
duplicate copy of your CDs. One such application is ISORecorder:

ISORecorder page (with general instructions on use):
http://isorecorder.alexfeinman.com/isorecorder.htm

More full function applications (free) for CD/DVD burning would be:

CDBurnerXP Pro
http://www.cdburnerxp.se/

DeepBurner Free
http://www.deepburner.com/

ImgBurn (burn ISO images)
http://www.imgburn.com/

Final Burner Free
http://www.protectedsoft.com/descr_fb.php

BWGBurn
http://sourceforge.net/projects/bwgburn

BurnAware FREE Edition
http://www.glorylogic.com/

Another Option would be to search the web with Pricewatch.com or
Dealsites.net and find deals on Products like Ahead Nero and/or Roxio.

Ahead Nero
http://www.nero.com/

Roxio Easy Media Creator
http://www.roxio.com/

Tip (2):
Empty your Temporary Internet Files and shrink the size it stores to a
size between 128MB and 256MB..

- Open ONE copy of Internet Explorer.
- Select TOOLS -> Internet Options.
- Under the General tab in the "Temporary Internet Files" section, do the
following:
- Click on "Delete Cookies" (click OK)
- Click on "Settings" and change the "Amount of disk space to use:" to
something between 128MB and 256MB.
- Click OK.
- Click on "Delete Files" and select to "Delete all offline contents"
(the checkbox) and click OK. (If you had a LOT, this could take 2-10
minutes or more.)
- Once it is done, click OK, close Internet Explorer, re-open Internet
Explorer.

Tip (3):
If things are running a bit sluggish and/or you have an older system
(1.8GHz or less and less than 512MB RAM) then you may want to look into
tweaking the performance by turning off some of the 'resource hogging'
Windows XP "prettifications". The fastest method is:

Control Panel --> System --> Advanced tab --> Performance section,
Settings button. Then choose "adjust for best performance" and you
now have a Windows 2000/98 look which turned off most of the annoying
"prettifications" in one swift action. You can play with the last
three checkboxes to get more of an XP look without many of the
other annoyances. You could also grab and install/use one
(or more) of the Microsoft Powertoys - TweakUI in particular:

http://www.microsoft.com/windowsxp/downloads/powertoys/xppowertoys.mspx

Another viable (decently inexpensive) option is to increase the amount
of memory (RAM) your computer has. You can get an idea of what you
need by visiting:

Crucial Memory AdvisorT Tool
http://www.crucial.com/

Then either buy direct from there or write down the specs you get and
visit: http://www.pricewatch.com/ and locate the best price on what you
need. 512MB up to 1GB total memory should be more than enough for
the normal home user.

Tip (4):
Understanding what a good password might be is vital to your
personal and system security. You may think you do not need to password
your home computer, as you may have it in a locked area (your home) where
no one else has access to it. Remember, however, you aren't always
"in that locked area" when using your computer online - meaning you likely
have usernames and passwords associated with web sites and the likes that
you would prefer other people do not discover/use. This is why you should
understand and utilize good passwords.

Good passwords are those that meet these general rules
(mileage may vary):

Passwords should contain at least six characters, and the character
string should contain at least three of these four character types:
- uppercase letters
- lowercase letters
- numerals
- nonalphanumeric characters (e.g., *, %, &, !, :)

Passwords should not contain your name/username.
Passwords should be unique to you and easy to remember.

One method many people are using today is to make up a phrase that
describes a point in their life and then turning that phrase into their
password by using only certain letters out of each word in that phrase.
It's much better than using your birthday month/year or your anniversary
in a pure sense. For example, let's say my phrase is:
'Great Thanksgiving in 2007!'
I could come up with this password from that:
'Gr8Thanksgiving2007!'

The password tip is in the one time section, but I highly
recommend you periodically change your passwords. The suggested time
varies, but I will throw out a 'once in every 3 to 6 months for
every account you have.'

Also - many people complain that they just cannot remember the passwords
for all the sites they have - so they choose one password and use it for
everything. Not a good idea. A much better method would be to use a
Password Management tool - so you only have to remember one password,
but it opens an application that stores your username/passwords for
everything else - plus other valuable information. One that I can
recommend:

KeePass Password Safe
http://keepass.sourceforge.net/

It can even generate passwords for you.


Tip (5):
This tip is also 'questionable' in the one time section; however -
if properly setup - this one can be pretty well ignored for most people
after the initial 'fiddle-with' time.

Why you should use a computer firewall..
http://www.microsoft.com/protect/computer/firewall/choosing.mspx

You should, in some way, use a firewall. Hardware (like a nice
Cable Modem/DSL router) or software is up to you. Many use both of
these. The simplest one to use is the hardware one, as most people
don't do anything that they will need to configure their NAT device
for and those who do certainly will not mind fiddling with the equipment
to make things work for them. Next in the line of simplicity would
have to be the built-in Windows Firewall of Windows XP. In SP2 it
is turned on by default. It is not difficult to turn on in any
case, however:

More information on the Internet Connection Firewall (Pre-SP2):
http://support.microsoft.com/kb/320855

Post-SP2 Windows Firewall Information/guidance:
http://snipurl.com/atal

The trouble with the Windows Firewall is that it only keeps things
out. For most people who maintain their system in other ways, this is
MORE than sufficient. You may feel otherwise. If you want to
know when one of your applications is trying to obtain access to the
outside world so you can stop it, then you will have to install a
third-party application and configure/maintain it. I have compiled a
list with links of some of the better known/free firewalls you can choose
from:

Comodo Free Fireall (Free)
http://www.personalfirewall.comodo.com/

Jetico Personal Firewall (Free)
http://www.jetico.com/index.htm#/jpfirewall.htm

Outpost Firewall from Agnitum (Free and up)
http://www.agnitum.com/products/outpostfree/

Sunbelt Kerio Personal Firewall (KPF) (Free and up)
http://www.kerio.com/kpf_download.html

ZoneAlarm (Free and up)
http://www.zonelabs.com/

You should find the right firewall for your situation in that
list and set it up if you feel the Windows XP firewall is
insufficient.

Every firewall WILL require some maintenance. Essentially checking for
patches or upgrades (this goes for hardware and software solutions) is
the extent of this maintenance - you may also have to configure your
firewall to allow some traffic depending on your needs.

** Don't stack the software firewalls! Running more than one software
firewall will not make you safer - it would possibly negate some
protection you gleamed from one or the other firewall you run. It is
fine (and in many ways better) to have the software firewall as well
as a NAT router.


Now that you have some of the more basic things down..
Let's go through some of the steps you should take periodically to
maintain a healthy and stable windows computer. If you have not
done some of these things in the past, they may seem tedious - however,
they will become routine and some can even be scheduled.


Tip (6):
The system restore feature is only a useful feature if you keep it
maintained and use it to your advantage. Remember that the system
restore pretty much tells you in the name what it protects which is
'system' files. Your documents, your pictures, your stuff is NOT
system files - so you should also look into some backup solution.

Whenever you think about it (after doing a once-over on your machine
once a month or so would be optimal) - clear out your System Restore
and create a manual restoration point.

'Why?'

Too many times have I seen the system restore files go corrupt or get
a virus in them, meaning you could not or did not want to restore from
them. By clearing it out periodically you help prevent any corruption
from happening and you make sure you have at least one good "snapshot".
(*This, of course, will erase any previous restore point you have.*)

- Turn off System Restore.
http://support.microsoft.com/kb/310405
- Reboot the Computer.
- Review the first bullet to turn on System Restore
- Make a Manual Restoration Point.
http://snipurl.com/68nx

Don't want to remove ALL the system restore points? Don't. Simply
utilize "Disk Cleanup" (http://support.microsoft.com/kb/310312) to
remove all but the last system restore point.

Also - I suggest changing how much space System Restore can utilize.
When it was first released, Windows XP didn't have to deal with hard
disk drives of quite the bulk of today's drives. So, it may be a bit
ambitious in setting the System Restore sizing. I personally suggest
you set it to approximately 1GB, total.

See "Disk Space for System Restore" on how to change this:
http://www.microsoft.com/windowsxp/using/helpandsupport/getstarted/ballew_03may19.mspx

That covers your system files, but doesn't do anything for the files
that you are REALLY worried about - yours! For that you need to look
into backups. You can either manually copy your important files, folders,
documents, spreadsheets, emails, contacts, pictures, drawings and so on
to an external location (CD/DVD - any disk of some sort, etc) or you can
use the backup tool that comes with Windows XP:

How To Use Backup to Back Up Files and Folders on Your Computer
http://support.microsoft.com/kb/308422

Yes - you still need some sort of external media to store the results
on, but you could schedule the backup to occur when you are not around,
then burn the resultant data onto CD or DVD or something when you are
(while you do other things!)

Another option that seems to still be going strong:

Cobian Backup
http://www.educ.umu.se/~cobian/cobianbackup.htm

A lot of people have wondered about how to completely backup their system
so that they would not have to go through the trouble of a reinstall..
I'm going to voice my opinion here and say that it would be worthless to
do for MOST people. Unless you plan on periodically updating the image
backup of your system (remaking it) - then by the time you use it
(something goes wrong) - it will be so outdated as to be more trouble than
performing a full install of the operating system and all applications.

Having said my part against it, you can clone/backup your hard drive
completely using many methods - by far the simplest are using disk cloning
applications:

Symantec/Norton Ghost
http://snipurl.com/13e00

Acronis True Image
http://www.acronis.com/homecomputing/products/trueimage/

BootIt NG
http://terabyteunlimited.com/bootitng.html

Tip (7):
You should sometimes look through the list of applications that are
installed on your computer. The list may surprise you. There are more
than likely things in there you know you never use - so why have them
there? There may even be things you know you did *not* install and
certainly do not use (maybe don't WANT to use.)

This web site should help you get started at looking through this list:

How to Uninstall Programs
http://snipurl.com/8v6b

How to change or remove a program in Windows XP
http://support.microsoft.com/kb/307895

A word of warning - Do NOT uninstall anything you think you MIGHT need
in the future unless you have completed Tip (1) and have the installation
media and proper keys for use backed up somewhere safe!

Tip (8):
Patches and Updates!

This one cannot be stressed enough. It is SO simple, yet so neglected
by many people. It is really simple for the critical Microsoft patches!
Microsoft put in an AUTOMATED feature for you to utilize so that you do
NOT have to worry yourself about the patching of the Operating System:

How to configure and use Automatic Updates in Windows XP
http://support.microsoft.com/kb/306525

However, not everyone wants to be a slave to automation, and that is
fine. Admittedly, I prefer this method on some of my more critical
systems.

Windows Update
http://windowsupdate.microsoft.com/

Go there and scan your machine for updates. Always get the critical ones
as you see them. Write down the KB###### or Q###### you see when
selecting the updates and if you have trouble over the next few days,
go into your control panel (Add/Remove Programs), insure that the
'Show Updates' checkbox is checked and match up the latest numbers you
downloaded recently (since you started noticing an issue) and uninstall
them. If there was more than one (usually is), uninstall them one by one
with a few hours of use in between, to see if the problem returns.
Yes - the process is not perfect (updating) and can cause trouble like I
mentioned - but as you can see, the solution isn't that bad - and is
MUCH better than the alternatives.

Windows is not the only product you likely have on your PC. The
manufacturers of the other products usually have updates. New versions
of almost everything come out all the time - some are free, some are pay
and some you can only download if you are registered - but it is best
to check. Just go to their web pages and look under their support and
download sections. For example, for Microsoft Office you should visit:

Microsoft Office Updates
http://office.microsoft.com/
(and select 'Downloads' for more - note that Microsoft Update does
handle MS Office products too.)

You also have hardware on your machine that requires drivers to interface
with the operating system. You have a video card that allows you to see on
your screen, a sound card that allows you to hear your PCs sound output and
so on. Visit those manufacturer web sites for the latest downloadable
drivers for your hardware/operating system. Always get the manufacturers'
hardware driver over any Microsoft offers. On the Windows Update site I
mentioned earlier, I suggest NOT getting their hardware drivers - no matter
how tempting.

How do you know what hardware you have in your computer? Break out the
invoice or if it is up and working now - take inventory:

Belarc Advisor
http://belarc.com/free_download.html

Once you know what you have, what next? Go get the latest driver for your
hardware/OS from the manufacturer's web page. For example, let's say you
have an NVidia chipset video card or ATI video card, perhaps a Creative
Labs sound card or C-Media chipset sound card...

NVidia Video Card Drivers
http://www.nvidia.com/content/drivers/drivers.asp

ATI Video Card Drivers
http://ati.amd.com/support/driver.html

Creative Labs Sound Device
http://us.creative.com/support/downloads/

C-Media Sound Device
http://www.cmedia.com.tw/?q=en/driver

Then install these drivers. Updated drivers are usually more stable and
may provide extra benefits/features that you really wished you had before.

As for Service Pack 2 (SP2) for Windows XP, Microsoft has made this
particular patch available in a number of ways. First, there is the
Windows Update web page above. Then there is a direct download site.

Direct Download of Service Pack 2 (SP2) for Windows XP
http://snipurl.com/8bqy

Order Windows XP Service Pack 2 on CD
http://snipurl.com/d41v

If all else fails - grab the full download above and try to use that.
In this case - consider yourself a 'IT professional or developer'.

Tip (9):
What about the dreaded word in the computer world, VIRUS?

Well, there are many products to choose from that will help you prevent
infections from these horrid little applications. Many are FREE to the
home user and which you choose is a matter of taste, really. Many people
have emotional attachments or performance issues with one or another
AntiVirus software. Try some out, read reviews and decide for yourself
which you like more:

( Good Comparison Page for AV software: http://www.av-comparatives.org/ )

AntiVir (Free and up)
http://www.free-av.com/

avast! (Free and up)
http://www.avast.com/

AVG Anti-Virus System (Free and up)
http://free.grisoft.com/

eset NOD32 (~$39.00 and up)
http://www.eset.com/products/

Kaspersky Anti-Virus (~$39.95 and up)
http://www.kaspersky.com/kaspersky_anti-virus

McAfee VirusScan (~$39.99 and up)
http://www.mcafee.com/

Panda Antivirus (~$39.95 and up)
http://www.pandasecurity.com/homeusers/solutions/antivirus/
(Free Online Scanner:
http://www.pandasecurity.com/homeusers/solutions/activescan/)

Symantec (Norton) AntiVirus (~$39.99 and up)
http://snipurl.com/13e12



Most of them have automatic update capabilities. You will have to
look into the features of the one you choose. Whatever one you finally
settle with - be SURE to keep it updated (I recommend at least daily) and
perform a full scan periodically (yes, most protect you actively, but a
full scan once a month at 4AM probably won't bother you.)

Tip (10):
The most rampant infestation at the current time concerns SPYWARE/ADWARE.
You need to eliminate it from your machine.

There is no one software that cleans and immunizes you against
everything. Antivirus software - you only needed one. Firewall, you
only needed one. AntiSpyware - you will need several. I have a list and
I recommend you use at least the first five.

First - make sure you have NOT installed "Rogue AntiSpyware". There are
people out there who created AntiSpyware products that actually install
spyware of their own! You need to avoid these:

Rogue/Suspect Anti-Spyware Products & Web Sites
http://www.spywarewarrior.com/rogue_anti-spyware.htm

Also, you can always visit this site..
http://mvps.org/winhelp2002/unwanted.htm
For more updated information.

Install several of these: (Install, Run, Update, Scan with..)
(If you already have one or more - uninstall them and download the
LATEST version from the page given!)

SuperAntiSpyware (Free and up)
http://www.superantispyware.com/

Lavasoft Ad-Aware 2007 Free (Free and up)
http://www.lavasoft.de/products/ad_aware_free.php
(How-to: http://snipurl.com/atdn )

Spybot Search and Destroy (Free!)
http://www.safer-networking.net/en/download/
(How-to: http://snipurl.com/atdk )

SpywareBlaster (Free!)
http://www.javacoolsoftware.com/sbdownload.html
(How-to: http://snipurl.com/ate6 )

CWShredder Stand-Alone (Free!)
http://www.trendmicro.com/cwshredder/

Hijack This! (Free!)
http://www.spywareinfo.com/~merijn/downloads.html
(Log Analyzer: http://hjt.networktechs.com/ )

Bazooka Adware and Spyware Scanner (Free!)
http://www.kephyr.com/spywarescanner/
(How-to: http://snipurl.com/ate3 )

Ccleaner (Free!)
http://www.ccleaner.com/
(I suggest the 'slim' version: http://www.ccleaner.com/download/builds )

Browser Security Tests (Free Tester)
http://www.jasons-toolbox.com/BrowserSecurity/

Popup Tester (Free Tester)
http://www.popuptest.com/

The Cleaner (~$49.95 and up)
http://www.moosoft.com/

Sometimes you need to install the application and reboot into SAFE MODE in
order to thoroughly clean your computer. Many applications also have
(or are) immunization applications. Spybot Search and Destroy and
SpywareBlaster are two that currently do the best job at passively
protecting your system from malware. None of these programs (in these
editions) run in the background unless you TELL them to. The space they
take up and how easy they are to use greatly makes up for any inconvenience
you may be feeling.

Please notice that Windows XP SP2 does help stop popups as well.

Another option is to use an alternative Web browser. I suggest
'Mozilla Firefox', as it has some great features and is very easy to use:

Mozilla Firefox
http://www.mozilla.com/firefox/

This does not replace the need for the above applications and an
occassional scan of your system - but it does help somewhat.

Also - Internet Explorer 7.x is much better with the security than
6.x was. If you have not gone to Internet Explorer 7.0 and you are having
trouble with spyware/adware - consider going now. Cleanup with the
tools above *first* however.


So your machine is pretty clean and up to date now. If you use the sections
above as a guide, it should stay that way! There are still a few
more things you can do to keep your machine running in top shape.

Tip (11):
You should periodically check your hard drive(s) for errors and defragment
them. Only defragment after you have cleaned up your machine of
outside parasites and never defragment as a solution to a quirkiness in
your system. It may help speed up your system, but it should be clean
before you do this. Do these things IN ORDER...

How to use Disk Cleanup
http://support.microsoft.com/kb/310312

How to scan your disks for errors
http://support.microsoft.com/kb/315265

How to Defragment your hard drives
http://support.microsoft.com/kb/314848

I would personally perform the above steps at least once every three months.
For most people this should be sufficient, but if the difference you notice
afterwards is greater than you think it should be, lessen the time in
between its schedule.. If the difference you notice is negligible, you can
increase the time.

Tip (12):
SPAM! JUNK MAIL!
This one can get annoying, just like the rest. You get 50 emails in one
sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well,
although there are services out there to help you, some email
servers/services that actually do lower your spam with features built into
their servers - I still like the methods that let you be the end-decision
maker on what is spam and what is not. I have a few products to suggest
to you, look at them and see if any of them suite your needs. Again, if
they don't, Google is free and available for your perusal.

SpamBayes (Free!)
http://spambayes.sourceforge.net/

Spamihilator (Free!)
http://www.spamihilator.com/

MailWasher
http://www.mailwasher.net/

Another option - utilze some service that already does a FINE JOB on
eliminating the spam from your mailbox (plus a number of other benefits.)

Google Mail (gmail):
http://www.gmail.com/
(Set it up for your email client of choice - using POP:
http://mail.google.com/support/bin/answer.py?answer=13273 )

Windows Live Hotmail (formerly just "Hotmail"):
http://get.live.com/mail/options

There are many others. Email from anywhere with a computer, lots of
space for your emails/attachments, free services and if you change ISPs -
your email doesn't change!

As I said, those are not your only options, but are reliable ones I have
seen function for hundreds+ people. Feel free to search for your own
solutions!

Tip (13):
ADVANCED TIP! Only do this once you are comfortable under the hood of your
computer!

There are lots of services on your PC that are probably turned on by default
you don't use. Why have them on? Check out these web pages to see what all
of the services you might find on your computer are and set them according
to your personal needs. Be CAREFUL what you set to manual, and take heed
and write down as you change things! Also, don't expect a large performance
increase or anything - especially on today's 2+ GHz machines, however - I
look at each service you set to manual as one less service you have to worry
about someone exploiting.

Service Configuration Tips
http://www.tweakhound.com/xp/xptweaks/supertweaks6.htm

Configuring Services
http://smallvoid.com/tweak/winnt/services.html

Task List Programs
http://www.answersthatwork.com/Tasklist_pages/tasklist.htm

Processes in Windows NT/2000/XP
http://www.reger24.de/prozesse/

There are also applications that AREN'T services that startup when you start
up the computer/logon. One of the better description on how to handle these
I have found here:

Startups
http://www.pacs-portal.co.uk/startup_content.php


If you follow the advice laid out above (and do some of your own research as
well, so you understand what you are doing) - your computer will stay fairly
stable and secure and you will have a more trouble-free system.
 
While you comments are interesting, they are not particularly helpful.

This is a newsgroup, not a support-forum. Anyway, my comments are
helpful if you strive to understand them.
I am assuming that you are saying that "security" involves much more than a suite
of programs.

Not *much* more. And not "in addition to".
It involves in depth understanding of the types of risks

You can't protect yourself against something unknown. How could you
have any idea about how to protect your home if you had no idea how
burglars worked?
and greater familiarity with both intrusion detection and the impact of malicious
programming on the operating system.

It's not a as hard as you make it sound.
Further, it involves managing the risks
of having personal or sensitive data on a computer and seeing to it that it
does not get compromised. Still, concrete suggestions would prove more
useful considering that I am not a computer scientist. Thanks!

Feel free to visit my web site for some inspirational reading and
start changing your mind set.
http://home20.inet.tele.dk/b_nice/
 
For the future - you and your friend may want to print and review this. It
may take some initial time to do - but if your friend had read and followed
it a year ago (or less) - they would likely not be in the situation they are
now. :-(

Seems irrelevant to the thread. Copy/paste has it downsides, hasn't
it? ;-)

The trouble with the Windows Firewall is that it only keeps things
out. For most people who maintain their system in other ways, this is
MORE than sufficient. You may feel otherwise. If you want to
know when one of your applications is trying to obtain access to the
outside world so you can stop it, then you will have to install a
third-party application and configure/maintain it. I have compiled a
list with links of some of the better known/free firewalls you can choose
from:

It always bothers me when MVP's (whom we must assume have a certain
level of understanding) promote 3rd party firewalls because of the so
called outbound "control" feature. Host based outbound control on a
windows platform is one of the greatest myths in computer security. It
gives the user a false sense of being in control - which is
technically impossible for programs like malware that is not
interested in being controlled. And legitimate software by definition
does not need to be controlled. Doing so is mostly counter-productive.
Clueless users will prevent their legitimate programs from "phoning
home". In reality they mostly prevent them from looking for software
updates thereby staying vulnerable instead of becoming more secure.

Malware is not something you try to control. It's something you stay
away from. Promoting the idea that malware is somehow controllable is
very dangerous.

Tip (9):
What about the dreaded word in the computer world, VIRUS?

Well, there are many products to choose from that will help you prevent
infections from these horrid little applications.

Nonsense. AV has proven to be highly ineffective against modern
malware. AV catches the little fish and let the big ones go
unattended. And worse, AV software even encourage users to act
irresponsible because "my AV will protect me".

You stay away from viruses by not installing them. It's not that hard.
Tip (10):
The most rampant infestation at the current time concerns SPYWARE/ADWARE.

Spyware and Adware are self-induced problems. Stay away from
inherently broken software like Internet Explorer and Outlook Express
and don't install questionable software from dubious sources and you
will most likely not have any such malware ever.
There is no one software that cleans and immunizes you against
everything.
Antivirus software - you only needed one.

Functioning as some kind of intrusion prevention, I agree. As "removal
tools" they are close to useless. When you're compromised, it's game
over - and the only sensible thing to do in such situation is to
revert to a known clean state.
Firewall, you only needed one.

Stick with the build in one - or even better: shut down unnecessary
network services. It's even more secure than having one.
AntiSpyware - you will need several.
Nonsense.

I have a list and
I recommend you use at least the first five.

Even more nonsense. You have fallen for the flawed idea that security
is a question of installing as much security software as possible even
though installing further code is the exact opposite of security.

You gain security by fixing what is broken. Not by adding further
code.
 
<snipped>
<replies inline>

Straight said:
Seems irrelevant to the thread. Copy/paste has it downsides, hasn't
it? ;-)

No. It is relevant. Notice the original posting...

"I wanted to get other user's opinions about these products and also
recommendations if you think there are better programs or suites."

Hmm... Look at that - receommendations of programs that may be better.

Straight said:
It always bothers me when MVP's (whom we must assume have a certain
level of understanding) promote 3rd party firewalls because of the
so called outbound "control" feature. Host based outbound control
on a windows platform is one of the greatest myths in computer
security. It gives the user a false sense of being in control -
which is technically impossible for programs like malware that is
not interested in being controlled. And legitimate software by
definition does not need to be controlled. Doing so is mostly
counter-productive. Clueless users will prevent their legitimate
programs from "phoning home". In reality they mostly prevent them
from looking for software updates thereby staying vulnerable
instead of becoming more secure.

This is where I point out you did not comprehend what I wrote (also that you
snipped much of it out...)

If you notice - my words that you left in even state this quite clearly...
(In reference to the Windows XP Firewall...)
"For most people who maintain their system in other ways, this is MORE than
sufficient."

Did you choose to miss that or just miss that?

Straight said:
Malware is not something you try to control. It's something you stay
away from. Promoting the idea that malware is somehow controllable
is very dangerous.

Where did I promote that idea?
Nonsense. AV has proven to be highly ineffective against modern
malware. AV catches the little fish and let the big ones go
unattended. And worse, AV software even encourage users to act
irresponsible because "my AV will protect me".

You stay away from viruses by not installing them. It's not that
hard.

This is where I point out you did not comprehend what I wrote (also that you
snipped much of it out...)
AGAIN...

Notice - Tip (9) is not about malware. Malware is a term used for
adware/spyware/crapware/crudware. Viruses/trojans and worms are seldom
grouped with these other than by all-in-one suites and people who do not
understand the differences. You mention malware here where it does not
belong.

As far as those 'not installing them' - most times when people get infected
with a virus - they did not intend on it happening - they just didn't know
any better. After all - why would 'Aunt Betty' send them a virus in an
email?
Spyware and Adware are self-induced problems. Stay away from
inherently broken software like Internet Explorer and Outlook
Express and don't install questionable software from dubious
sources and you will most likely not have any such malware ever.

Possibly true. But I have tested and infested machines with malware by just
VISITING an infested site using Firefox, Opera, etc. There is no 100% safe
anything - if there was - everything else would cease to exist due to
non-use.
Functioning as some kind of intrusion prevention, I agree. As
"removal tools" they are close to useless. When you're compromised,
it's game over - and the only sensible thing to do in such
situation is to revert to a known clean state.

Sure - if you want to throw out the baby with the bath water. It really
depends on what you were compromised with and how.
Stick with the build in one - or even better: shut down unnecessary
network services. It's even more secure than having one.

I disagree and since this text is not intended for people who would even
know where to start doing such things - irrelevent.
Nonsense.

There is not one AntiSpyware application that can clean all infestations.
This is for cleanup. You not only have started quoting my text randomly and
out of order - but you clearly haved no understanding of what its purpose
is - even though it is stated at the very beginning. This is for cleanup of
a machine - not just prevention.
Even more nonsense. You have fallen for the flawed idea that
security is a question of installing as much security software as
possible even though installing further code is the exact opposite
of security.

You gain security by fixing what is broken. Not by adding further
code.

Let me just say I read all your comments. I would love to agree with some
of them, but I can see you cannot comprehend it as a whole. It may have
been too much for you to take in at once. It may be you decided to pick out
parts of it - at random it seems - instead of keeping it together as it was
meant to be and posted just to make whatever point you thought you were
making. However - since the document is meant to teach those how to
properly maintain and cleanup their system from some incident (you would
have had to read the beginning and comprehend it to know this) - then the
document is just fine.

It has been fine-tuned over the years and posted and tested over and over
throughout the Internet. It may not be necessary for EVERYONE to do and
some may not do much of it for their entire lifetime and never have a
problem. That's fine - it's no different than any other risky endeavor.
There's always someone who seems to get along fine without the recommended
precautions or another solution to eliminate the risk or speed the cleanup
after an incident.

I appreciate your comments - I would appreciate them more if you did not
cut/paste in a random fashion and took in account who the intended audience
is for this document. Either way - *shrug* - good luck!
 
<snipped>
<replies inline>



No. It is relevant. Notice the original posting...

"I wanted to get other user's opinions about these products and also
recommendations if you think there are better programs or suites."

Hmm... Look at that - receommendations of programs that may be better.

I see no references to any friend being in any bad situation...
This is where I point out you did not comprehend what I wrote (also that you
snipped much of it out...)

You don't need to worry about my comprehension of what you wrote.
If you notice - my words that you left in even state this quite clearly...
(In reference to the Windows XP Firewall...)
"For most people who maintain their system in other ways, this is MORE than
sufficient."

Did you choose to miss that or just miss that?



Where did I promote that idea?

You did so by promoting 3rd party firewalls, because the number one
reason for people choosing 3rd party firewalls is the belief that hey
can prevent malware from phoning home = control malware.
This is where I point out you did not comprehend what I wrote (also that you
snipped much of it out...)
AGAIN...

Notice - Tip (9) is not about malware. Malware is a term used for
adware/spyware/crapware/crudware. Viruses/trojans and worms are seldom
grouped with these other than by all-in-one suites and people who do not
understand the differences. You mention malware here where it does not
belong.

What utter nonsense. Malware covers any kind of malicious software
including viruses, trojans and worms. Sub-categorizing it only serves
the purpose of so called security companies to sell even more
different kinds of anti-crap to clueless people. And you are
supporting them with your lack of understanding.
As far as those 'not installing them' - most times when people get infected
with a virus - they did not intend on it happening - they just didn't know
any better. After all - why would 'Aunt Betty' send them a virus in an
email?

Most viruses are installed due to social engineering. This is not a
technical problem and therefore cannot be solved by technical means.
Possibly true. But I have tested and infested machines with malware by just
VISITING an infested site using Firefox, Opera, etc. There is no 100% safe
anything - if there was - everything else would cease to exist due to
non-use.

Probably. But exactly how well does anti-software help against such
zero-day threats? Nada.
Sure - if you want to throw out the baby with the bath water.
Babble.

It really depends on what you were compromised with and how.

Not even experts are able to tell the exact impact of a compromise.
I disagree

You can't possibly disagree to a fact.
and since this text is not intended for people who would even
know where to start doing such things - irrelevent.

That's another thing. But still wrong. If people are skilled enough to
install and configure a personal firewall they are also skilled enough
to run a simple script that turns of network services.
There is not one AntiSpyware application that can clean all infestations.

True. And there is no way a gazillion anti-products can clean
infestations.
This is for cleanup.

Which is impossible. Even MS acknowledges that.
You not only have started quoting my text randomly and
out of order - but you clearly haved no understanding of what its purpose
is - even though it is stated at the very beginning. This is for cleanup of
a machine - not just prevention.

And you clearly never understood that describing such a thing as
clean-up is nonsense. Even promoting the idea that an infected machine
can be cleaned up doesn't move us any way forward in terms of
security. You seem more interested in promoting status quo than to
actually make a difference.
Let me just say I read all your comments. I would love to agree with some
of them, but I can see you cannot comprehend it as a whole. It may have
been too much for you to take in at once. It may be you decided to pick out
parts of it - at random it seems - instead of keeping it together as it was
meant to be and posted just to make whatever point you thought you were
making. However - since the document is meant to teach those how to
properly maintain and cleanup their system from some incident (you would
have had to read the beginning and comprehend it to know this) - then the
document is just fine.

Nuff said.
It has been fine-tuned over the years and posted and tested over and over
throughout the Internet.

Exactly. Keep spreading your so called "common knowledge" even though
is hasn't brought us anything.
 
To the OP.

I'd go with Shenan. It's for your own good.

To the OP.

I'd go with doing your own research and start thinking for yourself.
It's for your own good.
 
Back
Top