Posted on 01/18/2003 8:49:27 AM PST by Sir Gawain
Just thought I'd give this little PSA since I'm such a nice guy.
Many of you are already familiar with Lavasoft's AdAware, but you may not be familiar with SpyBot Search & Destroy, which is actually more powerful and more up-to-date. Lavasoft hasn't updated their definition file since September because they're working on a new release, so it won't clean newer spyware creations like CommonName. I would keep AdAware however. It's still very useful.
SpyBot also has a lot of other cool functionality built into it, like a clean on startup in case you are unable to remove the spyware's .exe or .dll because they have processes running. Yes I realize you can just unregister the .dll then reboot and delete it, but not everyone knows how to do that.
Here are a few other cool (and free) tools to help keep the stuff off your PC:
(From website) "SpywareBlaster doesn't scan and clean for spyware - it prevents it from ever being installed.
How? By setting a "kill bit" for the CLSIDs of spyware ActiveX controls, it prevents the installation of any of them from a webpage. You can run Internet Explorer with Active-X enabled, but you will never even get a "Yes/No" box popped up, asking you to install a spyware Active-X control (Internet Explorer will never download or run it!). All other Active-X controls or plug-ins will work fine.
The SpywareBlaster database contains information on these known spyware Active-X controls. Make sure you run the Check For Updates feature frequently to get the latest database! (And make sure you check the new items to protect your system against them!)
As a side benefit, setting this "kill bit" will also prevent the spyware Active-X from running, in many cases, if it is already installed on your system.*"
(From website) "SpywareGuard provides a real-time protection solution against spyware that is a great addition to SpywareBlaster's protection method.
An anti-virus program scans files before you open them and prevents execution if a virus is detected - SpywareGuard does the same thing, but for spyware! And you can easily have an anti-virus program running alongside SpywareGuard.
Features Listing: Fast scanning engine
Scans exe and cab files - the two most popular file types for distributing spyware
Signature-based scanning - for known spyware (list)
Heuristic/generic detection capabilities - some spyware programs can be detected even if the code undergoes significant changes
Small size - with a small size and small definition sizes, download and updates are quick
SG Control Panel - provides easy access to help and integration options
SG LiveUpdate - provides an easy updating solution
Spyware files are blocked before being opened or run - they are not simply shut down after they are loaded in memory (and after they have performed their tasks)
The full path to the spyware executable is provided on the alert screen
Once a spyware file is detected and blocked from running, the options are provided to either continue or to delete the spyware file
It's a free download
Most of this info and much more can be found at http://www.spywareinfo.com/
I hope this post doesn't show up twice...I had started this in reply to an old thread, and it just suddenly disappeared.
Anyway, I found out from you what to do when Searchex hijacked my home page. Now I have a more serious problem. My IE e-mail has been hijacked. AVG finds a trojan horse (generic CLB) and tries to get rid of it, but it doesn't work. I can give you the location of it if you want it.
I changed my password with my ISP and that didn't work. We set up a totally new account, and it's still hijacked. Also, one of my other virus checkers finds a "hijack" but doesn't tell me what to do about it.
Can you possibly help? They have hijacked all my e-mail since 10/11. I see when e-mail is coming in, but it never gets here. I have sent test e-mails to myself and the same thing happens.
I would really, really appreciate it if you could tell me what to do. Thanks.
Did you run Spybot and AdAware?
Yes, I ran both of those. One of those is what found the "hijack," but that's all it said. Also, I have not been able to update Spybot since this happened, nor can I do a system restore. Mess, huh?
I believe I have been targeted because I post here, not sure though.
The advice to open only e-mails from known sources should include to NEVER open an e-mail from "yourself", your own e-mail address. Someone has figured out how to use your own address to send you stuff. It is usually set up as your e-mail@somewhereelse.
Ping. Must read later.
Anyone have any ideas to really get rid of WinFixer?? Spybot found it and quarantined it aftet the fact, but IE still isnt working quite right.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.