- Thread starter
- #1
WizardHawk
Release the Kraken - Fuck the Canucks
The best way to clean up virus attacks is to not suffer them to begin with. Most of the things people talk about are common sense and everyone knows them, but we all at times get lazy about them and fail to protect ourselves. I'm speaking about keeping entry points such as Java, Flash, and Silverlight fully patched and all security updates to your operating system up to date. Those alone prevent many attacks.
It used to be that doing those things and keeping an up to date anti-virus program on your machine was enough. Well it can be argued it wasn't ever bullet proof, but for most it was enough. Not anymore.
One mistake many, even seasoned professionals, do is run their desktop in admin mode. I mean it's just easier to not have to log out and into another account to install things when you are the only user right? But keeping a separate standard user account that is your normal use is a huge thing that can prevent a lot of issues. Also don't turn off UAC (User Account Control). I know it's annoying when it pops up all the time, but with it off you are asking for trouble from drive by web sites that can now do as they please to your drive without any warning or notice at all. Just don't do it.
So what else can you do? Most people know about Malwarebyte's anti-malware (MBAM), but the free version of that doesn't do anything to prevent infection. It is just a good tool for helping to clean some/many of them up.
If you really want to prevent all real possibility of infection look into sandboxie. The free version alone will help almost eliminate any possible attack in the first place although I do admit novice PC users will likely not get nearly the benefit of at least intermediate users because you have to be able to tell when something is bad before letting it on your computer and novices likely won't be able to.
SandboxIE runs your browser and any file/program you like in a complete sandbox (virtual) environment. All changes made to a hard drive, registry, system files, or other areas are done so completely out of harms way. Bad web site with a drive by trojan on it? No problem. Not sure if an attachment is bad and you don't trust your AV scanner? No problem. Browse in the box and run that suspicious app in the box and see what happens. Even run a AV scan on whatever was done in the box BEFORE it ever reaches your full machine.
Another free tool outside of MBAM is Emsisoft emergency kit. Great tool to use with sandboxie as you aren't so much worried about scrubbing/fixing issues as simply identifying if a file you have in your sandbox is bad or not. Feel free to fully install that suspicious program in a sandbox and then run that scan. If it finds something purge the sandbox and delete that file. The infection literally never happened.
Web of Trust - This free download adds a user driven feedback system to browsing. You see a green, yellow, or red circle after links based on reports by other users. This tip will help everyone including novice users. Simply steer clear of even potentially problem sites.
Someone else should write up a good guide on free or trial tools for cleaning up infections. Leave this thread to helping to prevent them to begin with. Add your suggestions and I'll go back and add them to this message so people can just scan the OP for info.
It used to be that doing those things and keeping an up to date anti-virus program on your machine was enough. Well it can be argued it wasn't ever bullet proof, but for most it was enough. Not anymore.
One mistake many, even seasoned professionals, do is run their desktop in admin mode. I mean it's just easier to not have to log out and into another account to install things when you are the only user right? But keeping a separate standard user account that is your normal use is a huge thing that can prevent a lot of issues. Also don't turn off UAC (User Account Control). I know it's annoying when it pops up all the time, but with it off you are asking for trouble from drive by web sites that can now do as they please to your drive without any warning or notice at all. Just don't do it.
So what else can you do? Most people know about Malwarebyte's anti-malware (MBAM), but the free version of that doesn't do anything to prevent infection. It is just a good tool for helping to clean some/many of them up.
If you really want to prevent all real possibility of infection look into sandboxie. The free version alone will help almost eliminate any possible attack in the first place although I do admit novice PC users will likely not get nearly the benefit of at least intermediate users because you have to be able to tell when something is bad before letting it on your computer and novices likely won't be able to.
SandboxIE runs your browser and any file/program you like in a complete sandbox (virtual) environment. All changes made to a hard drive, registry, system files, or other areas are done so completely out of harms way. Bad web site with a drive by trojan on it? No problem. Not sure if an attachment is bad and you don't trust your AV scanner? No problem. Browse in the box and run that suspicious app in the box and see what happens. Even run a AV scan on whatever was done in the box BEFORE it ever reaches your full machine.
Another free tool outside of MBAM is Emsisoft emergency kit. Great tool to use with sandboxie as you aren't so much worried about scrubbing/fixing issues as simply identifying if a file you have in your sandbox is bad or not. Feel free to fully install that suspicious program in a sandbox and then run that scan. If it finds something purge the sandbox and delete that file. The infection literally never happened.
Web of Trust - This free download adds a user driven feedback system to browsing. You see a green, yellow, or red circle after links based on reports by other users. This tip will help everyone including novice users. Simply steer clear of even potentially problem sites.
Someone else should write up a good guide on free or trial tools for cleaning up infections. Leave this thread to helping to prevent them to begin with. Add your suggestions and I'll go back and add them to this message so people can just scan the OP for info.