Request for best security software advice for Win7 clean install (paid for or free, whatever's best)

vbimport

#1

Doing a clean install of Windows 7. Been hacked to hell before so want top-notch security but not brilliant at detecting stuff so something that can detect things automatically would be preferable - I have tried G-data but the interface is clumsy and apparently its auto mode isn’t that good. I want the very best and don’t mind paying for all aspects of security. I have a laptop and use Steam a lot, I also have a Windows 8 phone which I’d like to use over wifi on my router as well but want security software for that. Also, anything for my router? I know about using a regular user account as opposed to an admin account.

Things needed to protect against are:

[B]1) Firewall.

  1. Antivirus.

  2. Malware (Spybot?).

  3. Ease of detecting hacking/spying and how to block.

  4. Anything else that I’m missing?

  5. A guide for what I should block and open on my hardware firewall[/B], which in doing so will also teach me stuff. I use wireless isolation on my router so none of my devices should be interconnected.

I’m aware of HiJackThis but don’t know what’s right and what’s not - for instance here’s a pic using Spybot rootkit scanner - dunno what’s right or what to do with the results (bottom of it attached below all of the files above the top 5 came from my old PC - I have no idea what the result’s indications are. Also a weird message from HiJackThis, and log below but the above numbered points are most important).

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 18:22:31, on 31/01/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.16384)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\Stardock\ModernMix\MMIX_32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Dell Update\DellUpTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\User\Downloads\HijackThis (1).exe
C:\WINDOWS\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com/?pc=DCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM…\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe “C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe” 60
O4 - HKLM…\Run: [RemoteControl10] “C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe”
O4 - HKLM…\Run: [G Data AntiVirus Tray] C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
O4 - HKLM…\Run: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
O4 - HKLM…\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM…\Run: [DivXUpdate] “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW
O4 - HKLM…\Run: [SDTray] “C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”
O4 - HKLM…\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU…\Run: [uTorrent] “C:\Users\User\Downloads\utorrent.exe” /MINIMIZED
O4 - HKCU…\Run: [DellSystemDetect] C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64
vinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Unknown owner - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe (file missing)
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
O23 - Service: G Data Scheduler (AVKService) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
O23 - Service: G Data file system monitor (AVKWCtl) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: Dell Update Service (DellUpdate) - Dell Inc. - C:\Program Files (x86)\Dell Update\DellUpService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: G Data Backup Service (GDBackupSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe
O23 - Service: G Data Personal Firewall (GDFwSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
O23 - Service: G Data Tuner Service (GDTunerSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: Stardock ModernMix (ModernMix) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\ModernMix\MMixSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32
etlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv
vstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32
vvsvc.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision
vSCPAPISvr.exe
O23 - Service: G Data Filesafe Service (TSNxGService) - G Data Software - C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Unknown owner - C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe (file missing)


End of file - 14749 bytes


#2
  1. Firewall…nothing wrong with the built in firewall that comes with Windows 7. You can adjust inbound and outbound rules with it. Every now and again I find a program I don’t want to connect online, so I make a new outbound rule for it.
    If you want a different software firewall, I’m sure others will chip in with some options, but it is simply not something I’ve needed since Win 7 and Win 8 were released, especially since I have a router as well.

  2. Antivirus…Bitdefender or Kaspersky are two of the top anti-virus programs. Here is an independent study from last year: http://www.av-comparatives.org/
    Neither are free.

  3. Malware…do an intermittent scan with the free version of Malwarebytes. AdwCleaner is another free scanner that you can use for occasional scans.

Settings for your router I’ll leave to someone else. None of this is really my area of expertise, but the recommendations I’ve given are fairly standard replies for your questions.


#3

[QUOTE=Kerry56;2718375]
2. Antivirus…Bitdefender or Kaspersky are two of the top anti-virus programs. Here is an independent study from last year: http://www.av-comparatives.org/
Neither are free.

  1. Malware…do an intermittent scan with the free version of Malwarebytes. AdwCleaner is another free scanner that you can use for occasional scans.[/QUOTE]

  2. You might also consider Avast; both paid and free versions available; as it allows you to do a boot scan that will pick up nasties before they have a chance to load with windows.

  3. An occasional scan with Junkware Removal Tool (freeware), generally after a scan with AdwCleaner, is also a good idea as it often picks up an item or two that both Malwarebytes and AdwCleaner miss.


#4

Proactive security test for 64-bit systems:

http://www.matousec.com/projects/proactive-security-challenge-64/results.php

I’m a happy owner of Outpost Security Suite for over 5 years now…a few weeks ago updated to v9.

A sandboxed enviroment,especially for your browser,is also very important:
http://www.sandboxie.com/
This program is a gem,even the free version is enough for browser protection.

Anti-executable:


Different aproach,more of an access policy restriction:

(Both these programs complement each other,but a bit of a learning curve)

And Malwarebytes,for blocking malicious websites,and an extra layer of security both on demand(free version) and realtime (pro):


#5

I would recommend the Comodo Internet Security suite, as it doesnt a rather nice job on my machine. If you look at matousec.com’s Proactive Security Challenge (see RoardWorker’s above post for a link), Comodo is consistantly at the top. Also, Comodo has a freeware version, which gets the job done quite nicely (I’m not sure what additional features are added to the paid version).

However, if you really want to avoid malware, I would not recommend using Windows at all. Most malicous programs are targeted at Windows users, as they are generally undisciplined, downloading anything that has the word “free” in it (“I don’t know what went wrong… I only downloaded the kitchen sink”). Also, many of the “features” included with Windows (such as Microsoft’s Windows Genuine Advantage nonsense) could be considered malware, although there are no (legal) methods to remove these functions (damn you, DMCA!!!).

Operating systems like FreeBSD and GNU/Linux are much more secure in this matter. Has anyone ever heard of a BSD virus? Neither have I!

PS: If you need to run a Windows program, you can run it in WINE… if WINE gets infected, that’s not really as bad as having your entire O/S infected.


#6

[QUOTE=TSJnachos117;2718404]I would recommend the Comodo Internet Security suite, as it doesnt a rather nice job on my machine. If you look at matousec.com’s Proactive Security Challenge (see RoardWorker’s above post for a link), Comodo is consistantly at the top. Also, Comodo has a freeware version, which gets the job done quite nicely (I’m not sure what additional features are added to the paid version).

However, if you really want to avoid malware, I would not recommend using Windows at all. Most malicous programs are targeted at Windows users, as they are generally undisciplined, downloading anything that has the word “free” in it (“I don’t know what went wrong… I only downloaded the kitchen sink”). Also, many of the “features” included with Windows (such as Microsoft’s Windows Genuine Advantage nonsense) could be considered malware, although there are no (legal) methods to remove these functions (damn you, DMCA!!!).

Operating systems like FreeBSD and GNU/Linux are much more secure in this matter. Has anyone ever heard of a BSD virus? Neither have I!

PS: If you need to run a Windows program, you can run it in WINE… if WINE gets infected, that’s not really as bad as having your entire O/S infected.[/QUOTE]

Bad advice here…most if not all program nowdays are Windows based…even if you were to go Linux that O/S support is so limited it isn’t worth malware infections…that why it doesn’t get attack as much. There are malware/virus that attacks Unix servers that aka Linux and get taken down as well so there is a little rosy picture your painting there. You can run the programs in Limted mode and VM in Windows that will prevent infections without resorting to Linux to do it.

I have Windows 7x64 firewall and MSE and edited my hosts file so I don’t get any popups or redirects should it try to it gets a “NULL” white page to 127.0.0.1. That 3 layer protections does wonders to the internet and speeds up loads time without having to close all those pops ads or infected pops without you even thinking about it.


#7

My Advice Microsoft Security Essentials it is free for life and you get free updates it has worked great for me the only reason in my opinion that others have been recommended is that they spend heaps on Advertising


#8

One of the best tools you can run to get some good recommendations on how to secure your system is Microsoft Baseline Security Analyzer, otherwise known as MSBSA.

More tips are found here at the Windows 7 security features or here at pcmag.


#9

I ran the Junkware Removal Tool on my laptop . What I didn’t like about it was when I let it proceed it removed what it found without asking.
It does give the opportunity to run it or not. But at that point you don’t know if it has found anything. It did leave some items but it didn’t detect them.
I can see those in AdwCleaner . Which does allow selection.
On it what it found in FireFox seems to stay.
I don’t know if it is malware but I think from what I found Googling is this is usually a “false positive” the js script file usually has various Mozilla settings in it.

Since I saw it posted here I’ve been using CryptoPrevent . I think it is a good addition to my security.


#10

@ philamber or anyone that wants to answer.
I DLed AdwCleaner & ran it . I checked & removed a couple of registry entries.
I left these as they are for the XVID codec I use .
Does anyone think they are a problem ?
Key Found : HKLM\SOFTWARE\Classes\CLSID{00000001-4FEF-40D3-B3FA-E0531B897F98} Xvid MPEG-4 Video DecoderAbout
Key Found : HKLM\SOFTWARE\Classes\CLSID{64697678-0000-0010-8000-00AA00389B71} Xvid MPEG-4 Video Decoder


#11

Yo [B]SG[/B]

I have been using [B]Zone Alarm Extreme Security[/B] and [B]Advanced System Optimizer[/B] for many years now and have never had a virus of any kind and never has my system been hacked, I highly recommend both of them, both software works very well together without any issues.

[B]SJ[/B] :cool:


#12

[QUOTE=cholla;2718723]@ philamber or anyone that wants to answer.
I DLed AdwCleaner & ran it . I checked & removed a couple of registry entries.
I left these as they are for the XVID codec I use .
Does anyone think they are a problem ?
Key Found : HKLM\SOFTWARE\Classes\CLSID{00000001-4FEF-40D3-B3FA-E0531B897F98} Xvid MPEG-4 Video DecoderAbout
Key Found : HKLM\SOFTWARE\Classes\CLSID{64697678-0000-0010-8000-00AA00389B71} Xvid MPEG-4 Video Decoder[/QUOTE]
I doubt that these are a problem but unfortunately I just don’t know.

Of course, some programs won’t work at all without the “adware”. You could try removing them and see if the program still works. If yes, then all is well. If not, then you’ll have to decide if you want to reinstall and put up with the issue, if any, or find an alternative program.


#13

I’d recommend adding Microsoft EMET (Enhanced Mitication Experience Toolkit) to any security scenario - justy don’t go too wild with it, as applying some mitigations systemwide can cause trouble.
Applying the included profiles (protect common browsers, MS office etc.) works pretty well.

I would suggest that DEP policy is set systemwise to either optout (if you have anything that chokes on DEP) or to alwayson - I think the default is optin.

As for EMET, try adding any internet exposed applications, browsers that it does not already recognise, any other media players etc.

Golden rule, if it’s something you choose to run, then if you do apply EMET and it disagrees, then you can always reverse that


#14

Thanks everyone, I’ll get back properly when I have more time.

[QUOTE=Kerry56;2718375]1. Firewall…nothing wrong with the built in firewall that comes with Windows 7. You can adjust inbound and outbound rules with it. Every now and again I find a program I don’t want to connect online, so I make a new outbound rule for it.[/quote]Problem is, I don’t know enough about what is legit and what isn’t, hence the need for a firewall that could tell me what I should and shouldn’t allow; in the past when hacked, I noticed odd rules that had been allowed - either by an intruder or by default as a sloppy design by MS (prime example being UPnP).

[B]NB: My worry isn’t so much about viruses and stuff, more about an individual person being able to come onto my system and mess things up - I lost a lot of files on my old install.[/B]


#15

That’s why I mentioned SandBoxie ,Appguard and NVT…if you get hacked through a malicious website,the malware can’t reach your system through SandBoxie’s virtual enviroment.
And even if it can circumvent Sandboxie (quite unlikely),AppGuard will hop in as it doesn’t allow executions from user space.
NoVirusThanks can be used to monitor the files that are in the trusted area of AppGuard,like windows program files and windows root directory.


#16
  1. Firewall.-Comodo Firewall. It has a nice sandbox feature that you can use to limit potential damage by a process or program you don’t know/aren’t sure about.

I used to use Zone Alarm but it consistently would introduce a poorly written update about every 1.5-2 months that would block internet access.

MS’s firewall is better than nothing, but not much. Also, do you really want to trust a firewall that everyone is going to be gunning for?

  1. Antivirus-Avast! is probably one of the best free AV programs I’ve used.
    -BitDefender, when properly tweaked, is pretty good at finding and preventing nasties.
    MSIE is better than nothing but not much better. I’ve seen plenty of stuff get into computers supposedly protected.

  2. Malware (Spybot?)-Malwarebytes and Comodo Cleaning Essentials. I got the lifetime Malwarebytes Pro edition, which actively blocks bad websites. Comodo Cleaning Essentials does a nice job of picking up the things Malwarebytes doesn’t.

If you still think something is wrong and/or your computer is still infected, then TDSSKiller and GMER are good for finding deeply dug in nasties.

  1. Ease of detecting hacking/spying and how to block.
    HijackThis is a decent tool. There are packet sniffers that will tell who is connecting and what programs are using what ports etc.
    Frankly, you never really know you aren’t hacked unless you have a computer that isn’t connected to the outside world and never comes in contact with any media. Since this isn’t practical, the best thing you can do is be smart in your behaviour and backup everything.

  2. Anything else that I’m missing?
    -Create a baseline hard drive image on a clean install
    -Try not to visit common honeypot type sites like porn sites
    -Don’t download things like audio or video codec’s from non-commercial vendor sites.
    -Try not to download programs except from known white hat sites like File Hippo
    -Don’t download mp3’s or videos from non-commercial sites or use a separate HD or computer for that.
    -Don’t allow auto-viewing features in your e-mail viewer if you use one
    -Don’t click on things if you don’t know what they are, especially exe’s or .dll’s
    -Update Windows, Adobe, and Java regularly.
    -Use Retrevo to uninstall stubborn programs and/or toolbars


#17

Yo Jimbo-

:clap: :clap: [B]Sage Advices-eh!! [/B]:clap: :clap:


#18

Dpn’t go online, thats all you need to know.