General SecurityPost any general questions related to security, viruses or spyware here.
Mission Statement
WindowsBBS is an online community dedicated to easily accessible technical support for those using Microsoft operating systems and other Windows software.
Our goal is to become the leading resource for computer users that require assistance with their day-to-day computer usage, including full support for networking PC's, virus & malware removal, system upgrades and general support questions.
does anybody have any idea about free Internet security softwares for windows xp like Kaspersky Internet security. just now i installed kaspersky trial version and it works for only one month.
cheers
Didn't find the information you thought to find? Check out these Similar Threads
I don't think you'll be able to get any free security suite such as KAV for free.
But you can certainly get standalone products that will offer the same protection, probably better.
Pete has you off to a good start and I'll add my own recommendations.
I don't recommend using 'Restricted Sites' protection in SpywareBlaster nor the 'Immunize' feature in Spybot, you can get far greater coverage with IE-SPYADs, listed below. (Even if the db is long in the tooth for updates)
To avoid known malware infested sites from loading in IE install IE-SPY ADS.
And either of the two following hosts file databases will keep an even stronger layer of defense:
. The latter contains more sites as they tend to include domains\IPs which are involved in even the slightest way with malware distribution or sites involved in same. Basically, lay with dogs, get fleas type of thing.
And to prevent unknown applications from being installed on your machine install WinPatrol 2007 v14.
Another thing I would suggest, is to install SiteAdvisor. It gives sites a few different 'ratings' and while not fool proof, a good additional layer of information about many sites. Another similar tho more exploit based in it's database is LinkScanner.
Some good advice TeMerc! I use FireFox as my browser will the MVPS work with it?
I use AVG Free for now but it seems to be changing. I keep getting a pop up wanting me to buy AVG 8.0. I am thinking of switching anti virus to Nod32 although it is a pay program.
not sure why temerc says not to use restricted sites in spywareblaster or not to immunize spybot. please explain your resoning here temerc
i have stopped recommending za for any protection. seems since they went to the new ver 7 that a lot of my clients experience problems with updates and erroring. also its spyware protection is not catching the lastest spywares going around especially one called virus heat. spybot 1.5.2 takes a couple runs but it is getting rid of them. also avg not catching a ton of virus' whereas antivir a freebie nails them all. i personally use comodo and i love it works as advertised and free.
i dont put anything on new or rebuilt machines anymore that cost money. doesnt appear to be a need unless teenagers using i.m.'s. petec list is a good one. i put on machines i work on spybot, adaware 7, antivir, comodo or pctools free firewall it seems to work just fine and is user friendly. comodo can be a little tricky for my elderly clients.
I use FireFox as my browser will the MVPS work with it?
I have been using MVPS HOSTS for years (along with eDexter) and Firefox has also been my default browser for years (in my Windows XP Home desktop).
There used to be an issue (years ago) with pages taking too long to load in Netscape when using the MVPS HOSTS file and eDexter solved that issue. I don't know whether eDexter is necessary with Firefox and MVPS HOSTS or not. I still use eDexter because I like seeing the small graphics in place of the ads on web pages. I have "Gorilla's Paw" .gif images I downloaded (available via this link). Occasionally a paw print fills the ad space instead of displaying the small paw print. However, that's the only "bug" I have noticed with eDexter.
The eDexter "dog bone" icon in my tray displays "eDexter 1.42" when I hover my mouse cursor over it instead of the v1.34 apparently available at accs-net. However, I think I downloaded my eDexter from pyrenean.com years ago and that site does not seem to have the same eDexter easily available any more.
========== EDIT: I just realized I have been using MVPS HOSTS with Firefox in my laptop without eDexter and I have not noticed any performance issues. BTW, the MVPS HOSTS gets along well with Internet Explorer too.
The only application I know of that conflicts with MVPS HOSTS (or probably any large HOSTS file) is Webroot's Spy Sweeper. Spy Sweeper's configuration needs to be tweaked to get along with a large HOSTS file.
==========
Quote:
I use Zone alarm fire wall. Is Comomdo "better"?
I have been using ZoneAlarm Pro for years in my XP Home desktop. IMHO, COMODO Firewall Pro is better (and it's free). I started using COMODO only recently (in my XP Pro laptop) so my opinion may change. I like COMODO's graphical user interface (GUI) better than ZoneAlarm's GUI too.
Both firewalls alert one to programs executing code in ways that might be malicious (and one needs to be informed enough about those alerts to decide whether to grant permission or not). However, COMODO does a better job informing me about what the programs are attempting to do and COMODO keeps a handy log of unrecognized executable files for review (and submission to COMODO for analysis, if one wishes to do so).
Last night I drove to a WiFi hotspot (because I have dial-up at home) and spent an hour or so uploading almost all "suspicious" files in COMODO's "My Pending Files" list (including files I know are legit). However, the transfer terminated abruptly near the end so I don't know yet whether COMODO worked properly or not. All those files are still listed in COMODO's "My Pending Files" list and COMODO still alerts me that it is attempting to upload files whenever I am connected to the Internet.
I probably should spend some more time reading the excellent COMODO documentation but I like to experiment.
Thanks Mailman! I'll try it. Now do I download Comodo first then disable ZA? Do I need to disconnect from the Net when I do?
The same with an anti virus. I use AVG Free but am taking a hard look at Nod32 and Kaspersky, not the suites.
And one last question, Do I need the disk or just get if from their site?
Kelly
Last edited by kellyinkc; 23rd March 2008 at 23:23.
Reason: Left something out.....
Shut down ZoneAlarm (by right-clicking on the ZA icon in your tray and selecting "Shut down ZoneAlarm").
Uninstall ZoneAlarm.
Restart the computer.
Install COMODO Firewall Pro.
Shut down the computer.
Reconnect the DSL/cable modem.
Then start up the computer.
==========
Instead of uninstalling ZoneAlarm, you might be able to get by with simply configuring ZoneAlarm to not start when Windows windows starts, then shut down ZoneAlarm (by right-clicking on the ZA icon in your tray and selecting "Shut down ZoneAlarm") and restart the computer. I would be inclined to double-check after restarting to be sure no ZoneAlarm components are still active (such as the "True Vector" service, for example).
Probably should visit the ZoneAlarm support forums to research this if this is the route you wish to take with ZoneAlarm.
==========
I expect you'll get many popup alerts from COMODO for awhile until it "learns" about the programs you normally use. If you want to lessen the alerts and you are confident your computer is clean, then you can use COMODO in "Clean PC Mode". That might be the default setting. I don't recall for sure.
Quote:
Originally Posted by kellyinkc
The same with an anti virus. I use AVG Free but am taking a hard look at Nod32 and Kaspersky, not the suites.
And one last question, Do I need the disk or just get if from their site?
I haven't used Kaspersky AV or NOD32 AV yet but I would guess you can download the "Trial Version" from Kaspersky or ESET and then later enter a registration key or something similar without having to download again.
I would not ditch the AVG Free Anti-Virus altogether. I would keep it installed and periodically use it as an "on-demand only" scanner to supplement the other AV you have installed. Having multiple AV applications as on-demand scanners is useful in case a file is flagged by one of them. Helps determine whether the identification is a "false positive" or not.
The term false positive is also used when antivirus software wrongly classifies an innocuous file as a virus. The incorrect detection may be due to heuristics or to an incorrect virus signature in a database. Similar problems can occur with antitrojan or antispyware software.
Also, one AV may detect baddies that another AV may miss.
I would at least disable AVG Free's "Resident Shield" and then restart the computer before installing another anti-virus. (One should not have more than one anti-virus running resident memory protection at the same time as they reportedly can conflict with each other for control. Likewise for software firewalls and, perhaps, anti-spyware applications as well.)
In AVG Free's "Control Center",
Right-click the "Resident Shield" rectangle.
Select "Properties".
UNcheck "Turn on AVG Free Resident Shield protection".
Click the Apply button and then the OK button.
Restart the computer.
If you install anything after installing COMODO, then you can select "Treat this application as an Installer or Updater" in the popup alert COMODO will display after you execute the installer. Then confirm by clicking the "Yes" button in another popup window that COMODO will display.
COMODO will pop up a "Reminder" window every minute or two to remind you that you are in "Installation Mode" and it will ask you whether you want to "switch to the previous mode" or not. Just click "No" (or ignore the COMODO alerts) until the installation is complete. Then you can switch back to COMODO's "Previous Mode" either by waiting for the popup window and clicking "Yes" or opening COMODO and selecting "Switch to Previous Mode" at the bottom of the "Summary" window.
EDIT: In general, I think it's a good idea to use System Restore to create Restore Points before (and after) making software changes.
Click Start > All Programs > Accessories > System Tools > System Restore
I also think it's a good idea to always restart the computer after each uninstall and after each install to be sure the registry "sets" properly.
EDIT regarding my earlier post about COMODO: I tinkered with COMODO a little more this afternoon. I opened "My Pending Files" list, selected all the files, and clicked the "Lookup..." button (while connected to the Internet on my dial-up). COMODO then checked the files against its online database and confirmed several were "Safe". After the lookup was finished and I closed the window, COMODO put the "Safe" items into a "trusted" category somewhere and moved them out of "My Pending Files". (I haven't found the "trusted" list anywhere yet though.) There are still some items in "My Pending Files" that are still "Unknown". I'll see how long it takes COMODO to verify those files.
Kelly, if ZoneAlarm works for you, then I see no real reason to switch.
I did some more digging around in COMODO last night and discovered there's a lot to learn if I want to venture beyond the default settings. COMODO should satisfy my need to tinker for awhile. ZoneAlarm Free might be better (less confusing) than COMODO for a beginner/intermediate user anyway.
As long as you're fully "stealthed" according to Steve Gibson's "Shields Up!" "All Service Ports" test, I expect you'll be OK with ZoneAlarm.
James, if I recall correctly, Comodo Firewall Pro 3.0does alert me whenever a program wants to access the Internet for the first time (in "Clean PC Mode" anyway). I can then grant or deny that access if I want. I don't know about earlier versions of COMODO you may have tried.
I don't know whether one can grant Internet access permission once for a program and later deny Internet access for the same program or not. If one increases the Defense+ settings then that objective might be able to be achieved or other tweaks might achieve that result. I'm still in the very early stages of tinkering with Comodo but I suspect one can configure Comodo to do just about anything firewall-related that one wishes. For now, I tend to define my applications that access the Internet as "Trusted" applications anyway. If I didn't define those applications as "trusted", then I suspect I would be alerted each time those applications wanted to access the Internet...but that's just a guess for now.
Here's what's new according to the documentation included with Comodo Firewall Pro 3.0.
Quote:
New in Version 3.0
NEW! Defense+ Host Intrusion Prevention System Control
Virtually Bulletproof protection against root-kits, inter-process memory injections, key-loggers and more;
Authenticates the integrity of every program before allowing it to load into your computer’s memory;
Alerts you every time an unknown or untrusted applications attempts to run or install;
Blocks Viruses, Trojans and Spy-ware before they can ever get onto your system;
Prevents unauthorized modification of critical operating system files and registry entries.
IMPOROVED! Advanced Network Firewall Engine
Comodo Firewall Pro has always offered the highest levels of perimeter security against inbound and outbound threats – meaning you get the strongest possible protection against hackers, malware and identity thieves. Now we’ve improved it again by adding new features such as Stealth Mode to make your PC completely invisible to opportunistic port scans; Wizard based auto-detection of trusted zones; Password protection of firewall settings; Diagnostics to analyze your system for potential conflicts with the firewall and much more.
NEW! Intuitive Graphical User Interface
Summary screen gives an at-a-glance snapshot of your security settings;
Easy and quick navigation between each module of the firewall;
Simple point and click configuration – no steep learning curves;
New completely redesigned security rules interface - you can quickly set granular access rights and privileges on a global or per application. The firewall also contains pre-set policies and wizards that help simplify the rule setting process.
IMPROVED! Security rules interface
Version 3.0 gives offers more control over security settings than ever before. Users can quickly set granular internet access rights and privileges on a global or per application basis using the flexible and easy to understand GUI. This version also sees the introduction of pre-set security policies which allow you to deploy a sophisticated hierarchy of firewall rules with a couple of mouse clicks.
IMPROVED! Application Behavior Analysis
CFP 3.0 features advanced protocol driver level protection - essential for the defense of your PC against Trojans that run their own protocol drivers.
IMPROVED! Event logging
Version 3.0 features a vastly improved log management module – allowing users to export records of firewall activity according to several user-defined filters. Beginners and advanced users alike will greatly benefit from this essential troubleshooting feature.
NEW! Added new ‘Training Mode’ and 'Clean PC' Mode
This mode enables the firewall and host intrusion prevention systems to automatically create ‘allow’ rules for new components of applications you have decided to trust, so you won’t receive pointless alerts for those programs you trust – the firewall will learn how they work and only warn you when it detects truly suspicious behavior.
NEW! Windows Security Center Integration
Comodo Firewall Pro 3.0 is fully recognized by Windows Vista/XP Security Center as a trusted firewall.
IMPROVED! Application Recognition Database (Extensive and proprietary application safe list)
Comodo Firewall Pro includes an extensive white-list of safe executables called the ‘Comodo Safe-List Database’. This database checks the integrity of every executable and Firewall Pro will alert you of potentially damaging applications before they are installed. This level of protection is new because traditionally firewalls only detect harmful applications from a blacklist of known malware – often-missing new forms of malware as might be launched in day zero attacks.
Firewall Pro is continually updated and currently over 1,000,000 applications are in Comodo Safe list, representing virtually one of the largest safe lists within the security industry.
NEW! Self Protection against Critical Process Termination
Viruses and Trojans often try to disable your computer’s security applications so that they can operate without detection. Comodo Firewall Pro protects its own registry entries, system files and processes so malware can never shut it down or sabotage the installation.
IMPROVED! Submit Suspicious Files to Comodo
Are you the first victim of a brand new type of spyware? Users can help combat zero-hour threats by using the built in submit feature to send files to Comodo for analysis. Comodo will then analyze the files for any potential threats and update our database for all users.
Spyware Terminator has a very, very good real time protection. A good option to "to prevent unknown applications from being installed on your machine".
BTW, the MVPS HOSTS gets along well with Internet Explorer too. 
ZoneAlarm Free might be better (less confusing) than COMODO for a beginner/intermediate user anyway.
