I have recently been having trouble with spyware and popups. I also just found out that my sister took down the firewall a few months ago.
Whenever I go to change my firewall settings it says:
%26quot;Due to an unidentified problem, Windows cannot display Windows Firewall settings.%26quot;
How do I fix this? I am getting attacked by spyware and pop-ups.How to I add my firewall back?If you have been running your computer without a firewall for months it is probably too infected with spyware/viruses to repair. I recommend backing up all your files and formatting and reinstalling windows.
OS Reinstallation vs. Virus Removal
http://safecomputing.umn.edu/guides/rebu…
When should I re-format? How should I reinstall? (#10063)
http://www.dslreports.com/faq/10063
Securing a Personal Machine
http://safecomputing.umn.edu/studentchec…
If you must try to repair:
First backup your files!!!!
Start%26gt; Run%26gt; enter %26quot;sfc.exe /scannow%26quot; in the run box.
Run. You will need the windows XP disk. This utility will check all system files against the disk and repair if needed.
System File Checker (sfc.exe)
http://msdn2.microsoft.com/en-us/library…
http://www.updatexp.com/scannow-sfc.html
http://www.networkclue.com/os/Windows/co…
If this doesn't work, do a repair install.
Repair install. (should not lose data) Backup files first.
http://www.microsoft.com/windowsxp/using…
http://www.fujitsu-siemens.co.uk/rl/serv…
Last option. Format and reinstall:
Backup your data. Find all your drivers and software and software keys now and develop a plan on how you will reinstall them.
http://blog.angrypets.com/2006/01/ultima…
http://www.thefuhrmans.com/reformat_hd.h…
http://www.belarc.com/free_download.html
http://www.smartcomputing.com/editorial/…
Keyfinder Thing 3.1.6
http://www.download.com/Keyfinder-Thing/…
--------------------------------------…
Optional: Wipe the drive. All data on the drive will be erased.
Darik's Boot and Nuke (DBAN) free
http://www.download.com/Darik-s-Boot-and…
http://dban.sourceforge.net/
http://dban.sourceforge.net/features.htm…
DBAN will automatically and completely delete the contents of any hard disk that it can detect, which makes it an appropriate utility for bulk or emergency data destruction.
Wipe Methods
Quick Erase YES
Canadian RCMP TSSIT OPS-II Standard Wipe YES
American DoD 5220-22.M Standard Wipe YES
Gutmann Wipe YES
PRNG Stream Wipe YES
HOWTO: Burn the DBAN ISO file with CDBurnerXP
http://dban.sourceforge.net/faq/CDBurner…
DBAN Instructions
http://www.security.ku.edu/download/DBAN…
http://secure.nd.edu/disposal/index.shtm…
--------------------------------------…
Format and Reinstall Windows
Optional: When you format enter %26quot;fdisk /mbr%26quot; to format the master boot record.
http://forums.cnet.com/5208-6132_102-0.h…
http://support.microsoft.com/kb/69013
Reformat and install. (Cleans drive loses all data)
http://support.microsoft.com/kb/313348
http://www.microsoft.com/windowsxp/using…
http://www.whitecanyon.com/reformat-the-…
http://www.smartcomputing.com/editorial/…
==============================
Virus / Spyware Removal
Update your antivirus and run a full scan
If you do not have full time (active) virus protection install (only one) all are excellent:
AVG Antivirus 7.5 Free Edition
http://free.grisoft.com/freeweb.php/doc/…
http://www.download.com/AVG-Anti-Virus-F…
or
Free antivirus - avast! 4 Home Edition
http://www.avast.com/eng/avast_4_home.ht…
or
AOL Active Virus Shield (powered by Kaspersky)
http://www.activevirusshield.com/antivir…
--------------------------------------…
Install Windows Defender (full time spyware protection)
Perform a full scan in save mode
http://www.microsoft.com/athome/security…
or
AOL Automatic Protection Against Spyware and Malware
http://daol.aol.com/safetycenter/spyware
http://daol.aol.com/safetycenter/
--------------------------------------…
Install the following five programs and run weekly or at least monthly. You need all five. They will greatly increase your protection. They are not a substitute for full time spyware and virus protection.
Ad-Aware SE Personal (update + full scan)
http://www.lavasoftusa.com/products/ad-a…
Spybot Search %26amp; Destroy (update + immunize + scan)
Do not enable Tea Timer and SDHelper
After installation: update + scan + immunize
http://www.safer-networking.org/en/mirro…
SpywareBlaster: Update then open and click “enable all protection”.
http://www.javacoolsoftware.com/spywareb…
SUPERAntiSpyware free version: (update + scan)
http://www.superantispyware.com/
CCleaner: Do not install toolbar option
Removes tracking cookies, unneeded files, history
In options.
Set to run when computer starts.
Place cookies you want to keep in save list
http://www.ccleaner.com/
--------------------------------------…
Note if a scan detects a problem but is unable to remove, start the computer in safe mode with the internet line disconnected and run a full scan.
In severe cases your system restore files will also be infected. In these cases you will need to turn off system restore to prevent malware hiding in the system restore files and reinfecting the computer during removal or during a future system restore. Turning off system restore deletes the system restore files.
Right click on %26quot;my computer%26quot;%26gt; Properties %26gt; System Restore Tab %26gt; Check box turn off system restore
After the malware is removed turn on system restore.
--------------------------------------…
McAfee Site Advisor: Internet Explorer and Firefox
http://www.siteadvisor.com/
Indicates if a site is unsafe and can link to a page to explain why it is unsafe.
--------------------------------------…
Additional run this time and monthly.
Run Microsoft Update %26quot;Custom Mode%26quot; install everything
http://update.microsoft.com/microsoftupd…
Microsoft OneCare Live, run “full service scan”
Updates windows, virus and spyware scan, disk cleanup, disk fragmentation (if needed), backs up registry and then cleans registry, and checks for open firewall ports
http://onecare.live.com/site/en-us/defau…
Malicious Software Removal Tool (run “full scan”)
http://www.microsoft.com/security/malwar…
--------------------------------------…
Rootkits Removers
Pick any 2 install and run one each month
AVG Anti-Rootkit
http://www.grisoft.com/doc/products-avg-…
F-Secure BlackLight
http://www.f-secure.com/blacklight/
Panda Anti-Rootkit
http://research.pandasoftware.com/blogs/…
Sophos Anti-Rootkit
http://www.sophos.com/products/free-tool…
Trend Micro Rootkit Buster
http://www.trendmicro.com/download/rbust…
--------------------------------------…
Online Free Scanners:
Run Trend Micro, Kaspersky, and Panda Scan now.
Run a different one each month.
Trend Micro: HouseCall Free Scan (removes what it finds)
http://housecall.trendmicro.com/
BitDefender Online Scanner http://www.bitdefender.com/scan8/ie.html
Kaspersky Labs Online Scanner http://www.kaspersky.com/virusscanner
McAfee http://us.mcafee.com/root/mfs/default.as…
Edwido Spyware Scan
http://www.ewido.net/en/onlinescan/
F-Secure
http://support.f-secure.com/enu/home/ols…
Panda ActiveScan Free Online Scanner http://www.pandasoftware.com/products/ac…
Symantic Online Scanner http://security.symantec.com/sscv6/ssc_e…How to I add my firewall back?You probably still have malware that is interfering with your operating system's security. First try and eradicate the malware by following the steps below. Afterwards you can try and run SFC.
Firstly update and run your anti-virus product. You can also run a free online scan as well as some malware can actually corrupt or disable your resident security products. Here are a few online scans you can run:
Trend - http://housecall.trendmicro.com/
Panda - http://www.pandasoftware.com/products/Ac…
Norton - http://security.symantec.com/sscv6/defau…
Second download, update and run scans using the following products:
SuperAntispyware
http://superantispyware.com/
Spybot S%26amp;D (free version requires manual updating)
http://www.safer-networking.org/en/downl…
AVG AntiSpyware
http://free.grisoft.com/doc/20/lng/us/tp…
Adaware from Lavasoft (free version requires automatic updating)
http://www.lavasoftusa.com/products/ad-a…
(These programs can be run in Safe Mode after downloading and updating)
Third, after cleaning your system, disable System Restore, reboot and re-enable System Restore when you log back on. This will clear the malware that may still be lurking in System Restore, which could be reinstalled should you need to rollback at some point. Additionally, a reboot may be required to complete the malware removal process.
Lastly, you may also want to install the following tool. It is free and requires you to check for and enable updates manually once a week or so. It uses no system resources.
SpywareBlaster (inoculates, not a spyware removal tool)
http://www.javacoolsoftware.com/spywareb…
================================
If you cannot get it removed after the above, you may want to join a tech group that specializes in providing manual instructions on malware eradication.
Free technical help forums
AumHa Forums
http://aumha.net/index.php
Bleeping Computers
http://www.bleepingcomputer.com/forums/
Spybot S%26amp;D Forums
http://forums.spybot.info/
Lavasoft Forums
http://www.lavasoftsupport.com/
Spyware Info Forums
http://forums.spywareinfo.com/index.php?…
GeekstoGo
http://www.geekstogo.com/forum/forums.ht…
===========
If you computer comes up clean after running your resident security products, you may want to consider running a System File Checker (SFC). This can be run in Safe Mode should you prefer. To get into Safe Mode either hold down or tap the F8 key repeatedly while the computer is starting up. To run SFC, close all applications such as Office, Messenger, Email, etc, and go to:
- Start
- Run
- Type in sfc /scannow (include the space before the %26quot; / %26quot;)
What SFC does is that it attempts to fix or replace critical operating system files. Sometimes this can be done without the installation disk, however it may prompt you for the appropriate operating system installation disk. If that is the case, then you know that you definitely have file corruption or something missing. Insert the disk if prompted. Also you should run SFC using the Administrator account.
If you have the Vista operating system, the steps are a bit different due to the UAC. See the link below.
http://vistasupport.mvps.org/system_file…
Don't surf, play games or do anything while SFC runs. After it is completed, reboot your computer.
One of the major culprits in missing or corrupt operating system files is running a registry cleaner or optimizer. They can flag important shared files for deletion or cleanup. Another cause is malware.
NOTE: Before running any registry cleaner or editing the registry, always ensure you back it up first. If the registry cleaner you are using doesn't have that function, you can do it manually. http://support.microsoft.com/kb/322756
