Major Attitude
11-04-06, 20:56
Having a computer online for 18 hours a day using only the included Windows firewall, AVG anti-virus and a hardware router, I am able to avoid malware without any problem and so can you. This is not magic or super geekiness, it is simply some common sense I will share with you when using email or the web.
Email:
Keep a spam email account on a free website like Google or Hotmail. When in doubt, use this email. Save your primary email for trusted websites and people.
Do not open email attachments. Unless you are expecting it, avoid opening email attachments. Most viruses are spread in such ways that you should smell a rat. That said, some are pretty slick and may contain your real name, a filename that sounds familiar or even look like it came from a friend.
Never click links in an email. These are known as "phishing" schemes. Typically they want to get your passwords to your bank, Paypal, Ebay or credit card information. Easy way around it? If you get an email that looks legit, open your web browser and go to the website yourself. Having bookmarks helps. Always bookmark your bank, Ebay and the like. Using a password manager like AI Robobform (http://majorgeeks.com/AI_RoboForm_d2428.html) can help as well. It auto logs you into websites you save. I have seen some brilliant spoofs in email, for example Ebay and banking links to the absurd (that people fall for) including a promise of transferring millions into your account for a small fee.
Never use the unsubscribe link. Sounds like a great idea, but remember, this email came from a spammer, in some cases who paid for a mailing list with your email on it. Using the unsubscribe typically results in confirming that it is a good email to be sold on lists and add to your spam. This does not apply to trusted websites including places where you once signed up, but are no longer interested.
If you find you are getting a lot of spam with similar headers or email addresses, look into message rules. It is a simple tool built into Outlook Express. Go to tools, message rules, mail. Click new and simply select what you want to do with this particular rule, for example, delete, mark as read, move to a folder, etc.
Web surfing:
Bottom line, a large majority of infected computers we see have downloaded illegal movies, music or games, visited porn sites or were suckered into downloading a rogue malware app claiming you were infected. These are all prime for parasites to infect you and try to make money. Sometimes it is a family member who was curious or a friend visiting who thought it was funny at the time. So, my first tip is to know who uses your computer and make sure they understand the following...
Do not type in web addresses. Making a typo can take you to a parked domain. These are often websites with malware that were bought to trap you. Use your bookmarks for favorite sites, use a trusted search engine (Google, Yahoo) to find what you are looking for safely. There are even multiple websites with Majorgeeks spelled incorrectly waiting for you to make this mistake. This can get you in trouble with websites where you need to login as well, so again, a password manager like AI Robobform (http://majorgeeks.com/AI_RoboForm_d2428.html) will not log you into a website, if the web address is not the same one that you saved. This is also a great tool for avoiding phishing schemes as mentioned in email section.
There is no free porn. Sorry. Pay for it. Or you will pay. You know if you pick up a prostitute on the corner, it comes with some huge risks. You didnt think the web was different, did you? It's not. Keep in mind that the internet parallels real life, what does not seem safe, usually isn't.
There is no free music. Ok, maybe a few songs here and there, but file sharing and websites offering free music downloads is usually a bad plan. Organizations like the RIAA intentionally infect illegal downloads. Yes, they do that and have admitted to it. It is a tricky area. Songs can be bought online at many websites and if your feeling bold and want to go outdoors, try one of them store thingies that sell CD's.
Stop clicking so quickly. People get caught by simple tricks done to fool the eye so you click on a popup ad for example. A common trick is to place words like "ok", "close" or similar, when you should close a popup window in the X in the top right corner. One ingenius popup looks like a window that is telling you that you are infected. These usually sucker you to download a rouge malware removal tool, one that acts like a remover, but installs malware or requires a purchase for a program that will not remove anything. If your own tools did not detect the problem, download a malware removal tool from a trusted website like Majorgeeks.com. A few seconds here and there can save you hours later, maybe even your valuable data.
Free games:
Free games. We started DemoNews.Com (http://www.Demonews.com) when I wanted to download some arcade games. I kept finding people wanting your email to download, install some downloader (to download a file) or even agree to a toolbar or some such nonsense. Be careful with free games, some of these tricks people use should be blatantly obvious. Using trusted sites helps. Ask around if your not sure.
Maintain your PC:
Doing occasional scans is a good idea. Removing cookies, unwanted startup items and defragmenting your hard drive can keep your machine running in tip top shape as well as maintain your privacy and spot potential problems. This simple guide (http://forums.majorgeeks.com/showthread.php?t=106650) walks you through it. At least do this once a month. You should also use a malware scanner occasionally just to be sure you did not pick something up. Again, download from a trusted site like Majorgeeks.com and consider using known programs such as Ad-Aware, Spybot, Spyware Doctor, Spy Sweeper, etc (http://www.majorgeeks.com/download.php?id=31&sort=25).
Email:
Keep a spam email account on a free website like Google or Hotmail. When in doubt, use this email. Save your primary email for trusted websites and people.
Do not open email attachments. Unless you are expecting it, avoid opening email attachments. Most viruses are spread in such ways that you should smell a rat. That said, some are pretty slick and may contain your real name, a filename that sounds familiar or even look like it came from a friend.
Never click links in an email. These are known as "phishing" schemes. Typically they want to get your passwords to your bank, Paypal, Ebay or credit card information. Easy way around it? If you get an email that looks legit, open your web browser and go to the website yourself. Having bookmarks helps. Always bookmark your bank, Ebay and the like. Using a password manager like AI Robobform (http://majorgeeks.com/AI_RoboForm_d2428.html) can help as well. It auto logs you into websites you save. I have seen some brilliant spoofs in email, for example Ebay and banking links to the absurd (that people fall for) including a promise of transferring millions into your account for a small fee.
Never use the unsubscribe link. Sounds like a great idea, but remember, this email came from a spammer, in some cases who paid for a mailing list with your email on it. Using the unsubscribe typically results in confirming that it is a good email to be sold on lists and add to your spam. This does not apply to trusted websites including places where you once signed up, but are no longer interested.
If you find you are getting a lot of spam with similar headers or email addresses, look into message rules. It is a simple tool built into Outlook Express. Go to tools, message rules, mail. Click new and simply select what you want to do with this particular rule, for example, delete, mark as read, move to a folder, etc.
Web surfing:
Bottom line, a large majority of infected computers we see have downloaded illegal movies, music or games, visited porn sites or were suckered into downloading a rogue malware app claiming you were infected. These are all prime for parasites to infect you and try to make money. Sometimes it is a family member who was curious or a friend visiting who thought it was funny at the time. So, my first tip is to know who uses your computer and make sure they understand the following...
Do not type in web addresses. Making a typo can take you to a parked domain. These are often websites with malware that were bought to trap you. Use your bookmarks for favorite sites, use a trusted search engine (Google, Yahoo) to find what you are looking for safely. There are even multiple websites with Majorgeeks spelled incorrectly waiting for you to make this mistake. This can get you in trouble with websites where you need to login as well, so again, a password manager like AI Robobform (http://majorgeeks.com/AI_RoboForm_d2428.html) will not log you into a website, if the web address is not the same one that you saved. This is also a great tool for avoiding phishing schemes as mentioned in email section.
There is no free porn. Sorry. Pay for it. Or you will pay. You know if you pick up a prostitute on the corner, it comes with some huge risks. You didnt think the web was different, did you? It's not. Keep in mind that the internet parallels real life, what does not seem safe, usually isn't.
There is no free music. Ok, maybe a few songs here and there, but file sharing and websites offering free music downloads is usually a bad plan. Organizations like the RIAA intentionally infect illegal downloads. Yes, they do that and have admitted to it. It is a tricky area. Songs can be bought online at many websites and if your feeling bold and want to go outdoors, try one of them store thingies that sell CD's.
Stop clicking so quickly. People get caught by simple tricks done to fool the eye so you click on a popup ad for example. A common trick is to place words like "ok", "close" or similar, when you should close a popup window in the X in the top right corner. One ingenius popup looks like a window that is telling you that you are infected. These usually sucker you to download a rouge malware removal tool, one that acts like a remover, but installs malware or requires a purchase for a program that will not remove anything. If your own tools did not detect the problem, download a malware removal tool from a trusted website like Majorgeeks.com. A few seconds here and there can save you hours later, maybe even your valuable data.
Free games:
Free games. We started DemoNews.Com (http://www.Demonews.com) when I wanted to download some arcade games. I kept finding people wanting your email to download, install some downloader (to download a file) or even agree to a toolbar or some such nonsense. Be careful with free games, some of these tricks people use should be blatantly obvious. Using trusted sites helps. Ask around if your not sure.
Maintain your PC:
Doing occasional scans is a good idea. Removing cookies, unwanted startup items and defragmenting your hard drive can keep your machine running in tip top shape as well as maintain your privacy and spot potential problems. This simple guide (http://forums.majorgeeks.com/showthread.php?t=106650) walks you through it. At least do this once a month. You should also use a malware scanner occasionally just to be sure you did not pick something up. Again, download from a trusted site like Majorgeeks.com and consider using known programs such as Ad-Aware, Spybot, Spyware Doctor, Spy Sweeper, etc (http://www.majorgeeks.com/download.php?id=31&sort=25).