Sunday, November 14, 2010

How to I add my firewall back?

I have recently been having trouble with spyware and popups. I also just found out that my sister took down the firewall a few months ago.

Whenever I go to change my firewall settings it says:

';Due to an unidentified problem, Windows cannot display Windows Firewall settings.';



How do I fix this? I am getting attacked by spyware and pop-ups.How to I add my firewall back?
If you have been running your computer without a firewall for months it is probably too infected with spyware/viruses to repair. I recommend backing up all your files and formatting and reinstalling windows.



OS Reinstallation vs. Virus Removal

http://safecomputing.umn.edu/guides/rebu…



When should I re-format? How should I reinstall? (#10063)

http://www.dslreports.com/faq/10063



Securing a Personal Machine

http://safecomputing.umn.edu/studentchec…



If you must try to repair:

First backup your files!!!!



Start%26gt; Run%26gt; enter ';sfc.exe /scannow'; in the run box.

Run. You will need the windows XP disk. This utility will check all system files against the disk and repair if needed.



System File Checker (sfc.exe)

http://msdn2.microsoft.com/en-us/library…

http://www.updatexp.com/scannow-sfc.html

http://www.networkclue.com/os/Windows/co…





If this doesn't work, do a repair install.

Repair install. (should not lose data) Backup files first.

http://www.microsoft.com/windowsxp/using…

http://www.fujitsu-siemens.co.uk/rl/serv…



Last option. Format and reinstall:



Backup your data. Find all your drivers and software and software keys now and develop a plan on how you will reinstall them.

http://blog.angrypets.com/2006/01/ultima…

http://www.thefuhrmans.com/reformat_hd.h…

http://www.belarc.com/free_download.html

http://www.smartcomputing.com/editorial/…



Keyfinder Thing 3.1.6

http://www.download.com/Keyfinder-Thing/…

--------------------------------------…

Optional: Wipe the drive. All data on the drive will be erased.



Darik's Boot and Nuke (DBAN) free

http://www.download.com/Darik-s-Boot-and…

http://dban.sourceforge.net/

http://dban.sourceforge.net/features.htm…

DBAN will automatically and completely delete the contents of any hard disk that it can detect, which makes it an appropriate utility for bulk or emergency data destruction.



Wipe Methods

Quick Erase YES

Canadian RCMP TSSIT OPS-II Standard Wipe YES

American DoD 5220-22.M Standard Wipe YES

Gutmann Wipe YES

PRNG Stream Wipe YES



HOWTO: Burn the DBAN ISO file with CDBurnerXP

http://dban.sourceforge.net/faq/CDBurner…



DBAN Instructions

http://www.security.ku.edu/download/DBAN…

http://secure.nd.edu/disposal/index.shtm…

--------------------------------------…

Format and Reinstall Windows



Optional: When you format enter ';fdisk /mbr'; to format the master boot record.

http://forums.cnet.com/5208-6132_102-0.h…

http://support.microsoft.com/kb/69013



Reformat and install. (Cleans drive loses all data)

http://support.microsoft.com/kb/313348

http://www.microsoft.com/windowsxp/using…

http://www.whitecanyon.com/reformat-the-…

http://www.smartcomputing.com/editorial/…

==============================

Virus / Spyware Removal



Update your antivirus and run a full scan



If you do not have full time (active) virus protection install (only one) all are excellent:



AVG Antivirus 7.5 Free Edition

http://free.grisoft.com/freeweb.php/doc/…

http://www.download.com/AVG-Anti-Virus-F…

or

Free antivirus - avast! 4 Home Edition

http://www.avast.com/eng/avast_4_home.ht…

or

AOL Active Virus Shield (powered by Kaspersky)

http://www.activevirusshield.com/antivir…

--------------------------------------…

Install Windows Defender (full time spyware protection)

Perform a full scan in save mode

http://www.microsoft.com/athome/security…



or

AOL Automatic Protection Against Spyware and Malware

http://daol.aol.com/safetycenter/spyware

http://daol.aol.com/safetycenter/

--------------------------------------…

Install the following five programs and run weekly or at least monthly. You need all five. They will greatly increase your protection. They are not a substitute for full time spyware and virus protection.



Ad-Aware SE Personal (update + full scan)

http://www.lavasoftusa.com/products/ad-a…



Spybot Search %26amp; Destroy (update + immunize + scan)

Do not enable Tea Timer and SDHelper

After installation: update + scan + immunize

http://www.safer-networking.org/en/mirro…



SpywareBlaster: Update then open and click “enable all protection”.

http://www.javacoolsoftware.com/spywareb…



SUPERAntiSpyware free version: (update + scan)

http://www.superantispyware.com/



CCleaner: Do not install toolbar option

Removes tracking cookies, unneeded files, history

In options.

Set to run when computer starts.

Place cookies you want to keep in save list

http://www.ccleaner.com/

--------------------------------------…

Note if a scan detects a problem but is unable to remove, start the computer in safe mode with the internet line disconnected and run a full scan.



In severe cases your system restore files will also be infected. In these cases you will need to turn off system restore to prevent malware hiding in the system restore files and reinfecting the computer during removal or during a future system restore. Turning off system restore deletes the system restore files.



Right click on ';my computer';%26gt; Properties %26gt; System Restore Tab %26gt; Check box turn off system restore



After the malware is removed turn on system restore.

--------------------------------------…

McAfee Site Advisor: Internet Explorer and Firefox

http://www.siteadvisor.com/

Indicates if a site is unsafe and can link to a page to explain why it is unsafe.

--------------------------------------…

Additional run this time and monthly.



Run Microsoft Update ';Custom Mode'; install everything

http://update.microsoft.com/microsoftupd…



Microsoft OneCare Live, run “full service scan”

Updates windows, virus and spyware scan, disk cleanup, disk fragmentation (if needed), backs up registry and then cleans registry, and checks for open firewall ports

http://onecare.live.com/site/en-us/defau…



Malicious Software Removal Tool (run “full scan”)

http://www.microsoft.com/security/malwar…

--------------------------------------…

Rootkits Removers

Pick any 2 install and run one each month



AVG Anti-Rootkit

http://www.grisoft.com/doc/products-avg-…



F-Secure BlackLight

http://www.f-secure.com/blacklight/



Panda Anti-Rootkit

http://research.pandasoftware.com/blogs/…



Sophos Anti-Rootkit

http://www.sophos.com/products/free-tool…



Trend Micro Rootkit Buster

http://www.trendmicro.com/download/rbust…

--------------------------------------…

Online Free Scanners:

Run Trend Micro, Kaspersky, and Panda Scan now.

Run a different one each month.



Trend Micro: HouseCall Free Scan (removes what it finds)

http://housecall.trendmicro.com/

BitDefender Online Scanner http://www.bitdefender.com/scan8/ie.html

Kaspersky Labs Online Scanner http://www.kaspersky.com/virusscanner

McAfee http://us.mcafee.com/root/mfs/default.as…

Edwido Spyware Scan

http://www.ewido.net/en/onlinescan/

F-Secure

http://support.f-secure.com/enu/home/ols…

Panda ActiveScan Free Online Scanner http://www.pandasoftware.com/products/ac…

Symantic Online Scanner http://security.symantec.com/sscv6/ssc_e…How to I add my firewall back?
You probably still have malware that is interfering with your operating system's security. First try and eradicate the malware by following the steps below. Afterwards you can try and run SFC.



Firstly update and run your anti-virus product. You can also run a free online scan as well as some malware can actually corrupt or disable your resident security products. Here are a few online scans you can run:

Trend - http://housecall.trendmicro.com/

Panda - http://www.pandasoftware.com/products/Ac…

Norton - http://security.symantec.com/sscv6/defau…



Second download, update and run scans using the following products:

SuperAntispyware

http://superantispyware.com/

Spybot S%26amp;D (free version requires manual updating)

http://www.safer-networking.org/en/downl…

AVG AntiSpyware

http://free.grisoft.com/doc/20/lng/us/tp…

Adaware from Lavasoft (free version requires automatic updating)

http://www.lavasoftusa.com/products/ad-a…



(These programs can be run in Safe Mode after downloading and updating)



Third, after cleaning your system, disable System Restore, reboot and re-enable System Restore when you log back on. This will clear the malware that may still be lurking in System Restore, which could be reinstalled should you need to rollback at some point. Additionally, a reboot may be required to complete the malware removal process.



Lastly, you may also want to install the following tool. It is free and requires you to check for and enable updates manually once a week or so. It uses no system resources.

SpywareBlaster (inoculates, not a spyware removal tool)

http://www.javacoolsoftware.com/spywareb…

================================

If you cannot get it removed after the above, you may want to join a tech group that specializes in providing manual instructions on malware eradication.



Free technical help forums



AumHa Forums

http://aumha.net/index.php

Bleeping Computers

http://www.bleepingcomputer.com/forums/

Spybot S%26amp;D Forums

http://forums.spybot.info/

Lavasoft Forums

http://www.lavasoftsupport.com/

Spyware Info Forums

http://forums.spywareinfo.com/index.php?…

GeekstoGo

http://www.geekstogo.com/forum/forums.ht…

===========

If you computer comes up clean after running your resident security products, you may want to consider running a System File Checker (SFC). This can be run in Safe Mode should you prefer. To get into Safe Mode either hold down or tap the F8 key repeatedly while the computer is starting up. To run SFC, close all applications such as Office, Messenger, Email, etc, and go to:



- Start

- Run

- Type in sfc /scannow (include the space before the '; / ';)



What SFC does is that it attempts to fix or replace critical operating system files. Sometimes this can be done without the installation disk, however it may prompt you for the appropriate operating system installation disk. If that is the case, then you know that you definitely have file corruption or something missing. Insert the disk if prompted. Also you should run SFC using the Administrator account.



If you have the Vista operating system, the steps are a bit different due to the UAC. See the link below.

http://vistasupport.mvps.org/system_file…



Don't surf, play games or do anything while SFC runs. After it is completed, reboot your computer.



One of the major culprits in missing or corrupt operating system files is running a registry cleaner or optimizer. They can flag important shared files for deletion or cleanup. Another cause is malware.



NOTE: Before running any registry cleaner or editing the registry, always ensure you back it up first. If the registry cleaner you are using doesn't have that function, you can do it manually. http://support.microsoft.com/kb/322756

No comments:

Post a Comment