forums.rs

Forums

Uncle Arch's Security Corner

Quick find code: 86-87-850-62432224

of 20
Archaeox
Dec
fmod Member
2011

Archaeox

Forum Moderator Posts: 53,398 Emerald Posts by user Forum Profile RuneMetrics Profile
Added the following:

* Don't download RS-related software (clients, bots), many are laced with malware.

This SHOULD be obvious, what with the many infected versions of Swiftkit and the known infection of bot software/scripts) but it doesn't hurt to say it again,
~~~~ Just another victim of the ambient morality ~~~~

~~ Founder of the Caped Carousers quest cape clan ~~

!! Slava Ukraini - heroyam slava !!

08-Jun-2011 08:28:41

[#1TQAX9P9L]

[#1TQAX9P9L]

Posts: 3,878 Adamant Posts by user Forum Profile RuneMetrics Profile
Nothing there I didnt know, but then I've spent more time on a computer than a lot of people have spent alive (and yes I do sleep sometimes)

Still: well written, concise and there is nothing there I disagree with. My only comment would be:

ALWAYS have more than 1 antimalware. MalwareBytes and Spybot are the two I use, they compliment each other very well.

Never include the packaged antimalware that comes with your antivirus as one of your defences: they may be good antiviruses but Mcaffee, eTrust, Avg, Norton (especially bad) all have the skill of a carrot at blocking malware. Last person who said their Norton kept their computer clean turned out to have 74 spywares.

If you do get an infection the FIRST thing you do is cut the power, start up in safe mode, with no internet connection and run a scan. Often an infection will be at least partly cleared by your current definitions. THEN you go online, get the updates, go offline and scan again.

For advanced users: If you don't understand, don't try:

Always keep an application that offers alternative registry access and process termination. The disable registry editting, disable control panel and disable task manager are 3 of the common and most bloody annoying entries a virus can hit since they lock you out of just about everything. Spybot can kill processes (first step in slowing down an infection), HiJackThis is a useful tool for helping with registry cleaning.

Always know your computer: know your processes, be able to look through the process list on task manager and immediately recognise when something is out of place.

A common place for infections to hide is system32, probably on the assumptions that people wont touch it. A quick sort by date on system 32 will often show a couple of suspicious files with a last modified date about a year after anything genuinely system related. Checking here and your temps folders will shorten your search quite a lot.

18-Jul-2011 13:39:09

[#1TQAX9P9L]

[#1TQAX9P9L]

Posts: 3,878 Adamant Posts by user Forum Profile RuneMetrics Profile
Also be aware that a lot of browsers store their temps under the app data deep in your user data. it's bloody hard to find them sometimes because of that, so know where they are stored. Also know where to go to clear your java and flash caches

18-Jul-2011 13:40:08

Archaeox
Dec
fmod Member
2011

Archaeox

Forum Moderator Posts: 53,398 Emerald Posts by user Forum Profile RuneMetrics Profile
I agree that pr0n sites and such are far more likely to be laced with malware, but... not sure much of it will be after your RuneScape info! ;)
~~~~ Just another victim of the ambient morality ~~~~

~~ Founder of the Caped Carousers quest cape clan ~~

!! Slava Ukraini - heroyam slava !!

27-Aug-2011 18:37:47

Quick find code: 86-87-850-62432224 Back to Top