Virus/adware/spyware -- is there all-in-one protection in one program?

Discussion in 'Virus Information' started by John Blaustein, Jun 21, 2004.

  1. Having had to deal with a virus that my AV program didn't find, I am curious
    if anyone has found an "all-in-one" program to prevent viruses, adware,
    spyware, etc.?

    I have been using AVG Free Edition and today discovered a virus on one of my
    computers. The first symptoms were that my AV program didn't load at
    startup (and I couldn't run it at all), and I was not able to access some
    sites on the Internet. I discovered that my hosts file had been
    overwritten. In addition, AdAware discovered two registry entries that were
    causing the AV program not to load.

    I used System Restore to roll back to a restore point a few days ago, and
    that seems to have worked. I deleted the bogus hosts file.

    At the suggestion of Bruce Chambers -- see my thread "Task Mgr & Registry
    locked! AV won't load!: -- I ran several online scanners and the McAfee
    scanner found "New Malware.b" in a "bogus" file called iexlore.exe. It's
    now deleted and my system seems to be OK again.

    So, here's my question: Is there one security program out there that will
    do the equivalent of scanning (and real-time protection) for viruses AND
    also protect from the things that AdAware looks for? It seems that AVG,
    NAV, etc. look for viruses, and AdAware looks for other items. Is there a
    program to do it all?

    Thank you.

    John Blaustein, Jun 21, 2004
    1. Advertisements

  2. No.
    There is not.

    Suggestions on what you can do to secure/clean your PC. I'm going to try
    and be general, I will assume a "Windows" operating system is what is
    being secured here.


    This one is the most obvious. There is no perfect product and any company
    worth their salt will try to meet/exceed the needs of their customers and
    fix any problems they find along the way. I am not going to say Microsoft
    is the best company in the world about this but they do have an option
    available for you to use to keep your machine updated and patched from
    the problems and vulnerabilities (as well as product improvements in some
    cases) - and it's free to you.

    Windows Update

    Go there and scan your machine for updates. Always get the critical ones as
    you see them. Write down the KB###### or Q###### you see when selecting the
    updates and if you have trouble over the next few days, go into your control
    panel (Add/Remove Programs), match up the latest numbers you downloaded
    recently (since you started noticing an issue) and uninstall them. If there
    was more than one (usually is), install them back one by one - with a few
    hours of use in between, to see if the problem returns. Yes - the process
    is not perfect (updating) and can cause trouble like I mentioned - but as
    you can see, the solution isn't that bad - and is MUCH better than the
    alternatives. (SASSER/BLASTER were SO preventable with just this step!)

    Windows is not the only product you likely have on your PC. The
    manufacturers of the other products usually have updates as well. New
    versions of almost everything come out all the time - some are free, some
    are pay - some you can only download if you are registered - but it is best
    to check. Just go to their web pages and look under their support and
    download sections.

    You also have hardware on your machine that requires drivers to interface
    with the operating system. You have a video card that allows you to see on
    your screen, a sound card that allows you to hear your PCs sound output and
    so on. Visit those manufacturer web sites for the latest downloadable
    drivers for your hardware/operating system. Always (IMO) get the
    manufacturers hardware driver over any Microsoft offers. On the Windows
    Update site I mentioned earlier, I suggest NOT getting their hardware
    drivers - no matter how tempting.

    Have I mentioned that Microsoft has some stuff to help secure your computer
    available to the end-user for free? This seems as good of a time as any.
    They have a CD you can order (it's free) that contain all of the Windows
    patches through October 2003 and some trial products as well that they
    released in February 2004. Yeah - it's a little behind now, but it's better
    than nothing (and used in coordination with the information in this post,
    well worth the purchase price..)

    Order the Windows Security Update CD

    They also have a bunch of suggestions, some similar to these, on how to
    better protect your Windows system:

    Protect your PC


    Let's say you are up-to-date on the OS (operating system) and you have
    Windows XP.. You should at least turn on the built in firewall. That will
    do a lot to "hide" you from the random bad things flying around the
    Internet. Things like Sasser/Blaster enjoy just sitting out there in
    Cyberspace looking for an unprotected Windows Operating System and jumping
    on it, doing great damage in the process and then using that Unprotected OS
    to continue its dirty work of infecting others. If you have the Windows XP
    ICF turned on - default configuration - then they cannot see you! Think of
    it as Internet Stealth Mode at this point. It has other advantages, like
    actually locking the doors you didn't even (likely) know you had. Doing
    this is simple, the instructions you need to use your built in Windows XP
    firewall can be found here:

    If you read through that and look through the pages that are linked from it
    at the bottom of that page - I think you should have a firm grasp on the
    basics of the Windows XP Firewall as it is today. One thing to note RIGHT
    NOW - if you have AOL, you cannot use this nice firewall that came with
    your system. Thank AOL, not Microsoft. You HAVE to configure another
    one.. So we continue with our session on Firewalls...

    But let's say you DON'T have Windows XP - you have some other OS like
    Windows 95, 98, 98SE, ME, NT, 2000. Well, you don't have the nifty built in
    firewall. My suggestion - upgrade. My next suggestion - look through your
    options. There are lots of free and pay firewalls out there for home users.
    Yes - you will have to decide on your own which to get. Yes, you will have
    to learn (oh no!) to use these firewalls and configure them so they don't
    interfere with what you want to do while continuing to provide the security
    you desire. It's just like anything else you want to protect - you have to
    do something to protect it. Here are some suggested applications. A lot of
    people tout "ZoneAlarm" as being the best alternative to just using the
    Windows XP ICF, but truthfully - any of these alternatives are much better
    than the Windows XP ICF at what they do - because that is ALL they do.

    ZoneAlarm (Free and up)

    Kerio Personal Firewall (KPF) (Free and up)

    Outpost Firewall from Agnitum (Free and up)

    Sygate Personal Firewall (Free and up)

    Symantec's Norton Personal Firewall (~$25 and up)

    BlackICE PC Protection ($39.95 and up)

    Tiny Personal Firewall (~$49.00 and up)

    That list is not complete, but they are good firewall options, every one of
    them. Visit the web pages, read up, ask around if you like - make a
    decision and go with some firewall, any firewall. Also, maintain it.
    Sometimes new holes are discovered in even the best of these products and
    patches are released from the company to remedy this problem. However, if
    you don't get the patches (check the manufacturer web page on occasion),
    then you may never know you have the problem and/or are being used through
    this weakness. Also, don't stack these things. Running more than one
    firewall will not make you safer - it would likely (in fact) negate some
    protection you gleamed from one or the other firewalls you ran together.


    That's not all. That's one facet of a secure PC, but firewalls don't do
    everything. I saw one idiot posting on a newsgroup that "they had
    never had a virus and they never run any anti-virus software. Yep - I used
    to believe that way too - viruses were something everyone else seemed to
    get, were they just stupid? And for the average joe-user who is careful,
    uses their one-three family computers carefully, never opening unknown
    attachments, always visiting the same family safe web sites, never
    installing anything that did not come with their computer - maybe, just
    maybe they will never witness a virus. I, however, am a Network Systems
    Administrator. I see that AntiVirus software is an absolute necessity. You
    can be as careful as you want - will the next person be as careful? Will
    someone send you unknowingly the email that erases all the pictures of your
    child/childhood? Possibly - why take the chance? ALWAYS RUN ANTIVIRUS
    SOFTWARE and KEEP IT UP TO DATE! Antivirus software comes in so many
    flavors, it's like walking into a Jelly Belly store - which one tastes like
    what?! Well, here are a few choices for you. Some of these are free (isn't
    that nice?) and some are not. Is one better than the other - MAYBE. I
    personally love Symantec AV.

    Symantec (Norton) AntiVirus (~$11 and up)

    Kaspersky Anti-Virus (~$49.95 and up)

    Panda Antivirus Titanium (~$39.95 and up)
    (Free Online Scanner:

    AVG 6.0 Anti-Virus System (Free and up)

    McAfee VirusScan (~$11 and up)

    AntiVir (Free and up)

    avast! 4 (Free and up)

    Trend Micro (~$49.95 and up)
    (Free Online Scanner:

    Did I mention you have to not only install this software, but also keep it
    updated? You do. Some of them (most) have automatic services to help you
    do this - I mean, it's not your job to keep up with the half-dozen or more
    new threats that come out daily, is it? Be sure to keep whichever one you
    choose up to date!


    So you must be thinking that the above two things got your back now - you
    are covered, safe and secure in your little fox hole. Wrong! There are
    more bad guys out there. There are annoyances out there you can get without
    trying. Your normal web surfing, maybe a wrong click on a web page, maybe
    just a momentary lack of judgment by installing some software packages
    without doing the research.. And all of a sudden your screen starts filling
    up with advertisements or your Internet seems much slower or your home page
    won't stay what you set it and goes someplace unfamiliar to you. This is
    spyware. There are a whole SLEW of software packages out there to get rid
    of this crud and help prevent reinfection. Some of the products already
    mentioned might even have branched out into this arena. However, there are
    a few applications that seem to be the best at what they do, which is
    eradicating and immunizing your system from this crap. Strangely, the best
    products I have found in this category ARE generally free. That is a trend
    I like. I make donations to some of them, they deserve it!

    Two side-notes: Never think one of these can do the whole job.
    Try the first 5 before coming back and saying "That did not work!"
    Also, you can always visit:
    For more updated information.

    Spybot Search and Destroy (Free!)

    Lavasoft AdAware (Free and up)

    CWSShredder (Free!)

    Hijack This! (Free)
    ( Tutorial: )

    SpywareBlaster (Free!)

    IE-SPYAD (Free!)

    ToolbarCop (Free!)

    Bazooka Adware and Spyware Scanner (Free!)

    Browser Security Tests

    The Cleaner (49.95 and up)

    That will clean up your machine of the spyware, given that you download and
    install several of them, update them regularly and scan with them when you
    update. Some (like SpywareBlaster and SpyBot Search and Destroy) have
    immunization features that will help you prevent your PC from being
    infected. Use these features!

    Unfortunately, although that will lessen your popups on the Internet/while
    you are online, it won't eliminate them. I have looked at a lot of options,
    seen a lot of them used in production with people who seem to attract popups
    like a plague, and I only have one suggestion that end up serving double
    duty (search engine and popup stopper in one):

    The Google Toolbar (Free!)

    Yeah - it adds a bar to your Internet Explorer - but its a useful one. You
    can search from there anytime with one of the best search engines on the
    planet (IMO.) And the fact it stops most popups - wow - BONUS! If you
    don't like that suggestion, then I am just going to say you go to and search for other options.

    One more suggestion, although I will suggest this in a way later, is to
    disable your Windows Messenger service. This service is not used frequently
    (if at all) by the normal home user and in cooperation with a good firewall,
    is generally unnecessary. Microsoft has instructions on how to do this for
    Windows XP here:


    This one can get annoying, just like the rest. You get 50 emails in one
    sitting and 2 of them you wanted. NICE! (Not.) What can you do? Well,
    although there are services out there to help you, some email
    servers/services that actually do lower your spam with features built into
    their servers - I still like the methods that let you be the end-decision
    maker on what is spam and what isn't. If these things worked perfectly, we
    wouldn't need people and then there would be no spam anyway - vicious
    circle, eh? Anyway - I have two products to suggest to you, look at them
    and see if either of them suite your needs. Again, if they don't, Google is
    free and available for your perusal.

    SpamBayes (Free!)

    Spamihilator (Free!)

    As I said, those are not your only options, but are reliable ones I have
    seen function for hundreds+ people.


    I might get arguments on putting this one here, but it's my spill. There are
    lots of services on your PC that are probably turned on by default you don't
    use. Why have them on? Check out these web pages to see what all of the
    services you might find on your computer are and set them according to your
    personal needs. Be CAREFUL what you set to manual, and take heed and write
    down as you change things! Also, don't expect a large performance increase
    or anything - especially on todays 2+ GHz machines, however - I look at each
    service you set to manual as one less service you have to worry about
    someone exploiting. A year ago, I would have thought the Windows Messenger
    service to be pretty safe, now I recommend (with addition of a firewall)
    that most home users disable it! Yeah - this is another one you have to
    work for, but your computer may speed up and/or be more secure because you
    took the time. And if you document what you do as you do it, next time, it
    goes MUCH faster! (or if you have to go back and re-enable things..)

    Task List Programs

    Black Viper's Service List and Opinions (XP)

    Processes in Windows NT/2000/XP

    There are also applications that AREN'T services that startup when you start
    up the computer/logon. One of the better description on how to handle these
    I have found here:


    That's it. A small booklet on how to keep your computer secure, clean of
    scum and more user friendly. I am SURE I missed something, almost as I am
    sure you won't read all of it (anyone for that matter.) However, I also
    know that someone who followed all of the advice above would also have less
    problems with their PC, less problems with viruses, less problems with spam,
    less problems with spyware and better performance than someone who didn't.

    Hope it helps.
    Shenan Stanley, Jun 21, 2004
    1. Advertisements

  3. John Blaustein

    madmax Guest

    The short answer is no. The AV guys keep their defs. to
    themselves.That's how they can say "buy ours" because we can
    find X and the other guys can't.I myself run 4 at
    once,Spybot1.3,Spyware Blaster,Script Defender+Spyware
    Guard.Also have Ad-Aware,HyjackThis,Bazooka,Script
    Defender,Swat-it+ xp-anti-spy installed for on-demand
    scanning.Sygate for firewall.
    And use I Avast instead of AVG (AVG gave me problems)

    To help you stay safe see:
    This message is virus free as far as I can tell.
    Change to so you can reply
    ( has been set up specifically for
    use in Usenet. Feel free to use it yourself.)
    madmax, Jun 21, 2004
  4. You need Windows critical updates, a firewall, and an anti-virus program
    as Microsoft suggests, but until SP2 comes out (and perhaps after) you
    need tools to protect your browser. Anti-virus companies just aren't
    doing it in their products.

    I like Quik-Fix and SpywareGuard for real-time protection
    and Ad-aware and Spybot for routine scanning. But you also have to keep
    up with news about IE vulnerabilities and known exploits to become aware
    of your current vulnerabilities even with these aforementioned protections.
    Kent W. England [MVP], Jun 21, 2004
  5. Shenan,

    Thank you for such a complete reply to my questions. Yes, I'm using Windows
    XP Home.

    The fact is, I'm already doing much of what you mention:
    -- all Windows updates are current. I check this regularly and have the
    Automatic Updates enabled in XP. You mentioned the MS Security CD, but I am
    assuming it doesn't contain anything that keeping Windows Update current
    wouldn't include. I have read the MS page on security and comply will all
    of it.
    -- I have a SonicWALL hardware firewall between my home network and my DSL
    -- AVG Free Edition is installed and I check for updates daily and scan
    -- My ISP uses SpamAssassin to tag suspected spam.
    -- I use SpamKiller ( with Outlook Express. Between
    SpamAssassin and SpamKiller, 98% of the spam I get is tagged and put into
    the trash. I scan the messages for false-negatives, but most of the spam
    never gets read.
    -- all of my software has all updates applied, including applications and
    -- on the affected PC, I have nothing in my Startup folder. AVG, SpamKiller
    and CD Creator load at startup, but that's about all.
    -- I must look into the spyware/adware/popup solutions you mention. I scan
    with AdAware from time to time -- and that's what caught today's virus,
    showing me the two malicious registry entries -- but I can now see that I
    should have some real-time scanning.

    Believe it or not, I did read your entire message! I haven't followed every
    link yet, but I will definitely investigate many of them. In addition, I
    will save your message for further reference.

    Your efforts are much appreciated.

    John Blaustein, Jun 21, 2004
  6. Thanks, Max.

    AVG has worked so far -- except it didn't help today. In addition, it does
    not have real-time e-mail scanning and that worries me. I'll look at Avast
    again. PC-Cillin looks good too. I used to use Norton Anti-Virus, but it
    put so much junk into my registry that when I tried to uninstall it, it
    caused a huge problem --- it's a long story for another time.

    I'll look at the programs you mention. I hope I can find something that
    does real-time scanning to prevent whatever caused my virus today.

    John Blaustein, Jun 21, 2004
  7. Kent, thank you.

    I have all Windows Updates installed. I check the site regularly and have
    Auto Updates enabled (in XP Home). I have a hardware firewall -- SonicWALL.
    I use AVG Free Edition and check for updates every morning.

    I will look at Clearly, I need some additional real-time

    The help you MVPs provide is invaluable. My sincere thanks to all of the

    John Blaustein, Jun 21, 2004
  8. Kent...

    One more thing, on the subject of IE vulnerability. In IE 6,
    Tools>Options>Security, is the "Default" setting adequate for each of the
    zones? I realize I may now need some additional software, but I imagine
    it's best to start with the proper settings right within IE.


    John Blaustein, Jun 21, 2004
  9. Kent...

    Looking at the Javacool site, I see both SpywareGuard and SpywareBlaster. I
    installed SpywareGuard and see that the latest update is January 2004,
    whereas the site says the latest update for SpywareBlaster is 6/7/04. Is
    there a reason you use Guard and not Blaster?

    John Blaustein, Jun 21, 2004
  10. John Blaustein

    Phil Weldon Guest

    ALL antivirus programs should be set to scan whenever files are
    manipulated - opened, copied, moved, or executed. In addition, scanning for
    'virus-like' activity should also ALWAYS be enabled. Eventually you might
    want choose to eliminate scanning certain types of files (known clean data
    files for example - I have 10 Gbytes of encrypted .wma music files I don't
    feel the need to scan every time I listen to music.) Periodic scanning on
    demand only tells you that you have infected files AFTER your system has
    been exposed, and possibly infected. If it ain't 'real time', it's not in

    And no, for single systems, there is no all-in-one. Fortunately, for
    individuals, Spybot Search&Destroy and LavaSoft AdAware are free, and widely
    judged effective adjuncts to antivirus programs and software firewalls. You
    might want to consider adding an inexpensive hardware firewall that blocks
    unwanted incoming touches - it is always on, doesn't need to be updated,
    works with any system, and has no annual supscription.

    Phil Weldon, pweldonatmindjumpdotcom
    For communication,
    replace "at" with the 'at sign'
    replace "mindjump" with "mindspring."
    replace "dot" with "."
    Phil Weldon, Jun 21, 2004
  11. John Blaustein

    Jeff Cochran Guest

    On a clean boot?

    Jeff Cochran, Jun 21, 2004
  12. Jeff,

    I ran AdAware when I discovered I couldn't run AVG. AdAware found the two
    registry entries that were preventing AVG to load or run. AdAware was
    unable to delete the two entries, so that's when I decided to use System
    Restore to roll back to a point before the "attack" occurred.

    Actually, before trying AdAware, I discovered I couldn't access any of the
    AV sites on the Web, and that's when I realized my hosts file had been
    overwritten. I deleted all the bogus entries from hosts, but when I
    rebooted, the bogus entries returned! That's when I ran AdAware and
    subsequently ran System Restore.

    John Blaustein, Jun 21, 2004
  13. Phil,

    AVG Free Edition is resident and running at all times. I'b be interested to
    know what AV program you use.

    I have a SonicWALL hardware firewall sitting between my home network and the
    DSL modem.

    As of last night, I also have SpywareGuard running. Kent England suggested
    that program from Javacool Software. If I understand it correctly,
    SpywareGuard will provide real-time protection from IE browser and Outlook
    Express spyware attacks.

    I scan with AdAware regularly, but have not used Spybot S&D for a while.
    Based on what happened yesterday, I really want to find some real-time
    scanning to prevent whatever caused my hosts file to be overwritten and made
    those two bogus registry entries that prevented AVG from loading at startup
    and prevented it from being able to run at all.

    John Blaustein, Jun 21, 2004
  14. John Blaustein

    Unknown Guest

    Absolutely amazing that people who DO NOT install and run AV programs and DO
    NOT get viruses but do avoid all the problems caused by AV programs are called
    Unknown, Jun 21, 2004
  15. John Blaustein

    taff Guest


    If you do not have an AV, how do you know that you do not have any
    viruses ?????
    Also how do you know that you are not one of those causing problems
    for others by broadcasting those viruses, worms and other malware.

    Taff.............. |
    taff, Jun 21, 2004
  16. John Blaustein

    Unknown Guest

    Very simple answers. I have NO problems on my computer and since I converse
    each and every day I receive NO complaints.
    Unknown, Jun 21, 2004
  17. John Blaustein

    taff Guest

    As I said how do you know that your computer is not BROADCASTING,( and
    I do not mean sending to people by email ), all sorts of malware.

    Taff....... |
    taff, Jun 21, 2004
  18. Shenan wrote:

    You have made your point to me in another post. I will rephrase, although I
    assure you, you are not the idiot. Search the newsgroups, you will find
    this post a few dozen (hundred even?) times before you started your rant on
    AntiVirus Software being unnecessary. You have mde valid points in your
    other post and I have stated so in that thread with my counter-points on why
    I still recommend AV software and will continue recommending it.

    I will reword.
    Shenan Stanley, Jun 21, 2004
  19. John Blaustein

    madmax Guest

    I see you installed Spyware Guard.You should get Spyware
    Blaster from the same people.(works well with spybot)
    To help you stay safe see:
    This message is virus free as far as I can tell.
    Change to so you can reply
    ( has been set up specifically for
    use in Usenet. Feel free to use it yourself.)
    madmax, Jun 21, 2004
  20. Hi Max,

    Actually, I downloaded both Spyware Guard and Spyware Blaster, but only
    installed Guard. I'm not quite clear what the difference is between Guard
    and Blaster. I will take your recommendation, however, and delete Guard and
    install Blaster.


    I was looking at the Symantec web site and reading about NAV 2004. It
    claims to protect not only against viruses, but also spyware, etc. It
    sounds like Symantec is trying to be the "all-in-one" program.

    John Blaustein, Jun 21, 2004
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.