Thwarting Spyware with Windows Defender in Vista

by Pablo Martinez.
Share
|
Homepage | Submit your article | Contact | TOS
More articles on windows  

You are here: Categories » Computers and technology » Windows

I've been troubleshooting Windows PCs for many years. It used to be that most problems were caused by users accidentally deleting system files or making ill-advised attempts to edit the Registry or some other important configuration file. Recent versions of Windows (particularly XP) could either prevent these kinds of PEBCAK (Problem Exists Between Chair and Keyboard) issues or recover from them without a lot of trouble. However, I think we're all too well aware of the latest menace to rise in the past few years, and it has taken over as the top cause of desperate troubleshooting calls I receive: malware, the generic term for malicious software such as viruses and Trojan horses. The worst malware offender by far these days is spyware, a plague upon the earth that threatens to deprive a significant portion of the online world of its sanity. As often happens with new concepts, the term spyware has become encrusted with multiple meanings as people attach similar ideas to a convenient and popular label. However, spyware is generally defined as any program that surreptitiously monitors a user's computer activitiesparticularly the typing of passwords, PINs, and credit card numbersor harvests sensitive data on the user's computer, and then sends that information to an individual or a company via the user's Internet connection (the so-called back channel) without the user's consent.

You might think that having a robust firewall between you and the bad guys would make malware a problem of the past. Unfortunately, that's not true. These programs piggyback on other legitimate programs that users actually want to download, such as file-sharing programs, download managers, and screen savers. This downloading and installation of a program without the user's knowledge or consent is often called a drive-by download. This is closely related to a pop-up download, the downloading and installation of a program after the user clicks an option in a pop-up browser window, particularly when the option's intent is vaguely or misleadingly worded.

To make matters even worse, most spyware embeds itself deep into a system, and removing it is a delicate and time-consuming operation beyond the abilities of even experienced users. Some programs actually come with an Uninstall option, but it's nothing but a ruse, of course. The program appears to remove itself from the system, but what it actually does is a covert reinstallit reinstalls a fresh version of itself when the computer is idle.

All this means that you need to buttress your firewall with an antispyware program that can watch out for these unwanted programs and prevent them from getting their hooks into your system. In previous versions of Windows, you needed to install a third-party program. However, Windows Vista comes with an antispyware program called Windows Defender (formerly Microsoft AntiSpyware).

You open Windows Defender using any of the following methods:

  • From the Control Panel home, click Security and then Windows Defender. (If you're using Control Panel Classic, double-click the Windows Defender icon.)

  • Click Start, All Programs, Windows Defender.

  • Double-click the Windows Defender icon in the taskbar's notification area.

Whichever method you use, you end up at the Windows Defender Home screen. This window shows you the date, time, and results of your last scan, as well as the current Windows Defender status.Windows Defender removes spyware from your system and keeps your system safe by preventing spyware installations.

Spyware Scanning

Windows Defender protects your computer from spyware in two ways: It can scan your system for evidence of installed spyware programs (and remove or disable those programs, if necessary), and it can monitor your system in real time to watch for activities that might be caused by spyware (such as a drive-by download or data being sent via a back channel).

For the scanning portion of its defenses, Windows Defender supports three different scan types:

  • Quick Scan This scan checks just those areas of your system where evidence of spyware is likely to be found. This scan usually takes just a couple of minutes.

  • Full System Scan This scan checks for evidence of spyware in system memory, all running processes, and the system drive (usually drive C:), and it performs a "deep scan" on all folders. This scan might take 30 minutes or more, depending on your system.

  • Select Drives and Folders This scan checks just the drives and folders that you select. The length of the scan depends on the number of locations you select and the number of objects in those locations.

The Quick scan is the default, and you can initiate one at any time by clicking the Scan link. Otherwise, pull down the Scan menu and select Quick Scan, Full Scan, or Custom Scan, the last of which displays the Select Scan Options page. In the Scan menu, select Custom Scan to see the Select Scan Options page.

Windows Defender Settings

By default, Windows Defender is set up to perform a Quick scan of your system every morning at 2:00 a.m. To change this, click Tools, and then click Options to display the Options page. Use the controls in the Automatic Scanning section to specify the scan frequency time and type. Use the Options page to set up a spyware scan schedule.

The rest of the Options page offers options for customizing Windows Defender. There are four more groups.

  • Default Actions Set the action that Windows Defender should take if it finds alert items (potential spyware) in the High, Medium, and Low categories: Signature Default (Windows Defender's default action for the detected spyware), Ignore, or Remove.

  • Real-Time Protection Options Enables and disables real-time protection. You can also toggle security agents on and off. Security agents monitor Windows components that are frequent targets of spyware activity. For example, activating the Auto Start security agent tells Windows Defender to monitor the list of startup programs to ensure that spyware doesn't add itself to this list and run automatically at startup.

    Tip

    Windows Defender will often warn you that a program might be spyware and ask whether you want to allow the program to operate normally or to block it. If you accidentally allow an unsafe program, click Tools, Allowed Items; select the program in the Allowed Items list and then click Clear. Similarly, if you accidentally blocked a safe program, click Tools, Quarantined Items; select the program in the Quarantined Items list; and then click Restore.

  • Advanced Options Use these options to enable scanning inside compressed archives and to prevent Windows Defender from scanning specific folders.

  • Administrator Options This section has a check box that toggles Windows Defender on and off, and another that, when activated, allows non-Administrators to use Windows Defender.

The rest of the General Settings page contains options for customizing various aspects of Windows Defender.
Share
Leave a comment or ask a question
Total comments: 0

Windows Disclaimer

  • The e-articles directory is not responsible for any and all copyright infringements by writers and authors. If you suspect the information contained by this page for any copyright infringements, please contact us to investigate the issue
Things to Know About the New Windows 7 When Upgrading Windows Vista - On Thursday October 22, 2009, the much anticipated release of Windows 7 arrived. As I am sure you are well-aware, many PC users and PC experts were highly disappointed with Windows Vista; the go (more...)
Wireless Connection on Windows Vista and Windows 7 - Wireless networking is perfect when you want to connect devices in locations where it would be difficult or expensive to run Ethernet cables. Let's say your PC and the high-speed Internet equipment (more...)
Windows 7 Disable Memory Dump Files and Save HDD Space - If your computer crashes, it will create a dump file. From this dump file you can diagnose the source of the problem. It is unlikely you will need this file; if you do, you can always turn the opti (more...)
Shrink/Extend a Partition on Windows 7 Hard Drive - If you use multiple partitions on your hard drive, you may want to shrink or extend one of them-after realizing you want more space on another one of the partitions. ( Create a New Partition.) (more...)
Windows 7 Schedule Defragmentation - Defragmentation helps speed up access to data on your drive. In this tutorial, you'll learn how to schedule defragmentation so you don't have to worry about ensuring your drive is defragmented. (more...)
Reduce Windows 7 Boot Time - Does your computer boot slowly? If you shut your computer down regularly, this can be a real pain. Anything more than about 45 seconds tests my patience and I've used computers tha (more...)
Windows 7 Change Account Picture - Your account picture is used for the login screen, your start menu, windows meeting space, and more. When you first set up your account, you can choose one of the default images. In this tutorial, (more...)
Windows7 Device Stage - Device Stage is a new technology in Windows 7 that helps you interact with any compatible device connected to your computer. Device Stage lets you see device status and run common tasks. This a cur (more...)
Windows7 Action Center - Windows Action Center is an improved version of Vista's Security Center. The action center alerts you to problems with your PC and lets you know how you can resolve them. Notifications are delivere (more...)
Enhance SATA Disk Performance in Windows7 - You can improve the performance of your SATA hard drive by enhancing write caching. If you are not sure whether or not you have an SATA drive in your computer, please check with your manufa (more...)
 
free content
    Copyright © 2006 - 2012 e-articles.info.
The texts, articles and tutorials in the directory are property of their respective owners and authors.