After having already dealt with the protection against Spyware, we need to talk about Rootkits. A rootkit in itself is neither a virus nor a malicious program, a rootkit is a software that is hidden by the operating system : it starts with it with the root privileges or administrator and then remains active by making every trace disappear and becoming non terminable; a trivial example are the drivers .
Unfortunately, lately they are used to spread viruses and trojans becoming very dangerous and difficult to detect even by the best antivirus.
For the best security and the best protection against external threats, in addition to having the best antivirus, the best anti Spyware and the best firewall, you need to have the best antirootkit.
Another article updated to 2013 lists the best programs to find and eliminate rootkit viruses automatically.
the advice, however, for those who are more experienced, is to check with a free program called Hijackthis .
After pressing the Scan button, HijackThis will show all the current settings of the registry keys, services, specific files that regulate the behavior of Internet Explorer and, in general, of the system; when you notice something strange, after a backup, select it and click "fix checked".
WARNING : never press the "Fix checked" button before knowing exactly the meaning of each item selected from the list, you could compromise the system.
The problem is certainly recognizing the dangers, "With the naked eye"; in support we must definitely use Google and the appropriate forums, certainly when you meet a voice called BHO or noname there is to be careful.
In another article we wrote a guide to scan the software loaded when Windows starts with Hijackthis .
For LSP errors that hijackthis cannot solve (O10 - Unknown file in Winsock LSP) you can use LSP Fix.
To remove TDSS viruses (if you open strange sites yourself) use Kaspersky's TDSSKiller .
Some programs similar to Hijackthis are treated in other posts such as those to clean up the PC infected with malware by eliminating all traces and those to find hidden processes and suspicious programs to be removed in Windows.
Finally, we have found the ideal companion for Hijackthis so that you don't have to do the scan analysis with the naked eye but using a tool that generates more complete and exhaustive log files on rootkits, processes, services, drivers and the whole interior. of the system.
The program is called RSIT, it integrates with Hijackthis and generates text files that can be analyzed by the VirusTotal online service.
Finally, keep in mind that prevention is better than cure and some of the most dangerous and most infected internet sites are known, therefore the worst internet sites included in this list are to be blocked .
