Just a GE Engineer looking for a place of his own. I don't reinvent the wheel, I just link to it. 
  

 

 

 

 

 

 

 

     All The Latest Tech News at a Glance       Transfer Big Files     House Call        X-Cleaner     Txt 2 Cell      Logmein       What is my ip   

     GEGeek Tech News                                Google      Zoho     Google Docs     Speedtest     Net Tools      Ip Tools

 

Articles written by

GEGeek.

 

Home Page

 

 
 

Magazines Feeds

RSS Feeds

Digg News

How To Articles

Saved Articles

Windows

Troubleshooting

Networking

Tutorials

Linux / Unix

Hardware

Software

Tech Support

Security

Misc Links

Reference

OnLine Services

Search Engines

Tech Directory

Audio / Video

Games

Manufacturers

Tech Blogs

DIY Projects

 

 

 

 

 

 
 

Est. Jan/2008    GEGeek

"All the Best Links are Here."

 

       Title:    How I Keep My System Virus and Spyware Free                                                                   

 

GEGeek's How to Articles

 

02/2008  -  How I Keep My System Virus and Spyware Free

 

  I've pretty much been virus free for almost three years now. I don't have a special bag of tricks for you but some of the programs

I use on a daily basis may surprise you. So let's start with the obvious ones first and work our way down through the list of

preventions that I employ.

 

1:  First of you all you need the latest service pack for whatever version of Windows you are using. XP SP3 just came out as

of this writing. I would install that right away. If not, at least make sure you install SP2.

 

2:  Of course you need an Anti-Virus program. I personally have been using Trend Micro PC-Cillin Suite with Firewall for

about 4 years now.  I seriously cannot remember the last time I was infected. I'm not a big Norton fan! A little research on the

comparisons of scanners couldn't  hurt. Sometimes the tide changes from year to year as to who is most effective at

preventing viruses. 

 

3:  Another program everyone should be running is an Anti Spyware program. I consider spyware to be much more

dangerous than viruses, for the simple fact that spyware tries to hide from your presence and gather info about you. Viruses

most often are created to cause damage and      definitely want to make their presence known. The spyware program I

choose to run is Ad-Aware Pro 2007 - the paid version. The Pro   version runs resident in the background at all times

while the free version can only run on demand. Usually it's too late by then. But you  can setup the free version to run

automatically daily via a scheduled task. Look under command line in the help. Freeware/Shareware

 

4:  I also run Spybot Search and Destroy on my system. It too runs on demand but also has an immunize feature

that permanently set ups your system to reject known threats.  It has a blacklist of registry changes and will prevent any

program from making these changes to your system. Also has another feature called Tea Timer which perpetually

monitors the processes called/initiated. It immediately detects known malicious processes wanting to start and terminates

them giving you some options. I setup this program as well to run automatically every day. Free!

 

5:  And yet I run another program called Spyware Blaster. This program maintains a blacklist as well that gets added

to your restricted sites zone in Internet Explorer thus preventing you from even accidently navigating to one of these sites.

This program has an immunize feature too. Free!

 

6:  Disable the Guest Account on your system. Very popular back door for unwanted intruders.
Go to "Start", "Control Panel", "User Accounts", select the "Guest" account, then select "Turn off the guest account".
 

7:  Disable Simple File Sharing

By default, simple file sharing is enabled on a Microsoft Windows XP based computer if the computer is not a member

of a domain. There are no permissions or passwords set on shares this way. If you do not have a firewall enabled, anyone

with network access to your PC can access these shares with no restrictions.

Go to "Start", "My Computer", "Tools", "Folder Options", "View" tab, select "Advanced Settings", uncheck "Use Simple

File Sharing", select "Apply".

 

8:  Disable Hidden Admin Shares

Windows XP Professional automatically creates a number of hidden administrative shares (such as ADMIN$ and C$).

These shares are designed for remote access support by domain administrators. By default, if you delete these admin

shares, they will be recreated when you reboot. To      disable them permanently so they will not be recreated on

the next reboot, use this utility.  Download XP_AutoAdminShare.zip
   

9:  You need to run the Microsoft Baseline Security Analyzer
"Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool that helps small and medium businesses determine

their security state in accordance with Microsoft security recommendations and offers specific remediation guidance."

Improve your security management process by using MBSA to detect common security misconfigurations and missing

security updates on your computer systems. Free!
 

10: My list keeps going I know. I run another program called TUT  - The Ultimate Troubleshooter.

Now this program helps me spot programs and or processes that are secretly running on boot up. It maintains a

database of programs, processes and start up configurations that have been know to cause problems. Shareware

 

11: There are a number of sites out there that maintain a list of known good and bad start up programs. So after you

analyze your system's start up files ( do this by going to "Start", "Run", type in MSConfig and go the last tab on the

right ). Scan through this list and see how many programs you know for sure that you installed. Al the others can be

referenced at the various sites listed below for issues.

      Castlecops      WindowsStartup       Startuplist       

 

      Here's another useful reference for you for dealing with startup programs: How to Use MSConfig

 

12: There are also some sites you can go to test how vulnerable your system is.

      Shields Up         Leak Test                   Email Security Test           Intrusion  Prevention

 

13:  Almost everyone has a wireless router at home nowadays. Turn on WPA!  Check out the router's manual and

make sure WPA is enabled. There are plenty of other security measures that can be turned on at your router to stop

almost anyone. You can even filter out PCs down to a mac address if you were so inclined. This point of access has

become a major issue in the past year because most people have no security turned on for their home wireless network.

Drive by now has a double meaning.

 

14:  Make sure you have good passwords for all your accounts on your machine. No auto logins.

 

15:  Another program I use from time to time is HiJackThis. A more advanced program when all else fails.

      HiJackThis - Also has plenty of other spyware/antivirus/analysis programs listed there as well. 

      HiJack Analysis 1      

 

16:  Another concern has to be some of the Windows services that are turned on / off by default.

The following are services that should be modified according the table below for maximum security.
 

Disable

       Alerter
       Distributed Link Tracking Client
       Help and Support (If you use Windows Help and Support leave this enabled)
       Indexing Service
       Messenger
       Net Logon
       Netmeeting Remote Desktop Sharing
       Portable Media Serial Number
       Remote Desktop Help Session Manager
       Remote Registry Service
       Routing and Remote Access
       Secondary Logon
       SSDP Discovery Service
       Telnet
       Terminal Services
       Universal Plug and Play Device Host
       Upload Manager
       Wireless Zero Configuration (If you are on a wireless network leave this enabled)

Enable

       Automatic Updates
       Background Intelligent Transfer Service
       Cryptographic Services
       Protected Storage
       Security Accounts Manager
       Security Center
       System Event Notification
       System Restore Service
 

  


      

17:  Stay away from sites that you know are going to dump on you. You know what I mean.

 

18:  There is no one program that will totally protect you. It's like going to the doctor for a flu shot and wondering why

you contracted a blood disease. There are many avenues of access into your system from the outside and all the doors have

to be monitored. This goes for Linux and Mac as well, despite what you may have heard. They are not any less susceptible to

viruses than any other OS. There just aren't as many being written for them as Windows, at this point in time anyway.

 

 

  Well there you have it. I know it seems like a lot of trouble and you're right. But such is the sad state of things in today's

world. But I know if you follow my example it will work for you as well. I really believe it's more trouble to reload Windows

than to employ some of these programs and ideas.

Hopefully I've turned you on to a few new programs and or ideas and that you'll try them out. Good Luck. Stay clean.

 

 

 

 

Hope this was informative

 

GEGeek

 

 

Digg!

 

   Archives:    Tech Site of the Week    Utility of the Week    Freeware of the Week    Tech Tip of the Week      Video of the Week     My Latest Finds