6. Configure your operating system properly

Configure Windows so that it displays all file extensions, including those of known file types. Note that even with this option set, Windows will still hide the extensions of a few select file types, such as .shs and .pif. To circumvent this, you can delete all occurrences of the string “NeverShowExt” (without the quotes) in the registry using regedit.exe. Be very cautious when you edit the registry! Do it only if you know what you are doing!

Most Windows versions come with the Windows Scripting Host (WSH), which allows for execution of VBS (Visual Basic Script) and JS (JScript) files. These files can contain malicious code.

You can prevent the accidental execution of script based malware by setting the default action for VBS/VBE and JS/JSE to “Edit”, so that such files will be opened in Notepad. If case you really want to run such a file, then you will still be able to right-click on it and select “Open”.

If you are not on a LAN (local area network), disable file and printer sharing in the Network options of the Control Panel. If you need to have file and printer sharing enabled, make sure that you are sharing only the items that really need to be shared. Never share entire drives or important folders like the Windows folder, and do not allow write access unless you have to. It’s also of paramount importance to set strong passwords for the shares. Passwords should be as long as possible and consist of a mix of letters, numbers, punctuation signs, etc.

Take a look at PC Flank.

7. Preserving your privacy

Never, ever :

• use the “Unsubscribe” feature of spam emails or reply to spam mails because by doing so, you confirm the validity of your email address and the spammer can keep on sending you unsolicited commercial email, which you probably don’t want.
• The proper way to deal with spam is to delete it and, if you wish to do so, complain about it to the sender’s Internet Service Provider (you need to analyze the message headers to determine the ISP, do not rely on the sender’s alleged email address which is probably forged or fake in most cases).
• select the option on web browsers for storing or retaining user name and password.
• disclose personal, financial, or credit card information to little-known or suspect web sites.
• use a computer or a device that cannot be fully trusted.
• use public or Internet café computers to access online financial services accounts or perform financial transactions.

8. Be careful with extensions

Pay attention to files with multiple extensions. Generally, the last extension is the relevant one. For example, a file named

hello.mp3.exe

is an executable program (.exe) and not a MP3 file!

However, that if you are using Outlook Express and see a file with three extensions, Outlook Express may consider the second extension to be relevant, so that a file named

hello.mp3.exe.jpg

is an executable program (.exe) and neither an MP3 file nor a JPG file!

That’s why it’s important to follow the procedure outlined in section 4 for opening unknown files. You can’t go wrong by simply ignoring any file with more than one extension.

• Set the boot sequence to C: first in the BIOS. This can be “C only”, “C,A” or whatever you want as long as C: comes first.
• Regularly back-up your data.
• Install a good firewall. I use NetVeda Safety.Net free firewall. Its performance is quite outstanding and it offers application control and content filtering as well. This highly capable product deserves to be better known and experienced users should definitely put it on their short list.

9. If you still get hit by a virus

RELAX!

Very often users will do more damage with panicked recovery attempts than a virus or Trojan horse would have.

Go to these sites to ask for help.
alt.comp.virus on Google
alt.comp.anti-virus on Google

Protect Against Spyware
Microsoft’s anti malware methods

BorderWare Technologies specializing in Email compliance softwares have been around the messaging security scene since 13 years ago. They boast of 19 different awards and reviews from professional sites all around the net. From what I understand, BorderWare is more focused on information security of emails. Solutions involve mostly on email security and anti spam. As an ex-employee of a MNC, I can understand why monitoring emails and messages in & out of the company is so important.

Not all employees in an organization is tech-savvy. They may not realize when they have received messages that are spam and not work related. The mail may have links that will bring them to porno or gambling sites. So it’s really important that mails should be scanned for bad links and keywords before reaching the receiver. This process will save the company a lot of time.

Attachments are usually the cause of malwares and viruses. I believe that every email system in the world should have an excellent attachment scanning software to discover and eliminate bad attachments like BorderWare’s MXtreme Mail Firewall. The software solution can also check not only incoming but outgoing mails as well.

BorderWare has other Messaging Security Products that are more specific like firewalls for servers, voip, video conferencing and other appliances. The products will benefit all companies alike by reducing unwanted problems and increasing productivity and efficiency. Check out the products section.

* sponsored review *

BorderWare
Internet communications made safe

Below are the 9 steps that I have taken to completely protect my computer. Sometimes, users themselves don’t realize that the virus was released when they executed a file. So here are the precautions to take make sure that everything is completely taken care of.

1. Install, use and update anti-virus software

Anti-virus software will prove to be very helpful in defending your computer against malicious code - provided it’s used correctly. These are recommendations for you to get the most out of your anti-virus program:

• Choose a good anti-virus program.

A list of anti-virus programs and their reviews is available here. This page also explains what to focus on when selecting an anti-virus solution and how to interpret test results. Also take a look at this page, which explains why you shouldn’t blindly follow the recommendations of your favorite PC magazine: Computer Magazines and Virus Testing.

• Keep it up-to-date.

Anti-virus programs can only protect you from what they know about. Since new viruses surface every day, it’s very important that the antivirus program updates itself regularly. The free antivirus that I use updates itself daily.

• Use it!

An unused anti-virus program is obviously useless. Use your anti-virus program to scan new files you just downloaded or to do routine scans. If you are not very knowledgeable about computers and viruses you may benefit from using the memory resident scanner. If, however, you know what you are doing, then you probably can live without it.

• Don’t rely on it.

Modern anti-virus programs detect malicious code quite reliably but it is very important to remember that NO anti-virus program is perfect. No anti-virus program on Earth can compensate for imprudence or unsafe software. No anti-virus program will ever detect all viruses all the time.

• Use it intelligently.

Some anti-virus programs offer some questionable features and gadgets. You shouldn’t use a feature just “because it’s there”. For example, AV scanner certification messages are essentially useless and only serve to advertise AV software.

2. Keep your operating system and programs patched

You are strongly advised to apply all security-related patches for your software as they become available. You can use the Windows Update and Office Update sites to keep your system up-to-date. Note that they work with Internet Explorer only. You may have to monitor your Internet security warnings in order for them to function correctly.

3. Consider using alternative web browser and email software

Microsoft’s popular Internet Explorer and Outlook Express programs have been known to be somewhat “buggy” and are often targeted by malicious “programmers”. You may benefit from using alternative software. Here is a list of alternatives:

Browsers:
Mozilla Firefox
Opera
Email programs:
Mozilla Thunderbird
Opera

Note that security holes may be discovered in these programs as well (though probably less frequently), so it’s a good idea to check for updates regularly. You’ll be able to import your IE Favorites to most of these browser alternatives.

Consider using IE only for downloading Windows updates and critical security patches for your particular version of Windows.

4. Be cautious when reading email with attachments and downloading files

Never, ever :

• open email attachments from someone you don’t know
• open email attachments forwarded to you even if they’re from someone you know
• open unsolicited or unexpected e-mail attachments until you’ve confirmed the sender actually meant to send them. If you know the sender and you are absolutely sure they intentionally sent the attachment, then scan it with an up-to-date virus scanner before opening it.
• Never pay attention to virus warnings or even forward them unless you subscribe to a serious virus newsletter.
• Never obtain software from “warez” sites or peer-to-peer programs like Kazaa. Get it from known, trusted sources only.

Note: Some files can best be tested by first invoking their associated application and then using the “Open” function of that application. For example, picture image files such as JPG and GIF can be tested by invoking the picture viewer of your choice. When such files are received as email attachments or downloaded, they should first be saved to some test or download folder (you can create one for this purpose). Then you can use your picture viewer application to safely open the file. If there is something amiss with the tested file your viewer will complain and you can just delete the file.

Similarly, sound files such as MP3 and WAV can also be tested by first invoking your player of choice. Text (TXT) files should also be opened by first invoking Notepad. Never double click on these files while in Explorer or in your email client until they have been tested in this way. There may be a hidden file extension.

5. File formats

Stop using DOCs (if at all possible). Instead, use pure Rich Text Format for your documents, because that doesn’t support the macro language. There’s a caveat to this unfortunately. Some macro viruses intercept File SaveAs RTF and save a file with a .RTF extension which actually contains a DOC format file! So it needs to be real RTF. Tell the people that you deal with that you would rather they sent you RTF or CSV (Comma-Separated Variable) files rather than DOC or XLS.

IT Security
Protect my pc