Saturday, September 11, 2010

How To: Windows Maintenance

Many people ask me to "fix" their computer, and I am always willing to do so. It is not that I can preform miracles, I have just learned and memorized the necessary steps. Well today, I am going to share these steps with you.

Many tasks brag about being doable in three steps and this one is no different:
  1. Remove
  2. Clean
  3. Update

Remove

Begin by removing anything that is unnecessary. There three areas on which to focus:
  1. Applications
  2. Files
  3. Start-on-boot entries
Uninstall any unused applications. They use disk space, increase your security risk (because they could contain an exploitable flaw), and will slow down the cleaning and updating phases.

Delete unused and unnecessary files. This especially includes temporary internet files. Where temporary internet files are stored varies with the version of Windows. However, (I believe) there is a universal way to delete them in "Internet Options" of the "Control Panel". Also, delete any unneeded/unused icons on your desktop. Having these on your desktop is akin to having a messy room. Similar to applications, unnecessary files use disk space, increase your security risk (because they could contain malware), and will slow down the cleaning and updating phases.

Many application want to start on boot, but the only non-operating system, non-hardware related application that I allow at boot are related to security or file synchronization (by which I mean Dropbox). There are two places in the registry that contain start-on-boot entries. To edit the registry, enter "regedit" at the run dialog, which can be accessed via the keyboard shortcut "Windows-R".
  • HKEY_CURRENT_USER -> Software -> Microsoft -> Windows -> CurrentVersion -> Run*
  • HKEY_LOCAL_MACHINE -> Software -> Microsoft -> Windows -> CurrentVersion -> Run*
("Run*" means any folder beginning with "Run".) You should delete any registry key (which is what the contents of these registry folders are called) of a program that does not need to start on boot. Be especially on the look out for malware that is set to start on boot. How do you know what is malware, what does not need to start at boot, and what does need to start at boot? Google. That is basically how I figured out which keys are necessary, which are malicious, and which are benign. Some programs (most notably in my mind...QuickTime) really want to start on boot but have no reason to do so. If you delete its registry key, it will reappear there (eventually). I know of two solutions for this, but one of them will be discussed in the "clean" phase. The solution from this section is to leave the registry key, but disable it in the "Startup" tab of "msconfig" (which can be accessed via the run dialog). You also need to check the "'Windows/Start button' -> (All) Programs -> Startup" folder because, as its name suggests, also contains start-on-boot entries.

Clean

In this phase, we are cleaning and securing your computer of malware. I recommend the following security software:
  1. Anti-virus: AVG
  2. Anti-spyware: Spybot Search & Destroy
  3. Anti-"rest": Malwarebytes
All of these programs have free versions. If you have another anti-virus program (especially one that you paid for), just keep using that one. Otherwise, install the programs that you do not have. Update them. Then, have each one, one at a time, run a full system scan. Remove any problems that they find.

Spybot Search & Destroy also has two other important features. It has an "immunize" feature by which it secures your browsers in many ways. You have to immunize after each update. The other feature monitors registry changes. This is the other way to prevent programs from recreating their start-on-boot entry in the registry. Spybot notifies you if a registry change is requested. If it is a program wanting to recreate its start-on-boot registry entry, then you check "Remember" and click "Deny".

Update

Now that your computer is quick and clean, we need to keep it that way. Update all the programs that can be updated. We updated the security software in the previous section, so they should already be at their newest versions.

The two most important programs to update are Windows and your browser. Internet Explorer updates are found with Windows updates. Firefox and Chrome have menu entries where you can trigger a update process.

Other common programs that can be updated are
  1. Adobe PDF Reader,
  2. Apple Software (such as iTunes and QuickTime), and
  3. Java.

Conclusion

I am sure that you are happy that your computer is now malware free. Did you know that I am also happy? Sure, I am happy because you are happy, but I am also happy because there is one less computer ruining the internet. Computers with malware are responsible for all of the bad things that happen on the internet, including identity theft, spam email, and DDoS attacks. Thanks for taking the time to make the internet a better place.

No comments:

Post a Comment