Windows PC Protection and You

Protecting your PC from malware may seem like a full-time job,
but you can greatly reeduce your risk if you follow six basic steps

We seem to be running almost quarterly update articles on how to secure Microsoft Windows from the onslaught of viruses, worms, and spyware. Unfortunately, Windows security is a moving target, and the types of problems we see at the Help Desk in 151 McKenzie Hall keep changing.

Perhaps your network access was disabled, or you simply noticed your Windows PC has become very slow. In some cases, you may notice you can connect to some websites but not others. Or, you may be unable to login to the UO wireless system, Banner, DuckWeb, UO Web Email or another SSL secure site. In many cases, this means your PC is already infected with one or more pieces of "malware" (a collective term for viruses, spyware, adware and Trojans).

The most important new security threat we see is caused by users who download pirated copies of Windows XP Professional (XP Pro) from the Internet. Aside from the fact that it's a crime to steal Windows software, folks may not realize that these pirated copies are typically barred from the Windows Update site. This means it's a virtual certainty that these PCs will become infected with all manner of viruses and spyware because the user is unable to patch any current vulnerabilities. In some cases these users had a new laptop with Windows XP Home legally licensed, and upgraded only because they thought XP Pro would be better. There's nothing wrong with XP Home for home users. We rarely encounter anyone who really needs XP Pro, except the occasional user who either needs to log in to a Windows server on campus or create file sharing with complex permissions.

Over time the "laundry list" of things a Windows users must do to stay virus-free has been growing. Below are six essential precautions you must take to secure your PC. If you are a UO user and have any questions about how to complete the steps below, please contact Microcomputer Services for assistance. Our contact information is available at the conclusion of this article.

Critical Steps for Keeping Your Windows PC Malware-free:

1. Enable the built-in Windows XP Firewall. This can be done in the Security Center control panel. If you have an older version of Windows at home, you can download a free-for-personal-use firewall called ZoneAlarm at http://www.zonelabs.com/ From there, click on "Home and Office products" and then "ZoneAlarm," where you'll be guided to their free version.
2. Keep Windows up-to-date. Get in the habit of running "Windows Update" manually by selecting it from the Start -> All Programs -> Windows Update menus. Keep running Windows Update until there are no more updates left to download. Windows 2000 and XP users can enable automatic update in the system control panel--but be aware that the automatic update doesn't always take place. Running Windows Update manually is a good idea for all Windows users. If you also use Microsoft Office, notice the "Office Update" link that's available from the normal Windows Update page.
3. Install and keep your antivirus software current. Norton AntiVirus (NAV) has a "Live Update" button that can be used to update the product. Notice the virus definition date, and keep the definitions current. Even though NAV has an automatic update, manually clicking the live-update button is still required for all program updates. Automatic live update downloads only new virus definitions.
4. Don't use Microsoft's Internet Explorer (IE) web browser for most of your browsing tasks. You cannot uninstall IE because Windows Update won't work without it. However, you should restrict your use of IE to only those websites that require it. See http://micro.uoregon.edu/security/windows/internetexplorernotsafe.html for more information.
5. Avoid risky behaviors like downloading programs, music or video that is coming from an unknown source. Peer-to-peer programs like SoulSeek, BearShare, Kazaa, and the like should be avoided.
6. Avoid instant messenger products like AOL Instant Messenger (AIM). By their design, these products sit and wait for a random connection from any Internet-connected host. Vulnerabilities for IM products are being discovered at an alarming rate.

Contact Information:

Microcomputer Services (http://micro.uoregon.edu/) is located in 151 McKenzie Hall and is open 9 a.m. to 5 p.m. on weekdays. Call them at (541) 346-4412 or email microhelp@lists.uoregon.edu UO users may pick up a free copy of the UO Windows Security CD at the Help Desk. When this CD is inserted into your CD-ROM drive it will automatically walk you through most of the steps outlined in this article, plus a few that were not mentioned here. If you suspect your PC is infected, contact us (or your local support staff) for assistance.