Category: Virus

The Best 3 Free Tools for Desktop Support Professionals

Paul2 Replies

Display Driver Uninstaller

Display Driver Uninstaller (DDU) is something that every desktop professionals should have mainly on computers that may have Graphics cards that are required for the job such as Nvidia or even AMD cards.   You will find that every so often some driver updates causes a problem and this is a very good tool to uninstall the driver completely.     I will say this is open sourced and is very good for every day support when you might need to use this little utility for just those occasions.   You will find this free tool will be used more and more and you can even keep it on a USB drive as a way to use it offline when you need to do use it.   It’s very small and won’t need a big USB drive but this is only one of the few that you might have available to use on your USB drive.

Portable Apps

Portable Apps has so many portable applications that it would be hard to talk about all them.   However there are several that I will talk about that you can install on the USB drive.  Depending on the size of your USB portable drive you have will depend on what you might want to install on the drive.   However if you have a big enough USB drive, you could in theory install all available applications from Portable Apps and then you would be set.

  • Revo Uninstaller Portable — Great for those pesky programs that might not uninstall all the way or when something goes wrong with uninstalling programs.
  • HackthisPortable — Good for looking for viruses, and Trojans that might be on the system and gives you a run down on what might be running on any given system.
  • McAffeeStingerPortable and Kaserpky Task killer —  These are great apps for programs that you have issues with when they want to keep running even when you need them to not be loaded or running on a system.
  • CPUZPortable and GPUZPortable — great ways to find out even more about finding out what drivers you might need for GPU and looking at what type of CPU might be on any given system.  In case you needed to know.
  • Microsoft Safty Scanner — Great portable app that you can use on any Windows system in case you might have a Virus infection and is being blocked from being download or run locally.
  • CCleanderPortable —  Another great applications to use to clean the registry and other places in Windows that might be causing problems and helps fix some of the registry problems you might have.

As you can see there are several portable apps you can install on any given USB drive and have ready at moments notice if you ever need it.  So this is great tool that you can use for what ever you might come your way.

WinDirStat

WinDirStat is something that helps me find what might be hogging a system drive.  It is great and showing graphically what could be taking up the space of a hard drive.  It is portable and can be put on USB also but can also be download and used for many different reason but mostly when you need to find out why the hard drive is so full and how what you can delete to create space.  So this is something most Desktop Support people will use at one time or another.   I have used this several times in the past to find files that can be deleted, you just have to be careful what you delete and never touch anything in the Windows Directory or Program Files directory unless you want the system no run properly when you reboot.

These are what I have on my USB just in case I need them but these are only a few of them because there are even more tools that I use when I need them however this would start you on the right to having a powerful USB drive when you might need it.   Do you have a favorite tool that you want to let everyone else know about?  Why not leave a comment and tell people about it.

Don’t forget to subscribe to keep updated on any new posts.

 

 

Why I uninstalled Microsoft Windows 11 Preview build?

Paul
Windows 11 — Isn’t the great!

I reinstalled Windows 10 and Deleted Windows 11!

I don’t know about everyone else but after my week long expedition into Windows 11, I just couldn’t handle the speed issues of the Windows 11 and the encryption.   I know it isn’t worth my time after all that to down grade to Windows 10 but I I felt it wasn’t going to get any smoother than that.  I also would of had to have deleted the partition anyways since it was locked to secure boot and UEFI.  I really didn’t want to try to convert it back to MBR.   I got my trust Windows 10 DVD and started it up and found the partitions I wanted to delete and then I reinstall Windows 10.   I will say that after wiping the hard drive and reinstalling Windows 10, and turning off all the Encryption crap and just booting into Windows has seen my load times go back to normal.

Windows 11 Problems

First off the main problem I had with Windows was the need to encrypt the Hard drive and I was using a NVME which should of been way faster than a standard SSD or Hard drive to boot up.   That wasn’t the case, I’d see the swirling load screen on my system for several seconds and then it would finally boot.  Due to the encryption that Microsoft says is required to run Windows 11, it just doesn’t cut it for me.   Even playing games like Minecraft was screwy and that isn’t even taking up that much memory at the most 2 GB or if you know how to do it 4 GB.   I’d play with Minecraft and the system would take forever to load up the next part of the map or even play Microsoft Flight Simulator 2020 and It wouldn’t be sluggish there also.

The Start Menu

This was something that was just annoying, I think Microsoft wanted to look like an Apple device and bring the apple guys over because of the look.  I can’t understand why you would prevent people from reverting back to the old Windows 10 setup.  I can only wonder what people will do to find out what they are running and if it will actually be a good idea to keep the start menu in the middle of the screen.  Some people have these really long screens and it might help them.  I personally would like to move the taskbar anywhere on the outside of the screen, top or maybe right or left of the screen.  You wouldn’t be able to do that either.   Which will make people really mad.

I can’t see this being all about security

It just can’t be about viruses and malware or even the recent months of ransomware attacks that have been happening in the past year, due to the Covid19 situation around the world.  I have talked about how Windows will ultimately fail and we will see virus writers come up with some good viruses and malwares to compromise the Secure boot and even the TPM that is trying to be forced to be used by Windows.   I am sure it isn’t over, and if Microsoft isn’t going to change, we’ll see people leaving left and right to go to operating system that are much less restrictive and more open such as Linux.  In the end, I went back to Windows 10 because of the speed and performance, and I am not even thinking about Windows 11 until I find out what they will require when the system is finally released.   This will be a big deal to some but me, I am not interested in the so called security features of Windows 11.

 

5 portable Apps that will save your time on your computer!

Paul
Picture by Gerd Altmann on Pixabay

Give it a chance

So you have a client who has some computer problems, and you don’t know what to do?  I am here to help you with that problem.  It can’t be easy for some to know exactly what you might need for those uncertain times.   There are multitude of problems that you’ll see in your computer technician job that will need to be resolved.   Here is a little bit of a list of apps that I use on a daily or weekly process to repair and upgrade systems.  Some of these will help me fix problems or even problem solve the answer.

Sysinternals Suite

Process Explorer

This bag of applications brought to you by Microsoft is the cream of the crop.   If you haven’t downloaded the who suite of tools from sysinternals.  You really should  do it now.   I really like the process monitor and process monitoring tools to help me see what might be wrong with a system.   It’s got a whole lot of apps to use when you need to either kill an app.   I could go on and on about this pack of apps from Microsoft but it is definitely a grab bag for me.  This is something that I have on my USB for when I might need it.

CloneZilla

Clonzilla Live CD/USB

Another great app that you can load on your USB and use it when you need to copy partitions or even whole drives from one drive to another.   It is a free utility that you can use on any system.  You’ll just need to create a bootable USB.   I use the app call YUMI to create a multiboot usb and put all my favorite and important ISO on the USB for when I need them.

Portable Apps

Portable Apps

This is another one that I put on my USB just to be cautious and know that I don’t have to use anything on a system that I might not trust. They’ve got a slew of apps that you can use for everything that you might need. What I like about portable apps is they even have antivirus and password generators. They have a lot of what I will use from time to time because they just make it easy to scan an infected system from my usb without having to load the antivirus before boot. They have some great tools all around and You should check them out.

RevoUninstaller Portable

This is great utility to remove all the crap that any system that you buy from a store or even from Amazon will be removed without much effort from you.  You can run this off a USB or even install it and remove all the stuff that gets loaded on from the Acer, Dell, or other OEMS.   It helps me out really well because I have seen clients systems speed up by removing all the annoying programs that aren’t even being used.

Windows Offline update (WSUS)

Windows offline Update (WSUS)

Let’s face it, if your client hasn’t updated their system for quite some time or the system in question doesn’t have a way to update because of no internet this is the best solution for you.   Download the updates and put it on a USB.   Most of the time, it will be a good around 20gb or 30gb depending on which windows updates you get from Windows 7 to Windows 10, you will have each one being like 3gb or 4gb a piece.   It actually helps me when it comes to updating a client’s computer without having to wait for it to download the updates.   I can just update and reboot.  This has been a great time saver for me when it comes to being a computer technician.

What’s your favorite portable app or even just an app that you use on a regular basis.  I’d like to hear what yours is and why.  Why not leave a comment and tell others and help others who might not know of a good app to use.

This is why Windows 11 Will fail miserably with Security!

Paul
Photo by TheDigitalWay on Pixabay

Microsoft’s bad Idea

“Microsoft claims that their telemetry shows that they have seen up to a 60% reduction in malware when TPM-enabled features like Windows Hello and BitLocker encryption are used on supported devices — it’s unclear why that would be at all true, unless it’s correlation and not causation”   Steve Gibson (Security Now #825 Podcast)

I dare say it’s a terrible idea.  I have been doing some major research into secure boot and TPM and everything I’m seeing is a little bit worrying to say the least.  Even listening to others talk about what Windows 11 can do or can’t do seems quite obvious.   Afterall, I’ve even had my son get information on how to get around the security requirements for Windows 11 and install Windows a boot logged copy of it onto a USB just to play around with it.   I am quite concerned with this also because it seems Microsoft trying to force users onto a proprietary system.  Microsoft is only doing the complete opposite of what they claim.

Scrutinizing the Boot Process

The goal of a hardware root of trust is to verify that the software installed in every component of the hardware is the software that was intended.  — Jessie Frazelle

The problem with trust is that we should never trust anything and always question it.   How can a system trust that the software wasn’t installed as intended?   These are the basic problems with the premise of a TPM and even the Secure Boot process.

The goal of attestation is to prove to a third party that your operating system and application software are intact and trustworthy. — Jessie Frazelle

The problem with this is even more obvious to the security of a system.   Attestation can’t always witness or even prove a program doesn’t have the right to be run or used in boot up.   Unless Attestations can be programmed to boot Windows a certain everytime in hardware, we will always have the virus developers skirting around the boot process.

Some members of the technology industry have raised the concern that the well-documented, modern, high-level language interface provided by UEFI makes it easier to compromise a platform [12]; that the ability to add modules
and applications to the boot process could compromise security.

Richard Wilkins and Brian Richardson

I wouldn’t call some being a small amount of people but a large amount.  I’ve heard time and time again this idea and it seems to be a growing concern with UEFI and how virus writers / developers will overcome UEFI and be able to install viruses / Malware around the the Windows system to be able to do what they have always been able to do.

Security through Obscurity

Microsoft seems to have take this approach as  their next step through the security door and it’s seems quite evident that they’ve not learned their lesson from others.  I say that with the understanding that Apple tried this with their systems and they still have virus writers who can compromise their system.  It’s not like the security community doesn’t want all operating system to be secure, in fact most would want it so badly because we wouldn’t have to worry as much about the viruses or malware to being on peoples systems.   Let’s not forget we still have users who will do dumb things and that much will always be true.   There is always going to be need to teach the company users, how to be secure while using the company’s computer(s) or laptop(s).

Return-Oriented Programming

Return-Oriented Programming is a security exploit technique used by attackers to execute code on their target system. By obtaining control of the call stack, the attacker can control the flow of existing trusted software running on the computer and manipulate it to their own ends. — Secureteam UK

The ROP(return-oriented programming) has been a constant problem for several years now and will probably grow even more.   I say that not lightly because the Virus writers / Developers will have to start to use it more and more often and even find other exploits techniques to get around the Secure boot and UEFI protocols.  This is often called the Blindside attack and is most often used with IOT(Internet of Things) devices but can be used with Windows operating systems and will become more and more useful to them in the future, I suspect.

Not unlike the previous tutorial we will be crafting [ROP] the parameters to Windows API calls on the stack and then executing them.  — FuzzySecurity

As you can see, there is already programming that people can do with Windows 7 API and that’s been out for quite a while.  I am unsure when someone did this little experient and talked about the vulnerability.  This vulnerability is available on Windows 7.   It could very well be used on Windows 10 or even Windows 11, I suspect.

Mitigation

I will say there has been talk about mitigating this and other attacks but it requires a constant updating of the operating system and CPU (Secureteam UK).   As you know CPU manufacturers will take years to update a problem just because people will not want to go buy a new cpu or even a new computer until the old computer isn’t able to run or something actually breaks in the system.   I know Virus writers / developers will always be having to be a head of Windows updates and that might be what they are already doing.   Looking for vulnerabilities in the UEFI and Secure boot area.  I suspect they are already doing that now.   I can’t say if they’ll succeed but I know the virus writers make so much money on ransomware and getting those companies systems compromised.   So who really wins?  I would hazard a guess no one in the end, the security that Microsoft is trying to force will still fail miserably and I will be there saying “I told you so!

 

 

Is there a Difference between AntiMalware and Antivirus?

Paul

Photo By TheDigitalArtist

Is there a Difference?

In any system, we’ve all asked that question once or twice. Even I’ve asked that question at least once and I am sure it is a really slippery slope when it comes to defining if there is or isn’t a difference. We can analyze each one in parts but still come back with a question because each has its benefits in today’s economic atmosphere.    According to Wendy Zamora:

A virus is a piece of code that is capable of copying itself in order to do damage to your computer, including corrupting your system or destroying data.

So we can see a virus is specially designed code to copy itself and to do some really nasty things in your system but is that all it does?  Let’s dig a little deeper on this topic.

AntiMalware Vs AntiVirus?

When you hear Antimalware?  Does it bring anything to your mind or give you any ideas of what it is that they are doing or is it just a word you’ve heard?  According to Panda Security:

Antimalware and antivirus are not the same. They complement one another to act as the highest level of defense against malicious software, along with healthy online habits.

As you can see both of them aren’t the same and yet they do a lot to help each other out because they make what most people would call a layered security.   They help prevent some of the low profile infections that we seldom hear.    These programs create what I call a layered security.  Each one works to prevent all sorts of infections in a computer system and also helps keep your data safe from ransomware.

What should I do?

This is a common question when it comes to how to protect your system from all these different threats.   I personally use AVG Internet Security for my Home system and Malwarebytes also to help protect my system.   I really like AVG because it was simple to use and they have a great free version of it to download and use.  Another good one that I like to use is Superantispyware as a way to check my system from time to time and make sure it doesn’t see anything that those other two might miss.  Even if you only use one of each, you are far better off than just waiting for that infection to happen or that data loss to happen.   It can be quite troublesome if you don’t protect yourself and your data and keep the antivirus and antimalware up to date.

Do you have a favorite Antivirus or Antimalware?  Why not leave a comment and tell me why you like your choices?  I’d love to hear what you think of AVG, Malwarebytes or even SuperAntiSpyware?