Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: how to avoid getting rootkits

27 Sep 2010   #1

Win 7 Ultimate x32
 
 
how to avoid getting rootkits

I have seen online and on this forum to disable UAC using Windows 7, but how does one protect against rootkits - it uses admin permissions.

Also, if one disables UAC using Win 7, how does one verifies any incoming 3rd party applications and able to scan them using antiviruses/antispyware...etc.
I have seen a program from Hakin9 previous article where a hacker can create a blank Microsoft certificate using C++.


My System SpecsSystem Spec
.

27 Sep 2010   #2
7mm

Windows 7 Pro. 64 Bit + Back|Track 5 (Both Updated)
 
 

Don't know the BEST manual way.... but, try not to trust anything but the expert...., install a good Antivirus with solid rootkit protection. For me Avast 5 Free should be more than enough for such job. Also, install a good Firewall for catching things that missed by UAC, say nothing's better than Comodo Firewall. Good Luck!
My System SpecsSystem Spec
27 Sep 2010   #3

Windows 7 Ultimate x64
 
 

I would disagree with disabling UAC on Windows 7. People who disable it are simply annoyed by it. Others of us, have no trouble with the occasional pop-up here and there and leave it enabled.
My System SpecsSystem Spec
.


27 Sep 2010   #4

Windows 7 & Windows Vista Ultimate
 
 

Hi, User001.

Certainly there are the standard recommendations to keep not only Windows software updated but third-party software updated as well, have up-to-date anti-virus software and a software firewall -- preferably a router as well. I agree that UAC should be enabled. A UAC prompt is one of the first signals that a program wants to run.

There are two additional important security measures. One is to use a limited user account, not Admin. The other is to keep DEP on. (Data Execution Prevention (DEP) is a security feature that helps prevent damage from viruses and other security threats by monitoring your programs to make sure they use system memory safely.)
My System SpecsSystem Spec
27 Sep 2010   #5

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 

Some good reads on Rootkits

Quote:
But you don’t have to be at the mercy of rootkits. You can be prepared to deal with these nasty pieces of software should they show up. And even better, you can keep them from happening in the first place.
Read More:

Five tips for dealing with rootkits | Five Tips | TechRepublic.com

Also: 10+ things you should know about rootkits

http://blogs.techrepublic.com.com/10things/?p=416
My System SpecsSystem Spec
27 Sep 2010   #6

Win 7 Ultimate x32
 
 
rootkit

According to the techrepublic article: I believe I had a #7 & #8 in my Win XP Pro SP3.
I ran Sophos & detected them, but does not know how to delete them.
What are the best ways to get rid?
I was thinking of getting hands on a clean PC running XP Pro & copy its entire registry and replace them in my PC.
My System SpecsSystem Spec
27 Sep 2010   #7

Windows 7 Ultimate x64
 
 

Do not disable User Account Control. UAC prompts the user if you allow or disallow programs to be executed and allow/disallow them to make changes to your computer. If you disable it, you'll never know what are the changes that are going to be made by applications to your computer. I suggest you set it to the default setting or to the max setting.

To avoid rootkits, you must scan your PC from time to time with GMER.
My System SpecsSystem Spec
28 Sep 2010   #8

windows 7 professional & ultimate 64bit laptops
 
 

Quote   Quote: Originally Posted by Francis93 View Post
Do not disable User Account Control. UAC prompts the user if you allow or disallow programs to be executed and allow/disallow them to make changes to your computer. If you disable it, you'll never know what are the changes that are going to be made by applications to your computer. I suggest you set it to the default setting or to the max setting.

To avoid rootkits, you must scan your PC from time to time with GMER.

thank you
My System SpecsSystem Spec
28 Sep 2010   #9

Win 7 Ultimate x32
 
 
what about using Run as Admin

I was thinking, I read from a Win 7 text, the author suggest to bypass UAC, use Run as Admin.

Is using Run as Admin the same as UAC?
Can I check the Detail before I either Cancel or Install?
If I can Cancel using Run as Admin, where is the file stored and can I scan it using Antivirus before install or delete it if the file was detected as corrupt/infected?
My System SpecsSystem Spec
28 Sep 2010   #10

windows 7 professional & ultimate 64bit laptops
 
 

Quote   Quote: Originally Posted by francis93 View Post
do not disable user account control. Uac prompts the user if you allow or disallow programs to be executed and allow/disallow them to make changes to your computer. If you disable it, you'll never know what are the changes that are going to be made by applications to your computer. I suggest you set it to the default setting or to the max setting.

To avoid rootkits, you must scan your pc from time to time with gmer.

gmer gives me errors?


Attached Thumbnails
how to avoid getting rootkits-capture.jpg   how to avoid getting rootkits-capture2.jpg  
My System SpecsSystem Spec
Reply

 how to avoid getting rootkits




Thread Tools



Similar help and support threads for2: how to avoid getting rootkits
Thread Forum
External HDD with possible rootkits System Security
Question about Windows 7 x64 and Rootkits System Security
Another major infection; Rootkits! System Security
AVG scan found 50 Rootkits problems. System Security
14 Rootkits, Removal Help Needed System Security
Dealing with Rootkits Security News
Windows vs. Rootkits. The root(kit) of all evil. Security News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 09:30 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33