Computer security policy knowledge

In view of the current situation of computers, we hope that the majority of Internet users can effectively prevent their computers, reduce the probability of computer poisoning, and make their computers a source of virus transmission.
1. anti-virus software, firewall, and system patches must be minimal.
Do not blindly trust some Trojans to choose anti-virus software, such as rising, Jiangmin, Kingsoft, Kabbah, and Norton. Firewall is also essential. Although some people may think that I am a personal user, there is no need to install a firewall and think that it will not be attacked by hackers, you will be wrong, firewalls prevent hacker attacks on the one hand. On the other hand, firewalls are generally used to check the system's external connections, which is a hindrance to the popular trojan downloads, you can immediately block them from accessing external connections to download more viruses. System patches are also required. Do not think that system patches will slow down the system. Currently, most viruses are spread through system vulnerabilities. Therefore, system patches must be used, even if it has an impact on the system speed, it is much lower than the cost of using a virus to intrude into a computer. In addition, the anti-virus software and firewall should be upgraded in a timely manner.
2. Disable automatic playback. Do not double-click or right-click to open the Mobile storage, and do not give the USB flash drive virus a chance.
At present, the virus is mainly transmitted through a USB flash drive, so we must resolutely block this transmission channel. The following provides some methods for your reference.
(1) disable automatic playback: Run "gpedit. run the msc command to find the "manage template" function under "Computer Configuration" and "user configuration" in "group policy, open the "Disable automatic playback" setting in the "System" menu, select "enabled" in its properties, select "All Drives", and then click "OK" to save the settings.
(2) Lock some Registry Permissions: Start-run-enter regedit, expand and ask, www.2cto.com HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Explorer \ MountPoints2, right-click this key, permission to deny the Administrator's permission.
(3) some third-party USB flash drive virus immunization tools can be used to immunize the system.
Such as super patrol U disk Virus Immune device: http://update3.dswlab.com/antiautorun.zip
(4) how to open a strange USB flash drive: Do not double-click or right-click a new USB flash drive to open it. The correct way to open it is to click the folder button below the menu bar (search for the button on the right) access the USB flash drive from the resource manager on the left
3. Lock time, preventing virus modification time
(1) Set permissions for time modification
In the Start Menu, run gpedit in the run box. msc "command, in "Group Policy", find "Computer Configuration"-"windows Settings"-"Security Settings"-"Local Policy"-"User power assignment", and find the user who changes the system time. delete all
(2) Use the tool lock time
You can use the 360 timeprotect tool to lock the time and prevent virus modification.
4. Precautions for system reinstallation
Pay attention to the following points when installing the Machine System: Install the anti-virus software firewall before accessing the internet, upgrade the anti-virus software and firewall immediately after accessing the internet, and install system patches.
If the system is reinstalled after the virus is poisoned, install the antivirus software into the system partition. Do not double-click or right-click to open another partition, and then perform the following operations: Double-click my computer, tools, Folder Options, view, click to select "show hidden files or folders" and clear the hooks before "Hide protected operating system files (recommended. When you are prompted to confirm the change, click "yes" and then click the folder button at the bottom of the menu bar (search for the button on the right) to go to another partition from the resource manager on the left to find whether there is autorun. inf. If you double-click it to open it, check which exe file is pointed to, find it, and delete it.
We sincerely hope that everyone will enhance their awareness of virus prevention, prevent their computer viruses and even become the source of virus transmission.