Many (most people) believe that the virus can be completely cleared if the operating system is re-installed. However, I do not know that after the operating system is re-installed, due to security settings and patch installation failure, the virus is most likely to be infiltrated, therefore, some necessary supplementary measures are critical.
1. Do not rush to access the network
After Windows is installed, do not immediately connect the server to the network, because the server is not installed with various patches, there are various vulnerabilities, it is very easy to be infected with viruses and intrusion. In this case, you need to add a patch and restart and then connect to the Internet.
2. patch the system and install anti-virus software
Install the Windows XP SP2 patch. After installing the system, you must install the anti-virus software and update it to the latest version.
3. Disable System Restoration
System Restoration is a function in Windows ME, Windows XP, and Windows 2003. It allows us to restore the system to a certain time state, so that we can avoid reinstalling the operating system. However, after executing system restoration, some people found that all the other D and E disks except drive C have been restored to the previous state, and all the files saved in the results have gone, causing serious losses!
This is because the system restore operation is performed by default for all partitions on the hard disk. Once the system restore operation is performed, the data in all partitions will be restored. Therefore, we must press the Win + Break Key, click the "System Restore" tab, cancel the "Disable System Restore on All Drives" option, select disk D, and click the "set" button, in the displayed window, select the "Disable System Restore on this drive" option.
Restore and close the system on other disks in turn. In this way, once the system is unstable, you can use the system restoration tool to restore the system on the C disk, but there is no problem with the files on other disks.
4. Password the Administrator
Some may use a system installed with the universal ghostversion downloaded from the Internet, or a Windows XP unattended installation system installed with a CD, when using these methods for installation, it is very likely that you do not have to specify the Administrator password, or the Administrator password is the default 123456 or empty. This password is quite dangerous. Therefore, after installing the system, right-click "my computer", select "manage", and then select "Computer Management (local)" on the left) → System Tools → local users and groups → users ", select Administrator in the right window, right-click, and select" Set Password ". Click "continue" in the window to set the password for Administrator in the window.
In addition, select "new user", set the user name and password, double-click the new user, and click the "affiliated" tab to select all the groups (if any, click the delete button below. Click "add", click "advanced" in the window that opens, click "Search now", find the PowerUser or User group, and click "OK" twice, add this User to the PowerUser or User group. Log out of the current user and log on to the new user. The system is much faster.
5. Disable default sharing
After Windows is installed, some hidden shares will be created, which are mainly used by administrators to manage systems during Remote logon. However, this is rarely used and is not very secure for individual users. Therefore, we need to cut off the sharing: first create a disshare. bat file under d: and write the following statement in it:
@ Echo off
Net share C $/del
Net share d $/del
Netshare ipc $/del
Net share admin $/del
Next, Copy d: disshare. bat to the C: WindowsSystem32GroupPolicyUserScriptsLogon folder. Then press Win + R and enter gpedit. msc, expand the "user configuration> Windows Settings> script (login/logout)" folder in the window, double-click the "login" item in the right pane, and in the displayed window, click the Add command and select disshare in the C: WindowsSystem32GroupPolicyUserScriptsLogon folder. bat file.
After completing the preceding settings, restart the system to automatically disconnect the default shared channel for Windows XP. If you have more hard disks, add them under net share d $/del, such as netshare e $/del and net share f $/del.