How to prevents viruses, ransomware, malware from infecting your computer | Hardentools

2017 is known as the ransomware year. With the level of danger, the ability to spread sophisticated, Wanacry is the most dangerous ransomware ever. And after the pandemic hit, another furnace appeared - Petya. Petya is not as prominent as Wanacry, but the consequences it leaves are not small. This shows that the swap mode is getting stronger and if you are unaware of the potential pitfalls behind every exe or exotic click, you may have to pay thousands of dollars for the hacker to be able to. Save data. yours. That's what the hacker says. And the fact is that no one is sure that the hacker will decrypt the data after receiving the ransomware

So you need to be aware of the dangers of ransomware and protect yourself from them.
So how to avoid the infection of ransomware.

First of all, you should only download software from trusted sources. And practice habits, always suspicious. Whenever downloading a piece of software from anywhere, do not run it or extract it immediately.
Just go to : http://virustotal.com/
And then upload the file to check if they have a virus or ransomware.

VirusTotal is a free service that analyzes suspicious files and URLs and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware. Virustotal is provided with data of all antivirus software in the world today such as Avast, Avira, Eset, .... And this site is currently provided with data by about 60 antivirus software. After uploading the file, this page will analyze them and compare them with the data of the other antivirus software. And the results of the file analysis will be returned. If the result is 0/60, it means that no harm is detected in your file. And if the result is 1/60 or larger then you should not install or decompress this file. and then delete it. if you really need to use that file, you should install Vitural machine ( Vmware ) and work with these file on it.

However hackers can encrypt, tamper with code to bypass anti-virus software, and the result will be your file safe. So scanning files on virustotal is not enough.

And in fact, ransomware is now more complicated, typically Wanacry, which spreads through a more complex form. Hackers will spread malicious files via email, ... and when a machine in the network accidentally infected malicious software will automatically scan the IP of other machines in that network and use the vulnerability MS17-010 / EternalBlue for spread spread throughout the system.

So if you do not download and install malicious files, you may still be infected with ransomware. And now the new generation of ransomware is infected with the same method. To stop this spread way, you can block port 443 and 137, 138, 139 and disable file sharing via SMB.

Second, beware when you click on any shorten link or stranger link. It can take you to malicious website. and when you plug an usb into your laptop, are you make sure that it is safe ?

So how to prevent the infection by the subjective sources such as security vulnerabilities of windows, usb infected with malicious code with the easiest and fastest way.

There is a tool that helps us do this so easy.

The name of this tool is "hardentools". It is created by the securitywithoutborders group.

This is realy helpfull tool. It helps us to disable all the dangerous features of Windows such as:
+ Windows Script Host: This is a feature that allows VBScript and JavaScript execution on Windows. Commonly used in common malware (such as ransomware).

+ AutoRun and AutoPlay: This is quite common, disabling this feature will help prevent exe files from executing automatically when you plug in a USB flash drive.

+ Activate UAC (User Account Control) to always ask for permission to execute.

+ Macro in Office: disable this can prevent infected files infected with malicious code macros.

+ JavaScript in PDFs.

+ Execute permissions of embedded objects in PDF.
And more.

This tool got 4,5/5 star on Softpedia. You can search on google about "Hardentools" to see more about this tool.

You can down load Hardentools from securitywithoutborders's github :

https://github.com/securitywithoutborders/hardentools/releases
(You can view source code of this tool here, too)

or from Softpedia : http://www.softpedia.com/get/Tweak/System-Tweak/Hardentools.shtml

After download and install it, just open it and click "Harden" to start disable dangerous windows feature.

And after turning off these features, your computer will become extremely secure with the common methods of infection. Just need to remember to always be suspicious and you will be alaways safe.    
                                                                                                
                                                                                                                     B-cys.blogspot.com