3) Windows OS & PC Security Issues

Question 1

Windows Symptoms: Slow Performance

Answer 1

Task Manager > Check for high CPU usage
Windows Update (latest patches/drivers)
Check for available space & defrag
Laptop (Power saving mode?)

Run anti-virus/anti-malware (especially if unrecognized processes running)

Question 2

Windows Symptoms: Limited Connectivity

Answer 2

Yellow triangle over network icon (or in network status)

Local:
Check physical connection, check WAP connection
Check IP configuration
Reboot

External:
Wireless router rebooted/turned off
Ping default gateway & external IP

Question 3

Windows Symptoms: Failure to Boot

Answer 3

asdf

Question 4

Windows Symptoms: No OS Found

Answer 4

Check boot drives (remove any media)
Startup repair (can look at every step along boot process)
Modify Windows Boot Config Database (BCD)
Formerly boot.ini
Recovery Console: bootrec /rebuildbcd

Missing NTLDR (boot loader is missing)
Run startup repair or replace manually & reboot

Question 5

Windows Symptoms: App Crashes

Answer 5

Check event log

Check reliability monitor (history of app problems)
Checks for resolutions

Question 6

Windows Symptoms: BSoD

Answer 6

Bad hardware, bad drivers, bad application
Newer BSoD may give some details

Use last known good config, system restore, rollback driver (also try safe mode)

Reseat/remove hardware
Run hardware diagnostics (by manufacturer)

Question 7

Windows Symptoms: Black Screens

Answer 7

Driver corruption, OS system file corruption

Video Driver - Start in VGA mode - F8 for startup options
Or update driver in safe mode (known good source)

Run SFC (run from recovery console)

Repair/refresh or recover from backup

Question 8

Windows Symptoms: Printing Issues

Answer 8

Print or scan a test page (built into Windows)
Different from application printing

Use diagnostic tools
Web-based, vendor specific, generic

Clear the print queue or clear specific print job
Restart print spooler

Question 9

Windows Symptoms: Services fail to start

Answer 9

"One or more services failed to start"
Bad/incorrect driver, bad hardware
Try starting manually
Check account permissions
Confirm service dependencies
If Windows service, check system files
If application service, reinstall application

Open Windows Services

Question 10

Windows Symptoms: Slow Bootup

Answer 10

Boot process hangs or takes longer than usual
No activity, no drive lights

Manage startup apps
Win10: Task Manager | Earlier: msconfig

Or disable everything, load them back one at a time.

Question 11

Windows Symptoms: Slow Profile Load

Answer 11

Roaming user profile
Desktop follows you to any computer

Network latency to domain controller
Slows login scripts, slow to apply policies

Client picks a remote domain controller instead of local

Question 12

Windows Solutions: Defragment HDD

Answer 12

Moves file fragments so they are contiguous
Sharing a common border (in order)
Improves read/write speeds

Cmd: defrag
May be in weekly schedule (task scheduler)

Question 13

Windows Solutions: Reboot

Answer 13

Why it works:
Bug in router software (reset router)
App using too many resources (stops the app)

Memory leak slowly consumes available RAM
(Clears RAM & starts again)

Question 14

Windows Solutions: Kill Tasks

Answer 14

Sometimes you can locate the problem process via task manager and kill it.

Source by resource (CPU/Memory/Network/Disk)

Question 15

Windows Solutions: Restart Services

Answer 15

Services - apps running in background
Same types of problems as interactive apps

Task Manager/Services: Start/Stop/Restart/Pause/Resume

Question 16

Windows Solutions: Update Network Settings

Answer 16

One config mismatch can cause significant slowdowns
Speed/duplex settings need to match

Most auto negotiations work fine (until they don’t)
Certain configs may need manual speed/duplex settings

Driver may not show negotiated value

Question 17

Windows Solutions: Reimage/reload OS

Answer 17

Windows is huge/complex
Spend time finding the needle, or just build a new haystack

Many organizations have pre-built images
(May be best not to research issues)

Win 8/10 includes reset option
Settings > Update/Security > Recovery

Question 18

Windows Solutions: Roll Back Updates

Answer 18

Restore Points (rewind to previous config)
Restore point can be created automatically with application installations.

Question 19

Windows Solutions: Roll Back Devices/Drivers

Answer 19

Device drivers can break Windows

Device Manager > Roll Back Driver

Question 20

Windows Solutions: Apply Updates

Answer 20

Windows Update
Centralized OS & Driver Updates
Flexibility: Change active hours | Auto/Manual

Applications must be patched
Security issues don’t stop at the OS
Download from publisher

Question 21

Windows Solutions: Repair Application

Answer 21

Some applications have a repair option.

Or you can uninstall/reinstall

Question 22

Windows Solutions: Disable Startup Services/Apps

Answer 22

Trial & Error
Disable all, begin adding them back
Or disable one at a time
May take many restarts

Question 23

Windows Solutions: Safe Boot

Answer 23

Safe Mode - F8 on boot
Advanced Boot Options > Enable Safe Mode
Or interrupt boot process 3 times

If this doesn’t work, Windows is in Fast Startup
Fast Startup: Shutdown = Hibernate
Msconfig to turn off

Networking, Command Prompt, VGA Mode options

Question 24

Windows Solutions: Rebuild Windows Profiles

Answer 24

“User profile service failed the logon”
“User profile cannot be loaded”
“User documents may be missing”

Log in with admin rights
Rename existing user folder, backup user registry
HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileList > Right Click > Export
Delete registry entry (you have backup)
Restart

Login with the user account
Profile will be rebuilt
Will recreate \users\name folder

Login as admin, copy over files from old profile
Only move over documents, not all files (may be corrupted)

Question 25

Security Symptoms: Pop-ups

Answer 25

Update your browser, use the latest version
Check pop-up block feature or get extension
Scan for malware

Question 26

Security Symptoms: Browser Redirection

Answer 26

Browser directs you to the wrong page with a search feature or home page.
Malware is intercepting search queries/results

Use anti-virus/anti-malware
To completely remove, restore to known good backup

Question 27

Security Symptoms: Security Alerts

Answer 27

Security alerts may indicate bad certificate
Click on lock icon

Certificate may be expired or linked to wrong domain
Certificate may be invalid (authority not trusted)

Question 28

Security Symptoms: Slow Performance/Internet Connectivity Issues

Answer 28

Can be a sign of malware.
Malware may take you where it wants.
You can’t protect yourself if you can’t download.
May block OS update function.

Malware/virus scan

Use software from another resource, or restore from backup/image.

Question 29

Security Symptoms: PC/OS Lockup

Answer 29

Could be hardware problem, but also security issue.
Run hardware diagnostic.
Check logs when restarting.
Check Caps/Num Lock

May still be able to kill bad apps

Question 30

Security Symptoms: Application Crash

Answer 30

Application stops working, may be malware.
Check event log.
Check reliability monitor.
Reinstall/repair the application.
Virus/malware scan.

Question 31

Security Symptoms: Rogue Antivirus

Answer 31

A fake anti-virus/anti-malware software.
May be ransomware.
Can be very difficult to get rid of.

Question 32

Security Symptoms: Spam

Answer 32

Unsolicited emails
Advertisements
Phishing attacks
Spread viruses

Spam filters can be helpful.

Question 33

Security Symptoms: Renamed System Files/Disappearing Files

Answer 33

Also a sign of malware.
Scan for viruses/malware.

May need to restore to backup.

Question 34

Security Symptoms: File Permission Changes/Access Denied

Answer 34

Malware may change file permissions, causing “access denied” errors when trying to access certain files or applications.

Question 35

Security Symptoms: Hijacked Email

Answer 35

Infected computers can become email spammers.
May receive odd replies/emails from users.
Bounce messages from unknown emails.

Scan for malware.

Question 36

Security Symptoms: System/App Log Errors

Answer 36

Many errors go undetected, so check logs.
Filter & research

Find security issues:
Improper logins
Unexpected app use
Failed login attempts