Windows 2000

Apply the Latest Microsoft Security Updates

In order to close security holes that have been discovered since Windows was shipped and installed, please visit the Microsoft Update Web site at http://windowsupdate.microsoft.com. Follow the online instructions to update your system.

Note: If you have not updated your system for several weeks, you may need to visit the Web site several times in order to install all critical updates, as not all critical updates can be downloaded and installed at the same time.

  1. Open the "Internet Explorer" browser
  2. Select "Tools"
  3. Click on "Windows Update"

    Install Updates Using Internet Explorer


As an alternative, you can also follow these steps:

  1. Select "Start"
  2. Click on "Windows Update"

    Install Updates Using Internet Explorer


Install and Update Antivirus Software

Up-to-date antivirus software can often prevent virus infections by deterring malicious code from entering your system.

With more than 100,000 viruses and malicious programs in existence, and a creation rate of 500-800 new malicious programs each month, it is important to update your antivirus software on a weekly basis to protect against newly discovered threats.

You may purchase Trend Micro software by visiting the following links:

Establish a Strong Password Policy

Protecting systems against viruses and hackers requires the use of strong passwords. Several malicious programs attempt to connect to your system by using common passwords (such as windows, exchange, user, and so on) or guessing thousands of common words found in the dictionary. It is recommended that you:

Always protect your password:

  • Never share your password with anyone
  • Do not write it down, especially on a sticky note next to your computer

Choose strong passwords:

  • Never choose family names, birthdays, or other words commonly found in the dictionary
  • Select passwords with a minimum of 8-10 characters
  • Use a combination of lower and upper case letters, numbers, and non-alphanumeric symbols (like the percent (%) or dollar ($) symbol)

An example of an easy-to-remember strong password:

  • Think of a phrase such as "Security starts with having a strong password"
  • Use the first letter of each word: "sswhasp"
  • Adjust some letters to upper case letters: "SSwhaSp"
  • Use numbers and punctuations to extend the password to at least 8-10 characters: "SSwhaSp99%"

Block Email Attachments

Most malware that spread via email arrive as an attachment to certain email messages. These attachments usually have the following extensions:

  • .VBS
  • .BAT
  • .EXE
  • .PIF
  • .SCR

Consider blocking or removing email attachments if they are files of these types. The Trend Micro Control Manager can be easily configured to perform this task across an entire network.

Use a Firewall

Consider using a firewall to help protect your computer against unauthorized access. For Windows 2000, you may want to purchase a firewall suitable for your network. Trend Micro’s latest network antivirus software, Trend Micro Network Viruswall, comes with a built-in firewall to protect you from malicious programs, as well as hackers.

To purchase Network Viruswall, please visit  http://www.trendmicro.com/buy/partners/reseller.asp 

Do Not Hide File Extensions of Known File Types

Most Windows operating systems, by default, hide the known file extensions in Windows Explorer. This feature can be used by virus writers and hackers to disguise malicious programs as some other file format such as text, video, or audio files. For example, a malicious executable file named "readme.txt.exe" is displayed as "readme.txt" in Windows Explorer. Therefore users are often tricked into clicking the "text" file and will inadvertently execute the malicious file.

To avoid this, change the Windows Explorer setting to "Not hide the File Extensionfor known File Types."

  1. Start "Windows Explorer"
  2. Select "Tools"
  3. Single-click "Folder Options"

    Folder options

  4. Select the "View" tab
  5. Remove the check mark from "Hide file extensions for known file types"

    Do Not Hide Extensions of Known File Types

Show Hidden Files and Folders

Most Windows operating systems, by default, hide files and folders that have their attributes set to hidden or system. This prevents accidental deletion of important system files. These folders and files, therefore, make great hiding places for malicious programs.

To prevent malicious programs from hiding in these files and folders, change the Windows Explorer setting to "Show Hidden Files and Folders."

  1. Start "Windows Explorer"
  2. Select "Tools"
  3. Single-click "Folder Options"

    Folder options

  4. Select the "View" tab
  5. Select the option "Show hidden files and folders" or "Show all files"

    Show All Files

Set Internet Explorer Security to "Medium" and "Restricted Sites" to "High"

By default, the Internet Explorer Security Setting is set to "Medium." However, there are many instances where the security setting has been changed to "Low" by a virus, Trojan, or hacker.

In this regard, every user should ensure that their Internet security setting is set to "Medium" or higher, and the "Restricted Sites" security setting to "High." Making these changes will reduce the risk of accidentally running a malicious file.

To check and modify your Internet Security setting:

  1. Start Internet Explorer
  2. Select "Tools" then "Internet Options"

  3. Select the "Security" tab and highlight the "Internet" icon

  4. Click Default Level
  5. Move the slider to "Medium"
  6. Click OK for changes to take effect

To check and modify your Restricted Sites setting:

  1. Start Internet Explorer
  2. Select "Tools" then "Internet Options"

    Modify restricted sites setting

  3. Select the "Security" tab and highlight the "Restricted Sites" icon

    Modify restricted sites setting

  4. Click "Default Level"
  5. Move the slider to "High"
  6. Click OK for the changes to take effect

For Microsoft Office Users: If you are using Microsoft Office or products, such as Microsoft Excel, Microsoft Outlook, Microsoft PowerPoint, or Microsoft Word, Trend Micro strongly recommends that you also apply theremaining Safe Computing practices

Apply the Latest Microsoft Office Security Updates

In order to close security holes that have been discovered since Microsoft Office was shipped and installed, please visit the Microsoft Office Update Web site. Select the link "Check for Updates" and follow the online instructions to update your Microsoft Office software.

You may also visit the Windows Update homepage and click on "Office Update" to get to the Microsoft Office Update site:

  1. Open "Internet Explorer Browser"
  2. Select "Tools"
  3. Single-click on "Windows Update"
  4. Select the link "Office Update"

Adjust and Modify the Macro Security in Office 97, 2000, and Office XP/2002

The instructions within this section apply to the following products:

  • Microsoft Word 97, 2000, and 2002
  • Microsoft Excel 97, 2000, and 2002
  • Microsoft PowerPoint 97, 2000, and 2002

If you are not sure which product is installed on your system, launch each of the Microsoft Office products and:

  1. Select the "Help" menu
  2. Select "About [product name]" (Example: About Microsoft Word)
  3. A new window will open with detailed product information (Example: Microsoft Word 2002)

    Identifying Microsoft Office product versions

To modify or check the Macro Security for Word 97, Excel 97, and PowerPoint 97:

  1. Launch Microsoft Word 97
  2. Select the "Tools" Menu
  3. Select "Options"

    Macro security settings - Office 97

  4. Select the "General" tab
  5. Place a checkmark next to "Macro Virus Protection"

    Macro security settings - Office 97

  6. Launch Microsoft Excel 97 and repeat steps 2-5
  7. Launch Microsoft PowerPoint 97 and repeat steps 2-5

To modify or check the Macro Security for Word 2000, Excel 2000, and PowerPoint 2000:

  1. Launch Microsoft Word 2000
  2. Select the "Tools" Menu
  3. Select "Macro"
  4. Select "Security"

    Macro security settings - Office 2000

  5. In the Security tab section, ensure that the setting is set to Medium (if you work with macros on a regular basis, you may want to select "Medium", all other users should select "High")

    Macro security settings - High

  6. Launch Microsoft Excel 2000 and repeat steps 2-5
  7. Launch Microsoft PowerPoint 2000 and repeat steps 2-5

To modify or check the Macro Security for Word 2002, Excel 2002, and PowerPoint 2002:

  1. Launch Microsoft Word 2002
  2. Select the "Tools Menu"
  3. Select "Macro"
  4. Select "Security"

    Macro security settings - Office 2002
  5. In the Security tab section, ensure that the setting is set to Medium or higher (if you work with macros on a regular basis, you may want to select "Medium", all other users should select "High")

    Macro security settings - High

  6. Launch Microsoft Excel 2002 and repeat steps 2-5
  7. Launch Microsoft PowerPoint 2002 and repeat steps 2-5

Use Rich Text Format (.rft) instead of Word Document (.doc) format

The document (".doc") format is prone to macro virus infections. Technically, these types of files contain data structures within them where macro code can be placed, allowing macro viruses to infect them.

To counter this vulnerability, Trend Micro recommends that you use the Rich Text Format when saving or exchanging Microsoft Word documents. Rich Text Format files (with the .rtf file extension) have the same functionality as regular documents (with the .doc file extension) but unlike documents, they can not be infected by macro viruses.

To save your Microsoft Word documents as Rich Text Format files, simply:

  1. Select "Save As" the next time you want to save a document
  2. Change "Save as type: Word Document (*.doc)" to "Save as type: Rich Text Format (*.rtf)"

    Save documents in Rich Text Format

Use Comma Delimited (.csv) Instead of the Excel Workbook (.xls) format

Similar to Microsoft Word, the default Microsoft Excel format (file extension .xls) is prone to macro viruses.

To counter this vulnerability, Trend Micro recommends the usage of the Comma Delimited Format when saving or exchanging Excel spreadsheets. Comma Delimited files (with the .csv file extension) have the same functionality as regular workbooks (with the .xls extension) but unlike workbooks, they can not be infected by macro viruses.

To save your Microsoft Excel spreadsheets as Comma Delimited files, simply:

  1. Select "Save As" the next time you want to save a workbook
  2. Change "Save as type: Microsoft Excel Workbook (*.xls)" to "Save as type: CSV (Comma Delimited) (*.csv)"

    Save spreadsheets as Comma Delimited files

Adjusting Microsoft Outlook Security

To prevent the automatic execution of malicious code in Microsoft Outlook, it is important to ensure that the Security Zone is set to "Restricted sites."

To check or modify the Outlook Security zone:

  1. Launch Microsoft Outlook
  2. Select the "Tools" Menu
  3. Select "Options"

    Modifying Microsoft Outlook security

  4. Select the "Security tab"
  5. Select "Restricted sites" in the Secure content section

    Modifying Microsoft Outlook security

  6. Click "Apply"
  7. Click "Ok"

Disable the Microsoft Outlook Preview Pane

Some email viruses are capable of automatically executing as soon as they appear in the Outlook "Preview Pane."

To prevent the automatic execution of viruses, modify Microsoft Outlook to not show the "Preview Pane:"

  1. Launch Microsoft Outlook 2000 or Outlook 2002
  2. Select the folder (Example: Deleted Items) that you want to change Note: If you can not see your Deleted Items folder (or any of your folders), select "View Menu" and click on "Folder List."

    Disable Microsoft Outlook preview pane
    Keep in mind that you must change the "Preview Pane" setting for each of your folders (including Inbox, Sent Items, etc).
  3. Select the "View" Menu
  4. Click "Preview Pane" to enable or disable the "Preview Pane"
  5. Repeat Steps 3-4 for each other folder (Inbox, Sent Items, and any other personal folders)