How to Make Your Own Security Toolkit

Do your family and friends turn to you whenever they have computer security problems? Do they ignore the fact that you're wearing your "No, I Will Not Fix Your Computer" T-shirt? You may as well bow to the inevitable and make preparations to help them.

You can make the job much easier by constructing a USB-based security toolkit that you carry on your keychain. If you already have the necessary tools at hand, the repairs will go faster. You can even leave them with some free protection, so you won't have to come back next week and fix the same problem.

Malware Cleanup Tools
Don't assume that your friend with the problem has been visiting shady Internet sites. Perfectly clean sites have been hacked in such a way that simply opening the page downloads malicious software to the victim's system. Worse, many modern threats include countermeasures to fight back when you try to install antivirus software. Some tweak the Registry to disable launching of known antivirus executables. Others monitor Internet access and specifically prevent access to security company websites, so you can't update or register the product. They're ingenious, in a bad way.

When you can't install the full power of an antivirus solution, you may be able to wipe the system clean with a free cleanup-only tool. may be the best known tool in this category. Tech support agents in some security companies routinely use it to help users who run into trouble at installation. A few years ago I even encountered a Symantec tech support agent using it (strictly against Symantec policy).

Symantec tech support agents no longer need Malwarebytes, because they can unleash on resistant malware infestations. It, too, is a free download. It lagged behind MalwareBytes in my hands-on testing overall, but it was significantly more effective against rootkits (malicious programs that hook deep into Windows to hide their actions).

also did well against rootkits, and its overall score for malware cleanup is better than many commercial products. Comodo is PCMag's Editors' Choice for free cleanup-only antivirus.

So which one should you keep on your handy-dandy toolkit USB drive? That's easy—all of them! If one doesn't do the job, turn to the next.

Bootable Rescue USB
"I don't know what happened," your sibling moans. "I was just checking my Facebook status, and my computer crashed, and now it won't even start." That scenario could have many causes, but if a Trojan or other malicious program caused it you may still be able to save the day.

Just about every antivirus vendor offers a free bootable "Rescue CD" for just this kind of problem. The CD boots into an alternate operating system, usually a version of Linux. There's no possibility that Windows-based malware could interfere with this scan, since Windows isn't even running.

On the other hand, carrying a CD in your pocket just isn't practical. Fortunately, some vendors will optionally let you create a free bootable "Rescue USB," among them Kaspersky, AVG, and Norton. Do note that the Norton Bootable Recovery Tool is only free for Norton customers. You need to enter your product key on each use, and you can't use it commercially.

If your favorite security vendor only offers a bootable CD, not USB, there's still hope, as long as you're willing to do a little tinkering. You need to download the ISO image that represents the bootable CD and use an Open Source tool called UNetbootin to make a USB drive that boots into the CD image. I haven't done this myself, but the Internet is full of explanatory pages and videos.

After creating your bootable rescue USB, test it a few times. Boot from it, make sure that it works, and verify that you understand how to use it. You do want to look like the expert you are, after all.

Leave Them Protected
OK, you've spent an hour cleaning up Uncle Bob's computer (hope he entertained you while waiting for the antivirus scan to finish). You could just go home, and face the prospect of doing it all again next week. Or you could leave Bob with protection that will head off the problem.

Sounds like a good idea? Then stock your toolkit with a full-scale free antivirus program. Our Editors' Choice for free antivirus is . In my testing it outperformed many commercial products. I did find it had a bit of trouble installing on thoroughly infested systems, so use a clean-up tool before installation.

is another possibility. It didn't score as well as AVG in our tests, but it does include ZoneAlarm's powerful firewall for added protection.

You can, of course, choose any free antivirus product that pleases you, or add more than one to your toolkit.

Still More Protection
Sometimes you'll be asked to help with an email or social networking account that's been hacked. There's a pretty good chance the "hack" simply involved someone guessing your friend's lame password. Depending on how proactive you think your friend can be, you may consider setting up a password manager. Doing so will let your friend configure secure sites to use strong passwords without suffering brain-strain trying to remember them all.

Our long-term Editors' Choice for password manager is the free . LastPass stores highly-encrypted password data online, so you can use it across multiple computers. If that portability isn't an issue, if the friend in question needs something a bit simpler, is another Editors' Choice. As you engage in better security habits, Dashlane awards you points and badges. That may be just the thing to get your friend interested!

You can carry the Dashlane installer on your toolkit. LastPass too, but it may be easier to just sign your friend up online. Don't peek during the master password entry stage!

Keep Them Up to Date
Many malicious attacks rely on exploiting vulnerabilities in the operating system, browser, or popular programs. As soon as possible after an exploit is discovered, the affected company releases a security patch. Install the patch and you're safe, at least until the next exploit. Don't install it and you're worm bait.

When trying to fix someone else's computer you'll definitely want to check for the latest Windows Update files and install any that are missing. That's just one part of the story, though. The free will check for a huge number of security patches in a wide variety of program categories and, in many cases, offer an automatic process to apply the patch.

You can install Secunia from your toolkit USB, perform a one-time scan and update, and then uninstall it. But why uninstall? If you leave it in place, it will periodically check to make sure the system hasn't missed any new critical updates.

Mischief Managed
Now that you've got a fully-equipped pocket toolkit, you can cut through security problems in no time. Run a standalone cleanup antivirus or, if the computer won't boot, a bootable rescue tool. Install free antivirus protection to head off the next problem. Make sure Windows is fully updated. Then install any additional tools you think they'll actually use. You can pop out to fix Grandma's computer while everyone else is washing Thanksgiving dishes and be done in time for pie!