Computer Security Questions

gamblingman · 10-08-2009, 06:30 AM

So,

I take care of my computer. I run Malwarebytes, Trend Micro, and I use Firefox with better-privacy and No Script add-ons. I have auto-run disabled in the registry and I don't open unknown mail or download anything unless I'm absolutely sure its clean. Even so, I scan all downloads with both Trend Micro and Malwarebytes.

I check taskmanager for suspicious processes and for other users. I also check msconfig for anything out of the ordinary. I keep everything updated and I keep my firewall set high. I run CCleaner and Acronis (to scrub the HDD free space), I also backup everything twice a year in case my system decides to mess up. I am super careful where I surf.

Am I missing anything?

Everyone I know says I'm over careful and that my computer is a pain to use (mainly due to having No Script). I say I'm just protecting myself and my investment, and it doesn't bother me how its all setup.

Also,
Ive been doing some studying on security topics. I've got a buddy who had his computer accessed by an unknown individual. I've heard some about this before, but I'm unsure how to detect an intruder on my computer. I have remote access turned off.

How would I know if there is an unauthorized person on my system?

What would I do do get them off, and keep them off?

How would they get access to my system in the first place?

kimsland · 10-08-2009, 07:05 AM

Trend Micro PC-Cillin Internet Security should tell you if anyone (an IP) is trying to "hack" you
But the best way of not being hacked is by confirming all MS Security updates and Service Packs have been completed (this includes Windows and Office)

You should also update your Java Runtime: http://java.com/en/download/installe...tect=jre&try=1
And then once confirmed, also remove older versions, using JavaRa

Also because your MSConfig may have disabled entries in it, you should run: Msconfig Cleanup Tool (Which will bring your computer out of "Diagnostic Mode", by removing all MSConfig disabled entries)
A better tool to use (other than through the program itself) instead of MSConfig, is Startup Control Panel

You may also want to read HERE on updating your Hosts file (which I use too)

You can also read about Combofix Tool HERE, as a good tool to scan your system with

Securing your computer is a lengthy process, it is dependent on your browsing habits, including if you use File Sharing programs
It covers email and unknown attachments

Its about what unknown drive (or software downloaded) is put into your computer

Its mainly about common sense and surfing safely on the Net
But its a "platform" approach, of:
OS version you are using (ie Linux is safer)
Security updates
Driver updates
Program updates
Viewing habits
Downloading habits
Security software used
Services and startups
Hardware used (this area can be big)
Regular maintenance and scans
And there's a whole big area on websites/web design etc etc
The list is truly very long

Please note: Even MS and Nasa have been "hacked" before
Common sense

**johnb35** · 10-08-2009, 04:28 PM

Quote:

Originally Posted by kimsland

Please note: Even MS and Nasa have been "hacked" before
Common sense

So what good does having all security updates and service packs have to do with being totally secure? If MS has been hacked using their own updates and service packs, what good does it do us consumers to have all updates?

kimsland · 10-08-2009, 04:37 PM

None

Windows is insecure that is that
But there are ways (discussed) on trying to make it more difficult to be attacked
The true secure system is the one that never goes online (mind you it can still be seen via one of those police cameras things that I can't think of the name of)

The internet is not private or secure, as the ongoing Windows security updates keep reminding us

10-08-2009, 06:30 AM	#1 (permalink)
gamblingman Silver Member Join Date: Apr 2009 Location: Huntsville, Texas Age: 31 Posts: 196	Computer Security Questions So, I take care of my computer. I run Malwarebytes, Trend Micro, and I use Firefox with better-privacy and No Script add-ons. I have auto-run disabled in the registry and I don't open unknown mail or download anything unless I'm absolutely sure its clean. Even so, I scan all downloads with both Trend Micro and Malwarebytes. I check taskmanager for suspicious processes and for other users. I also check msconfig for anything out of the ordinary. I keep everything updated and I keep my firewall set high. I run CCleaner and Acronis (to scrub the HDD free space), I also backup everything twice a year in case my system decides to mess up. I am super careful where I surf. Am I missing anything? Everyone I know says I'm over careful and that my computer is a pain to use (mainly due to having No Script). I say I'm just protecting myself and my investment, and it doesn't bother me how its all setup. Also, Ive been doing some studying on security topics. I've got a buddy who had his computer accessed by an unknown individual. I've heard some about this before, but I'm unsure how to detect an intruder on my computer. I have remote access turned off. How would I know if there is an unauthorized person on my system? What would I do do get them off, and keep them off? How would they get access to my system in the first place? __________________ Why work when you can go fishing! Last edited by gamblingman; 10-08-2009 at 06:33 AM.

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Switch to Linear Mode Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
New computer, few questions	musho3210	Desktop Computers	10	09-27-2009 01:08 PM
Spyware Trojan	perfectm	Computer Security	29	09-17-2008 07:47 PM
My Computer turns off by itself!	Humpy12345	CPUs and Overclocking	3	03-30-2008 07:08 PM
HELP HJT log	HELP_ME	Computer Security	32	09-28-2006 09:04 PM

10-08-2009, 07:05 AM	#2 (permalink)
kimsland Platinum Member Join Date: Sep 2009 Posts: 882	Trend Micro PC-Cillin Internet Security should tell you if anyone (an IP) is trying to "hack" you But the best way of not being hacked is by confirming all MS Security updates and Service Packs have been completed (this includes Windows and Office) You should also update your Java Runtime: http://java.com/en/download/installe...tect=jre&try=1 And then once confirmed, also remove older versions, using JavaRa Also because your MSConfig may have disabled entries in it, you should run: Msconfig Cleanup Tool (Which will bring your computer out of "Diagnostic Mode", by removing all MSConfig disabled entries) A better tool to use (other than through the program itself) instead of MSConfig, is Startup Control Panel You may also want to read HERE on updating your Hosts file (which I use too) You can also read about Combofix Tool HERE, as a good tool to scan your system with Securing your computer is a lengthy process, it is dependent on your browsing habits, including if you use File Sharing programs It covers email and unknown attachments Its about what unknown drive (or software downloaded) is put into your computer Its mainly about common sense and surfing safely on the Net But its a "platform" approach, of: OS version you are using (ie Linux is safer) Security updates Driver updates Program updates Viewing habits Downloading habits Security software used Services and startups Hardware used (this area can be big) Regular maintenance and scans And there's a whole big area on websites/web design etc etc The list is truly very long Please note: Even MS and Nasa have been "hacked" before Common sense

10-08-2009, 04:37 PM	#4 (permalink)
kimsland Platinum Member Join Date: Sep 2009 Posts: 882	None Windows is insecure that is that But there are ways (discussed) on trying to make it more difficult to be attacked The true secure system is the one that never goes online (mind you it can still be seen via one of those police cameras things that I can't think of the name of) The internet is not private or secure, as the ongoing Windows security updates keep reminding us