Computer Security Questions

[gamblingman]

So,

I take care of my computer. I run Malwarebytes, Trend Micro, and I use Firefox with better-privacy and No Script add-ons. I have auto-run disabled in the registry and I don't open unknown mail or download anything unless I'm absolutely sure its clean. Even so, I scan all downloads with both Trend Micro and Malwarebytes.

I check taskmanager for suspicious processes and for other users. I also check msconfig for anything out of the ordinary. I keep everything updated and I keep my firewall set high. I run CCleaner and Acronis (to scrub the HDD free space), I also backup everything twice a year in case my system decides to mess up. I am super careful where I surf.

Am I missing anything?

Everyone I know says I'm over careful and that my computer is a pain to use (mainly due to having No Script). I say I'm just protecting myself and my investment, and it doesn't bother me how its all setup.

Also,
Ive been doing some studying on security topics. I've got a buddy who had his computer accessed by an unknown individual. I've heard some about this before, but I'm unsure how to detect an intruder on my computer. I have remote access turned off.

How would I know if there is an unauthorized person on my system?

What would I do do get them off, and keep them off?

How would they get access to my system in the first place?

 

[kimsland]

Trend Micro PC-Cillin Internet Security should tell you if anyone (an IP) is trying to "hack" you
But the best way of not being hacked is by confirming all MS Security updates and Service Packs have been completed (this includes Windows and Office)

You should also update your Java Runtime: http://java.com/en/download/installed.jsp?detect=jre&try=1
And then once confirmed, also remove older versions, using JavaRa

Also because your MSConfig may have disabled entries in it, you should run: Msconfig Cleanup Tool (Which will bring your computer out of "Diagnostic Mode", by removing all MSConfig disabled entries)
A better tool to use (other than through the program itself) instead of MSConfig, is Startup Control Panel

You may also want to read HERE on updating your Hosts file (which I use too)

You can also read about Combofix Tool HERE, as a good tool to scan your system with



Securing your computer is a lengthy process, it is dependent on your browsing habits, including if you use File Sharing programs
It covers email and unknown attachments

Its about what unknown drive (or software downloaded) is put into your computer

Its mainly about common sense and surfing safely on the Net
But its a "platform" approach, of:
OS version you are using (ie Linux is safer)
Security updates
Driver updates
Program updates
Viewing habits
Downloading habits
Security software used
Services and startups
Hardware used (this area can be big)
Regular maintenance and scans
And there's a whole big area on websites/web design etc etc
The list is truly very long

Please note: Even MS and Nasa have been "hacked" before
Common sense

 

[johnb35]

Please note: Even MS and Nasa have been "hacked" before
Common sense

So what good does having all security updates and service packs have to do with being totally secure? If MS has been hacked using their own updates and service packs, what good does it do us consumers to have all updates?

 

[kimsland]

None

Windows is insecure that is that
But there are ways (discussed) on trying to make it more difficult to be attacked
The true secure system is the one that never goes online (mind you it can still be seen via one of those police cameras things that I can't think of the name of)

The internet is not private or secure, as the ongoing Windows security updates keep reminding us