Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Need Help with security


12 Mar 2010   #1

 
Need Help with security

Hey guys,

Im having a problem or problems again. I definitely was somehow hacked again, however my system seems to be absolutely clean i couldnt find anything except 1 tracking cookie. Also all programms and files work properly. However but theyre definitely is or was someone controlling my mouse and keyboard, because he was randomly pressing keys on my keyboard. However I had those ones quite often and im quite sure about what that is and how they actually get access. It seems to be this damn wrouter again! How I hate wrouters, they are supposed to act as extra security, but till today the only thing i see is that these things only pose an extra security risk, since how often has it been that someone has tweaked controll of my keyboard and mouse through the wrouter? this is at least the 4-6th time and im really starting to get fed up with it. Unfortunately either my provider, nor the one which i may actually want to change to have goddamn normal modems anymore, no. Only ones with at least small built in wrouter functions... perfect, so i only can use a crappy wrouter if i want it or not. Its actually no wonder, a wrouter has disk space, and i´ve learned years ago that actually anything which has disk space in it is at least somehow hackable, this goes for hard disk, printer and other stuff which has disk space built in where u can store data files, and thats it, because u can store data there, a hacker can do so anytime to. So its no wonder i get hacked over the wrouter again and again. The people i asked couldnt answer me but maybe someone here can: Please tell me what kind of advantages does a wrouter have over a normal modem? what makes the wrouter so "good" that all companies start selling them over normal modems? Whats so special about them? I myself dont get it.

So my main question is: what can I do to make my system, especially my wrouter more secure?

My security now looks like following:

Windows 7 home premium, it is an original so i also receive software updates regularly, and yes I have update function update automatically.

Using: eset Firewall/antivirus
antivir premium
Spybot S&D

I may have more than 1 scanner installed, but i never use more than 1, i know that multiple scanners can get in the way of each other. Thats why i always when i scan only leave 1 scanner run at once until its finished, and i also only have 1 antivirus guard on. I use antivir premium antivirus guard and the web and mailguard, thats why esets guard function is off, however esets firewall of course is on. Spybot acts as a medium malware scanner, but however it is very usefull since it also has immunization function to certain threats, also its very good at finding and blocking tracking cookies, the immunization and the tracking cookie removal were the main reason i used spybot over years, and from quality and functionality it still is as good as ever. As said before the scanner may be not bad but its definitely not the best, however it sometimes finds smaller malware antivir or other scanners wouldnt.

On top of that i have dcom und unpn disabled, since none of my programms or applications need them, all runs fine without it, and it would be crazy to leave dcom and unpn activated if its not used. Also remote access is off, another useless feature which may could be a risk, and when i really want remote access from someone one day, though i dont believe this will ever happen, i can still turn it on again anytime, leaving it on would be stupid so its off.

Checked my wrouter of course also, I saw that this so called router only gives very limited features, this router actually doesnt even seem to have a firewall in it, as i could find no firewall at all in the settings, also security only provides an IP filter, no other security settings or no such thing as a firewall. However firmware is updated automatically, still did a manual upgrade but couldnt find any newer firmware. What I changed, i really forgot to set up my WEP key, did that. Since i also dont use wlan but cabel, i turned WLAN entirely off to, so getting access over wlan is definitely impossible now. I also searched some older threads and stumbeled upon 1 usefull extra tool, pctools threatfire, sounds very usefull since it maybe catches things which firewall and antivirus are missing. Will get that one to. Also im thinking to maybe get norton antivirus for a scanner to, though it seems to be very good and got a very good feedback.

Have I missed anything? anything I can do especially over the wrouter? Are my firewall-AV programms ideal or not?

Thanks for help.


My System SpecsSystem Spec
.

12 Mar 2010   #2

windows 7 ultimate 64 bit,Windows 7 ultimate 32 bit,Windows XP sp3 home
 
 

Quote   Quote: Originally Posted by Shapeless View Post
I definitely was somehow hacked again, however my system seems to be absolutely clean i couldnt find anything except 1 tracking cookie. Also all programms and files work properly. However but theyre definitely is or was someone controlling my mouse and keyboard, because he was randomly pressing keys on my keyboard.
well....assumptions feed paranoia...at times simple hardware issues can cause aforementioned symptoms

Quote:
However I had those ones quite often and im quite sure about what that is and how they actually get access. It seems to be this damn router again! How I hate routers, they are supposed to act as extra security
honestly they are.....just change the default password to router settings/configuration for that presents a potential risk.....Chuck Norris botnet karate-chops routers hard - malware, D-Link, Czech Republic, Chuck Norris, botnet - PC World

Quote:
what makes the router so "good" that all companies start selling them over normal modems? Whats so special about them? I myself dont get it.
routers simple re-route data from one network to another. Its like a barrier. the internet on one side (your cable modem) connected to the Wide Area Network (WAN) port on the router and your computer(s) on the otherside, the Local Area Network(LAN) ports.
I think most people want a router because they have more than one computer and want to have a internet connection for all of them. The software builtin to the router (NAT) provides for this. the router assigns each computer a internal IP.
Routers can also be a good security investement and are inexpensive. How:

You have one external IP address provided by your ISP and each computer is assigned a non-routable internal IP address.
a router that has SPI (internal firewall) will drop any unsolicited internet traffic.

thats all good for external traffic. a better idea would be to use a software firewall (and a router) on each computer for outbound traffic. A router wont do much good for any malware that you get on your computer like say via a email attachment. A software firewall will alert you to outbound connections.

its like: router=inbound security, software firewall= outbound security

1.honestly just use either avira premium or ESS....eset firewall is not its best feature Results and comments - www.matousec.com

2.use mbam/hitman/sas etc as secondary scanner no need to add norton

3.threatfire is a behaviour blocker....a good one but any setting over 3(default) can lead to troubles....as with most behaviour blockers

if running spybot it(TF) would be an unnecessary addition
My System SpecsSystem Spec
12 Mar 2010   #3

 

[QUOTE=thathagat;620466]
Quote   Quote: Originally Posted by Shapeless View Post
1.honestly just use either avira premium or ESS....eset firewall is not its best feature Results and comments - www.matousec.com

2.use mbam/hitman/sas etc as secondary scanner no need to add norton

3.threatfire is a behaviour blocker....a good one but any setting over 3(default) can lead to troubles....as with most behaviour blockers

if running spybot it(TF) would be an unnecessary addition
It definitely was some hack, i mean middle in a game that nerd constantly oppens the chat window(enter) and types in ,,,,,, the whole time and sometimes also other random letters. Also i run my programms and applications since years, i´d definitely knew if something like that would happen sometimes by random.

To the wrouter: Actually I never had a default password, as my provider forces me to set an own password when setting up the wrouter for internet the first time. However there were 2 different types of passwords Changed both, both are even longer and securer and contain extra keys and numbers for a maximum protection, and are definitely neither forcable nor guessable. Well actually i dont get it, because whenever i access my wrouter(besides the first time using it) i need to type in a password. The password number one was under section internet, and it also had extra keys %(!§ etc. Password number 2 was under security and it doesnt use extra keys only letters and numbers. What i dont get, before i always typed in password 1, now i have to type in password 2 Sorry but when it comes to wrouters im am a newb I actually never dealt with wrouters myself before. Also based on the chuck norris articel, remote access is off, as said before newest upgrade or firmware is installed and its a type that automatically updates my firmware. Is there any remote access in the wrouter? Actually i should have found it already if it would be there. But based on what i found out about my wrouters limited functions in the net, it would not wonder me if there would be no settings for something like remote access in it, as well as there are 0 firewall settings.

U mean the teatimer of spybot? I have that one off, it may be usefull but its really annoying^^ maybe ill turn it on again and bear with it as long as it causes no errors/problems. Thanks for your oppinion on TF, if TT fails because of errors ill use TF with a security of 3, I guess a security of 3 is better than nothing, also it should be less annoying, maybe ill try TF first...

Well considering testresults, ill try comodo or pctools since its free, and eset would actually cost money, also im asking myself if steve gibson is a little out of date... considering eset got such good resluts from grc. Also forgot the good old malwarebytes, i know how i forgot it, since i didnt try it long because i skipped over to linux soon after that.

Isnt there anything like a wrouter firewall or something extra in security for wrouters?
My System SpecsSystem Spec
.


Reply

 Need Help with security




Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:19 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33