10-03-2009, 10:53 PM
I believe this should be a sticky.
here're a few things you can do to reduce your chances of being hacked or getting a virus.
Don't open files.... period (unless you're certian of the contents)
--------------------------------------------------------------
This is a must!. You must NEVER open any e-mail attachments or executable files unless you're 100% sure that it is legitimate. There are afew ways to check this mentiond below,
but as a general rule, if in doubt, leave it out. You may not even know that you're infected untill it's too late.
*Trojans allow people to remotely access your computer without permission and pretty much do any thing they want to you...such as erase files, steal passwords and credit card numbers, etc.
*Virus' will usually be an .exe .bat or other executable type file. In most cases they are combined with real, harmless looking files, for instance a picture.
1)You can check the file extension by right clicking the file, and check it's properties. Or alternitivly have windows automaticly show these extensions, you can do this buy going to Start >
control panel > folder options > view tab, then uncheck the box that says Hide extensions for known file types.
2)You can go Here (Novirusthanks.org) and scan the file with multiple AVs to see if it's safe.
3)You can run the program/file while it's sanboxd, which allows the file to execute for testing purposes
without making any changes to your system. You can download it from Here
Take note:
*Pictures or movies will NEVER be an executable file. If someone is trying to send you a file called mypic.exe don’t accept it! It is most likely a virus or trojan.
*Be careful of downloading files from places like piratebay and mininova. If you want to ensure these files are clean, download them from their official websites. (Although this usually means paying) You can usually tell by the comments on a thread if it's safe to download or not.
Use a firewall
-----------------------
Firewall's are excellent ways to stop hackers with malicious intent. Firewalls monitor incoming and outgoing data and makes sure no one (that is uninvited) is trying to access your PC remotely. This will also stop things like trojans or backdoors. Although firewalls are not 100% reliable, as is any kind of security. A firewall I would recommend is Comodo, it can be annoying at times but really is ruthless. You can download it from Here. Online Armor is also recommended by some of our members. You can download it from Here.
Use an Anti Virus
-------------------
A must, without question, Some may think this is the most obvious requirment, but ive met so many people who are oblivious to the need for one. You MUST have some sort of antivirus to scan files and keep your computer relativly clean. Not all antivirus' can detect EVERYTHING though, that's why it's important to update your virus database regularly, as then, your chances increase of detecting the latest threat. Personally i Think avast is very good, but eveybody usually has their own personal favourite. It may also be worth considering running two Antivirus' together if you like. Although it's advised not to have two AVs that are both providing active protection. Im using Avast at the minute along with Comodo Antivirus which also comes with its own firewall, Avast and AVG also both run well together too.
Use spy ware removal programs
-------------------------------------------
You should also try Spybot Search & Destroy, and i highly recommend spy hunter.
CCleaner is also good for removing traces of your online activity such as your Internet history/cookies etc. You can download it from Here
HijackThis is a tool that generates an in-depth report of registry and file settings from your computer. You can download HJT from Here
When HJT Generates a log file you can go Here to querie any process' you arent sure off.
Use Network diagnostics tools
----------------------------------
Axence NetTools is a set of host monitoring, network scanning, security and administration tools. Download Here
Securing your Network
--------------------------
Spoiler (Click to Hide)
First off.. i feel im treading alittle out of my depth here as I'm no professional with routers. So If anyone has any suggestions let me know and i'll update.
Passwords
---------
Most routers use weak default passwords like "password" or the manufacturer's name, so as soon as you set up your router, your first step should be to change the default password to something else.
To Password protect your router’s configuration settings you need to access your router’s internal setup, open your browser and enter the routers URL. You'll probly find it in your routers manual. e.g http://192.168.1.1 Then Enter youre username and password. Once inside, to change the password simply click on the Password tab and enter your new password.
Tip:
If you cant find your username/password google it ;). Type -
"default login for ” e.g sky35628.
Change the default Network name aka SSID (Service Set IDentifier)
-------------------------------------------------------------------------
A)To change your routers name - routers by default have standard names. For example, the default name for a Linksys router is “Linksys”. so if you don’t change the default name of your router it's easy for someone with the right knowledge to gain access.
Solution
To change the SSID. , click on the Wireless tab. Look for an input item labeled SSID. It will be near the top. Enter a new name for network. Don’t use something like “My Network”. Use a name that is be hard to guess.
B)To make your SSID invisible - Most routers continually broadcast the network's name (SSID). Turning off SSID broadcast for your network makes it invisible to your neighbors and passers-by (though it will still be detectible by WLAN "sniffers")
Solution
Click on the Wireless tab (the same screen as before), you will see options for SSID broadcast. Choose “Disable SSID” to make your network invisible. Now save all your settings and log out.
Since your wireless will be invisible, you'll have to configure your computer to connect to your wireless network usin the new name. You can do that by selecting the wireless icon in the Notification Area and just go from there.
Enable WPA encryption
--------------------
A)Find the Wireless Security or Wireless Encryption section (May be in the same section as the previous steps)
B)You may have a number of encryption options. WPA-PSK or WPA2-PSK are good choices to start with, then enter a network key. The box to enter this may be labelled Network/pass key.
Click apply, you should be all done.
Tips:
As a general rule you should make your passwords long and add numbers and symbols, with maybe afew case sensitive letters thrown in.
You may want to write the password down lol. Unless you have a good memory, chances are you wont use the password very often if you save your network settings. Better safe than sorry.
Setting up a MAC filter
-------------------------
MAC filtering on a network permits and denies network access to specific computers through the use of 'blacklists' and 'whitelists'.
A)Connect all the computers you want to access the network.. to the network
.
B)Go into your router again.
C)Go to the wireless tab, and find the wireless mac filter section (it may be renamed different for various routers). Select 'Enable' and then 'permit only'. Select the edit mac filter list button.
D)You should see a popup with MAC addresses on it (could be blank). Select the 'wireless client mac list' button.
E)A window should popup with each computers name, IP address, and MAC address. Select the enable buttons of the computers you want to access the wireless network, then select 'update filter list' then ok.
F)The first mac address filter list (popup) should now be updated with the MAC addresses of the computers you want to access the wireless network. Select save.
Then just make sure 'Enable' and 'Permit only' are selected and save again.
Keeping your computer updated
----------------------------------
It's also important to keep your computer updated with the latest patches, as im sure you've figured out on HF there's plenty of information on how systems can be exploited. Personally I have suspisions on some windows updates, although it's highly recommended that you update windows frequently, although as im sure youve noticed not ALL updated are nessessary, if you see something like Vista feature pack (KB890830) and are unsure wether to download you can go 'Here' to get a full description.
Some of our members also use Secunia to keep their systems up to date, I think Omniscient (Our forum administrator) occasionally posts updates on vulnerable programs.
You can 'Download' a personal copy of Secunia or use the Online scanner
Some features of Secunia Software Inspector
* Detects insecure versions of applications installed
* Verifies that all Microsoft patches are applied
* Assists you in updating your system and applications
* Runs through your browser. No installation or download is required.
"I DO NOT TAKE ANY CREDIT FOR THIS ALL CREDIT GOES TO THE CREATOR OF THE TUTORIAL, WHICH I AM UNSURE OF WHO THAT IS"
If wrong section this will be moved to a new section if needed.
here're a few things you can do to reduce your chances of being hacked or getting a virus.
Don't open files.... period (unless you're certian of the contents)
--------------------------------------------------------------
This is a must!. You must NEVER open any e-mail attachments or executable files unless you're 100% sure that it is legitimate. There are afew ways to check this mentiond below,
but as a general rule, if in doubt, leave it out. You may not even know that you're infected untill it's too late.
*Trojans allow people to remotely access your computer without permission and pretty much do any thing they want to you...such as erase files, steal passwords and credit card numbers, etc.
*Virus' will usually be an .exe .bat or other executable type file. In most cases they are combined with real, harmless looking files, for instance a picture.
1)You can check the file extension by right clicking the file, and check it's properties. Or alternitivly have windows automaticly show these extensions, you can do this buy going to Start >
control panel > folder options > view tab, then uncheck the box that says Hide extensions for known file types.
2)You can go Here (Novirusthanks.org) and scan the file with multiple AVs to see if it's safe.
3)You can run the program/file while it's sanboxd, which allows the file to execute for testing purposes
without making any changes to your system. You can download it from Here
Take note:
*Pictures or movies will NEVER be an executable file. If someone is trying to send you a file called mypic.exe don’t accept it! It is most likely a virus or trojan.
*Be careful of downloading files from places like piratebay and mininova. If you want to ensure these files are clean, download them from their official websites. (Although this usually means paying) You can usually tell by the comments on a thread if it's safe to download or not.
Use a firewall
-----------------------
Firewall's are excellent ways to stop hackers with malicious intent. Firewalls monitor incoming and outgoing data and makes sure no one (that is uninvited) is trying to access your PC remotely. This will also stop things like trojans or backdoors. Although firewalls are not 100% reliable, as is any kind of security. A firewall I would recommend is Comodo, it can be annoying at times but really is ruthless. You can download it from Here. Online Armor is also recommended by some of our members. You can download it from Here.
Use an Anti Virus
-------------------
A must, without question, Some may think this is the most obvious requirment, but ive met so many people who are oblivious to the need for one. You MUST have some sort of antivirus to scan files and keep your computer relativly clean. Not all antivirus' can detect EVERYTHING though, that's why it's important to update your virus database regularly, as then, your chances increase of detecting the latest threat. Personally i Think avast is very good, but eveybody usually has their own personal favourite. It may also be worth considering running two Antivirus' together if you like. Although it's advised not to have two AVs that are both providing active protection. Im using Avast at the minute along with Comodo Antivirus which also comes with its own firewall, Avast and AVG also both run well together too.
Use spy ware removal programs
-------------------------------------------
You should also try Spybot Search & Destroy, and i highly recommend spy hunter.
CCleaner is also good for removing traces of your online activity such as your Internet history/cookies etc. You can download it from Here
HijackThis is a tool that generates an in-depth report of registry and file settings from your computer. You can download HJT from Here
When HJT Generates a log file you can go Here to querie any process' you arent sure off.
Use Network diagnostics tools
----------------------------------
Axence NetTools is a set of host monitoring, network scanning, security and administration tools. Download Here
Securing your Network
--------------------------
Spoiler (Click to Hide)
First off.. i feel im treading alittle out of my depth here as I'm no professional with routers. So If anyone has any suggestions let me know and i'll update.
Passwords
---------
Most routers use weak default passwords like "password" or the manufacturer's name, so as soon as you set up your router, your first step should be to change the default password to something else.
To Password protect your router’s configuration settings you need to access your router’s internal setup, open your browser and enter the routers URL. You'll probly find it in your routers manual. e.g http://192.168.1.1 Then Enter youre username and password. Once inside, to change the password simply click on the Password tab and enter your new password.
Tip:
If you cant find your username/password google it ;). Type -
"default login for ” e.g sky35628.
Change the default Network name aka SSID (Service Set IDentifier)
-------------------------------------------------------------------------
A)To change your routers name - routers by default have standard names. For example, the default name for a Linksys router is “Linksys”. so if you don’t change the default name of your router it's easy for someone with the right knowledge to gain access.
Solution
To change the SSID. , click on the Wireless tab. Look for an input item labeled SSID. It will be near the top. Enter a new name for network. Don’t use something like “My Network”. Use a name that is be hard to guess.
B)To make your SSID invisible - Most routers continually broadcast the network's name (SSID). Turning off SSID broadcast for your network makes it invisible to your neighbors and passers-by (though it will still be detectible by WLAN "sniffers")
Solution
Click on the Wireless tab (the same screen as before), you will see options for SSID broadcast. Choose “Disable SSID” to make your network invisible. Now save all your settings and log out.
Since your wireless will be invisible, you'll have to configure your computer to connect to your wireless network usin the new name. You can do that by selecting the wireless icon in the Notification Area and just go from there.
Enable WPA encryption
--------------------
A)Find the Wireless Security or Wireless Encryption section (May be in the same section as the previous steps)
B)You may have a number of encryption options. WPA-PSK or WPA2-PSK are good choices to start with, then enter a network key. The box to enter this may be labelled Network/pass key.
Click apply, you should be all done.
Tips:
As a general rule you should make your passwords long and add numbers and symbols, with maybe afew case sensitive letters thrown in.
You may want to write the password down lol. Unless you have a good memory, chances are you wont use the password very often if you save your network settings. Better safe than sorry.
Setting up a MAC filter
-------------------------
MAC filtering on a network permits and denies network access to specific computers through the use of 'blacklists' and 'whitelists'.
A)Connect all the computers you want to access the network.. to the network
.B)Go into your router again.
C)Go to the wireless tab, and find the wireless mac filter section (it may be renamed different for various routers). Select 'Enable' and then 'permit only'. Select the edit mac filter list button.
D)You should see a popup with MAC addresses on it (could be blank). Select the 'wireless client mac list' button.
E)A window should popup with each computers name, IP address, and MAC address. Select the enable buttons of the computers you want to access the wireless network, then select 'update filter list' then ok.
F)The first mac address filter list (popup) should now be updated with the MAC addresses of the computers you want to access the wireless network. Select save.
Then just make sure 'Enable' and 'Permit only' are selected and save again.
Keeping your computer updated
----------------------------------
It's also important to keep your computer updated with the latest patches, as im sure you've figured out on HF there's plenty of information on how systems can be exploited. Personally I have suspisions on some windows updates, although it's highly recommended that you update windows frequently, although as im sure youve noticed not ALL updated are nessessary, if you see something like Vista feature pack (KB890830) and are unsure wether to download you can go 'Here' to get a full description.
Some of our members also use Secunia to keep their systems up to date, I think Omniscient (Our forum administrator) occasionally posts updates on vulnerable programs.
You can 'Download' a personal copy of Secunia or use the Online scanner
Some features of Secunia Software Inspector
* Detects insecure versions of applications installed
* Verifies that all Microsoft patches are applied
* Assists you in updating your system and applications
* Runs through your browser. No installation or download is required.
"I DO NOT TAKE ANY CREDIT FOR THIS ALL CREDIT GOES TO THE CREATOR OF THE TUTORIAL, WHICH I AM UNSURE OF WHO THAT IS"
If wrong section this will be moved to a new section if needed.
