Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Seeking complete Windows 7 Security guide.

Jul 2, 2013 8:09PM PDT

Hi all,
I've recently become acutely conscious of my home network's security and how to ensure that others aren't aware of my network activity, browsing habits and secure files and folders.

I'm running a wireless home network based around a netgear router and my main PC is running Windows 7.

Can anyone tell me the most effective ways to identify intrusions on my computer (not via internet security packages, as most potential hackers would identify my internet security package and simply download one of the many thousands of well-updated programs to evade detection/prevention) and how to track them to their source or at least prevent them consistently, without relying on firewalls/antivirus (which I already have).

I'm keen not to default to my firewall/antivirus, since I think the intruder(s) knows me personally and already knows which program I use. Like I said, a quick visit to a warez site will provide thousands of programs to evade detection by any of hundreds of consumer security suites.

Any advice appreciated. I'm tech savvy enough to pursue quite in-depth options if given a guide or links to knowledge databases.

Your advice much appreciated.

Discussion is locked

- Collapse -
Answer
Re: security
Jul 2, 2013 8:50PM PDT

Try surprising the intruders by switching to Linux. All problems solved.

You can continue using Windows 7 on a PC that's not connected to Internet, or - in a dual boot configuration - by disabling the network interface in Device Manager when working locally.

Kees

- Collapse -
@ Kees_B
Jul 3, 2013 6:56AM PDT

I already tried the Linux trick. They're onto that now.

I'd much rather identify the intrusion source and establish culpability.

Failing that, at least get a safe install of windows where I can detect further intrusion attempts. I'd much prefer to be able to trust my computer rather than have criminals exploiting my enjoyment of my time.

- Collapse -
Do you work for one of the TLA agencies?
Jul 3, 2013 7:14AM PDT

Given they often spoof the address, use some VPN or proxy, unless you are NSA, CIA, FBI or MI-6 I don't you'll get far. But your time, your time.
Bob

- Collapse -
PS. And if you get close, imaging what does happen.
Jul 3, 2013 7:16AM PDT
- Collapse -
Re: intrusion attempts
Jul 3, 2013 7:52AM PDT

Another good trick. Switch ISP (from ADSL to cable or the other way around). That way, you get another IP-address, which makes they can't find you at first. Some ISP's may offer a variable IP-address in stead of a fixed one. Then you can change that every day or so.

Kees

- Collapse -
Another way.
Jul 3, 2013 5:49PM PDT

If it attacks Windows and Linux, you'll have to intercept it outside the attacked machine. A paclet analyser (a piece of hardware you put somewhere in the network) will let you log and analyse all incoming and outgoing traffic. It's what the profs use in case of network problems.
Since the logging is just a logging, and the analysis can be done on a stand-alone PC, you're sure to get all the facts you need without any possible interference from outside.

http://en.wikipedia.org/wiki/Packet_analyzer is a useful introduction.

Kees

- Collapse -
Good advice so far.
Jul 3, 2013 8:05PM PDT

Thanks for the advice so far. s you can probably tell, I'm keen to keep get my network as secure as possible, and if I pick up some networking and security know-how along the way, so much the better.

Any more advice welcome.

- Collapse -
Answer
I am planning to hook up a wireless router
Jul 6, 2013 7:16AM PDT

I had purchased a D-Link wireless router and it has a built-in firewall. I have Comcast and I can download Norton 360 plus, will also get Constant Guard which will password protect my credit card.
I have Avast installed and they will sell you protection for WIFI. I had purchased one month which was good since I am on a fixed income.
Plus, I am installing all the HOSTS file into both laptop and desktop, along with SuperAntispyware Free Edition and Malwarebytes Antimalware and I feel confident I will have enough protection. Darrell

- Collapse -
I have added another item.
Jul 15, 2013 8:17PM PDT

One is found in Downloads from CNET and it is this: www.hsselite.com/. That is for Hot Spot Shield and is in Switzerland and HQ is in California. It uses VPN Technology and it changes the IP Address, t is not even warm to my real IP. Also, has extras for iPhones and more.

- Collapse -
Answer
UTM
Jul 12, 2013 7:45PM PDT

Hi,
it sounds like you want/need to take network security to a much deeper level than commonly used in the consumer environment. That being the case, you need to invest in a Unified Threat Management appliance, which as its name implies is a unified hardware solution that monitors and controls access to your network.

See http://en.wikipedia.org/wiki/Unified_threat_management for a description of UTM.

Then if you decide that's for you, Google for a few suppliers and compare features and functions. Such devices start at a few hundred dollars for an entry level device to many thousands for devices that make Fort Knox look like a paper bag! All depends how important security is to you.

Good Luck!