I wrote this for someone that needed guidance on how to increase his network security to prevent hackers from accessing his computer. I figured I would share it with everyone to help those that need further guidance.



https://support.norton.com/sp/en/us/home/current/solutions/kb20100824120155E Power Eraser Rootkit remover

https://www.antivirussoftwareguide.com/reviews/bitdefender                               

https://www.malwarebytes.com/antirootkit                            

https://www.mcafee.com/enterprise/en-us/downloads/free-tools/terms-of-use.html?url=https://downloadcenter.mcafee.com/products/mcafee-avert/rr/rootkitremover.exe             

https://usa.kaspersky.com/downloads/tdsskiller

https://www.microsoft.com/en-us/download/details.aspx?id=9905        Virus Scanner

https://www.protonmail.com   free VPN




1. Download these free scanners and protection first 


2. Did you change default password on the modem, if not flip it over get the IP address off the bottom, it has default password and name.
   log in to the modem and change name and password.  Password needs to have uppercase, lowercase, numbers, special characters 
   you can put a couple words together, but cut and mix them up.  Example Road Fire House.... RofIh@$4dR3se , change it up much as possible so if they are using a dictionary attack it will never guess it.
   
   
   Left side of the screen should be a tab that says MAC Filter might be Network Filter >> Click option to add MAC Filter >>  search bar bottom left type.... cmd >> ipconfig /all >> 
   Scroll down till you see Physical Address >> Copy the numbers to the right (this type of format:  1A-2B-3C-D4-E5-F6) >> Enter your physical address into the MAC address spot and click apply >> 
   Scroll down till you see some boxes and check the Enable MAC Filter >> Next search for "Turn on MAC Filtering/Access Control" or "MAC Restrict Mode." 
   

3. Search bar bottom left of the screen -  type settings >> then go to update & Security >> click Check for update >> 
   if the system needs updating let it finish >> Click Windows Security Tab and make sure everything is turned on there>>
   Search the bar to the left side and check for Device Encryption >> If you have it, Enable it >> On the back of the modem should be a pin hole, 
   take a tooth pick and push the button in there for 5 seconds to reset the modem >>Pull the power cord from the modem
   Search bar bottom left >> type....  SystemPropertiesAdvanced >> Select run as administrator >> On the tabs click the Remote Tab >> 
   Allow Remote Assistance should be left Blank(Unchecked) >> Down below make sure the Dont allow remote connection is selected >> Click Apply and exit
   

4. in the search bar bottom left type.. cmd >> click the run as administrator >> Type each of these commands and hit enter for each one:

ipconfig /flushdns    
net stop dnscache   
net start dnscache  
ipconfig /release     
ipconfig /renew       


5. Do not click links, highlight them and paste them 


6. Keep your password on a piece of paper on your desktop, highlight and paste.  If someone has a keylogger on your computer they can not see what you copy and paste only what you type


7. Bottom Left click the Windows Icon >> select Windows Powershell(Admin) >> copy and paste this :  netsh advFirewall Firewall add rule name="OSRadar Rule PING IPv4" protocol=icmpv4:8,any dir=in action=block  


8. Start running the scanners while not connected to the internet, the Microsoft link second from the bottom will take the longest.  Stay disconnected from the internet till all the scanners have done a full scan 


9. While on the SystemPropertiesAdvanced screen >> System Protection Tab >> Click each drive in the bottom window and click the configure button >> 
   Turn protection on for each drive >> Then click Create >> Name it First Restore Point
   now if there is any error you can restore your computer to this point in time.


  So a recap of what all was done.  Downloaded several scanners to check for Rootkits, Keyloggers, Viruses, and Trojans.  Downloaded the free VPN from protonmail, checked for default user name and password, if so then log in with them and change both of them. Enabled MAC Filtering so only your MAC Address can use the network(they can spoof your MAC Address), Updated the computer, flushed the DNS for a fresh start, released the old IP address to get a new IP address, give it 10 minutes plus before getting new IP address, Rebooted the Modem to erase all IP's, then unplugged it to be safe.  
Disabled RDP so know one can access your computer through it, disabled the Ping command so no one will know your online, scanned the whole computer then made a fresh restore point.

If anyone has any questions feel free to ask.....