Hi, I recently found out that some of the default settings in the router my mom got from the internet provider when getting fiber, were pretty bad. Should've checked it long ago. Last month Malwarebytes caught ransomware on her PC and I couldn't understand how it got there since I manage all installations, backups etc. on her PC as well as only installing software I'm using on my own and have scanned thoroughly with several scanners. So I check the router and found this:
1) UPnP was enabled
2) Firewall was set to:
LAN to WAN: Allow All
WAN to LAN: Allow All
The setup is: Windows 10 with Malwarebytes Premium and Mullvad VPN launch at start-up, auto-connect ON, local network sharing ON and ads, trackers and malware content blockers ON as well as Simple Windows Hardening ON.
My question is then: What should I do - if the PC has been 'available' to the internet, that's pretty bad and I guess any rootkit could've been installed or how DOES a rootkit get installed? (I know I'll google this, I'm just writing my thoughts)
I'm installing Malwarebytes Firewall Control so any outbound connection shows a notification but of course I'm worried that neither firewall or SWH or Malwarebytes or an Emsisoft scan will find if someone's been on the PC.
Hope you'll share your thoughts without bashing me too hard
1) UPnP was enabled
2) Firewall was set to:
LAN to WAN: Allow All
WAN to LAN: Allow All
The setup is: Windows 10 with Malwarebytes Premium and Mullvad VPN launch at start-up, auto-connect ON, local network sharing ON and ads, trackers and malware content blockers ON as well as Simple Windows Hardening ON.
My question is then: What should I do - if the PC has been 'available' to the internet, that's pretty bad and I guess any rootkit could've been installed or how DOES a rootkit get installed? (I know I'll google this, I'm just writing my thoughts)
I'm installing Malwarebytes Firewall Control so any outbound connection shows a notification but of course I'm worried that neither firewall or SWH or Malwarebytes or an Emsisoft scan will find if someone's been on the PC.
Hope you'll share your thoughts without bashing me too hard