- Oct 25, 2018
- 252
I noticed early on that SAC was disabled. I reinstalled Windows once, only to end up disabling it again almost immediately because something didn't work. Can't remember for certain what it was, but I think it may have been CFW.
I use Cruelsister's configuration, though I leave it in silent mode because I don't consider myself an expert who can interpret every alert. Cruelsister herself said CFW will err on the side of caution in that case. The Downloads folder is virtualized, but I have a separate non-virtualized folder that I created in case I need to install something, and can drag files from the Downloads folder to that one in the Quick Access pane. Most installers would likely work anyway, since Comodo (Xcitium) would know about them and have them whitelisted. The last thing I installed was Zoom, because I'm using the computer for a new job with a financial planning company. The non-virtualized folder still gets scanned by WD.
I have AppCheck Anti-Ransomware Free, which automatically backs up data files to a secure vault in case of a ransomware infection. I also used to have WVSX, until I found out that it is no longer actively maintained. I wouldn't mind having some kind of companion sentinel app with AI or ML. I don't have any desire for a 3rd-party AV because I scan everything at VirusTotal, and signature-based engines are unlikely to catch a zero-day anyway. I've installed H_C in the past, but don't like having to reboot. I've considered OSA, but wonder whether that's a good choice, or if there are better alternatives. I don't download software from untrusted sources.
I occasionally get email attachments from the company I'm studying to work for. I save them in Downloads, and have VirusTotal Uploader for right-click convenience.
Right now, all data files are on the C partition with everything else, simply because I've been too lazy to re-partition the drive. System last backed up 12/23/2023, image was about 105 GB. I keep the last two backups on my external 500 GB Samsung SSD, and the last three backups on a 4 TB WD Passport, all with MD5 checksums. My most important files are backed up to external drives, flash drives, and Google Drive. I read that Google lost a bunch of people's files recently, but haven't noticed anything missing from my account, or any sudden decrease in storage occupancy.
LastPass has a 30-digit master password with capitals, miniscules, numbers, and symbols. It mostly comprises a line from a song that my grandma used to sing to me, but she changed one of the words to be funny. The password is unique to LP, and the words are not searchable verbatim online. My account also has 2FA with LastPass Authenticator. I use Google Authenticator on any other account that allows 2FA apps. Most of my passwords are randomly-generated by LP, and 25 digits long with all character types if supported by the website.
I install updates every Patch Tuesday (usually in the evening), and run SFC immediately afterwards. My Chrome and Firefox browsers are portable, and I use the PortableApps platform to update them. I actually have Chrome locally installed for Chrome Remote Desktop, but use Chrome Portable or Opera for most of my daily activities. Firefox Portable is there, in case any site might require it. Most of the time, they require Chrome if anything.
When I bought the computer, I unhid the local administrator, added a password, and hid it again. I have a dedicated administrator account with a separate Microsoft profile, which owns the Bitlocker recovery key. Both it and my standard account for everyday use have 50-digit online passwords with 2FA, though the local desktop PINs are shorter (I never even type them, because the computer has a fingerprint reader). I also have a BIOS password.
I run HMP periodically, and also HJT. I ran both again just before creating this thread. WD also runs its regular scans automatically.
I use Cruelsister's configuration, though I leave it in silent mode because I don't consider myself an expert who can interpret every alert. Cruelsister herself said CFW will err on the side of caution in that case. The Downloads folder is virtualized, but I have a separate non-virtualized folder that I created in case I need to install something, and can drag files from the Downloads folder to that one in the Quick Access pane. Most installers would likely work anyway, since Comodo (Xcitium) would know about them and have them whitelisted. The last thing I installed was Zoom, because I'm using the computer for a new job with a financial planning company. The non-virtualized folder still gets scanned by WD.
I have AppCheck Anti-Ransomware Free, which automatically backs up data files to a secure vault in case of a ransomware infection. I also used to have WVSX, until I found out that it is no longer actively maintained. I wouldn't mind having some kind of companion sentinel app with AI or ML. I don't have any desire for a 3rd-party AV because I scan everything at VirusTotal, and signature-based engines are unlikely to catch a zero-day anyway. I've installed H_C in the past, but don't like having to reboot. I've considered OSA, but wonder whether that's a good choice, or if there are better alternatives. I don't download software from untrusted sources.
I occasionally get email attachments from the company I'm studying to work for. I save them in Downloads, and have VirusTotal Uploader for right-click convenience.
Right now, all data files are on the C partition with everything else, simply because I've been too lazy to re-partition the drive. System last backed up 12/23/2023, image was about 105 GB. I keep the last two backups on my external 500 GB Samsung SSD, and the last three backups on a 4 TB WD Passport, all with MD5 checksums. My most important files are backed up to external drives, flash drives, and Google Drive. I read that Google lost a bunch of people's files recently, but haven't noticed anything missing from my account, or any sudden decrease in storage occupancy.
LastPass has a 30-digit master password with capitals, miniscules, numbers, and symbols. It mostly comprises a line from a song that my grandma used to sing to me, but she changed one of the words to be funny. The password is unique to LP, and the words are not searchable verbatim online. My account also has 2FA with LastPass Authenticator. I use Google Authenticator on any other account that allows 2FA apps. Most of my passwords are randomly-generated by LP, and 25 digits long with all character types if supported by the website.
I install updates every Patch Tuesday (usually in the evening), and run SFC immediately afterwards. My Chrome and Firefox browsers are portable, and I use the PortableApps platform to update them. I actually have Chrome locally installed for Chrome Remote Desktop, but use Chrome Portable or Opera for most of my daily activities. Firefox Portable is there, in case any site might require it. Most of the time, they require Chrome if anything.
When I bought the computer, I unhid the local administrator, added a password, and hid it again. I have a dedicated administrator account with a separate Microsoft profile, which owns the Bitlocker recovery key. Both it and my standard account for everyday use have 50-digit online passwords with 2FA, though the local desktop PINs are shorter (I never even type them, because the computer has a fingerprint reader). I also have a BIOS password.
I run HMP periodically, and also HJT. I ran both again just before creating this thread. WD also runs its regular scans automatically.