Evjl's Rain's security config

[Evjl's Rain]

Hi everyone, this is my windows configuration. I don't really have anything important in my laptop. Even if I get ransomware, I just laugh and restore my laptop from the GHO file . I have nothing to lose. I have all my important data in cloud, <15Gb

I don't really care about security and I don't want security softwares to prompt everything I wanna do. I just want a setup that set-and-forget with fewer user interations as possible. I don't wanna serve my laptop but I want it to serve me

I always do my online banking inside kaspersky safemoney environment and makesure there is no running malware processes running in background using process explorer and virustotal API

I believe I have enough knowledge to deal with malwares and possible errors from windows as I always fix my friends' computers

I set UAC minimum cuz I don't think it's needed as I have voodooshield which asks a lot more than UAC itself and I know what I wanna run so I'm not willing to change it cuz I basically just click Yes in most cases

Any suggestion for my setup? Thank you so much

 

[_CyberGhosT_]

Not a bad config, nice and lite, with VooDoo you can disable UAC altogether but i like that you at least leave it on "minimum"
I do this as well rather that disabling it altogether.
Thanks for sharing your config.

 

[frogboy]

I would like to suggest a backup solution for a bit more flexibility. Macrium Reflect and Aomei Backupper are both very reliable and free.

 

[Evjl's Rain]

I would like to suggest a backup solution for a bit more flexibility. Macrium Reflect and Aomei Backupper are both very reliable and free.

Thank you but I think I don't need them cuz my laptop is almost empty, there is nothing to backup . I tried windows backup and it did the job well as it saved all my appdata and game data (PES 2016) to other drives and USB

 

[Kate_L]

Why do you have CCleaner, Wise Care 365, IObit Advanced SystemCare Pro at the same time ?

 

[Evjl's Rain]

Why do you have CCleaner, Wise Care 365, IObit Advanced SystemCare Pro at the same time ?

each of them for a different purpose
CCleaner with ccenhancer for daily-weekly cleanup
wise365 portable: only use when needed either for cleanup, tweaking or monitor pc because of their features
iobit portable: advanced tweakings.
I have been testing different ways of tweaking my pc/laptop for 10 years (failed sometimes)
because of this combination and a few other stuffs, I have my laptop with 5400rpm HDD boots up in less than 15s

 

[Captain Awesome]

User Access Control- Not Dim Desktop (Minimum)= High Risk.
Too many Extensions= Vulnerability also high for browser.

 

[Ink]

User Access Control- Not Dim Desktop (Minimum)= High Risk.
Too many Extensions= Vulnerability also high for browser.

To add,

Do not dim my desktop - When a UAC prompt is shown, the desktop is not dimmed and other programs are able to interfere with it. Security Impact: this level is even less secure as it makes it easy for malicious programs to simulate keystrokes or mouse moves that interfere with the UAC prompt.

What is UAC (User Account Control) & Why You Should Not Turn it Off

Unless your PC specifications are weak, do not disable the Secure Desktop.

 

[Evjl's Rain]

User Access Control- Not Dim Desktop (Minimum)= High Risk.
Too many Extensions= Vulnerability also high for browser.

To add,

Do not dim my desktop - When a UAC prompt is shown, the desktop is not dimmed and other programs are able to interfere with it. Security Impact: this level is even less secure as it makes it easy for malicious programs to simulate keystrokes or mouse moves that interfere with the UAC prompt.

What is UAC (User Account Control) & Why You Should Not Turn it Off

Unless your PC specifications are weak, do not disable the Secure Desktop.

thanks for the heads up. So which level should I set for UAC? Default or always notify? Is Default good enough?

 

[Evjl's Rain]

Changes:
1/ remove Anti-AutoLike Facebook
2/ UAC -> Default

Animation policy is made by Google and it does not run in background according to chrome task manager so I think I can keep it

 

[Noxx]

Now that you've enabled UAC, the rest of your setup is good. Thanks for sharing.

 

[Exterminator]

CCleaner should be more than enough.
Nice config! Thanks for sharing it with us

 

[Evjl's Rain]

CCleaner should be more than enough.
Nice config! Thanks for sharing it with us

if you use ccleaner + ccenhancer than you use diskmax, you willvfind out that ccleaner is not enough. Diskmax will clean 512mb-2gb more after using ccleaner. That's why I use them in combination

 

[jamescv7]

So far so good on that configuration, you may try to explore enough the configuration of Application Control (Kasperksy) which the effectiveness plays by tweaking.

 

[Evjl's Rain]

Removed: Kaspersky IS, Google Chrome
Added:
- Avast IS with custom installation - removed unnecessary stuffs
+ Custom settings followed this post
- Cốc Cốc browser (chromium engine)
- Tampermokey -> Violentmokey with Youtube +, adsbypasser & antiadblock killer
- Web boost (chrome extension)
- More antispyware & adware custom rules for ublock origin

 

[Evjl's Rain]

Added:
- Kaspersky Internet Security 2017 MR0
- Cloneapp (will reset my windows 10 home soon because of some unrepairable bugs)
- Stealth mode by adguard - chrome extension
- ublock spyware/adware filters + vietnamese ad filters (added long ago but forgot to post)

Spoiler: ublock filters

http://abpvn.com/filter/abpvn-hbggIQ.txt
https://adguard.com/en/filter-rules.html?id=3
https://adguard.com/en/filter-rules.html?id=2
http://hosts-file.net/emd.txt
https://easylist-downloads.adblockplus.org/adwarefilters.txt
http://abpvn.com/android/abpvn.txt
Malvertising filter list by Disconnect‎
Malware filter list by Disconnect‎
hpHosts’ Ad and tracking servers‎

Removed:
- Avast IS - boot time is higher than KIS after defragging the HDD
- Wise care 365

 

[JM Safe]

Please delete the unnecessary extensions, having too extensions can cause vulnerability to your browsing. Personally I will keep only: BD TrafficLight, HTTPS Everywhere and uBlock Origin.

Thanks for sharing

 

[Evjl's Rain]

Please delete the unnecessary extensions, having too extensions can cause vulnerability to your browsing. Personally I will keep only: BD TrafficLight, HTTPS Everywhere and uBlock Origin.

Thanks for sharing

I turned off a few extensions but some of them are extemely useful for productivity and security. For example webrtc limiter and stealth mode

 

[JM Safe]

I turned off a few extensions but some of them are extemely useful for productivity and security. For example webrtc limiter and stealth mode

So, that's ok.

 

[jamescv7]

Well for productivity then it's fine to have some bunch of addons but do not tighten very much in terms of security; as side-effects could happen,