SECURE Evjl's Rain's security config

Discussion in 'PC Security Configuration' started by Evjl's Rain, Feb 15, 2017.

  1. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    only those 3
    Capture.PNG
     
    AtlBo, given, Rebsat and 1 other person like this.
  2. Rebsat

    Rebsat Level 5

    Apr 13, 2014
    213
    592
    Sulaimaniya, Iraq
    Windows 7
    Emsisoft
    Thanks bro for providing us with various security tweaks. Much appreciate it ;)
     
    AtlBo, given, Syafiq and 1 other person like this.
  3. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    those are not really any security tweak. These are for convenience :)
    they help to skip some annoying ads and bypass countdown of some websites like adfly
     
    AtlBo, given and Rebsat like this.
  4. Syafiq

    Syafiq Level 7

    May 8, 2017
    330
    2,132
    Student
    Indonesia
    Windows 10
    Emsisoft
    Hi, @Evjl's Rain ! How's your experience with CFW an ZAM Premium ? Are they great combo ? I'm going to install it on my system(if i don't change my mind) and
    I 'm thinking about switching to Windows 8.1(It's hard to decide for now) :)
     
    AtlBo, given and TerrakionSmash like this.
  5. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    they work perfectly with each other without any conflict. super lightweight also
     
  6. Syafiq

    Syafiq Level 7

    May 8, 2017
    330
    2,132
    Student
    Indonesia
    Windows 10
    Emsisoft
    AtlBo and given like this.
  7. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    CF is super low
    ZAM may vary, it starts around 30-50MB and sometimes can reach 120MB if we run a lot of programs, rarely 400MB after we perform several scans
    the solution is we can clean the ram occationally (cleanmem or minimem) or exit and restart ZAM, everything will be back to normal. I consider it a memory leakage but zemana said it is normal
    don't worry about memory usage because it's not frequently for zam to get over 100MB

    together in normal condition, this combo uses less memory than avast free alone, which is the second lightest AV on RAM usage, after webroot
     
  8. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    Installed:
    - Avast free: File, web & behavior shields with some tweaks for performance (also disabled java, script, powershell)
    - Sandboxie
    - Vt Hash Check
    - Windows Firewall: experimenting my own rules, blocked telemetries

    Removed:
    - Zemana Anti-malware, Comodo Firewall: want to try different setup less popups possible. I had to whitelist programs from CF's sandbox 10 times 2 days ago -> tired & angry
    - KIS 2018: dislike the performance impact although app control was disabled, it was still partially active somehow. Never comes close to KFA or even KAV in terms of performance. RAM usage was much higher than KFA with the same modules enabled
     
    Der.Reisende, AtlBo, XhenEd and 2 others like this.
  9. TerrakionSmash

    TerrakionSmash Level 16

    Nov 17, 2016
    750
    2,125
    Somewhere underwater or over water. I am water!
    Windows 10
    Microsoft
    Knew this would happen the first time you had mentioned it.
     
  10. Umbra

    Umbra From Emsisoft
    Developer

    May 16, 2011
    17,162
    29,619
    Community manager
    Vietnam & France
    Windows 10
    Emsisoft
    CFW is for masochists :p

    but once the rules are set properly, popups become rare even in Paranoid mode.
     
    Der.Reisende, Syafiq, AtlBo and 3 others like this.
  11. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    haha, for me, even in safe mode, due to my behavior of installing apps every single day, CF is always in action because the apps are not yet classified as trusted although they are completely safe
     
    Der.Reisende, frogboy, AtlBo and 2 others like this.
  12. Umbra

    Umbra From Emsisoft
    Developer

    May 16, 2011
    17,162
    29,619
    Community manager
    Vietnam & France
    Windows 10
    Emsisoft
    AtlBo and Evjl's Rain like this.
  13. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    I do have a student license for office 365 but it's toooooo slow. It took forever to open some documents even with all tweaks applied. I also hate the fact it installs everything and doesn't allow me to remove unneeded components. I take the risk to speed up my productivity
    Office 2010 works the best for me but I'm using 2013 because 2013 has vietnamese proofing tool while they dropped the support for 2010 long ago :p
     
    AtlBo and learningexp like this.
  14. learningexp

    learningexp Level 1

    Nov 7, 2015
    8
    24
    Paris
    Amazing thread, I learnt a lot, thanks @Evjl's Rain !
    Got a bugging one though, can't get rid of this annoying popup every time I close the browser (which is sandboxed with sandboxie).
    https://i.imgur.com/FT6mIoQ.png
    Any workaround? I added sandboxie to "dont detect shellcode injections" I even tried with cmd.exe to no avail.

    Changed my setup from KFA+ZAM to CF+Avast Free, so far so good, except for that bugger. :cool::love:
     
    AtlBo likes this.
  15. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    you can uncheck this option, I think it will completely stop that popup
     

    Attached Files:

  16. learningexp

    learningexp Level 1

    Nov 7, 2015
    8
    24
    Paris
    That solved my problem indeed. Cheers, and thanks for sharing you knowledge :)
     
    Syafiq, AtlBo and Evjl's Rain like this.
  17. d0ts

    d0ts Level 1

    Nov 9, 2017
    21
    61
    Viet Nam
    Windows 10
    Emsisoft
    #117 d0ts, Nov 9, 2017
    Last edited: Nov 13, 2017
    You can use a tool named Configuration XML Editor in github to create a xml configure file and place it in the folder you placed the MS Office's setup.exe. Launch cmd and cd to that folder. Then run the following commands:
    - To download the pre-required files for installing if you haven't:
    Code:
    setup.exe /download [name_of_xml_file].xml
    -To install the office after pre-required files downloaded:
    Code:
    setup.exe /configure [name_of_xml_file].xml
    I also got a student license for MS Office but now I'm somewhat in love with SoftMaker Office 2018 :p
    Edit: added cmd to download pre-required files. I always have a backup of them from the first time install, thus forgot to mention :p
     
    harlan4096 likes this.
  18. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    Removed:
    - Comodo Firewall

    Added:
    - Windows Firewall: blocked all connections of vulnerable processes
    - Firewall App Blocker
    - Sandboxie
    - Norton Safe Web, Enhancer for Youtube (chrome extensions)
     
  19. Evjl's Rain

    Evjl's Rain Level 28
    Trusted AV Tester

    Apr 18, 2016
    1,791
    13,130
    Vietnam
    Windows 8.1
    Avast
    updated some tweaks used for a while, too lazy to update them before:

    1/ Process Lasso: disallowed wscript, cscript, powershell.exe, powershell_ise.exe, java.exe, javaw.exe
    2/ Group Policy (SRP): blocked some extensions: .hta, .jar, .scr
    3/ Regedit: blocked windows script host
    4/ Windows Firewall:
    - blocked all inbound connections
    - block outbound: msra.exe, msha.exe, wscript, cscript, powershell, powershell_ise, conhost, cmd
     
  20. steel9

    steel9 Level 3

    Jun 23, 2017
    142
    398
    Sweden
    Windows 10
    F-Secure
    Does your Java blacklists persist with every Java update as the folder path changes with every version? Or can you block processes by folder/name in Process Lasso?
     
    Der.Reisende likes this.
Loading...
Similar Threads Forum Date
Evjl's Rain's security config SCW Archive May 30, 2016
Evjl's Rain Zemana Report - January 2017 Zemana Jan 11, 2017
Android Rain's S7 Mobile Security Configuration Aug 4, 2017