SECURE: Basic Evjl's Rain's security config

Most recent changes
Apr 20, 2018
Operating System
Windows Edition
Pro
Build
1511
System type
64-bit OS
Security Updates
Check for Updates only - User interaction for download and installation
User Access Control
Never Notify
Device Firewall
3rd-party Firewall - Network security provided by a trusted vendor
Device Security
Windows Defender SmartScreen
User Account
Administrator - User has complete control over the device
Recent Security Incidents
No malware or privacy issues
Malware Testing
Malware on a secure VM (Isolated from files and network)
Real-time Web & Malware Protection
Comodo Firewall, Immunet, Syshardener, Quad9 DNS, SRP tweaks
Security Protection settings
Custom - Major changes for Better Performance
Virus and Malware Removal Tools
Zemana, HitmanPro, NPE, Emsisoft emergency kit
Browsers and Extensions
Google Chrome x64 (RAMdisk cache): ublock origin, Norton Safe Web, Notifier for Gmail, Google Translate, Violentmonkey, VTchromizer, h264ify, NanoDefender, Open link in same tab, pop-up as tab [Free], Windows Defender Browser Protection, Malwarebytes for Chrome
Web Privacy
1/ ublock origin: Steven Black's hosts, many others
Password Management
None
Default Web Search
Google, Duckduckgo
System Utilities collection
CCleaner+CCenhancer, auslogic disk defragmenter, Wise disk cleaner, Wise registry cleaner, IObit Uninstaller, Geek uninstaller, Revo Uninstaller, Syshardener, O&OShutup, WPD, utorrent pro, SumatraPDF, Foxit PhantomPDF, EagleGet, SoftPefectRAM Disk, Winrar, Everything Search Engine, Classic Shell, Run-by-Smartscreen
Personal data Backup
Dropbox, Google Drive
Intervals between Personal data backups
None
Disk Imaging Backup
Norton Ghost
Intervals between System Image backups
Occasionally
Device Specs
https://malwaretips.com/threads/rains-laptop.61841/#post-528136
Joined
Apr 13, 2014
Messages
237
OS
Windows 7
Antivirus
Avast
Questions:
1.
Which type of your Local Account exactly is? Type of User Account: Local Account
Is it an Administrator account (full admin privilege)? or it is just a Standard user account (limited privilege).

2. Are you still having User Access Control as Disabled? and Why?

3. What OS File Reputation: SmartScreen for Windows 10 is? What is doing to increase user protection? and How effective is?


4. How did you get this OS File Reputation: SmartScreen for Windows 10? while you are a Windows 8.1 user... or it is a built-in feature in Windows 8.1 too.

5. Should I worry about the lack of this SmartScreen for Windows 10 feature in my Windows 7? and Is there any replaceable feature in Windows 7 would do the same job?


Thank you very much for your good assistance bro :)
Best regards,
 
Last edited:

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Questions:
1.
Which type of your Local Account exactly is? Type of User Account: Local Account
Is it an Administrator account (full admin privilege)? or it is just a Standard user account (limited privilege).

2. Are you still having User Access Control as Disabled? and Why?

3. What OS File Reputation: SmartScreen for Windows 10 is? What is doing to increase user protection? and How effective is?


4. How did you get this OS File Reputation: SmartScreen for Windows 10? while you are a Windows 8.1 user... or it is a built-in feature in Windows 8.1 too.

5. Should I worry about the lack of this SmartScreen for Windows 10 feature in my Windows 7? and Is there any replaceable feature in Windows 7 would do the same job?


Thank you very much for your good assistance bro :)
Best regards,
1/ I'm using local account: administrator - full admin. I don't like the standard user account because of my daily usage, impossible to use the SUA
2/ because it's not useful for me. I run what I want to run and I will almost always click Yes. actually, I don't fully disable UAC
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA = 1
3/ OS file reputation = smartscreen = reputation file checker. If a file downloaded from the internet is not recognized by microsoft, smartscreen will show a prompt and block the file from running. It's like a default-deny/antiexe-like module. Useful to have but not must-have
4/ W8.1 has the same Smartscreen as w10, built-in and enabled by default
5/ you don't have to worry. It's just a reputation checker and prone to false positive. It only works if the file is downloaded from the internet. If you get the file from your USB or from somewhere else, SS won't work. Having it is better than nothing but nothing it doesn't mean unprotected

Note: I'm trying my best to make my setup exactly the same like what I set up for other people, who are complete average users and just know how to do very basic tasks. IMO, UAC is totally useless for them because they will always click Yes. I care more about usability, performance and productivity. Security is not prioritized
 
Last edited:

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Added:
- KIS 2018: disabled application control and other unneeded components
- Chrome x64, some tweaks
- Avira Safe Shopping (chrome)

Removed:
- Avast: incompatible with OSA
- Slimjet
- Norton Safe Web: not needed when having Norton DNS
- Eagleget chrome extension: a bit high CPU usage, not really needed
- Removed some ublock's malware filters despite no noticeable CPU usage increase or speed decrease
- AdguardDNS: no longer working with DNS client service disabled
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Question: Why did you eliminate Slimjet?:)
I don't know, I just feel chrome is a little bit smoother and faster, not much :) noticeable when loading animated images or using some CPU intensive tasks
I want to try different browsers, I may switch back to slimjet one day because it has some features I like, which are not present in chrome

ps: chrome is the most compatible browser with all extensions. Slimjet sometimes has some problems with a few extensions, especially avira safe shopping
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Hi there, just wondering what you didn't like about KIS Application Control
because it slowed down my computer and restricted the installation of other programs (OSA), made them corrupted
I noticed myself had to open the app. control to whitelist them many times a day -> I don't want to and opening app control took at least 5 clicks, no shortcut. I'd rather use VS but VS + KIS = slow PC

Now I'm using KIS like KAV + KIS's firewall. I think it's good enough. I like everything to be automatic, no interaction
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Installed:
- Avast internet security
- some SRP rules: added java.exe and javaw.exe

Removed:
- Kaspersky Internet Security
- NVT OSArmor: conflicted with avast -> not functioning, sorry for a very good program

Layers of security:
- chrome safebrowsing and ublock's filters -> avira browser safety -> norton DNS -> avast webshield -> file shield -> hardened mode or cybercapture -> behavior shield
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Hmm... I think you're not a fan of paid avs :D BTW, why are you removed KIS ?
yeah, I'm not a fan of paid AVs
someone gave me this avast key and I use it

avast is lighter for me and it has a better, less buggy and more user-friendly firewall, IMO
I don't like windows firewall because I can't customize my rules for browser easily
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Added:
- Kaspersky Free: tweaked for maximum performance (Scan on execution)
- Comodo Firewall: CS's configuration & a few personal rules
- Norton Safe Web (chrome)
- Adguard Popup Blocker (script for Violentmonkey)
- Open link in same tab, pop-up as tab (chrome extension)
- DNS: 8.8.8.8, 208.67.222.222 for extra speed
- Syshardener: portable, used 1 time only
- Softperfect RAMdisk: 150MB RAM disk for storing google chrome's caches

Removed:
- Avira Browser Safety: decreased detection rate recently, some memory leak (250MB) after hours of watching youtube
- Avast Internet Security: no specific reason, the current setup is lighter
- Norton DNS: switched to other DNS-es for better speed
- Popup Blocker (strict): caused some problems with some websites (virustotal: not loading the logo -> removed: the logo was loaded)
- Poper Blocker: not needed, weaker than Popup blocker strict
- Sandboxie
- Dataram RAMdisk: outdated and limited
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
so Kaspersky free with stands your malware tests sufficiently?
hi, it for sure can't stand against malware test but it's the most suitable for me to use alongside CF
it has the best signatures, one of the best web filters, extremely light after tweaking, no conflict with CF and more importantly, it's free
with CF, I only need a good light, free AV with strong signatures

avast is the next best AV however, its signatures and web filters are worse and there are a few compatibility issues
 
Last edited:
Joined
Aug 17, 2013
Messages
1,512
OS
Linux
Antivirus
Isolation
hi, it for sure can't stand against malware test but it's the most suitable for me to use alongside CF
it has the best signatures, one of the best web filters, extremely light after tweaking, o conflict with CF and more importantly, it's free
with CF, I only need a good light, free AV with string signatures

avast is the next best AV however, its signatures and web filters are worse and there are a few compatibility issues
Hi, @Evjl's Rain. If you had to choose between your current setup or using a tweaked KIS which one would you go for?, lets just say you won a license for KIS so both options were free.
 

Evjl's Rain

Level 37
Content Creator
Trusted
AV-Tester
Joined
Apr 18, 2016
Messages
2,631
OS
Windows 8.1
Antivirus
Avast
Hi, @Evjl's Rain. If you had to choose between your current setup or using a tweaked KIS which one would you go for?, lets just say you won a license for KIS so both options were free.
It's not an easy question to answer
because tweaked KIS is certainly enough but it's much heavier than my current setup due to application control
if I disable the app control, it's not KIS anymore
moreover, I dislike KIS's firewall because of its inherited settings. When I block explorer.exe connection (Windows explorer) -> I use Windows explorer to open an app which requires internet connection, the app is also blocked because the settings are inherited from windows explorer -> have to manually unblock it -> quite annoying
and when I want to block an app in public network while allow it to connect in Home network, it's impossible. Block in Public = block everything

I think I would choose my current setup although comodo firewall is quite noisy sometimes
 
Forgot your password?