Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Guides - Privacy & Security Tips
How to strengthen up your security configuration
Message
<blockquote data-quote="Deleted member 21043" data-source="post: 372059"><p><span style="font-size: 12px">Hi everyone,</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">With the rate of new security configurations being posted all the time, it is only a good idea for me to make a thread on how someone could go about improving their security configuration. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Firstly, I recommend you use a good Antivirus/Internet Security product. An Antivirus product does not usually contain a Firewall. If the Antivirus product you decide does not, then I recommend installing a Firewall alongside your Antivirus product.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I personally recommed either 1 of the 3 Internet Security products. However, this is based on my experience and testing. Everyone has a different opinion, the only person who can decide which product they want to use is <strong>YOU</strong>. No one else. <strong>You should use the trials and test each one to see which one you prefer.</strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">1). ESET Smart Security - I personally feel that ESET have great signature-based/static-analysis detection. (The HIPS (<u>Host Intrusion Prevention System</u>) can perform better once configured correctly). As well as this they have the LiveGrid (cloud).</span></p><p><span style="font-size: 12px">You can obtain ESET Smart Security from the official website, here: <a href="http://www.eset.co.uk/Home/Smart-Security" target="_blank">http://www.eset.co.uk/Home/Smart-Security</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">2). Emsisoft Internet Security - I personally feel that the Emsisoft Behaviour Blocker is good at preventing malware infections and has a good cloud network.</span></p><p><span style="font-size: 12px">You can obtain Emsisoft Internet Security from the official website, here: <a href="http://www.emsisoft.com/en/software/internetsecurity/" target="_blank">http://www.emsisoft.com/en/software/internetsecurity/</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">3). Kaspersky Internet Security - the signature based detection is OK in my opinion, however they have a feature called Application Control which is quite well liked. As well as this they have the <u>KSN </u>(cloud).</span></p><p><span style="font-size: 12px">You can obtain Kaspersky Internet Security from the official website, here: <a href="http://www.kaspersky.co.uk/internet-security?domain=kaspersky.com" target="_blank">http://www.kaspersky.co.uk/internet-security?domain=kaspersky.com</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For the money, I recon Emsisoft Internet Security is the best deal. However, I like all 3 products and all 3 are great in my opinion.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you do not want an Internet Security product then I recommend getting an Antivirus product and then a firewall product alongside it. For Antivirus, I recommend the Antivirus version of the products listed below, however I will also mention some free alternative Antivirus products below, for anyone cannot currently purchase an Internet Security suite:</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Paid:</span></p><p><span style="font-size: 12px">1). ESET NOD32 (Antivirus)</span></p><p><span style="font-size: 12px">Download: <strong><a href="http://www.eset.co.uk/Home/NOD32-Antivirus" target="_blank">http://www.eset.co.uk/Home/NOD32-Antivirus</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">2). Emsisoft Anti-Malware</span></p><p><span style="font-size: 12px">Download: <strong><a href="http://www.emsisoft.com/en/software/antimalware/" target="_blank">http://www.emsisoft.com/en/software/antimalware/</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">3). Kaspersky Antivirus:</span></p><p><span style="font-size: 12px">Download:<strong> <a href="http://www.kaspersky.co.uk/anti-virus" target="_blank">http://www.kaspersky.co.uk/anti-virus</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Free:</span></p><p><span style="font-size: 12px">1). Avast Antivirus - Download: <strong><a href="https://www.avast.com/en-gb/index" target="_blank">https://www.avast.com/en-gb/index</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I expect someone will mention Qihoo in the comments, so I will mention it here, but not as a recommendation... Qihoo has a lot of users, however I personally do not think it's a fully polished product and I would certainly not trust it. Everyone has their own opinions. It's free; if you want to use it you can, however I do not recommend it and for this reason I will not include it in this thread. The product also seems to be promoted via a lot of adware. It's not always the vendors fault if their product is promoted via adware, however I see them promoted far too often than other vendors. Which is another reason why I have not included them in this thread.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For Firewall products alongside an Antivirus you could use a product like the free Comodo Firewall, however you can always just use Windows Firewall. If you use Windows Firewall, I recommend adding WFC (Windows Firewall Control) alongside it. There is also a program called "Glasswire" which is compatible with Windows Firewall. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Comodo Firewall - Download: <strong><a href="https://www.comodo.com/home/internet-security/firewall.php" target="_blank">https://www.comodo.com/home/internet-security/firewall.php</a></strong></span></p><p><span style="font-size: 12px">Windows Firewall Control - Download: <strong><a href="http://www.binisoft.org/wfc.php" target="_blank">http://www.binisoft.org/wfc.php</a></strong></span></p><p><span style="font-size: 12px">Glasswire - Download: <strong><a href="https://www.glasswire.com/download/" target="_blank">https://www.glasswire.com/download/</a></strong></span></p><p><strong><span style="font-size: 12px"></span></strong></p><p><strong><span style="font-size: 12px">Of course if you know of another Antivirus/Internet Security/Firewall product you want to use, you can feel free to use it. Those are just my suggestions for you.</span></strong></p><p><strong><span style="font-size: 12px"></span></strong></p><p><strong><span style="font-size: 12px">Before I go off AV/IS and Firewall products, you may like Comodo Internet Security. It also supports "Auto-Sandboxing" with it's Sandbox feature.</span></strong></p><p><strong><span style="font-size: 12px"></span></strong></p><p><span style="font-size: 12px">After you have got your Antivirus & Firewall/Internet Security sorted out, you will need something people refer to as "on-demand scanners". An on-demand scanner is an application which scans the system without real-time/behavioural components. As we know an Antivirus product may consist of the Real-Time protection, Web Filter, Behaviour Blocker/HIPS... Only difference is an on-demand scanner is when you use a product to just scan the system. You shouldn't install another Antivirus and just disable the Real-Time etc. You shouldn't do this. So instead, there are products which are just for scanning, allowing you to keep your existing security software for real-time protection.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For on-demand scanners I recommend you either pick 1 - 3 of the following. If you want to extend to 4 then you can, however I recommend 3 as a maximum:</span></p><p><span style="font-size: 12px"></span></p><p><a href="http://www.eset.com/us/online-scanner/" target="_blank"><strong><span style="font-size: 12px">ESET Online Scanner</span></strong></a></p><p><span style="font-size: 12px"><a href="https://www.malwarebytes.org/" target="_blank"><strong>Malwarebytes Anti-Malware</strong></a> (free, the pro version adds Real-Time protection however this is unnecessary).</span></p><p><span style="font-size: 12px"><a href="http://www.surfright.nl/en/hitmanpro" target="_blank"><strong>HitmanPro</strong> </a>(this does cost money however you get a free trial beforehand)</span></p><p><span style="font-size: 12px"><strong><a href="https://www.emsisoft.com/en/software/eek/" target="_blank">Emsisoft Emergency Kit</a> </strong>(EEK) </span></p><p><a href="http://www.herdprotect.com/" target="_blank"><strong><span style="font-size: 12px">HerdProtect</span></strong></a></p><p><strong><a href="http://www.zemana.com/product/zemana-antimalware/" target="_blank"><span style="font-size: 12px">Zemana Anti-Malware</span></a></strong></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Of course if you use ESET for real-time, then the Online Scanner would be pointless. Same for if you use Emsisoft as your main security product, the emergency kit would then be unnecessary. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">There is a program called Unchecky. The aim of this program is to help keep potentially unwanted programs off your PC.</span></p><p><span style="font-size: 12px">Download: <strong><a href="http://unchecky.com/" target="_blank">http://unchecky.com/</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Always make sure to have a backup plan. For backup I recommend using either <a href="https://www.paragon-software.com/home/br-free/" target="_blank"><strong>Paragon & Recovery</strong></a> or <a href="http://www.backup-utility.com/free-backup-software.html" target="_blank"><strong>AOMEI Backupper</strong></a>. As well as using one of these two pieces of software for backup/recovery, you can also try using cloud storage for your personal documents (of course if they are very important that no one else ever manages to get hold of them, don't use cloud storage since it's possible one day the cloud storage may be attacked) or storing them on an external device (external HDD, USB drive, blank DVD).</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I also recommend you keep System Restore points for the future. You never know, even with backup for recovery it can be useful. With this in mind, I also recommend you keep a backup of your Registry. Before cleaning with CCleaner you can do this (if you decide to use CCleaner). If not you can do it manually.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you like the thought of anonymity whilst browsing online, you may like the idea of using VPN (Virtual Private Network). I recommend: <a href="http://www.cyberghostvpn.com/en_gb" target="_blank"><strong>CyberGhost </strong></a>based on my experience. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I recommend an Anti-Exploit solution. A product like ESET will already contain Anti-Exploitation techniques, however if your main security solution does not contain such a feature then you may be interested in Malwarebytes Anti-Exploit.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">You can download Malwarebytes Anti-Exploit here: <a href="https://www.malwarebytes.org/antiexploit/" target="_blank">https://www.malwarebytes.org/antiexploit/</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">You may be interested in installing HitmanPro.Alert. It contains many features such as: [check the spoiler]</span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">[SPOILER="Features and minimum system requirements"]</span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">[/SPOILER]</span>[SPOILER="Features and minimum system requirements"][/SPOILER]</span>[SPOILER="Features and minimum system requirements"]</p><p><span style="font-size: 12px"><span style="font-size: 12px"></span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">The system requirements are shown below:</span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px"></span></span></p><p>[/SPOILER]</p><p><span style="font-size: 12px"><span style="font-size: 12px"></span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">It's <strong>CryptoGuard </strong>feature attracted many new users; you can more in-depth about it here: <a href="http://www.surfright.nl/en/cryptoguard" target="_blank">http://www.surfright.nl/en/cryptoguard</a></span></span></p><p><span style="font-size: 12px"><span style="font-size: 12px">You can find more information about it at the following URL: <a href="http://www.surfright.nl/en/alert" target="_blank">http://www.surfright.nl/en/alert</a></span></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I recommend that if you have an application you are unsure of or is new to you, you run it in a sandbox or another virtualized environment (such as a virtual machine) <strong><u>before</u> your real system. </strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For the sandbox, I recommend using Sandboxie: <strong><a href="http://www.sandboxie.com/" target="_blank">http://www.sandboxie.com/</a></strong></span></p><p><span style="font-size: 12px">For the virtual machine I recommend VMWare, however VirtualBox will do: <strong><a href="http://www.vmware.com/uk" target="_blank">http://www.vmware.com/uk</a></strong> & <strong><a href="https://www.virtualbox.org/" target="_blank">https://www.virtualbox.org/</a> </strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">A suggestion of mine if you want to be extra secure is to install Sandboxie and then run your Browser sandboxed with Sandboxie.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Please be aware of "Anti-Sandboxing"/"Anti-Virtualization" techniques which may try to trick you.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you do not want to do this manually yourself, you can upload an executable for online automated analysis with one of the following services:</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px"><strong><u><a href="https://www.hybrid-analysis.com" target="_blank">https://www.hybrid-analysis.com</a></u></strong> <strong>(recommended)</strong></span></p><p><strong><span style="font-size: 12px"><a href="https://malwr.com/" target="_blank">https://malwr.com/</a></span></strong></p><p><span style="font-size: 12px"><strong><a href="https://anubis.iseclab.org/" target="_blank">https://anubis.iseclab.org/</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">As well as this, you may wish to upload executables to a online scanning service like VirusTotal to check the score of other Antivirus engines you do not have access to on your main system.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">VirusTotal: <strong><a href="https://www.virustotal.com/" target="_blank">https://www.virustotal.com/</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For web browser extensions I recommend using HTTPS Everywhere. It won't work for every website, but it does for a lot. HTTPS encrypts the communication between your webbrowser and the website, which is always good for securtiy. You can read more about HTTPS Everywhere and the supported browsers at the official link: <strong><a href="https://www.eff.org/https-everywhere" target="_blank">https://www.eff.org/https-everywhere</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I also recommend 3 other extensions:</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">LastPass - good for storing passwords. You can read more about it at the offical link: </span></p><p><span style="font-size: 12px"><a href="https://lastpass.com/" target="_blank">https://lastpass.com/</a> (there is an extension available. If you cannot find it, search on the store for extensions for your browser e.g. for Google Chrome users, you can go here: <strong><a href="https://chrome.google.com/webstore/detail/lastpass-free-password-ma/hdokiejnpimakedhajhdlcegeplioahd" target="_blank">https://chrome.google.com/webstore/detail/lastpass-free-password-ma/hdokiejnpimakedhajhdlcegeplioahd</a></strong> and for Firefox users you can go here:<strong> <a href="https://addons.mozilla.org/en-us/firefox/addon/lastpass-password-manager/" target="_blank">https://addons.mozilla.org/en-us/firefox/addon/lastpass-password-manager/</a></strong> ).</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Click&Clean - good for cleaning your browser after your browsing session. </span></p><p><span style="font-size: 12px">Download - Google Chrome: <strong><a href="https://chrome.google.com/webstore/detail/clickclean/ghgabhipcejejjmhhchfonmamedcbeod?hl=en" target="_blank">https://chrome.google.com/webstore/detail/clickclean/ghgabhipcejejjmhhchfonmamedcbeod?hl=en</a></strong></span></p><p><span style="font-size: 12px">Download - Firefox: <strong><a href="https://addons.mozilla.org/en-us/firefox/addon/clickclean/" target="_blank">https://addons.mozilla.org/en-us/firefox/addon/clickclean/</a></strong></span></p><p></p><p><span style="font-size: 12px">WOT (Web Of Trust) - website reputation. <strong>NOTE: Please be aware that the reputation results may not always be 100% accurate and true. Take the results from WOT with a grain of salt. However, it's a nice addition and can be helpful in some cases.</strong></span></p><p><span style="font-size: 12px">Download: <strong><a href="https://www.mywot.com/" target="_blank">https://www.mywot.com/</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">I really recommend using an Adblocker. You may already know, however<strong> Advertisements invade your privacy in a way</strong> - <u>they can collect information</u> (for example, they can track you). <u>Blocking </u>the advertisements <strong>prevents </strong>this. For an Adblocker I personally recommend using uBlock (however it isn't available for all browsers, sadly). </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">You can download uBlock for Google Chrome here: <strong><a href="https://chrome.google.com/webstore/detail/ublock/cjpalhdlnbpafiamejdnhcphjbkeiagm?hl=en" target="_blank">https://chrome.google.com/webstore/detail/ublock/cjpalhdlnbpafiamejdnhcphjbkeiagm?hl=en</a></strong></span></p><p><span style="font-size: 12px">You can download uBlock for Firefox here: <strong><a href="https://addons.mozilla.org/en-us/firefox/addon/ublock/" target="_blank">https://addons.mozilla.org/en-us/firefox/addon/ublock/</a></strong></span></p><p><span style="font-size: 12px">You can download uBlock for Opera here: <strong><a href="https://addons.opera.com/en/extensions/details/ublock/?display=en" target="_blank">https://addons.opera.com/en/extensions/details/ublock/?display=en</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Since uBlock is not available for Internet Explorer, if you are an Internet Explorer user you can use Adblock Plus. You can download Adblock Plus for Internet Explorer from the following URL: <a href="https://adblockplus.org/en/internet-explorer" target="_blank">https://adblockplus.org/en/internet-explorer</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you are not using either of those web browsers but a web browser which does not support a adblocker like uBlock, then you can always resort to using something called the Hosts file. The Hosts file is a file stored in a Windows subdirectories which basically blocks connections to certain hosts. It can be modified to work as an adblocker and/or block websites. Please note that it can be tampered with by other software.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">The file path to the Hosts file is: <strong>c:\windows\system32\drivers\etc\hosts</strong></span></p><p><span style="font-size: 12px">You may be interested in MVPS Hosts list which can be obtained from here: <strong><a href="http://winhelp2002.mvps.org/hosts.htm" target="_blank">http://winhelp2002.mvps.org/hosts.htm</a></strong></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you are someone who really wants to Lockdown their system and try to prevent malware infections, consider using AppGuard and a lightweight Antivirus for backup to that. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">AppGuard: <a href="http://www.blueridge.com/index.php/products/appguard/consumer" target="_blank">http://www.blueridge.com/index.php/products/appguard/consumer</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For Privacy/Cleaning software I recommend CCleaner. My experience with CCleaner has been great, and so has most other peoples experience based on the feedback I've seen people give. Compared to other cleaning products which provide "registry cleaning" abilities, I have seen less encounters of "registry issues" when using CCleaner. It can also clear your browser traces in real-time (if the feature is enabled), clean software installed on the system etc. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">CCleaner: <a href="https://www.piriform.com/ccleaner/download" target="_blank">https://www.piriform.com/ccleaner/download</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you are a very advanced user, I recommend PrivaZer. You can download it here: <a href="http://privazer.com/download.php" target="_blank">http://privazer.com/download.php</a></span></p><p><span style="font-size: 12px">Just be extra careful and take caution when using it.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">For uninstallations, I personally think that the software uninstaller is usually for the best. The developer knows how to make an uninstaller for the product they made. However, it may still leave traces, so if you hate traces being left behind you can try using Revo Uninstaller. Even with this product, traces may still be left behind. This is where CCleaner may come into place and find them and have them cleaned.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Revo Uninstaller: <a href="http://www.revouninstaller.com/index.html" target="_blank">http://www.revouninstaller.com/index.html</a></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Make sure UAC (User Account Control) is <strong>enabled</strong>. The default settings are good for use. Next time you try to open a program and get a UAC alert on your screen asking if you want to run it as Administrator, make sure you know what the program is before allowng it. The amount of people who complain about UAC not being good because they decided to allow a program to run with Administrative rights which was new to them which then turned out to be malicious software... The security features can only do what they are programmed to do. The user still needs to do his work by doing research on new programs before giving them administrative permission on the system. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Before you allow a program to run with Administrative rights, check if it's digitally signed. <u>I am not</u> saying to just allow any program which is digitally signed. </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If Microsoft SmartScreen is on your system (for example Windows 8) make sure to <strong>keep it enabled</strong>.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">No matter what people may tell you, UAC and SmartScreen are <strong>GOOD </strong>features and they do <strong>WORK</strong>.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Make sure to keep all your software up-to-date as much as possible. If you see a update, get it done. Don't think "Later" because by later you may have already been affected by a exploit which was not caught which was pathced up in the update you decided not to install...</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">With that in mind, always keep Windows up-to-date. Should you ever have a bad, faulty update (which has happened in the past), you have a backup solution for a reason. It's not just in case of malware infections, but for a case where anything bad goes wrong. You don't have to install "optional" updates, but the security updates I recommend you always install. If you are paranoid about faulty updates, you can have Windows download the updates but not install them, allowing you to wait a few days and wait for any bad news for the updates before allowing them to install.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">On top of everything mentioned above, if you are using a browser which offers security, then make sure it's enabled!</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">If you are a very <u>advanced</u> user, then you could use Windows Defender/MSE with Windows Firewall and be fine... Please do not just assume you are an "advanced" user because you know how to do something like show hidden files on your disk or think you know what you are doing. I have seen many people who have thought this and then become infected by something as bad as ransomware, and then lost all their files since they didn't make a backup (because they felt so confident they'd be fine). </span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Make sure not to use 2 Antivirus programs at the same time. They can cause system slowdowns, or in the worst cases even detect each other (although whitelisting should fix the detection issue). Multiple Antivirus software is not required, either.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Just remember, no Antivirus can protect you. It's down to you just as much. Think before you visit a website, think before you download and run a new program... If you are click happy and run anything then you're bound to become infected sooner or later. I know people who haven't used any secuirty products like Antivirus/Internet security for years and haven't ran into any issues.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Please note that depending on your hardware (RAM for example) may limit what you can use on your system.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Always remember that any change you make on your system is up-to-you. If you do not want to use something (let's say somebody suggested something), then of course you do not have too. Just remember that we are here to help you!</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">You could have the most minimal setup and never become infected. You could have the most minimal setup and become infected. Or you can stay infection-free with the most advanced setup or even become infected with that.</span></p><p></p><p><span style="font-size: 12px">After reading this this thread, I recommend reading some comments since other members may give their suggestions for you below.</span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px">Cheers. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite110" alt=";)" title="Wink ;)" loading="lazy" data-shortname=";)" /></span></p><p><strong><span style="font-size: 10px">EDIT: Added note about WOT, fixed grammar mistake and removed EAM compatibility opinion.</span></strong></p></blockquote><p></p>
[QUOTE="Deleted member 21043, post: 372059"] [SIZE=3]Hi everyone, With the rate of new security configurations being posted all the time, it is only a good idea for me to make a thread on how someone could go about improving their security configuration. Firstly, I recommend you use a good Antivirus/Internet Security product. An Antivirus product does not usually contain a Firewall. If the Antivirus product you decide does not, then I recommend installing a Firewall alongside your Antivirus product. I personally recommed either 1 of the 3 Internet Security products. However, this is based on my experience and testing. Everyone has a different opinion, the only person who can decide which product they want to use is [B]YOU[/B]. No one else. [B]You should use the trials and test each one to see which one you prefer.[/B] 1). ESET Smart Security - I personally feel that ESET have great signature-based/static-analysis detection. (The HIPS ([U]Host Intrusion Prevention System[/U]) can perform better once configured correctly). As well as this they have the LiveGrid (cloud). You can obtain ESET Smart Security from the official website, here: [URL]http://www.eset.co.uk/Home/Smart-Security[/URL] 2). Emsisoft Internet Security - I personally feel that the Emsisoft Behaviour Blocker is good at preventing malware infections and has a good cloud network. You can obtain Emsisoft Internet Security from the official website, here: [URL]http://www.emsisoft.com/en/software/internetsecurity/[/URL] 3). Kaspersky Internet Security - the signature based detection is OK in my opinion, however they have a feature called Application Control which is quite well liked. As well as this they have the [U]KSN [/U](cloud). You can obtain Kaspersky Internet Security from the official website, here: [URL]http://www.kaspersky.co.uk/internet-security?domain=kaspersky.com[/URL] For the money, I recon Emsisoft Internet Security is the best deal. However, I like all 3 products and all 3 are great in my opinion. If you do not want an Internet Security product then I recommend getting an Antivirus product and then a firewall product alongside it. For Antivirus, I recommend the Antivirus version of the products listed below, however I will also mention some free alternative Antivirus products below, for anyone cannot currently purchase an Internet Security suite: Paid: 1). ESET NOD32 (Antivirus) Download: [B][URL]http://www.eset.co.uk/Home/NOD32-Antivirus[/URL][/B] 2). Emsisoft Anti-Malware Download: [B][URL]http://www.emsisoft.com/en/software/antimalware/[/URL][/B] 3). Kaspersky Antivirus: Download:[B] [URL]http://www.kaspersky.co.uk/anti-virus[/URL][/B] Free: 1). Avast Antivirus - Download: [B][URL]https://www.avast.com/en-gb/index[/URL][/B] I expect someone will mention Qihoo in the comments, so I will mention it here, but not as a recommendation... Qihoo has a lot of users, however I personally do not think it's a fully polished product and I would certainly not trust it. Everyone has their own opinions. It's free; if you want to use it you can, however I do not recommend it and for this reason I will not include it in this thread. The product also seems to be promoted via a lot of adware. It's not always the vendors fault if their product is promoted via adware, however I see them promoted far too often than other vendors. Which is another reason why I have not included them in this thread. For Firewall products alongside an Antivirus you could use a product like the free Comodo Firewall, however you can always just use Windows Firewall. If you use Windows Firewall, I recommend adding WFC (Windows Firewall Control) alongside it. There is also a program called "Glasswire" which is compatible with Windows Firewall. Comodo Firewall - Download: [B][URL]https://www.comodo.com/home/internet-security/firewall.php[/URL][/B] Windows Firewall Control - Download: [B][URL]http://www.binisoft.org/wfc.php[/URL][/B] Glasswire - Download: [B][URL]https://www.glasswire.com/download/[/URL][/B][/SIZE] [B][SIZE=3] Of course if you know of another Antivirus/Internet Security/Firewall product you want to use, you can feel free to use it. Those are just my suggestions for you. Before I go off AV/IS and Firewall products, you may like Comodo Internet Security. It also supports "Auto-Sandboxing" with it's Sandbox feature. [/SIZE][/B] [SIZE=3]After you have got your Antivirus & Firewall/Internet Security sorted out, you will need something people refer to as "on-demand scanners". An on-demand scanner is an application which scans the system without real-time/behavioural components. As we know an Antivirus product may consist of the Real-Time protection, Web Filter, Behaviour Blocker/HIPS... Only difference is an on-demand scanner is when you use a product to just scan the system. You shouldn't install another Antivirus and just disable the Real-Time etc. You shouldn't do this. So instead, there are products which are just for scanning, allowing you to keep your existing security software for real-time protection. For on-demand scanners I recommend you either pick 1 - 3 of the following. If you want to extend to 4 then you can, however I recommend 3 as a maximum: [/SIZE] [URL='http://www.eset.com/us/online-scanner/'][B][SIZE=3]ESET Online Scanner[/SIZE][/B][/URL] [SIZE=3][URL='https://www.malwarebytes.org/'][B]Malwarebytes Anti-Malware[/B][/URL] (free, the pro version adds Real-Time protection however this is unnecessary). [URL='http://www.surfright.nl/en/hitmanpro'][B]HitmanPro[/B] [/URL](this does cost money however you get a free trial beforehand) [B][URL='https://www.emsisoft.com/en/software/eek/']Emsisoft Emergency Kit[/URL] [/B](EEK) [/SIZE] [URL='http://www.herdprotect.com/'][B][SIZE=3]HerdProtect[/SIZE][/B][/URL] [B][URL='http://www.zemana.com/product/zemana-antimalware/'][SIZE=3]Zemana Anti-Malware[/SIZE][/URL][/B] [SIZE=3] Of course if you use ESET for real-time, then the Online Scanner would be pointless. Same for if you use Emsisoft as your main security product, the emergency kit would then be unnecessary. There is a program called Unchecky. The aim of this program is to help keep potentially unwanted programs off your PC. Download: [B][URL]http://unchecky.com/[/URL][/B] Always make sure to have a backup plan. For backup I recommend using either [URL='https://www.paragon-software.com/home/br-free/'][B]Paragon & Recovery[/B][/URL] or [URL='http://www.backup-utility.com/free-backup-software.html'][B]AOMEI Backupper[/B][/URL]. As well as using one of these two pieces of software for backup/recovery, you can also try using cloud storage for your personal documents (of course if they are very important that no one else ever manages to get hold of them, don't use cloud storage since it's possible one day the cloud storage may be attacked) or storing them on an external device (external HDD, USB drive, blank DVD). I also recommend you keep System Restore points for the future. You never know, even with backup for recovery it can be useful. With this in mind, I also recommend you keep a backup of your Registry. Before cleaning with CCleaner you can do this (if you decide to use CCleaner). If not you can do it manually. If you like the thought of anonymity whilst browsing online, you may like the idea of using VPN (Virtual Private Network). I recommend: [URL='http://www.cyberghostvpn.com/en_gb'][B]CyberGhost [/B][/URL]based on my experience. I recommend an Anti-Exploit solution. A product like ESET will already contain Anti-Exploitation techniques, however if your main security solution does not contain such a feature then you may be interested in Malwarebytes Anti-Exploit. You can download Malwarebytes Anti-Exploit here: [URL]https://www.malwarebytes.org/antiexploit/[/URL] [SIZE=3]You may be interested in installing HitmanPro.Alert. It contains many features such as: [check the spoiler] [SPOILER="Features and minimum system requirements"] [/SPOILER][/SIZE][SPOILER="Features and minimum system requirements"][/SPOILER][/SIZE][SPOILER="Features and minimum system requirements"] [SIZE=3][SIZE=3] The system requirements are shown below: [/SIZE][/SIZE] [/SPOILER] [SIZE=3][SIZE=3] It's [B]CryptoGuard [/B]feature attracted many new users; you can more in-depth about it here: [URL]http://www.surfright.nl/en/cryptoguard[/URL] You can find more information about it at the following URL: [URL]http://www.surfright.nl/en/alert[/URL][/SIZE] I recommend that if you have an application you are unsure of or is new to you, you run it in a sandbox or another virtualized environment (such as a virtual machine) [B][U]before[/U] your real system. [/B] For the sandbox, I recommend using Sandboxie: [B][URL]http://www.sandboxie.com/[/URL][/B] For the virtual machine I recommend VMWare, however VirtualBox will do: [B][URL]http://www.vmware.com/uk[/URL][/B] & [B][URL]https://www.virtualbox.org/[/URL] [/B] A suggestion of mine if you want to be extra secure is to install Sandboxie and then run your Browser sandboxed with Sandboxie. Please be aware of "Anti-Sandboxing"/"Anti-Virtualization" techniques which may try to trick you. If you do not want to do this manually yourself, you can upload an executable for online automated analysis with one of the following services: [B][U][URL]https://www.hybrid-analysis.com[/URL][/U][/B] [B](recommended)[/B][/SIZE] [B][SIZE=3][URL]https://malwr.com/[/URL][/SIZE][/B] [SIZE=3][B][URL]https://anubis.iseclab.org/[/URL][/B] As well as this, you may wish to upload executables to a online scanning service like VirusTotal to check the score of other Antivirus engines you do not have access to on your main system. VirusTotal: [B][URL]https://www.virustotal.com/[/URL][/B] For web browser extensions I recommend using HTTPS Everywhere. It won't work for every website, but it does for a lot. HTTPS encrypts the communication between your webbrowser and the website, which is always good for securtiy. You can read more about HTTPS Everywhere and the supported browsers at the official link: [B][URL]https://www.eff.org/https-everywhere[/URL][/B] I also recommend 3 other extensions: LastPass - good for storing passwords. You can read more about it at the offical link: [URL]https://lastpass.com/[/URL] (there is an extension available. If you cannot find it, search on the store for extensions for your browser e.g. for Google Chrome users, you can go here: [B][URL]https://chrome.google.com/webstore/detail/lastpass-free-password-ma/hdokiejnpimakedhajhdlcegeplioahd[/URL][/B] and for Firefox users you can go here:[B] [URL]https://addons.mozilla.org/en-us/firefox/addon/lastpass-password-manager/[/URL][/B] ). Click&Clean - good for cleaning your browser after your browsing session. Download - Google Chrome: [B][URL]https://chrome.google.com/webstore/detail/clickclean/ghgabhipcejejjmhhchfonmamedcbeod?hl=en[/URL][/B] Download - Firefox: [B][URL]https://addons.mozilla.org/en-us/firefox/addon/clickclean/[/URL][/B][/SIZE] [SIZE=3]WOT (Web Of Trust) - website reputation. [B]NOTE: Please be aware that the reputation results may not always be 100% accurate and true. Take the results from WOT with a grain of salt. However, it's a nice addition and can be helpful in some cases.[/B] Download: [B][URL]https://www.mywot.com/[/URL][/B] I really recommend using an Adblocker. You may already know, however[B] Advertisements invade your privacy in a way[/B] - [U]they can collect information[/U] (for example, they can track you). [U]Blocking [/U]the advertisements [B]prevents [/B]this. For an Adblocker I personally recommend using uBlock (however it isn't available for all browsers, sadly). You can download uBlock for Google Chrome here: [B][URL]https://chrome.google.com/webstore/detail/ublock/cjpalhdlnbpafiamejdnhcphjbkeiagm?hl=en[/URL][/B] You can download uBlock for Firefox here: [B][URL]https://addons.mozilla.org/en-us/firefox/addon/ublock/[/URL][/B] You can download uBlock for Opera here: [B][URL]https://addons.opera.com/en/extensions/details/ublock/?display=en[/URL][/B] Since uBlock is not available for Internet Explorer, if you are an Internet Explorer user you can use Adblock Plus. You can download Adblock Plus for Internet Explorer from the following URL: [URL]https://adblockplus.org/en/internet-explorer[/URL] If you are not using either of those web browsers but a web browser which does not support a adblocker like uBlock, then you can always resort to using something called the Hosts file. The Hosts file is a file stored in a Windows subdirectories which basically blocks connections to certain hosts. It can be modified to work as an adblocker and/or block websites. Please note that it can be tampered with by other software. The file path to the Hosts file is: [B]c:\windows\system32\drivers\etc\hosts[/B] You may be interested in MVPS Hosts list which can be obtained from here: [B][URL]http://winhelp2002.mvps.org/hosts.htm[/URL][/B] If you are someone who really wants to Lockdown their system and try to prevent malware infections, consider using AppGuard and a lightweight Antivirus for backup to that. AppGuard: [URL]http://www.blueridge.com/index.php/products/appguard/consumer[/URL] For Privacy/Cleaning software I recommend CCleaner. My experience with CCleaner has been great, and so has most other peoples experience based on the feedback I've seen people give. Compared to other cleaning products which provide "registry cleaning" abilities, I have seen less encounters of "registry issues" when using CCleaner. It can also clear your browser traces in real-time (if the feature is enabled), clean software installed on the system etc. CCleaner: [URL]https://www.piriform.com/ccleaner/download[/URL] If you are a very advanced user, I recommend PrivaZer. You can download it here: [URL]http://privazer.com/download.php[/URL] Just be extra careful and take caution when using it. For uninstallations, I personally think that the software uninstaller is usually for the best. The developer knows how to make an uninstaller for the product they made. However, it may still leave traces, so if you hate traces being left behind you can try using Revo Uninstaller. Even with this product, traces may still be left behind. This is where CCleaner may come into place and find them and have them cleaned. Revo Uninstaller: [URL]http://www.revouninstaller.com/index.html[/URL] Make sure UAC (User Account Control) is [B]enabled[/B]. The default settings are good for use. Next time you try to open a program and get a UAC alert on your screen asking if you want to run it as Administrator, make sure you know what the program is before allowng it. The amount of people who complain about UAC not being good because they decided to allow a program to run with Administrative rights which was new to them which then turned out to be malicious software... The security features can only do what they are programmed to do. The user still needs to do his work by doing research on new programs before giving them administrative permission on the system. Before you allow a program to run with Administrative rights, check if it's digitally signed. [U]I am not[/U] saying to just allow any program which is digitally signed. If Microsoft SmartScreen is on your system (for example Windows 8) make sure to [B]keep it enabled[/B]. No matter what people may tell you, UAC and SmartScreen are [B]GOOD [/B]features and they do [B]WORK[/B]. Make sure to keep all your software up-to-date as much as possible. If you see a update, get it done. Don't think "Later" because by later you may have already been affected by a exploit which was not caught which was pathced up in the update you decided not to install... With that in mind, always keep Windows up-to-date. Should you ever have a bad, faulty update (which has happened in the past), you have a backup solution for a reason. It's not just in case of malware infections, but for a case where anything bad goes wrong. You don't have to install "optional" updates, but the security updates I recommend you always install. If you are paranoid about faulty updates, you can have Windows download the updates but not install them, allowing you to wait a few days and wait for any bad news for the updates before allowing them to install. On top of everything mentioned above, if you are using a browser which offers security, then make sure it's enabled! If you are a very [U]advanced[/U] user, then you could use Windows Defender/MSE with Windows Firewall and be fine... Please do not just assume you are an "advanced" user because you know how to do something like show hidden files on your disk or think you know what you are doing. I have seen many people who have thought this and then become infected by something as bad as ransomware, and then lost all their files since they didn't make a backup (because they felt so confident they'd be fine). Make sure not to use 2 Antivirus programs at the same time. They can cause system slowdowns, or in the worst cases even detect each other (although whitelisting should fix the detection issue). Multiple Antivirus software is not required, either. Just remember, no Antivirus can protect you. It's down to you just as much. Think before you visit a website, think before you download and run a new program... If you are click happy and run anything then you're bound to become infected sooner or later. I know people who haven't used any secuirty products like Antivirus/Internet security for years and haven't ran into any issues. Please note that depending on your hardware (RAM for example) may limit what you can use on your system. Always remember that any change you make on your system is up-to-you. If you do not want to use something (let's say somebody suggested something), then of course you do not have too. Just remember that we are here to help you! You could have the most minimal setup and never become infected. You could have the most minimal setup and become infected. Or you can stay infection-free with the most advanced setup or even become infected with that.[/SIZE] [SIZE=3]After reading this this thread, I recommend reading some comments since other members may give their suggestions for you below. Cheers. ;)[/SIZE] [B][SIZE=2]EDIT: Added note about WOT, fixed grammar mistake and removed EAM compatibility opinion.[/SIZE][/B] [/QUOTE]
Insert quotes…
Verification
Post reply
Top