SECURITY: Complete sg09's Security Configuration - 2020

Last updated
Nov 10, 2020
About
Personal, primary device
Desktop OS
Windows 10
Login security
Primary sign-in
Microsoft account
Primary user
Admin user - Full permissions
Security updates
Automatic - allow all types of updates
Windows UAC
Maximum - always notify
Real-time protection
Emsisoft Anti-Malware, Webroot SecureAnywhere, Adguard Premium
Software firewall
Microsoft Defender Firewall
Custom RTP, Firewall and OS settings
Webroot SecureAnywhere was installed last to make it compatible with other security softwares. All essential files, drivers were mutually excluded from manual and real-time scans.
Malware testing
Periodic security scanners
Very occasional scan with Eset Online Scanner, Avira PC Cleaner, Windows Defender, Rogue-Killer Antimalware, Zemana AM, VirusTotal Uploader, Malwarebytes AM.
Browsers, Search and Addons
Edgium, Firefox with Lastpass, Emsisoft Browser Security extensions. Plan to switch to Bitwarden. So, it is also installed to save important login credentials.
Maintenance and Cleaning
CleanMem Pro, CCleaner Free Portable, HiBit Uninstaller, Shadow Defender.
Personal Files & Photos backup
  • Desktop, Downloads, Documents etc. important folders are placed in non-system drives.
  • Essential files (~40 GB) are backed up to OneDrive realtime.
  • Rest files are occasionally backed up to External HDD. I anyway use the two non-system files to keep all these files. So, no loss due to OS crash.
Personal backup routine
Automatic (scheduled)
Device recovery & backup
  • Macrium Reflect OS backup scheduled on bimonthly basis. (I install new software rarely)
  • Prefer to reset PC to clean state if system slows down or malfunctions (Happens biennially).
Device backup routine
Automatic (scheduled)
PC activity
  1. Browsing the web. 
  2. Emails. 
  3. Shopping. 
  4. Banking. 
  5. Downloading software. 
  6. Browsing to unknown sites. 
  7. File sharing and torrents. 
  8. Working from home. 
  9. Multimedia. 
  10. Streaming. 
  11. App developer. 
Computer specs
Assembled Desktop
  • Intel i7-4770 CPU @ 3.40 GHz
  • Intel DB85FL Motherboard
  • 8 GB RAM (Corsair, DDR3, 1600MHz)
  • 500 GB SSD (Samsung 860 EVO) + 1 TB HDD + 2 TB HDD (Toshiba, 7200 RPM)
  • Bluetooth 4.0 (Kinivo), Wifi Adapter (D-Link)
  • Keyboard & Mouse (Amkette)
  • Monitor (AOC)
  • Cabinet (Cooler Master)
  • SMPS (Corsair)
Personal changelog
  • Upgraded and moved OS to SSD.
  • Took higher speed internet connection. So, able to use Emsisoft without previous issues.
  • Installed Shadow Defender Again.
  • Installed WSA as I've a license and it is lightweight & compatible with other full-fledged AMs.
  • Removed Iobit Smart Defrag (as moved to SSD) and Iobit Uninstaller (as prefer HiBit Uninstaller now).
  • Now manage Keyboard shortcuts using HotkeyP. Earlier I was using Perfect Hotkey.

sg09

Level 2
Apr 3, 2019
69
The Amount of realtime protection has reduced from the last time I updated the config. It was not a conscious decision, but somewhat forced.

I won a Emsisoft Antimalware License from a MT giveaway. Now with surf protection turned on I have been facing serious upload issues everywhere with files larger than 20 MB. Importantly, the realtime Onedrive sync was getting hampered and that was unacceptable and so I am keeping the surf protection off.

I have been in continuous touch with Emsisoft support and they are trying to diagnose this idiosyncratic issue sincerely for the last few months with no vain so far. It was during those diagnosis that I got rid of most real-time security softwares (although wasn't asked to do that) and then only installed back Adguard Premium, as the online protection was otherwise absent.

I dislike to use softwares, especially full versions with reduced features, and so I am planning to get a system reset done soon. And for this reason I haven't taken a Macrium Backup in the last few months. Once I get the system reset done (hopefully soon), I will take the system backup bimonthly. I do have the last backup handy and nothing much had changed since that time. And, as you can see, my important files are backup online in real-time and also saved in non-system drives.
 

sg09

Level 2
Apr 3, 2019
69
Transferred Emsisoft Antimalware to another PC and found that the upload issue is not idiosyncratic, and is due to the slow upload speed of my ISP. So, its a confirmed bug and Emsisoft support might fix it in future. I had a lengthy diagnostic session with them in the last few months.

Now I'm using F-Secure Safe as the main antimalware with slight customization.
 

sg09

Level 2
Apr 3, 2019
69
Security Configuration Updated
  • Upgraded and moved OS to SSD.
  • Took higher speed internet connection. So, able to use Emsisoft without previous issues.
  • Installed Shadow Defender Again.
  • Installed WSA as I've a license and it is lightweight & compatible with other full-fledged AMs.
  • Removed Iobit Smart Defrag (as moved to SSD) and Iobit Uninstaller (as prefer HiBit Uninstaller now).
  • Now manage Keyboard shortcuts using HotkeyP. Earlier I was using Perfect Hotkey.
 

LDogg

Level 33
Verified
May 4, 2018
2,193
Right first thing I see and I quote "Emsisoft Anti-Malware, Webroot SecureAnywhere". You seriously do not need Webroot, EAM will provide sufficient protection. Remove Webroot there no reason in the planet to use it bro.

Windows FW, use Tinywall/Malwarebytes WFC for simple controlled usage.

The rest of the setup is good.

~LDogg
 

sg09

Level 2
Apr 3, 2019
69
Right first thing I see and I quote "Emsisoft Anti-Malware, Webroot SecureAnywhere". You seriously do not need Webroot, EAM will provide sufficient protection. Remove Webroot there no reason in the planet to use it bro.
Sure. I also believe so. I am just evaluating, maybe remove after a few days or a month. And then maybe give MBAM Pro another try. Seems like both MBAM and WSA are not as good as they were in their good 'ol days.

use Tinywall/Malwarebytes WFC for simple controlled usage.
Usually I hate to see popups and so using a silent security. This is also one reason that I notched up real-time protection a bit (although blacklisting is never comparable with whitelisting). I haven't used a third-party firewall (or window firewall enhancer) for a long time. Maybe I shall give Malwarebytes WFC a try. Good to see that Binisoft was acquired by Malwarebytes (Not keeping track with security software landscape lately).
 
Top