Basic Security TairikuOkami's Configuration 2020

Last updated
Dec 13, 2020
How it's used?
For home and private use
Operating system
Windows 10
Log-in security
Security updates
Allow security updates
User Access Control
Always notify
Real-time security
Firewall security
Microsoft Defender Firewall
About custom security
Periodic malware scanners
WRT (Malware Removal): Autoruns + FRST + HitmanPro + NPE + RogueKiller + TDSSKiller
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Yandex Browser with protected mode (enables a strict check of certificates and disables the extensions) and AV scan.
Browser is allowed to connect only via port 443, port 80 is blocked, that should block most malicious/phishing links.
AdGuard AdBlocker (blocks coinminers, porn images, notifications and cookie noticies)
Bitwarden (a secure and free password manager for all of your devices)
Cookie AutoDelete (cleans cache, cookies, indexedDB, localstorage, plugindata, service workers)
Enhancer for YouTube (AD blocking and Auto HD Quality)
Feedly Notifier (reading news from RSS aggregator Feedly)
HTTPS Everywhere (encrypt all sites, unencrypted requests are blocked)
Netcraft (blocks phishing, malicious javascripts, coinminers and XSS)
Poper Blocker (blocks iframes, thus coinminers and malware: CVE-2020-6519)
Selection Search (use the right-click menu to search for selected text in any search engines)
Maintenance tools
File and Photo backup
Copy/Paste - automatic backups deleted my files, twice, I will not fall for that again.
I backup to the waterproof ADATA UV310, to the Icedrive and to the OneDrive.
System recovery
Risk factors
    • Browsing to popular websites
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Working from home
    • Gaming
    • Streaming audio/video content from shady sites
Computer specs
Notable changes
2020-12-12 Switched from Cleanbrowsing to Quad9 + Energized Porn Lite Extension
2020-11-12 Removed Forticlient (randomly kills internet & no youtube in steam)
2020-09-26 Testing Forticlient (signatures only)
2020-08-23 Started using OneDrive (I know ...)
2020-08-22 Clean installed 20H2 (19042.450)
2020-08-08 Back to easier to read DDG Search
2020-08-08 Removed Panda due to slowness
2020-08-01 Changed search engine to Google
2020-08-01 Removed Keepass for good
2020-07-26 Installed Panda Dome Free
2020-07-25 Installed EaseUS Todo Backup
2020-06-06 Switched from Neustar to Quad9
2020-05-31 Switched from the local to MSA
2020-05-12 Yandex Browser updated to 64-bit
2020-03-02 Updated to Windows 10 Version 2004
Footnote - I would never recommend/trust: ESET, Avast/AVG, Avira, Malwarebytes.
Notes by Staff Team
  1. This setup configuration may put you and your device at risk!
    We do not recommend that other members use this setup. We cannot be held responsible for problems that may occur to your device by using this security setup.

  2. This setup configuration does not have a backup plan. We strongly recommend to add a backup solution for your data so that you can restore it in the case of an emergency.
    Backing up allows the recovery of data that has been lost due of a malware attack (eg. ransomware) or a hard disk crash. In such events you might lose family photos, your music collection, documents, or financial data. Backups are fast and simple to perform so it should be done on a regular basis.

TairikuOkami

Level 37
Thread author
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,685
Removed Panda again, webpages were loading way too slow, even though I had only Panda realtime active and I gave up on Google, it has a terrible font.
I enabled CompactOS (saved 2GB), Notifications, OneDrive. I like the personal vault with 2FA (for double encrypted files). I am turning into MS fanboy. 😂
 

Attachments

  • capture_08232020_212957.jpg
    capture_08232020_212957.jpg
    135.3 KB · Views: 231
  • capture_08232020_215357.jpg
    capture_08232020_215357.jpg
    178.5 KB · Views: 226
Last edited:

TairikuOkami

Level 37
Thread author
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,685
Well, back to Forticlient and it seems to stay for multiple reasons. I previously abandoned it expecting the free version to be discontinued.

1. For once, a realtime AV can be quite handy, it sure would be lame to get infected by like 10 years old malware or a randomly ran ransomware.
2. It is super light, ~160MB RAM and virtually zero CPU/Disk activity. I also like the personal touch, the possibility to set a custom picture/contact.
3. It is a signature based (updates every hour), no false positives and it does not interfere with my scripts like other AVs, except for some Nirsoft tools.
4. Its webfilter filter is excellent, not just against malware, but also in filtering adult content. I am using cleanbrowsingDNS, but only within the browser and it can only block domains, not malicious links. Apart from that, Windows will introduce DoH in 2021, so I might move to Cloudflare altogether because of ESNI.
 

Attachments

  • capture_09292020_120650.jpg
    capture_09292020_120650.jpg
    52 KB · Views: 204
  • capture_09292020_120928.jpg
    capture_09292020_120928.jpg
    61.1 KB · Views: 216
  • capture_09292020_121107.jpg
    capture_09292020_121107.jpg
    60.3 KB · Views: 204
  • capture_09292020_121429.jpg
    capture_09292020_121429.jpg
    62.2 KB · Views: 217

sepik

Level 11
Verified
Well-known
Aug 21, 2018
505
@TairikuOkami
Did you make any modifications to the .conf file? Last time when i tried Forticlient, for some reason, Forti blocked youtube. After some googling, i've found one setting inside .conf file that need to be set "0". I really liked it, how resource friendly it was and the web filter is amazing. But i don't know how effective it is against powershell etc. scripts. For sure, combo like Forticlient+OSA is really effective. But OSA and for example Andy's system hardening softwares does not work if you'r using LTSC. Tried Webroot script blocker too, and it does not work with LTSC.
 

TairikuOkami

Level 37
Thread author
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,685
Did you make any modifications to the .conf file?
No, I am trying to keep it simple for now.
But i don't know how effective it is against powershell etc. scripts.
I have WSH disabled and powershell removed, though Andy has mentioned, that malware can download its own, but hopefully my setup could deal with it.
 

sepik

Level 11
Verified
Well-known
Aug 21, 2018
505
What im using a firewall is SEP. It always ask when legit or not process want to connect to the net. It's a click fest, i know. When the "Click Fest" is over. Then go to SEP settings. In what ip svchost is connectin to? Make it connect to only for update servers. Combine it with Spyhelter Free(disable auto-allow) and with Forticlient. It need a many clicks or so, but when "tamed" its quite powerfull combo.
 

TairikuOkami

Level 37
Thread author
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,685
From where did you download Windows 10 20H2?
A custom made ISO from deskmodder, but you can made your own from original files:

But for the upgrade, I used the Insider version 19042.450, it updates to the latest version anyway.

 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top