Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Generic User Avatar

Share your security configuration!


  • Please log in to reply
160 replies to this topic

#16 Kilroy

Kilroy

  •  Avatar image
  • BC Advisor
  • 4,283 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Launderdale, MN
  • Local time:12:01 AM

Posted 02 February 2018 - 12:07 PM

Operating System: Windows 10 Professional

 

Architecture: x64

 

Run as standard user account

 

UAC: Default

 

SmartScreen:  Default

 

Threat Protection (real time & on-demand):

Windows Defender

9.9.9.9 DNS with 8.8.8.8 as secondary

 

Browsers & extensions:

Chrome No Script Light, LastPass

Firefox No Script Light, LastPass

Edge

 

Backup & Data Recovery:

SyncBack Free to Drobo NAS

Carbonite encrypted locally prior to upload

 

 

Other Software:

World of Warcraft

Steam

PowerDVD

ACDSee

DVD Profiler

AnyDVD HD

DVD Fab

 

I'll update more later because there is a lot.



BC AdBot (Login to Remove)

 


#17 digmor crusher

digmor crusher

  •  Avatar image
  • Members
  • 224 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:01 AM

Posted 02 February 2018 - 02:14 PM

Windows 10 x 64

 

UAC - off

 

Smartscreen - ON

 

EAM

 

MB3

 

Sandboxie

 

Chrome with Ublock Origin

 

Open DNS

 

Backup - Drive Snapshot or Aeomi

 

Thats all for now. :wink:



#18 DeimosChaos

DeimosChaos

  •  Avatar image
  • Members
  • 1,458 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States, Delaware
  • Local time:01:01 AM

Posted 02 February 2018 - 02:59 PM

I am just amazed I have not been infected yet. The amount of malware I have on machine from when I test it for guides and for researching a story is a bit scary. Should prob do something about that!

 

If you don't already, I would set up a VM for doing all your testing on. Or even a completely separate machine. Could go even more secure and put it on a separate VLAN with no access to your main one.


OS - Ubuntu 14.04/16.04 & Windows 10
Custom Desktop PC / Lenovo Y580 / Sager NP8258 / Dell XPS 13 (9350)
_____________________________________________________
Bachelor of Science in Computing Security from Drexel University
Security +

#19 seedy21

seedy21

  •  Avatar image
  • Malware Response Team
  • 742 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Yorkshire, UK
  • Local time:06:01 AM

Posted 02 February 2018 - 05:03 PM

Operating System: Windows 10 Professional
Architecture: 64bit
UAC: Yes
SmartScreen:Yes
Threat Protection (real time & on-demand):

  • Emsisoft Anti-Malware

Browsers & extensions:

  • Firefox

Backup & Data Recovery:

  • QNAP NAS which runs backups to a USB Drive and HubiC (Cloud storage of my photos that replicate from my NAS)

Other Software:

  • VirtualBox with Windows Server 2016, Windows 7(to play with Malware), Whonix, Kali Linux (Work is putting me on an E-council CEH Course in the next couple of weeks)

It's only after we've lost everything that we're free to do anything.― Chuck Palahniuk, Fight Club

 

unite_blue.png


#20 Chris Cosgrove

Chris Cosgrove

  •  Avatar image
  • Global Moderator
  • 28,257 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:06:01 AM

Posted 02 February 2018 - 05:57 PM

@ Grinler #15

 

I would have thought that the best thing was to keep testing and research computers well separated from the ones you use for normal things like emailing, on-line banking and so on !

 

For my own equipment, my primary computer is a desktop running 64 bit Win 7HP and Linux Mint 18.2. I also have two laptops used mainly for teaching purposes but also as backup in case of problems. One runs 64 bit Win 8.1 and Mint 18.2, the other 32 bit Win 7 and Mint 18.2. My wife also has a laptop running 64 bit Win 8.1. All four are set up the same way -

 

Avast Free A/V

Super A/S

Adblock+ on Firefox

Common sense

 

No additional features on Mint except for Adblock on the three dual booters. All OS are updated religiously with the exception of a laptop running XP that I manage on behalf of a Club I am a member of. As this is only used for scoring their weekly competitions and is incapable of going on-line without a dongle - the internal wifi is dead - this seems an entirely reasonable position.

 

Like Louis I trust my habits and my wife is even more conservative in her browsing than I am. She is also a firm believer that, having an 'expert' in the house, any computer problems immediately become my problems !

 

Chris Cosgrove

 

I am also a firm believer in duplicated external back-ups as I have said in a number of topics.


Edited by Chris Cosgrove, 02 February 2018 - 06:00 PM.


#21 Gary R

Gary R

    MRU Admin


  •  Avatar image
  • Malware Response Team
  • 2,284 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Yorkshire, England
  • Local time:06:01 AM

Posted 02 February 2018 - 06:10 PM

Windows 8.1 ....
 

  • UAC always notify
  • AV - Malwarebytes
  • Firewall - Router + Windows firewall
  • Browser - Firefox
    • NoScript
    • HTTPS Everywhere
    • uBlockOrigin
    • Self Destructing Cookies
  • Backups - Personal files, and several disk images, stored on detachable drives.

Linux Mint 17.3 Cinammon ....
 

  • Firewall - Router + UFW enabled
  • Browser - Firefox
    • NoScript
    • HTTPS Everywhere
    • uBlockOrigin
    • Self Destructing Cookies
  • Sandbox - Firejail
  • Backups - Personal files + Aptik backups + Back in Time snapshots, stored on detachable drives.

 

 

As well as the installed security, I also run the occasional online scan, and have sets of "benchmark" logs from a number of scan tools, which make identifying any "unscheduled" changes to my system easier to identify.

 

Any test work is usually done on VM, though I do have an old machine I can set up as needed if necessary.


Edited by Gary R, 03 February 2018 - 12:47 AM.


#22 Dakeyras

Dakeyras

    Anti-Malware Mammoth


  •  Avatar image
  • Malware Response Team
  • 450 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Tundra
  • Local time:05:01 AM

Posted 02 February 2018 - 07:16 PM

Various machines in my household, however the one I use solely for the time being for forum/online related is at present:

W10 x64 Home(via the original free upgrade from W7 etc).

--------------

UAC: Always notify me

SmartScreen: disabled

--------------

HostsXpert.

MBAM(on demand, though could be active if I choose)

Spybot Anti-Beacon

WDS, modified to suit.

WinPatrol(as per MBAM as in have a Pro version but keep it to on-demand and launch when/if the need when testing something for example).

InCtrl5(aye older software and as such a potential for malware to gain a foothold; however has it still has a its use at times).

--------------

IE11, correctly configured to suit myself.

Edge...no thanks but still configured per above.

Used to have both FF and Chrome, only install if need to check something however.

--------------

NAT feature(correctly configured) of a Router in conjunction with the aforementioned WDS.

Backup wise, use various for this and the aforementioned machines in my household. Plus actually keep some offsite(as in a fireproof mini safe) in a locale I am not going to disclose obviously! :wink:. Some I do actually keep in my workplace(at present I am a Police Forensic Computer Analyst)...

Overall like Grinler(no offence mate) I can be a wee bit sloppy security wise at times; but only for the reason we both know exactly what we are doing and not something I would recommend at all and or would advise when I was more active Anti-Malware helper wise. :)

Mammuthus Hibernian Scouserus, member of the former ASAP and UNITE


#23 NickAu

NickAu

    Bleepin Grumpy Aussie


  •  Avatar image
  • Members
  • 26,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:04:01 PM

Posted 02 February 2018 - 07:40 PM

 

If you don't already, I would set up a VM for doing all your testing on

I use Puppy Linux as the host and Windows in VM.


"When God shuts a Window, he opens a Linux." —Linus 8:7

 

 

 

 


#24 Grinler

Grinler

    Lawrence Abrams


  •  Avatar image
  • Admin
  • 45,110 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:01 AM

Posted 02 February 2018 - 10:15 PM

Let me clarify. My samples are stored on my normal computer on a separate drive that I only access to grab a sample. That's really the only risky part. If my hand jerks and open one by accident.

All my testing is on separate machines under VM.

#25 DeimosChaos

DeimosChaos

  •  Avatar image
  • Members
  • 1,458 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States, Delaware
  • Local time:01:01 AM

Posted 03 February 2018 - 12:58 AM

Let me clarify. My samples are stored on my normal computer on a separate drive that I only access to grab a sample. That's really the only risky part. If my hand jerks and open one by accident.

All my testing is on separate machines under VM.


Ahhh. That makes sense. If I had a bunch of malware samples I'd probably do something similar. Just don't slip up when clicking!
OS - Ubuntu 14.04/16.04 & Windows 10
Custom Desktop PC / Lenovo Y580 / Sager NP8258 / Dell XPS 13 (9350)
_____________________________________________________
Bachelor of Science in Computing Security from Drexel University
Security +

#26 isaccasi

isaccasi

  •  Avatar image
  • Members
  • 273 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:zealand denmark
  • Local time:07:01 AM

Posted 03 February 2018 - 12:40 PM

Hello

 

Windows 10 Home 64 Bit.

UAC: always notify.

Windows Smart Screen.

 

Security:

Windows Defender.

Malwarebytes Premium

Zemana Anti Malware Premium(real-time protection turned off, use it as on-demand scanner)

Voodoo-Shield Premium

HitmanPro

Adwcleaner(sometimes)And Heimdal Pro(completely Forgot Sorry)

 

Privacy:

P.I.A.

Windscribe(paid)

NordVPN

ProtonVPN Plus

SurfEasy Ultra

VyprVPN

 

Password Manager: LastPass Premium

 

Utillities:Ccleaner Professional Plus+WiseCare Pro.

 

Browsers: Google Chrome+Pale Moon+Firefox Quantum

Chrome is my standard Browser and has the following extensions:LastPass+Grammarly+Windscribe Proxy+Ublock Origin+HTTPS Everywhere and Black Menu.

 

Media Players:Aimp(my absolute favorite for Audio)+VLC+Mediamonkey Gold+Jetaudio VX Plus and the good old Winamp.


Edited by isaccasi, 03 February 2018 - 02:47 PM.

Enough Is Enough. :guitar:


#27 Machiavelli

Machiavelli

    Agent 007


  •  Avatar image
  • Malware Response Team
  • 4,283 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:01 AM

Posted 05 February 2018 - 08:58 AM

Operating System: Sometimes Linux Mint, sometimes Windows 10 - it depends on which I like the most to a specific time span
Architecture: 64 bit
Threat Protection (real time & on-demand):
  • Often times without any protection, but currently ESET installed
Browsers & extensions:
  • Chrome
Backup & Data Recovery:
  • None

~Machiavelli
If I don't reply within 24 hours please PM me!
  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.
Posted Image
 
 

#28 TairikuOkami

TairikuOkami

  •  Avatar image
  • Members
  • 73 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 AM

Posted 09 February 2018 - 07:31 AM

Operating System: Windows 10 Home x64

UACAlways notify with a password

 

Threat Protection (real time & on-demand):

  • FortiClient (Antivirus/AntiExploit)
  • Windows Defender Firewall (blocking all inbound/outbound except allowed)
  • On-demand Scanners: Random as needed (CureIt/FRST/EEK/KVRT/NPE)

Browsers & extensions:

  • Yandex Beta (latest Chromium)
  • AdBlocker for Youtube
  • Disable HTML5 Autoplay
  • Netcraft (anti-phishing)
  • Poper Blocker (blocking coinminers)
  • uBlock Origin (not blocking ADs)

Privacy, Security, and Maintenance:

  • UltraDNS Family (for Windows)
  • OpenDNS Family (via browser's dnscrypt)
  • Autoruns
  • CCleaner
  • Driver Easy
  • Disk Cleanup
  • Driver Store Explorer
  • Process Hacker
  • Radeon RAMDisk
  • Wise Disk Cleaner
  • Wise Program Uninstaller
  • Wise Registry Cleaner
Windows Cleanup (all-in-one) - https://pastebin.com/5Q4t1Us9

Other Software:

  • 7-Zip
  • Adobe Flash Player Beta
  • K-Lite Codec Pack (Standard)
  • KeePass
  • MakeMKV Beta
  • PDF-XChange Viewer
  • POP Peeper
  • Radio? Sure!
  • TeamViewer
  • Windows Repair Toolbox
  • WPS Office
  • XnView


#29 cat1092

cat1092

    Bleeping Cat


  •  Avatar image
  • Helper Emeritus
  • 7,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina, USA
  • Local time:01:01 AM

Posted 11 February 2018 - 07:17 AM

OS: Windows 10 Pro 1709 64 bit (this PC)

UAC: Always On

 

Security:

 

Kaspersky Free AV (Active, Full, Short and Rootkit scans runs in background at intervals). Found a threat months back which caused one of my legacy PC's to slow that both ESET Internet Security & MBAM Pro missed & won me over. No popups for 3rd party garbage as with many free choices. Cons: Kaspersky Secure Connection VPN included by default, limit 200MB data daily. Uninstall with CCleaner (default uninstaller). Registration required yearly, no big deal.

Highly Recommended Free Security for those who doesn't want to (or can't) pay & wants outstanding protection. 

 

Malwarebytes Premium 3.3.1 (All modes Active, Hourly Threat Scan)

 

SuperAntiSpyware (Manual Scan after running closing browsers every time)

 

ESET Online Scanner (Manual weekly scan)

 

Sophos AV (Manual weekly scan)

 

Emsisoft Emergency Kit (Manual Update and Malware Scan 3-4 times daily, Custom Scan of Windows and Data partitions with auto quarantine & shutdown at end of day)

 

Adwcleaner (Manual Scan with every new release. May not be necessary with Malwarebytes Active, yet still good to run)

 

Kaspersky Software Updater

 

Secunia PSI 3.0 (updates browser, Flash Player, Java & many others. Warns of missing Windows Updates. 

 

CCleaner for flushing all types of crap. Be sure to uncheck dump files needed for diagnosing & Windows Event cleaning. 

 

Unchecky to block all sorts of 3rd party garbage (although not bulletproof) from being installed. Highly recommended app, can be installed on computer out of the box.

 

Occasionally:

Hitman Pro second opinion scan

 

MD5 & SHA Hash Checking tools:

Hash Tab

MD5_and_SHA_Checksum_Utility (Recommended, can check up to SHA512 hashes)

 

Browser Security Extensions:

 

Google Chrome:

Adblock Plus

uBlock Origin

Kaspersky Protection

No Coin (prevents PC from becoming a free mining zombie for others.......recommended)

Panic Button 

 

Mozilla Firefox:

uBlock Origin

Disconnect

HTTPS Everywhere

Kaspersky Protection

Country Flags & IP Whois

WOT

 

Internet Explorer:

Adblock Plus 1.6 for IE

WOT

 

Microsoft Edge:

I no longer bother with this ad loaded, insecure browser, of which SuperAntiSpyware finds hundreds of ad & tracking cookies after 10-15 minutes of usage. Pages may open in background w/out knowledge when viewing featured articles & ads, beware of clicking on interesting appearing articles to the right of page. This is where one will be burned.

 

Backup Software: 

Macrium Reflect with optional WinPE Boot Menu at Start......weekly backups created and highly recommended! :thumbsup:

 

Backup Capacity:

Approximately 8TB (minimum) across several externals, some in enclosures, others loose and used in docking station. 

 

Backup Hardware:

aluminum enclosures total (four 3.5", three 2.5") various loose HDD's used with 5-6 year old very reliable Ineo USB 3.0 Docking Station, Cable Matters USB 3.0 docking station still in box awaiting duty for two years & counting. :P

All tower computers has internal backup partition for the purpose of fast system images and restores using Macrium, although image weekly on externals for security. 

Various USB 2.0/3.0 Flash drives for extra Data storage, in addition to writing to optical media. I keep items of importance off of the local computers as generated to prevent loss and/or Ransomware infection via these USB Flash drives, optical media and Google Drive, OneDrive and Dropbox. 

 

Other Software, some used more often than others:

 

Spoiler

 

http://speccy.piriform.com/results/DeK7FGUEhtq62Fp3oX5ultu

 

Edited to include Unchecky.

 

Cat


Edited by cat1092, 11 February 2018 - 08:21 PM.

Performing full disc images weekly and keeping important data off of the 'C' drive as generated can be the best defence against Malware/Ransomware attacks, as well as a wide range of other issues. 

#30 r.a.d.

r.a.d.

    Fractionally sidonglobophobic ☁


  •  Avatar image
  • Members
  • 2,174 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:On the San Andreas Fault, SoCal.
  • Local time:10:01 PM

Posted 11 February 2018 - 11:05 AM

I feel like a lucky dummy surrounded by security experts. At present, Apple iPad, nothing needed. 

Previously, 3 XP desktops used long after support date, one kept at SP2, Firefox kept at an older version when they began their rapid deployment of newer,  Avast free, Malwarebytes free, Spywareblaster, Erunt for registry backup, services.msc trimmed with any security items disabled, Java removed... all I remember now, fairly safe surfing (occasional exploratory curiosities) and never got nailed in many years of use which ended around 1/2 to 3 years ago (eventual age/hardware failures on the machines).

Hence the 'lucky dummy' preface. Without the desire to learn Linux, and Windows never in my future plans, as now more evidenced above by the necessary and numerous steps required for security in today's threat world, next will be a Mac, with a simple AV.


Edit/add: I've visited Mac forums and Googled Mac infection removal, and (hats off to the incredible malware removal volunteer folks here) the plethora of tools, time and expertise required to clean an infected Windows computer. Huge difference. 

Backups were CD's, some offline storage for photos.

Edited by r.a.d., 11 February 2018 - 11:21 AM.

Bleepin' desert rat retiree in climes yet to fry brains (knock on cactus 🌵)

Past climes/best friend (Malamute-timber wolf mix) /Sierra Mtns.🌲 photo-91.gif




1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users