Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

System Protection question


  • Please log in to reply
20 replies to this topic

#1 Drauka

Drauka

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 03 February 2015 - 11:56 AM

Hello,

 

I just got a new Windows 8.1 64 bit system last week and I have a couple protection questions.

 

On the system now I am running Kaspersky Pure 3 and Malwarebytes Premium (paid version).

Also My firefox browser has adblock plus installed in it and noscript.

 

My question is, is there any other protection software I should run in conjunction with the items that I have already installed and listed?

 

I go to lots of cross stitch site and I know Malwarebytes has save me several times.

But I thought I should have more proyection which I why I ask the question above.

 

Thanks in advance

Drauka

 

 

 



BC AdBot (Login to Remove)

 


#2 RolandJS

RolandJS

  • Members
  • 4,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin TX metro area
  • Local time:07:10 PM

Posted 03 February 2015 - 12:16 PM

  Spybot S&D 1.62 will protect your host file quite nicely, and, it has an on-demand malware scan.  I had to goto Spybot 2, it's like driving a bus where a Chevy or Ford station wagon would do.  For very good behind-the-scenes browser lprotection, I use SpywareBlaster [I only pay $10/yr for automatic-update/automatic enable all]. 

  Now, comes an Idea:  you have to balance functionality and security, not so much 50-50, rather, how much functionality and ease would you like, and, how much security would you like?  While they are not mutually exclusive, too much of one can cause problems for the Chair-person.  Not enough of one can cause problems for the Chair-person.  Just last night, I had to roll-back to a Dec 29 image 'cause too too much security attempts led to pretty much Windozzzzzzz and hee-haw in the thin blue line.


"Take care of thy backups and thy restores shall take care of thee."  -- Ben Franklin revisited.

http://collegecafe.fr.yuku.com/forums/45/Computer-Technologies/

Backup, backup, backup! -- Lady Fitzgerald (w7forums)

Clone or Image often! Backup... -- RockE (WSL)


#3 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,551 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 03 February 2015 - 12:29 PM

Hi Drauka :)

You are pretty much using the essentials of computer security right now, which is an Antivirus product (Kasperky PURE 3.0) and an Antimalware (Malwarebytes). Usually, you add a firewall to it, but Kaspersky PURE 3.0 have its own firewall so you're covered on that side. On top of the current web extensions you're using, I would add a few more for enhanced security, such as HTTPS Everywhere, Ghostery and Web of Trust. Also, what you need to protect yourself all comes down to what you use your computer for. If you could tell us that, maybe we can give you more protection tips.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:01:10 AM

Posted 03 February 2015 - 12:36 PM

Hi there Drauka :)
 

Spybot S&D 1.62 will protect your host file quite nicely, and, it has an on-demand malware scan.  I had to goto Spybot 2, it's like driving a bus where a Chevy or Ford station wagon would do.  For very good behind-the-scenes browser lprotection, I use SpywareBlaster [I only pay $10/yr for automatic-update/automatic enable all].

FYI: Spybot S&D is no longer recommended due to its failing detection and difficulty of using TeaTimer for average users.
 

My question is, is there any other protection software I should run in conjunction with the items that I have already installed and listed?

There are a couple of recommendations I can give you.

- Remove Java, Flash and Silverlight if you don't need them.

- Web of Trust is a website rating service based on community feedback. You can get a general idea of what's good and bad by reading the reviews. Take the ratings with a grain of salt however - since it is community feedback, there are certain downfalls that WoT is subjective to.

- Malwarebytes Anti-Exploit is a special utility designed to block exploits used by malware to infiltrate your machine. The free version provides protection to your browsers only, upgrading to Premium allows the use of custom shields to protect others.

- Secunia Personal Software Inspector (Secunia PSI) is an utility designed to scan your machines for outdated applications and assist you in updating them. This is very important if you have software that are known to have exploits.

If you would be kind and tell us what you use your machine for, we can see if there are any additional recommendations.

Hope this helps.

Regards,
Alex

#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,143 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:10 PM

Posted 03 February 2015 - 12:39 PM

I generally recommend Malwarebytes Anti-Malware Pro or Emsisoft Anti-Malware as the backbone to supplementing my anti-virus software.

I also recommend using the following:



FYI: mvps.org is no longer recommending Spybot S&D (or Ad-Aware) due to poor testing results. See here - (scroll down and read under Freeware Antispyware Products).

Most people don't understand how to use Spybot's TeaTimer and that feature can cause more problems than it's worth. TeaTimer monitors changes to certain critical keys in Windows registry but does not indicate if the change is normal or a modification made by a malware infection. The user must have an understanding of the registry and how TeaTimer works in order to make informed decisions to allow or deny the detected changes. If you don't have understanding how a particular security tool works, then you probably should not be using it. Additionally, TeaTimer may conflict with other security tools which do a much better job of protecting your computer and in some cases it will even prevent disinfection of malware by those tools.

With that said and to be fair, there are now new versions of Spybot such as Spybot 2 + AV (Home & Pro) and Spybot 2 Free but I have not used them, nor read any reviews as to how well they perform. I did find this article in regards to Spybot Search and Destroy 2.0 has bloatware issues

Spybot Search and Destroy is another candidate that I have been using back in the days. Back then it was an efficient cleaner that removed lots of adware and spyware that many professional solutions did not detect...Spybot Search & Destroy 2.0...has a download size of 52 Megabytes, which feels like a lot for a once lean and clean program. You quickly now why when you look at the components that it will install on your system if you do not select the custom installation option during installation...The program installs two background processes that are running all the time, SDTray.exe and SDWelcome.exe. Scans spawn a third process SDScan.exe which may use a serious amount of memory. Yes, that is more than 500 Megabyte for that process alone.

 
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 Drauka

Drauka
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 03 February 2015 - 12:45 PM

Hey guys,

 

Thanks for the posts I appreciate it.

 

I use my computer for fun but I will list what I do and why, but first I say I permanantly disabled.

 

Now as I said I use my computer for looking up crossstitch patterns for my mother.

I also do a bit of gaming and i play arounf with lots of graphics and video editing.

All my software is paid and licensed and I basically tinker around with anything thats catches my eye.

I go to lots of sites daily, youtube, any graphic site (no porn or illegal sites), netflix, tutorial sites for my various programs.

I am also on lots of site trying to learn html for fun.

 

So basically i'm just jumping around.

Hope this info helps.

Thanks

Drauka



#7 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,551 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 03 February 2015 - 12:50 PM

If this is what you mostly do on your system, all the recommendations posted above will help enhance your security. It's a good thing that you have NoScript on your web browser since it could prevent you from being hit by an Exploit Kit. However, if you install Malwarebytes Anti-Exploit recommended by Alex and quietman, and CryptoPrevent recommended by quietman, this will make sure that not only you'll not be hit by Exploit Kit, but also if that Exploit Kit was delivering a Cryptoware, it would be blocked. The protection ratio of that setup isn't perfect, nothing is anyway, but it's really close to the best security you can get for that kind of situation. Along with that, if you use a lot of websites with accounts, I suggest you to look into a password manager. You should never save your passwords locally on your system (in your web browser) since they can be easily stolen. LastPass would be my choice for a password manager, and they do have a free version that offers a lot of features.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#8 Drauka

Drauka
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 03 February 2015 - 01:36 PM

Hey guys,

 

Thanks again for all the suggestions you gave me, I really appreciate it.

 

I add WOT and Ghostery to Firefox right before I sharted this current messgae.

I will take your advice and look at cryptoprevent, malwarebyte anti-exploit and the rest as well.

 

I already have a password manager and have had for many years, I would not go without one.

I looked at lastpass but it looks like it stores them online and I dont know if i like that idea.

 

I just don't wan't to add so much protection that it effects my system bad or causes problems.

 

Thanks for the help.

Drauka



#9 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,551 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 03 February 2015 - 01:38 PM

Well you can ask quietman about it. He runs tons of security-based software on his system and doesn't notice in slow down or conflicts so I guess he's doing it right :) As for a password manager, if you're already using one it's good, just make sure that you have no passwords saved on Mozilla Firefox or any other browsers since this could be a seriously bad thing. Other than that it looks like you'll make good adjustments :)

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#10 RolandJS

RolandJS

  • Members
  • 4,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin TX metro area
  • Local time:07:10 PM

Posted 03 February 2015 - 02:08 PM

Sorry, I meant to add:  do not use Spybot's TeaTimer or IE blocker/protector. Spybot has its place if one keeps it in its place.

A well-balanced [functionality & security], well-configured, multi-layered defense is best [author unknown].  For me, the more time is spent on configuration and set up, the less time is spent on damage control and/or repair.


"Take care of thy backups and thy restores shall take care of thee."  -- Ben Franklin revisited.

http://collegecafe.fr.yuku.com/forums/45/Computer-Technologies/

Backup, backup, backup! -- Lady Fitzgerald (w7forums)

Clone or Image often! Backup... -- RockE (WSL)


#11 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,666 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:10 AM

Posted 03 February 2015 - 02:15 PM

Do you make regular backups of your computer?


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#12 RolandJS

RolandJS

  • Members
  • 4,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin TX metro area
  • Local time:07:10 PM

Posted 03 February 2015 - 02:23 PM

absolutely!


"Take care of thy backups and thy restores shall take care of thee."  -- Ben Franklin revisited.

http://collegecafe.fr.yuku.com/forums/45/Computer-Technologies/

Backup, backup, backup! -- Lady Fitzgerald (w7forums)

Clone or Image often! Backup... -- RockE (WSL)


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,143 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:10 PM

Posted 03 February 2015 - 02:47 PM

Be aware that some of the newer cyptro malware variants use techniques which can bypass tools like CyptoPrevent and HitmanPro so it is important to keep checking for updates. Once discovered, the developers do their best to include new blocking measures in subsequent updates.

Also many site rating vendors (i.e. McAfee SiteAdvisor, WOT) use a system of volunteer testers that continually patrol the Internet to browse sites, download files, and enter information on sign-up forms. All the results are documented and supplemented with feedback from users, Web site owners, and analysis from their own employees. The advising site vendor then summarizes the results sometimes into a color-coded red, yellow and green ratings scale to help inform Web users as to the safety of each tested site. While these tools are useful, they are not foolproof and sometimes may provide misleading ratings. Just because you visit a risky site does not automatically mean the site is bad or that your system has been infected by going there. Thus, the use of such rating sites does not always guarantee an accurate rating of the results they provide.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 JohnC_21

JohnC_21

  • Members
  • 22,981 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 03 February 2015 - 03:14 PM

I would like to add one thing. Do your browsing in a User Account instead of an Admin Account. Provide a strong password for the Admin Account. If you get a UAC popup during your browsing then you know something is trying you alter your system files. This probably isn't as effective on Windows 7 as doing it in XP because Windows 7 does have UAC but I still only browse in a LUA on Windows 7.

 

Edit: Your best defense against Malware is creating regular DIsk/System Images.


Edited by JohnC_21, 03 February 2015 - 03:16 PM.


#15 Drauka

Drauka
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 03 February 2015 - 03:15 PM

Hello again guys,

 

Thanks for the additional information, I will use it all.

 

As for backups I have my important data backed up on hotswap drive(s).

I cant do whole system as I have 6 3tb drives on the new system, and id need a rack to back it all up. (sigh: need to win lotto, lol)

 

Thanks again for the help you guys are great.

Drauka

 

Saw other post after I made this email.

 

I will check how to make a user account on windows 8 as currently i'm on main admin account.

 

Thanks


Edited by Drauka, 03 February 2015 - 03:17 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users