My recent obsession with security

By sanctified
in Microsoft (Windows)

 Share

Recommended Posts

Grand Master

sanctified Veteran

Posted
  • Veteran
Posted

A couple of weeks ago my bank detected suspicious activity regarding my credit card. Fortunately they blocked it and rejected the intended payment in time.

I knew instantly it was something installed in my computer since that specific credit card it's for internet use only and I pay using only trusted sites. So a rootkit or something.

I used a couple of malware and rootkit detectors and as I thought both detected some malware.

Also (lucky me) around the same time my external drives started to fail due corruption. They are new so this was suspicious.

Since then I've done the following:

  • Re-installed the system.
  • Got a Malware bytes license and a couple of malware/rootkit scanners (Sophos virus removal tool and Kapersky's TDSSKiller) working along my Microsoft Security Essentials.
  • Got Spinrite 6.
  • Installed SRW Iron instead of Chrome because the added security options and because it comes without the Google extra crap.
  • Installed Lubuntu in a spare USB thumbdrive as a banking only OS. I installed Lathe on it (Linux equivalent to Deep Freeze) to add an extra layer of security (Linux has malware and rootkits too).

What else do you suggest I can do?

Link to comment
https://www.neowin.net/forum/topic/1086867-my-recent-obsession-with-security/
Share on other sites
Grand Master

TEX4S

Posted
Posted

A couple of weeks ago my bank detected suspicious activity regarding my credit card. Fortunately they blocked it and rejected the intended payment in time.

I knew instantly it was something installed in my computer since that specific credit card it's for internet use only and I pay using only trusted sites. So a rootkit or something.

I used a couple of malware and rootkit detectors and as I thought both detected some malware.

Also (lucky me) around the same time my external drives started to fail due corruption. They are new so this was suspicious.

Since then I've done the following:

  • Re-installed the system.
  • Got a Malware bytes license and a couple of malware/rootkit scanners (Sophos virus removal tool and Kapersky's TDSSKiller) working along my Microsoft Security Essentials.
  • Got Spinrite 6.
  • Installed SRW Iron instead of Chrome because the added security options and because it comes without the Google extra crap.
  • ..........

What else do you suggest I can do?

you can be obssessed all you want - but instead of planning on getting infected & loading up on removal tools - wouldnt it be smarter to work towards not getting infected in the 1st place ?

First thing I'd do is get rid of that god awful crap AV MS Essentials, period. Only thing its good for is for people who dont know any better, only listen to someone else's opinion (who also doesnt know any better) & pass said opinion off as their own, or people who are too tight with money to get a proper A/V pkg.

So - get rid of it, and once you know you're clean - get webroot's secure anywhere & sit back and relax

Or dont listen to me and listen to all the nitwits who are certainly going to talk about how good MSE is - "ive used it for 2 years and never got a virus" says more about their browsing habits & not their lame ass A/V software with crap detection rates.

I'm getting geared up because I know all of the flaming this will cause - putting my boxing gloves on :crazy:

  • Glassed Silver
  • Like 1
Grand Master

+InsaneNutter MVC

Posted
  • MVC
Posted

Can you get some sort of secure key for accessing your online banking?

Even if i gave you all the details to log in to my online bank, you would still need my secure key and pin number for it to generate an access code to actually log in. So unless you actually had something that targeted your banks website and altered the transaction as your doing it you should be pretty safe.

You could also use 1password to have a unique password for every website you use: https://agilebits.com/onepassword

I'm getting geared up because I know all of the flaming this will cause - putting my boxing gloves on :crazy:

So you have had that rant about how bad it is without even giving a single reason...

Mentor

SierraSonic

Posted
Posted

you can be obssessed all you want - but instead of planning on getting infected & loading up on removal tools - wouldnt it be smarter to work towards not getting infected in the 1st place ?

First thing I'd do is get rid of that god awful crap AV MS Essentials, period. Only thing its good for is for people who dont know any better, only listen to someone else's opinion (who also doesnt know any better) & pass said opinion off as their own, or people who are too tight with money to get a proper A/V pkg.

So - get rid of it, and once you know you're clean - get webroot's secure anywhere & sit back and relax

Or dont listen to me and listen to all the nitwits who are certainly going to talk about how good MSE is - "ive used it for 2 years and never got a virus" says more about their browsing habits & not their lame ass A/V software with crap detection rates.

I'm getting geared up because I know all of the flaming this will cause - putting my boxing gloves on :crazy:

He said ALONG SIDE, its a redundancy.
Community Regular

J_R_G

Posted
Posted

I made a Security guide for Vista and Win 7, if you are using XP I suggest you upgrade if security is a concern. The guide is at http://bulletproof-w...ws.BlogSpot.com - I also suggest IE or Chrome, since they are sandboxed, and don't download anything that is not well documented (use a google search if you need to, legit links for apps/games are usually in the top results.)

Grand Master

Arachno 1D

Posted
Posted
knew instantly it was something installed in my computer since that specific credit card it's for internet use only and I pay using only trusted sites. So a rootkit or something.

Not necessarily, it may be the vendors or even the card issuers system that has caused the problem

Mentor

notta

Posted
Posted

haha, I've been on that kick lately as well. As a matter of fact I spent all morning changing passwords because a site I visit often got hacked today. They sent out the email this morning so I have been changing passwords. I've been using Lastpass because I'm tired of using the same password for every site. I still haven't committed to using it for anything that holds my credit card numbers, but so far I'm really liking it.

Regarding your question, what I do is anything that I feel may compromise my system I run in a VM. Whenever I go to a site that I feel might be trouble I use the browser in a VM that is running inside Sandboxie. Multiple layers of protection there. Every once in a while I'll save my bookmarks to the desktop and reset the VM. I don't install anything questionable on my host system. Anything that I question I run in a VM. Just make sure to keep all your software up-to-date including your VM software.

Grand Master

sanctified Veteran

Posted
  • Author
  • Veteran
Posted

I made a Security guide for Vista and Win 7, if you are using XP I suggest you upgrade if security is a concern. The guide is at http://bulletproof-w...ws.BlogSpot.com - I also suggest IE or Chrome, since they are sandboxed, and don't download anything that is not well documented (use a google search if you need to, legit links for apps/games are usually in the top results.)

That guide it's amazing. You should have it featured on neowin. Maybe making it into a thread and I can help you to support its pinning.

TEX4S: Thanks for the recommendation. Im reading recent reviews of Webroot's secureanywahere and all the critics seems to praise it. However I'm reluctant because the user reviews seem less than stellar.

Regarding Google Chrome: SRW Iron it's based on Chrome but with emphasis on security and speed. Also I like the idea of having no Google spying on my machine.

I also thought about using a browse inside a VM. However I use a lot of very ram hungry apps and using a VM would severely cut down my available ram.

BTW, thanks to the jerk who rated this thread with one star. Seems it's bad to admit you're clueless and ask for help in here.

Grand Master

Copernic Reporter

Posted
  • Reporter
Posted

Webroot SecureAnywhere? Hahahahaha!

So what's next you want to recommend? Norton Internet Security? KingSoft Antivirus?

Fact: No antivirus installed is far better than having Webroot SecureAnywhere.

Do you want to explain why WSA is so bad? Maybe is better SpyBot? Or maybe Emsisoft? Or even better MSE? lol.

@sanctified.

Try Webroot SecureAnywhere Antivirus. This is WSA installed on 4 gb of ram:

Ztd9K.png

Mar-Apr/2012 AV-Test results:

http://www.av-test.org/no_cache/en/tests/test-reports/?tx_avtestreports_pi1[report_no]=121361

Grand Master

sanctified Veteran

Posted
  • Author
  • Veteran
Posted

Do you want to explain why WSA is so bad? Maybe is better SpyBot? Or maybe Emsisoft? Or even better MSE? lol.

@sanctified.

Try Webroot SecureAnywhere Antivirus. This is WSA installed on 4 gb of ram:

Ztd9K.png

Mar-Apr/2012 AV-Test results:

http://www.av-test.o...testreports_pi1[report_no]=121361

Would you recommend the complete suite of that would be overkill?

It's a little expensive tho.

Mentor

08993

Posted
Posted

Regarding Google Chrome: SRW Iron it's based on Chrome but with emphasis on security and speed. Also I like the idea of having no Google spying on my machine.

Chromium is open source, you can inspec the code for supicious activity, same with Firefox. Can you inspect your closed source SRW Iron? Apart from them telling you what you want to hear, do you have any basis for the conclusion that SRW Iron is any safer?

For somebody so concerned with security, using an ill documented closed source browser with no real industry backing apart from what the SRW Iron guys say is a major fail.

Edit/ To clarify, I'm not having a go, Iron could be logging everything you do and you'd never know, it's not even released by a trusted and culpable company.

Grand Master

sanctified Veteran

Posted
  • Author
  • Veteran
Posted

Chromium is opem source, you can inspec the code for supicious activity, same with Firefox. Can you inspect your closed source SRW Iron? Apart from them telling you what you want to hear, do you have any basis for the conclusion that SRW Iron is any safer?

For somebody so concerned with security, using an ill documented closed source browser with no real industry backing apart from what the SRW Iron guys say is a major fail.

For some reason Firefox always crawls on my system (And my system is pretty good). And Chromium does not have precompiled builds for Windows :/

Does anyone have found proof that Iron is not secure? (Honest question).

Grand Master

sanctified Veteran

Posted
  • Author
  • Veteran
Posted

Damn, webroot antivirus it's quite cheap and the reviews I keep digging praise it a lot. Im about to give in.

The user reviews seem a little biased. Maybe done by users of the old versions that are yet to try this new version.

Also as an OCD I love the idea of smaller and faster antivirus.

Grand Master

Copernic Reporter

Posted
  • Reporter
Posted

Would you recommend the complete suite of that would be overkill?

It's a little expensive tho.

Not overkill at all, personally I don't need all the stuff from the 'Complete' version. PM me - I can send you a link with 50% off - only $39.95 for WSA Complete instead of $79.95 and $19.95 per year for WSA Antivirus instead of $39.95.

Edit: I have Webroot Antivirus installed and I'm very impressed. Is light, fast, and offer a pretty good protection. Before purchasing it I went to MDL and tried about 30 malware links; believe me it didn't let anything to enter. My opinion is not biased and I don't work for Webroot either. And I'm not a fanboy :) If Symantec can do better tomorrow I will uninstall WSA and go for Symantec.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • ASUS ROG Falchion Ace 75 HE keyboard is 27% off on Amazon

      By Ivan Jenic · Posted

      ASUS ROG Falchion Ace 75 HE keyboard is 27% off on Amazon by Ivan Jenic The ASUS ROG Falchion Ace 75 HE is currently $159.99 on Amazon, down from $219.99. That's 27% off and $60 saved on a keyboard that combines retro and modern design, while being one of the most responsive and adaptable 75% boards available right now (purchase link down below). The ROG Falchion Ace comes with the HFX V2X magnetic switches that allow you to set actuation anywhere between 0.1mm and 3.5mm with 0.01mm fine-tuning steps. It also comes with Rapid Trigger, a feature that resets the key the moment you release it rather than waiting for a fixed reset point, which makes a noticeable difference in fast-paced games. And finally, an 8,000Hz polling rate should make the response time feel instant. The build quality is decent, with dense plastic and powder-coated aluminum, which is expected from a keyboard at this price point. There’s also the onboard adjustment wheel, which lets you tweak actuation and Rapid Trigger sensitivity without opening any software. For competitive gaming, the ROG Falchion Ace is hard to beat at this price. And those who appreciate old-school hardware, especially those white keyboards we’ve all grown up with, will likely also appreciate the looks of this keyboard. A carry case is included. ASUS ROG Falchion Ace 75 HE - $159.99 | 27% off on Amazon This Amazon deal is US-specific and not available in other regions unless specified. This is a first-party seller link (at the time of article publishing); ensure that you also purchase from a first-party seller link only. If you don't like it or want to look at more options, check out the previous deals that we have covered, OR you can also visit Amazon US deals page. Get Prime (SNAP), Prime Video, Audible Plus or Kindle / Music Unlimited. Free for 30 days. As an Amazon Associate, we earn from qualifying purchases.
    • Signal accuses UK government of using child safety as cover for mass surveillance

      By Stup0t · Posted

      Well, obviously!
    • WhatsApp slams Isreali firm, NSO Group, for trying to spy on its users

      By leonsk29 · Posted

      What?
    • macOS ‘Golden Gate' unveiled with standalone Siri app, performance improvements and more

      By Joni Sin · Posted

      "Moreover, the Writing Tools in macOS 27 are now powered by Siri AI, allowing users to draft emails and other content, as well as request feedback on specific pieces of text." APPLESLOP !!! or because its Apple, so its Okay 😉
    • Classic Outlook vs New Outlook — Which one do you prefer and why?

      By bikeman25 · Posted

      Been using Outlook all my Life on Windows,  But Classic Outlook---Briefly Tried NEW Outlook, but wasn't to my tastes, but i feel if and when forced to switch in the future--i could get used to it if  i had to   

  • Recent Achievements

    • Very Popular
      Captain_Eric earned a badge
      Very Popular
    • One Month Later
      amusc earned a badge
      One Month Later
    • One Month Later
      DJC50PLUS earned a badge
      One Month Later
    • Week One Done
      DJC50PLUS earned a badge
      Week One Done
    • Proficient
      Eric Biran went up a rank
      Proficient

  • Popular Contributors

    1. 1
      +primortal
      510
    2. 2
      PsYcHoKiLLa
      224
    3. 3
      ATLien_0
      89
    4. 4
      +Edouard
      83
    5. 5
      Steven P.
      81
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!