Advanced Security AMD's PC Configuration 2022

Last updated
May 14, 2022
About
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 11
OS edition
Pro
Login security
    • Password-less (PIN, Biometric, Face)
Primary sign-in
Microsoft account
Primary user
Admin user - Full permissions
Security updates
Automatic - allow all types of updates
Windows UAC
Default - notify when programs attempt to make changes
Network firewall
ISP-issued router
Real-time protection
F-Secure Total
VoodooShield V7.10
Software firewall
Microsoft Defender Firewall
Custom RTP, Firewall and OS settings
H_C_ Firewall HardeningTool
Malware testing
No malware samples
Periodic security scanners
NPE
Secure DNS
None
VPN
F-Secure Freedome
Password manager
Roboform Everywhere
F-Secure ID Protection - passwords & identity (not used)
Browsers, Search and Addons
Microsoft Edge
Adguard desktop version
F-Secure browser protection
Maintenance and Cleaning
Windows disk cleanup utility
Windows defragment and optimise drives utility
Personal Files & Photos backup
Onedrive
Personal backup routine
Automatic (scheduled)
Device recovery & backup
Macrium reflect (paid version)
Backup of C Drive daily
Backup of external D(data) drive daily ( contains Onedrive folders)
C Drive & D drive are Bitlocker encrypted
E External Drive (backup drive) is a protected drive in F-Secure settings
Device backup routine
Automatic (scheduled)
PC activity
  1. Working from home. 
  2. Browsing the web. 
  3. Shopping. 
  4. Banking. 
  5. Downloading software. 
Feedback Response

General feedback

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
Thanks,

I wasn't sure as the F-Secure extension sits very quietly in the background but the Malwarebytes Browser Guard has a count of items blocked.

Have removed Malwarebytes Browser Guard for now.
 

silversurfer

Level 84
Verified
Helper
Top poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
7,569
Thanks,

I wasn't sure as the F-Secure extension sits very quietly in the background but the Malwarebytes Browser Guard has a count of items blocked.

Have removed Malwarebytes Browser Guard for now.

Just to inform, Malwarebytes Browser Guard counts even for blocked ads, so that's probably the main reason why it shows more "activity..."
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
Just to inform, Malwarebytes Browser Guard counts even for blocked ads, so that's probably the main reason why it shows more "activity..."

Thanks that makes sense. It was just the F-Secure extension seems so quiet which is a good thing in a way.
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
One thing I am not sure of with F-Secure SAFE is the protection it provides for incoming emails and attachments, spam etc (not email address monitoring). With other products I have had these have had an Outlook add-in and something to manage good/spam email.

Presumably F-Secure is monitoring email activity but just does not have a spam filtering/logging facility ?

Comments appreciated thanks.
 
  • Like
Reactions: Venustus

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
Possibly looking to add one or a combination of Windows Firewall Control, Simple Windows Hardening and O&O ShutUp ?

Are any of the above overlapping with current set-up ?
 

SecureKongo

Level 29
Verified
Top poster
Well-known
Feb 25, 2017
1,826
Possibly looking to add one or a combination of Windows Firewall Control, Simple Windows Hardening and O&O ShutUp ?

Is this overkill with current set-up ?
I'd choose either VoodooShield or Simple Windows Hardening.

F-Secure + Simple Windows Hardening + Windows Firewall Control seems like a nice combination to me. F-Secure has good signatures for PE-files as it is using Avira engine. Sadly the Avira engine is quite weak at detecting scripting malware, so Simple Windows Hardening is a nice addition in my opinion.

So it's up to you, but SWH + VoodooShield is overkill in my opinion and doesn't add any major value to your config.
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
I already have VoodooShield Pro running so I think I will stick with that.

Would WFC add much over the build it Windows Defender Firewall do you think ? I have never had a separate Firewall Program before as previously i have picked software suites with firewall protection built in.
 

SecureKongo

Level 29
Verified
Top poster
Well-known
Feb 25, 2017
1,826
I already have VoodooShield Pro running so I think I will stick with that.

Would WFC add much over the build it Windows Defender Firewall do you think ? I have never had a separate Firewall Program before as previously i have picked software suites with firewall protection built in.
I never really used WFC, I always used Firewall Hardening which is from the same developer as Simple Windows Hardening:

 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
Just so I know,If I were to install Firewall Hardening and later uninstall it, do the firewall settings revert back to the default rules of the Windows Firewall ?
 
  • Like
Reactions: SecureKongo

SecureKongo

Level 29
Verified
Top poster
Well-known
Feb 25, 2017
1,826
Just so I know,If I were to install Firewall Hardening and later uninstall it, do the firewall settings revert back to the default rules of the Windows Firewall ?
It's portable so you don't have to install or uninstall anything.

When you launch the tool for the first time, there won't be any rules added. You can choose which ones you want to add on the right side. When you want to remove the rules again, you just need to click on the remove buttons:
Screenshot 2022-05-14 124158.png

In case you want to check wether the rules are applied, you can always proceed like this:

1. Access the Windows Security Center
2. Click on the Firewall tab
3. Click on advanced settings
4. Click on outbound rules
5. There you should see all the rules created by Firewall Hardening:
Screenshot 2022-05-14 124557.png
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
Thanks SecureKongo

I may well give the stand-alone version a try and see how I get on with it then. I just didn’t want to get myself in a mess but this looks fairly straightforward - I hope !
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
I have Firewall Hardening on my PC now and have added Recommended H_C. Does recommended incorporate LOLBins and MS Office or do you add these separately as required ?
 

SecureKongo

Level 29
Verified
Top poster
Well-known
Feb 25, 2017
1,826
I have Firewall Hardening on my PC now and have added Recommended H_C. Does recommended incorporate LOLBins and MS Office or do you add these separately as required ?
Better read all the information that is provided in the thread I sent you.

Here a short abstract:
The user can add/remove some predefined rules: 'LOLBins', 'MS Office', 'Adobe Acrobat Reader', 'Recommended H_C'. They are visible on the right of the application GUI.

« 'LOLBins' rules are related to Living Of The Land executables from system folders, which are known to be commonly abused by malc0ders.

« 'MS Office' and 'Adobe Acrobat Reader' rules are related to Word, Excel, PowerPoint, Equation Editor, and Acrobat Reader applications.

« 'Recommended H_C' is a part of 'LOLBins’. These rules are suited to users who installed the Hard_Configurator Windows hardening application and applied the <Recommended Settings>.

As you don't have Hard_Configurator installed, you should probably use the LOLBins rules. If you have any Microsoft Office software like Word or Excel installed, you can add the MS Office rules too. And if you are using Acrobat Reader, you can add those rules as well.
 

SecureKongo

Level 29
Verified
Top poster
Well-known
Feb 25, 2017
1,826
Thanks

I had a read of that thread but still wasn't sure after reading it !
No problem! if you still have any questions, just ask. I am pretty sure that you won't face any issues tho. After applying the rules you probably won't even notice any difference. (y)

One thing though... I'd recommend enabling the logging feature, so that you can check what's blocked.
 

AMD1

Level 4
Thread author
Verified
Aug 21, 2012
198
No problem! if you still have any questions, just ask. I am pretty sure that you won't face any issues tho. After applying the rules you probably won't even notice any difference. (y)

One thing though... I'd recommend enabling the logging feature, so that you can check what's blocked.

Thanks and yes I spotted the logging feature and enabled it.

I have added LOLBins and MS Office
 
Last edited:
  • Applause
Reactions: SecureKongo