Decided to try a barebones approach this year.
I would add those but I don't want deal with whitelisting the various executables, scripts, libraries, etc. that'll end up getting blocked as a result.Very simplistic, I like it. Hard_Configurator with Configure Defender wouldn't hurt in your config tho.
I'll think about it. On previous use, upping Defender's cloud protection level to High ended up wrecking my system's performance, and blocking executables by prevalence ended up blocking updates for certain software, so I'll have to audit CD's settings to see if they have any detrimental effects if I choose to use it.ConfigureDefender doesn't require whitelisting on high settings the only rule I had to disable once is the advanced ransomware protection ASR rule.
It really enhances the protection of Microsoft Defender.
I dislike Edge's UI, specifically its new tab page, its warmer colour palate and its increased font size.Why not go further with the buit-in protection and use the new Microsoft Edge as browser?
Ok, fair enough. I can understand the performance part, Microsoft Defender is slowing down systems (it depends on the system how much you will notice) and it could well be the cloud protection part. The cloud is however a big part of its protection. I have not tested myself if changing that level has any influence.I'll think about it. On previous use, upping Defender's cloud protection level to High ended up wrecking my system's performance, and blocking executables by prevalence ended up blocking updates for certain software, so I'll have to audit CD's settings to see if they have any detrimental effects if I choose to use it.
I dislike Edge's UI, specifically its new tab page, its warmer colour palate and its increased font size.
Plus Chrome gets security fixes faster, and if I do choose to enable Network Protection it won't overlap with Google Safe Browsing like it does with SmartScreen.
I did use it for a period of time and its performance definitely topped Chrome's, but I simply can't get over its weird UI design decisions.For me after using the new Edge, I don't like Chrome anymore
I never install new software once I have everything I use installed, so if SmartScreen throws up a warning then that's a huge red flag of potential infection.if you follow the recommendations of SmartScreen on Windows, but most people don't.
My ISP already offers malicious domain filtering from Sophos, so I don't know whether NextDNS or Quad9 would really add anything of value honestly.I would also consider switching your DNS to something other than your ISP's. NextDNS or Quad9 are popular choices.
I usually only make one system image backup (right after installing and updating Windows but before installing software or changing any settings) so it's not really worth installing AOMEI or Macrium as I probably won't use them again.Nice setup! I would recommend using a backup tool beyond just what Windows provides. If you want to keep a very light setup feel free to use AOMEI Backupper's USB backup configuration and back up using their software. If anyone here on MT knows - sometimes one gets burned on the Windows stuff and they want to have a fail safe. AOMEI installed on your computer should be 'light' enough.