Advanced Security Asterixpl Security Configuration 2022

Last updated
Jun 3, 2022
Use case
For personal use
Shared with
No one
Desktop OS
Windows 11
Windows OS SKU
Home
Login Unlock
    • Passwordless PIN or Biometrics
Sign-in with
Microsoft account
Primary user
Standard rights - Restricted permissions that prevent harmful changes
OS updates
Allow security updates
Windows UAC
Always notify
Network firewall
Third-party router [Mod: depreciated - please choose another option]
Always-on protection
Microsoft Defender (DefenderUI Free | Recommended Profile)
VoodooShield (AutoPilot Mode | Aggressive)
WhitelistCloud
Firewall
Microsoft Defender Firewall (Windows 11 & 10)
Custom RT/Firewall security
Modifying Windows 11:

Auto Play - disabled
O&O shut up 11 (recommended settings)
O&O app buster (slimmed-down system)
Malware testing
No malware samples
Periodic scanning
Once a month scan with the following scanners:
  • EMSISOFT Emergency Kit
  • Malwarebytes Anti Malware
  • Norton Power Eraser
  • Kaspersky Virus Removal Tool
Secure DNS
NextDNS
VPN
NO
Password manager
KeePass
Browsers and Extensions
BRAVE as my main browser with add-ons :
  • AdGuard
  • Bitdefender TrafficLight
Utilities for Maintenance
Once a week cleanup with the Hibit Uninstaller package tools.
Once a month with PrivaZer (portable version)
Occasionally using the cleaning tools built into Windows 11
Files & Photos backup
Macrium Reflect Free
Files & Photos backup routine
Manual
Emergency recovery plan
Once every two weeks a copy of the entire system partition is made to an external drive.
Integrity of recovery plan
Tasks performed
    • Working from home
    • Browsing the web
    • Receiving, sending and opening email attachments
    • Buying goods from online stores, entering card details and addresses
    • Logging into personal banking to check statements and payments
    • Downloading software from reputable sites
    • Watching movies and TV series via subscriptions
Computer specs
Brand and model:
ACER AN515-54-551F

CPU model:
Intel Core i5-8300H

GPU model:
NVIDIA GeForce GTX 1050

RAM type and size:
8 GB

Storage type and size:
512 GB SSD
Notable changes
03/21/2022 - MKS_VIR Internet Security + VoodooShield for free
03/22/2022 - Windows User Account Control - Maximum (always notify) added
13/04/2022 - Sandboxie Plus added
16/04/2022 - Simple Windows Hardening + Macrium Reflect Free added
17/04/2022 - Mozilla Firefox added
22/04/2022 - Deleted Mozilla Firefox, Sandboxie Plus. Added Opera
03/05/2022 - Testing AVIRA Free Antivirus for a few days
05/05/2022 - Comodo Secure Shopping added
06/05/2022 - Avira stays for good + VS PRO
10/05/2022 - TinyWall added
11/05/2022 - Delete TinyWall, added Windows Control Firewall
12/05/2022 - Test kit: MS Defender + DefenderUI (aggresive mode) + VodooShield Pro
16/05/2022 - AVIRA Free AV + VS Pro
21/05/2022 - Bitdefender TS + VS Pro
25/05/2022 - Bitdefender IS + VS Pro
08/09/2022 -
Microsoft Defender (DefenderUI Free | Recommended Profile) + VoodooShield (AutoPilot Mode | Aggressive) + WhitelistCloud
Feedback response

I am partially satisfied. General feedback is greatly appreciated, to make improvements to my overall security / privacy.

Shadowra

Level 22
Verified
Top poster
Malware Tester
Well-known
Sep 2, 2021
1,145
You have a good Polish AV. It would be nice to see a test as I don't think it's been tested in the Malware Hub or by one of our members. Suggestion for @Shadowra!

This is Arcabit 😉

Going back to the configuration, the UAC setting is missing. I would recommend setting it to Always Notified, which can block bypass UAC.

For DNS, there too I recommend NextDNS or Quad9 as far as security and privacy is concerned.
 

Asterixpl

Level 10
Thread author
Verified
Mar 19, 2022
473
Thanks for the answers


UAC enabled (default mode).

I added to Chrome:

  • HTTPS Everywhere

  • Adblock Plus

Once a month, I make a copy of the entire system partition to an external drive using Aomei Backupper Pro

I use WIFI at home

As for DNS, I don't know much about it. So I leave it as I have for now.

Firewall set in MKS VIR IS

greetings
 

Back3

Level 12
Verified
Top poster
Apr 14, 2019
590
Thanks for the answers




As for DNS, I don't know much about it. So I leave it as I have for now.
Good thread about NextDNS
 

Asterixpl

Level 10
Thread author
Verified
Mar 19, 2022
473
I have a one-year license for AVG IS.
Currently, I have a Polish product MKS ViR IS / ARCABIT IS (this same product).
I will ask the experts: which package is better.
My experience in this topic is not extensive and I expect an honest answer from you.
 

Gandalf_The_Grey

Level 63
Verified
Helper
Top poster
Content Creator
Well-known
Apr 24, 2016
5,118
I have a one-year license for AVG IS.
Currently, I have a Polish product MKS ViR IS / ARCABIT IS (this same product).
I will ask the experts: which package is better.
My experience in this topic is not extensive and I expect an honest answer from you.
Unfortunately, I don't know anything about MKS ViR IS / ARCABIT IS.
I know that @Shadowra tested Arcabit and AVG, maybe he can tell you more?
 

Shadowra

Level 22
Verified
Top poster
Malware Tester
Well-known
Sep 2, 2021
1,145
I have a one-year license for AVG IS.
Currently, I have a Polish product MKS ViR IS / ARCABIT IS (this same product).
I will ask the experts: which package is better.
My experience in this topic is not extensive and I expect an honest answer from you.

Difficult choice.

Arcabit / MKS has an excellent database (Bitdefender) but it is bad on unknown malware

AVG, like Avast is not always very responsive in signature, but its Cloud and IDP are very good.
 

Emanuel Tomasin

Level 20
Verified
Well-known
Nov 15, 2017
962
remove MKS and add this:


configure defender set to MAX and basic profile in hard configurator.