Advanced Plus Security Brambedkar59's Security Config 2024

Last updated
Mar 9, 2025
How it's used?
For home and private use
Operating system
Windows 11
Other operating system
2 older laptops running Win 10 (one with F-secure and other Kaspersky Free)
On-device encryption
N/A
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
    • Basic account password (insecure)
Security updates
Check for updates and Notify
Update channels
Allow stable updates only
User Access Control
Notify me only when programs try to make changes to my computer
Smart App Control
Off
Network firewall
Enabled
Real-time security
Kaspersky Free
Malwarebytes WFC
Firewall security
Other - Internet Security (3rd-party)
About custom security
Idle scan disabled
Periodic malware scanners
Norton Power Eraser
EEK
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Common extension/Search in all browsers: Bitwarden, Bing Search
Edge (Default): uBlock Origin (MV2), Shazam (enabled only on usage), Bypass Paywalls Clean ( (enabled only on usage))
Firefox (Secondary): uBlock Origin
Secure DNS
NextDNS
Desktop VPN
Proton VPN
Password manager
Bitwarden
Maintenance tools
Biweekly run: Windows Built-in, CCleaner, WiseCare 365 (Rarely used), Driver Store Explorer [RAPR] (for deleting old drivers not needed)
For finding program updates: UCheck & RuckZuck
HiBit Uninstaller
File and Photo backup
Google Drive, OneDrive
Subscriptions
    • None
System recovery
Hasleo Backup Suite
Risk factors
    • Browsing to popular websites
    • Working from home
    • Making audio/video calls
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Sharing and receiving files and torrents
    • Gaming
    • Gaming with third-party mods
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
11400H (UV via ThrottleStop), 3050Ti (UV via G-Helper), 16 GB, 0.5TB + 1 TB NVMe, 1 TB & 4 TB HDD (for image backup and downloads)
Notable changes
Kaspersky Free to AVG IS
AVG IS to Kaspersky Free
What I'm looking for?

Looking for medium feedback.

Notes by Staff Team
  1. This setup configuration may put you and your device at risk!
    We do not recommend that other members use this setup. We cannot be held responsible for problems that may occur to your device by using this security setup.

bazang

Level 13
Jul 3, 2024
618
It's a mess. MS can't be bothered to make proper documentations. Like Why Group policies have no effect on Defender service?
Because even the people at Microsoft do not know or understand how Windows GPO works. This is an accurate statement.

The people that write Microsoft documentation are not Windows internals gurus at Mark Russinovich's level. They're most just technical writers.

The vast majority of Windows internals is uncharted and undiscovered territory - changing as Microsoft changes the OS with every update.
 

bazang

Level 13
Jul 3, 2024
618
I have already disabled defender service with DControl.
There for a while, Sordum's DControl stopped working; it no longer prevented Microsoft Defender from starting/it did not block it.

So it is good to know that it is working again for at least one person.

Just so you are aware, Microsoft knows about the method that Sordum uses. So it could close that ability to block Defender whenever it decides.
 

Vitali Ortzi

Level 30
Verified
Top Poster
Well-known
Dec 12, 2016
1,925
There for a while, Sordum's DControl stopped working; it no longer prevented Microsoft Defender from starting/it did not block it.

So it is good to know that it is working again for at least one person.

Just so you are aware, Microsoft knows about the method that Sordum uses. So it could close that ability to block Defender whenever it decides.
Disabling a few components and then a registry edit worked for me to disable defender and I just followed a guide from Microsoft fourm
 

bazang

Level 13
Jul 3, 2024
618
Disabling a few components and then a registry edit worked for me to disable defender and I just followed a guide from Microsoft fourm
Officially and ultimately, Microsoft wants to remove any unmanaged user's ability to block Defender.

Microsoft uses the term unmanaged to mean 1) any system not connected to a Microsoft Account (a local account, for example) or 2) any system not managed by an Administrator (not a home Administrator but an enterprise or government IT administrator).

Sooner or later M$ will "patch" the various ways that users can block Defender. When I cannot say, but it has been on their bucket hit list for quite a while.

M$ is OK with the whack-a-user game.

One thing about Microsoft is that for the most part they don't care about what users can and cannot do on older builds of Windows. So if a system is not Windows 11 latest build then M$ will rarely release a patch for an older build to address what it considers to be a security gap or hole that results not from a bug or feature, but some unintended or unwanted way that Windows internals create the hole.
 
Last edited:

Vitali Ortzi

Level 30
Verified
Top Poster
Well-known
Dec 12, 2016
1,925
Officially and ultimately, Microsoft wants to remove any unmanaged user's ability to block Defender.

Microsoft uses the term unmanaged to mean 1) any system not connected to a Microsoft Account (a local account, for example) or 2) any system not managed by an Administrator (not a home Administrator but an enterprise or government IT administrator).

Sooner or later M$ will "patch" the various ways that users can block Defender. When I cannot say, but it has been on their bucket hit list for quite a while.

M$ is OK with the whack-a-user game.

One thing about Microsoft is that for the most part they don't care about what users can and cannot do on older builds of Windows. So if a system is not Windows 11 latest build then M$ will rarely release a patch for an older build to address what it considers to be a security gap or hole that results not from a bug or feature, but some unintended or unwanted way that Windows internals create the hole.
With all the low level security they have been pushing they could make it impossible for a user to do that if they wanted
Eh would definitely be a weird ride in the security by default where everyone will be adminless with low level firmware checks
Unless they pay for some administration license to unlock paid enterprise features with the cloud

Not sure if it will happen but it's always a possibility with their security by default agenda

Only good thing is that every PC will be as secure as their Xbox
 
  • Like
Reactions: Jack

bazang

Level 13
Jul 3, 2024
618
With all the low level security they have been pushing they could make it impossible for a user to do that if they wanted
Eh would definitely be a weird ride in the security by default where everyone will be adminless with low level firmware checks
Unless they pay for some administration license to unlock paid enterprise features with the cloud

Not sure if it will happen but it's always a possibility with their security by default agenda

Only good thing is that every PC will be as secure as their Xbox
Over the years Microsoft has slowly been wearing-down users and making a strong attempt to manage their devices for them (at least the basics such as applying security patches):

1. Forced updates
2. Forced use of a Microsoft Account
3. Forced Windows S Mode on certain devices

However, to a very large extent, Microsoft wants no parts of home users and all the stuff that they bring.

The entire "users want to use stuff and they should be able to do what they want" is dinosaur thinking. That model has never worked and is the cause of everything that you read about in the daily cybersecurity news.

Do not blame Microsoft or any other company for terrible user security. Blame the users because they are 90% of the cause of device insecurity. Microsoft and OEMs could make extremely secure devices for consumers, but those consumers will not let them. The consumers want what they want when they want it. Well that is just like catering to a 4 year old child that throws temper tantrums and giving them what they want every single time because that is what makes the child stop carrying on like the little obnoxious thug that it is.

I do not think humanity is smart enough to be secure (or prevent catastrophic climate change or fix any other major problems such as the coming world war). Too many soft people. Too many people that want what they want when they want it.
 

SeriousHoax

Level 50
Verified
Top Poster
Well-known
Mar 16, 2019
3,963
Regarding your comment on this thread: Advanced Security - Captain's Configuration 2024-2025
You were supposed to receive a notification like this from Kaspersky when you ran Warp for the first time with Kaspersky:
1.png

Here you have click Add to exclusions to make it work with Kaspersky. Did you not receive this notification?
 

brambedkar59

Level 33
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,229
Regarding your comment on this thread: Advanced Security - Captain's Configuration 2024-2025
You were supposed to receive a notification like this from Kaspersky when you ran Warp for the first time with Kaspersky:
View attachment 287367
Here you have click Add to exclusions to make it work with Kaspersky. Did you not receive this notification?
I never received this notification and WARP worked fine for almost a month now. Now it work sometimes and other times it doesn't.
 
Last edited:

brambedkar59

Level 33
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,229
@SeriousHoax @rashmi You were both right, it was Kaspersky. I don't remember changing the setting "Visiting a domain with an encrypted connections scan error" to "Ignore" from "Ask". Changing Ignore to Ask fixed the issue. It showed a Pop-up notification when I started WARP again and I added an exclusion for it.
1738560334546.png

It's weird though that disabling https scanning didn't fix the issue. I also added WARP as trusted app in the above setting but that didn't help either. 🤔
 

rashmi

Level 17
Jan 15, 2024
809
@SeriousHoax @rashmi You were both right, it was Kaspersky. I don't remember changing the setting "Visiting a domain with an encrypted connections scan error" to "Ignore" from "Ask". Changing Ignore to Ask fixed the issue. It showed a Pop-up notification when I started WARP again and I added an exclusion for it.
View attachment 287373
It's weird though that disabling https scanning didn't fix the issue. I also added WARP as trusted app in the above setting but that didn't help either. 🤔
How did you disable Kaspersky's HTTPS scanning? The setting "Visiting a domain..." isn't for completely disabling HTTPS.
 

SeriousHoax

Level 50
Verified
Top Poster
Well-known
Mar 16, 2019
3,963
@SeriousHoax @rashmi You were both right, it was Kaspersky. I don't remember changing the setting "Visiting a domain with an encrypted connections scan error" to "Ignore" from "Ask". Changing Ignore to Ask fixed the issue. It showed a Pop-up notification when I started WARP again and I added an exclusion for it.
View attachment 287373
It's weird though that disabling https scanning didn't fix the issue. I also added WARP as trusted app in the above setting but that didn't help either. 🤔
I once talked to harlan about this popup from Kaspersky. I was telling him that it would've been better if Kaspersky didn't show the user this popup and make their app compatible with popular apps like Cloudflare Wap by default like Avast, Bitdefender, ESET all do it in the background automatically. I don't know if in the newer versions of Kaspersky, they made "Ignore" the default mode instead of "Ask" to avoid such popups. If yes, then your problem shows then it's not perfect yet and more work on this need to be done by the Kaspersky team.
 

harlan4096

Super Moderator
Verified
Staff Member
Malware Hunter
Well-known
Apr 28, 2015
9,051
If yes, then your problem shows then it's not perfect yet and more work on this need to be done by the Kaspersky team.

Hum 🤔... It all depends on the point of view with which you look, Kaspersky leaves the user to customize the behavior, and therefore, we can consider that it is by design and not a bug, and by desire of the developers 🤷‍♂️.
 

SeriousHoax

Level 50
Verified
Top Poster
Well-known
Mar 16, 2019
3,963
Hum 🤔... It all depends on the point of view with which you look, Kaspersky leaves the user to customize the behavior, and therefore, we can consider that it is by design and not a bug, and by desire of the developers 🤷‍♂️.
If ask mode is still the default then yes, the devs want to give user the option. But I'll say that it creates confusion, so it's better for Kaspersky to handle it automatically. But if they have recently made Ignore the default option then it would mean that the devs are trying to automate this process but it's not problem free yet. I'll have to freshly install Kaspersky in a VM to know if Ignore is really the default option or @brambedkar59 changed the setting at some point by mistake.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top