Advanced Plus Security Brambedkar59's Security Config 2024

Last updated
Nov 5, 2024
How it's used?
For home and private use
Operating system
Windows 11
Other operating system
2 older laptops running Win 10 (one with F-secure and other Kaspersky Free)
On-device encryption
N/A
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
    • Basic account password (insecure)
Security updates
Check for updates and Notify
Update channels
Allow stable updates only
User Access Control
Notify me only when programs try to make changes to my computer
Smart App Control
Off
Network firewall
Enabled
Real-time security
Kaspersky Free
Malwarebytes WFC
Firewall security
Other - Internet Security (3rd-party)
About custom security
Idle scan disabled
Periodic malware scanners
Norton Power Eraser
EEK
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Common extension/Search in all browsers: Bitwarden, Bing Search
Edge (Default): uBlock Origin (MV2), Shazam (enabled only on usage), Bypass Paywalls Clean ( (enabled only on usage))
Firefox (Secondary): uBlock Origin
Secure DNS
NextDNS
Desktop VPN
AVG Secure VPN
Password manager
Bitwarden
Maintenance tools
Biweekly run: Windows Built-in, CCleaner, WiseCare 365 (Rarely used), Driver Store Explorer [RAPR] (for deleting old drivers not needed)
For finding program updates: UCheck & RuckZuck
HiBit Uninstaller
File and Photo backup
Google Drive, OneDrive
Subscriptions
    • None
System recovery
Hasleo Backup Suite
Risk factors
    • Browsing to popular websites
    • Working from home
    • Making audio/video calls
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Sharing and receiving files and torrents
    • Gaming
    • Gaming with third-party mods
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
11400H (UV via ThrottleStop), 3050Ti (UV via G-Helper), 16 GB, 0.5TB + 1 TB NVMe, 1 TB & 4 TB HDD (for image backup and downloads)
Notable changes
Kaspersky Free to AVG IS
AVG IS to Kaspersky Free
What I'm looking for?

Looking for medium feedback.

Notes by Staff Team
  1. This setup configuration may put you and your device at risk!
    We do not recommend that other members use this setup. We cannot be held responsible for problems that may occur to your device by using this security setup.

F

ForgottenSeer 100397

Why is this setup considered insecure?
I guess the setup status is automatically determined based on certain parameters. A setup that appears insecure may not actually be insecure in practice. For instance, I rely on Comodo Firewall, customized and without an antivirus. An antivirus wouldn't provide any additional protection to my setup (it would only affect usability for me). If I'm correct, it/MT would label my setup without AV as insecure, and adding the weakest AV to the setup would make the status secure. Similar to Windows Security, it would notify me to install AV and show a secure status after installation.
 
Last edited by a moderator:

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
Finally switched over to Hasleo Backup Suite, seems pretty stable, tried both adding Boot menu and creating recovery USB drive and they both worked out of the box. (bootable media needed Intel IRST drivers, which Hasleo did ask while creating it). Backup time for creating full system image was similar to AOMEI.

Changes: Removed AOMEI Backupper Standard

Win 11 updated to build 22631.2861 (Updated on last month's patch Tuesday)
 

Vasudev

Level 33
Verified
Nov 8, 2014
2,251
Finally switched over to Hasleo Backup Suite, seems pretty stable, tried both adding Boot menu and creating recovery USB drive and they both worked out of the box. (bootable media needed Intel IRST drivers, which Hasleo did ask while creating it). Backup time for creating full system image was similar to AOMEI.

Changes: Removed AOMEI Backupper Standard

Win 11 updated to build 22631.2861 (Updated on last month's patch Tuesday)
Is it better than Macrium Reflect PE. I wanted disk imaging with windows and linux partitions.
 

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125

Vasudev

Level 33
Verified
Nov 8, 2014
2,251

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
Yeah thanks. I'm using free version of PE image. Just wanted a different alternative. I use the personal version in Sergei Strelec Win 11PE.
I don't think free version had RDR.
 
  • Like
Reactions: Nevi

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
I'd use AVG if I wasn't using Defender. Hope you like it. (y)
I like it so far. No slowdowns, apps launch fast, and websites have no delay (all compared to previous setup Kaspersky + WFC).
Regarding websites scanning, does AVG not do MITM for scanning HTTPS connections? I can see it is enabled in the settings but when I checked the website certificate it shows actual certificate and not the one used by AVG. 🤔
 

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
I think it does, but I'm not certain.
Maybe there is another way of doing HTTPS scanning without doing MITM 🤔
1719076882361.png
 

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
Yes, disable it and let AV use it's realtime. HTTPS scanning will scan the content before it is run, AV will scan it afterwards, so it is really about how paranoid you are.
Thanks for replying but that was not what I was asking. Because websites were loading pretty fast, I checked the website certificates to see if they were issued by AVG (Idk how AVG does it but Kaspersky HTTPS scanning used its own certificates for that website). None of the certificates seem to be from AVG (I checked on 6-7 websites). I disabled extension and still same. I am using Edge.

Sandbox will take care of it.
I can't seem to find any setting related to sandbox in AVG. I know Avast used to have a sandbox, but are you sure AVG does too now?
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,880
Maybe there is another way of doing HTTPS scanning without doing MITM 🤔
Yeah, Avast uses another method (using SSLKeyLogFile) for HTTPS scanning on Chrome, Edge and Firefox. It is explained here:
The advantage is that it is faster than the other usual alternate method used by other products (though ESET on most websites is basically equally fast in my experience).
On browsers like Brave, Opera, Vivaldi, Avast uses the other method so on those browsers you will see the Avast certificate. I measured the speed difference between the two methods, and I can assure you that the SSLKeyLogFile method is indeed slightly faster.
 

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
Yeah, Avast uses another method (using SSLKeyLogFile) for HTTPS scanning on Chrome, Edge and Firefox. It is explained here:
The advantage is that it is faster than the other usual alternate method used by other products (though ESET on most websites is basically equally fast in my experience).
On browsers like Brave, Opera, Vivaldi, Avast uses the other method so on those browsers you will see the Avast certificate. I measured the speed difference between the two methods, and I can assure you that the SSLKeyLogFile method is indeed slightly faster.
Thanks for the link it was a good read. TIL something new.
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,880

brambedkar59

Level 32
Thread author
Verified
Top Poster
Well-known
Apr 16, 2017
2,125
Regarding speed, it's always one of the slowest in AV-Test's webpage loading speed for whatever reasons:
This is why Performance results from AV comparatives seem more realistic to me.
1719083430194.png
 

blackice

Level 39
Verified
Top Poster
Well-known
Apr 1, 2019
2,868
The one issue I had with AVG was I had demonstrably lower CPU performance only in gaming situations. CPU scores 3DMark were about 8% lower. And FPS in high FPS games like Fortnite and Call of Duty were also 8% or so slower. I even submitted all the screenshots I had showing this to them. That was 2022. I tested again in 2023 a year or so later and it hadn’t changed. Not a big deal, and I’m not sure if it’s still the case these days.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top