SECURITY: Complete DeletedMessiah's 2020 configuration

Last updated
Oct 10, 2020
About device
Primary device
Operating system
Windows 10
Sign-in identity
Sign-in with Local account
Log-in security
    • Account password
Permissions
Administrator user account
Security updates
Manual - check for updates, but do not install
Windows UAC
Default - notify when programs attempt to make changes
Malware samples
No - malware is not downloaded
Firewall protection
Provided by a third-party security vendor - see details below.
Real-time malware protection
F-Secure Safe
Symantec Endpoint(Firewall only)
RTP & OS hardening settings
Default settings except sending usage data disabled.
Periodic scanning
Emsisoft Emergency Kit
Hitman Pro
Norton Power Eraser
Browsers
Browsers: Microsoft Edge(Chromium) and Firefox
Smartscreen turned on and tracking protection set to strict
Extensions:
ublock origin
Bitwarden
Tampermonkey
Dark Reader
Enhancer for Youtube
Optimisation apps
Shadow Defender
CCleaner portable
Wise Disk Cleaner portable
HiBit uninstaller portable
Portableapps.com platform
PatchMyPC
My Files & Photos backup
Copy to External Hard Drive
Google Drive
Mega
My Files backup schedule
Manual - every month to the cloud, or local attached storage
Device recovery & settings
Macrium Reflect
Device backup schedule
Computer specifications
Dell Inspiron laptop
Intel i5 processor
8GB Ram
128GB SSD
1TB HDD
Device activity usage
  1. Generic web browsing
  2. Downloading files from unfamiliar sites
  3. Working from home
  4. Streaming audio and video content from the Internet

harlan4096

Moderator
Verified
Staff member
Malware Hunter
Apr 28, 2015
6,944
Update Your system, soon 1809 will lose support...

You may also set UAC to Always Notify.

Please kindly reflect Your changes editing Your config, and announcing them here, thanks for sharing :)
 
Last edited:
F

ForgottenSeer 823865

Could you please elaborate more? I am afraid that I don't understand why.
If your machine is compromised using AA, the attacker has full access to your system. You limit the damage using SUA.

and

"Starting from Windows Vista the users, even those who are members of the local admin group, cannot be the administrators constantly. This is so that the users do not cause any damage to the system by accident or by malicious intent. "

Of course sophisticated malware won't care much, but better have it than nothing.
 
Last edited by a moderator:

Andy Ful

Level 66
Verified
Trusted
Content Creator
Dec 23, 2014
5,589
Read it and also there is a tutorial
I would not recommend this article for more experienced users. It contains some incorrect information.:( The most important mistake? The author thinks that SUA is safe because the user cannot install applications and malware cannot do it too (many applications can be installed on SUA without knowing Admin password). From the text it follows, that author somewhat mixed SUA and Guest accounts.
But anyway, the article can be useful to novice users who will not see the difference. The main idea is OK.

Post edited (in italics).
 
Last edited:

CyberTech

Level 32
Verified
Nov 10, 2017
2,120
I would not recommend this article for more experienced users. It contains some incorrect information.:( The most important mistake? The author thinks that SUA is safe because the user cannot install applications and malware cannot do it too. From the text it follows, that author somewhat mixed SUA and Guest accounts.
But anyway, the article can be useful to novice users who will not see the difference. The main idea is OK.

Oops i posted a tutorial for The Cog in the Machine, well sorry about that thanks for the head up..
 

Deletedmessiah

Level 24
Verified
Content Creator
Jan 16, 2017
1,345
Made another 2 changes:
Replaced Edge Beta with Edge Stable.
Replaced simplewall with symantec endpoint firewall. Previously it didn't work. The fix was using "Smc -stop" on Run to stop its service and "Smc -start" to start it again.
F-secure safe and symantec firewall only config still feels lighter than Eset.
 

Vitali Ortzi

Level 20
Verified
Dec 12, 2016
998
Made another 2 changes:
Replaced Edge Beta with Edge Stable.
Replaced simplewall with symantec endpoint firewall. Previously it didn't work. The fix was using "Smc -stop" on Run to stop its service and "Smc -start" to start it again.
F-secure safe and symantec firewall only config still feels lighter than Eset.
symantec firewall only is great basically a superior to most consumer av "firewalls" and can be compared to snort with Symantec DeepSight
(Symantec intelligence)
 
Last edited:

Deletedmessiah

Level 24
Verified
Content Creator
Jan 16, 2017
1,345
symantec firewall only is great basically a superior to most consumer av "firewalls" and can be compared to snort with Symantec DeepSight
(Symantec intelligence)
I loved the sygate firewall I tested on VM in the past and loved it. Thanks for your thread, until which I didn't know you could use unmanaged SEP for free.
 

Vitali Ortzi

Level 20
Verified
Dec 12, 2016
998
I loved the sygate firewall I tested on VM in the past and loved it. Thanks for your thread, until which I didn't know you could use unmanaged SEP for free.
yeah its just a bloated sygate enterprise imo
and best of all you can disable all submissions and make it one of the most friendly freely available focused privacy security products in practice (assuming you route all live update via proxy as well)
but don't make it fool you they have CIA/NSA sponsored staff and wikileaks document show cased they might have a deeper ties inside the company itself
so for home users no issues criminals beware
 
Top