Advanced Plus Security Deletedmessiah's 2021 configuration

Last updated
Jan 1, 2021
How it's used?
For home and private use
Operating system
Windows 10
On-device encryption
Log-in security
Security updates
Allow security updates
User Access Control
Notify me only when programs try to make changes to my computer
Smart App Control
Network firewall
Real-time security
F-Secure Safe
Symantec Endpoint(Firewall only)
Simple Windows Hardening
Firewall security
About custom security
I didn't install F-secure browser extensions but the rest is default settings.
Periodic malware scanners
Emsisoft Emergency kit, Hitman pro, Norton Power eraser
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Browsers: Edge and Firefox
Extensions: Ublock origin, Dark reader, Enhancer for youtube, Bitwarden, Tampermonkey, IDM extension
Secure DNS
Quad9
Desktop VPN
None
Password manager
Bitwarden
Maintenance tools
Ccleaner(barely used nowadays), Hibit uninstaller
File and Photo backup
Manually to external hard drive and gdrive
System recovery
Macrium Reflect
Risk factors
    • Browsing to popular websites
    • Opening email attachments
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Sharing and receiving files and torrents
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
Computer specs
Dell Inspiron 15 Laptop
Intel core i5 8250U
8GB Ram
1TB HDD, 120GB SSD
What I'm looking for?

Looking for medium feedback.

silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
I cannot find on your config, you may already using any highly recommended tools from Windows Sysinternals:

docs.microsoft.com

Autoruns for Windows - Sysinternals

See what programs are configured to startup automatically when your system boots and you login.
docs.microsoft.com
docs.microsoft.com

Process Explorer - Sysinternals

Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more.
docs.microsoft.com
 
  • Like
  • Thanks
  • Applause
Reactions: brambedkar59, [correlate], Venustus and 5 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,603
silversurfer said:
I cannot find on your config, you may already using any highly recommended tools from Windows Sysinternals:

docs.microsoft.com

Autoruns for Windows - Sysinternals

See what programs are configured to startup automatically when your system boots and you login.
docs.microsoft.com
docs.microsoft.com

Process Explorer - Sysinternals

Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more.
docs.microsoft.com
Click to expand...
I see that you are recommending these tools every time now.
While I understand and use Autoruns I don't know what to use Process Explorer for.
Is there a tuturial somewhere or can you give some examples for how it is used?
 
  • Like
Reactions: [correlate], Venustus, Protomartyr and 4 others
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Gandalf_The_Grey said:
While I understand and use Autoruns I don't know what to use Process Explorer for.
Is there a tuturial somewhere or can you give some examples for how it is used?
Click to expand...
www.howtogeek.com

Understanding Process Explorer

This lesson in our Geek School series covers Process Explorer, perhaps the most used and useful application in the SysInternals toolkit. But how well do you really know this utility?
www.howtogeek.com www.howtogeek.com

For me personally, one of the most important setting below, but must be enabled manually...

Verifying Application Identity

One really useful option that we’re surprised isn’t enabled by default is found at Options -> Verify Image Signatures.

Windows_8_1__VM_with_conduit_and_malware_for_article___Running_.jpg


This option will check the digital signature for each executable file in the list, which is an invaluable troubleshooting tool when you are looking at some suspicious application that is running in the list.

xWindows_8_1__VM_with_conduit_and_malware_for_article___Running_1.jpg.pagespeed.gp+jp+jw+pj+ws+js+rj+rp+rw+ri+cp+md.ic.LyQKy__LOz.jpg


The vast majority of reputable software should be digitally signed at this point. If something isn’t, you should look very carefully at whether you should be using it.
Click to expand...
 
  • Like
  • Thanks
  • +Reputation
Reactions: [correlate], Venustus, oldschool and 5 others
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Deletedmessiah said:
This article will be useful (y)
Click to expand...
Here is another article from the same source, explained more details of Autoruns:

www.howtogeek.com

Using Autoruns to Deal with Startup Processes and Malware

Most geeks have their tool of choice to deal with processes that start up automatically, whether that is MS Config, CCleaner, or even Task Manager in Windows 8 — but none of them are as powerful as Autoruns, which is also our Geek School lesson for today.
www.howtogeek.com www.howtogeek.com

security123 said:
Also both ProcessExplorer and Autoruns provide this feature. Same like scanning all with Virustotal but sadly this is currently broken for most processes - at least for me.
Click to expand...
Same here, VT lookup is broken for the most of processes, weird as it was recently fixed for a few days been worked properly.
 
  • Like
  • Thanks
Reactions: [correlate], Venustus, oldschool and 6 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,603
security123 said:
Thanks for confirm this. So it's not my setup :D

Maybe the problem is not on Virustotal side but with the tools like new / invalid used API?
If someone use Twitter, this may be a good place to send Microsoft this as bug info.
Click to expand...
VT lookup is working for me when running both programs as admin 🤔
 
  • Like
  • Wow
Reactions: [correlate], Venustus, ForgottenSeer 85179 and 4 others
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Gandalf_The_Grey said:
VT lookup is working for me when running both programs as admin 🤔
Click to expand...
Just tried once more here... Confirmed all works fine now on both Autoruns and Process-Explorer 👍

But before it was really broken, I haven't taken any screenshot as it's useless to show the UI is partially in German ;)
 
  • Like
  • +Reputation
Reactions: [correlate], plat, Venustus and 5 others
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
    • +Reputation
Malware News Banking Trojans Target Latin America and Europe Through Google Cloud Run
Replies
0
Views
1,157
Security News
silversurfer
silversurfer
Bot
    • Like
Security News E-Root Marketplace Admin Sentenced to 42 Months for Selling 350K Stolen Credentials
Replies
0
Views
737
Security News
Bot
Bot
Brownie2019
On Sale! Bitdefender Internet Security: 1 Dev., 1 Year, $ 16.50
Replies
0
Views
258
Discounts and Deals
Brownie2019
Brownie2019

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top