Advanced Security Der.Reisende Security Config (Q1/2022)

Last updated
Jan 4, 2022
About
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 11
OS edition
Home
Login security
    • Password-less (PIN, Biometric, Face)
Primary sign-in
Local account
Primary user
Admin user - Full permissions
Security updates
Automatic - allow all types of updates
Network firewall
ISP-issued router
Real-time protection
As the PC is also used for online banking, a security check (TCPView, SystemExplorer, AutoRuns) before logging in into sensitive pages is done.
Malware Testing is performed within ShadowDefender environment.
No login data is saved on the machine (for no software), everything is backupped on eHDD after creation, and is only plugged in on demand and after security check.

As for Network Firewall:
My internet connection is provided by a mobile hotspot from my iPhone, no extra VPN on it (VPN is on the machine itself).
Software firewall
Provided by a third-party security vendor. Refer to 'Real-time protection' for details.
Custom RTP, Firewall and OS settings
K7 Total Security Infinity
eMail:
Enable Worm Blocking, Scan outgoing eMails
Scanner:
also Scan Memory, Tracking Cookies, Unwanted Registry Entries, Unwanted Files
System Monitor:
Custom Level of Protection (actually all boxes are activated by default or because of "High" setting used before)
Always Prompt if a new Software is installed when changes are found
Do not automatically allow signed files / recognized by the System Monitor
Firewall:
Ask for outbound connections of non-whitelisted apps
Intrusion Rules: Activate also SMB Exploit Detection 1, HTTP Server Exploit Detection 1 and FTP Server Exploit Detection 1

Data Locker:
Trusted by Data Locker (some custom, like as SoftMaker, Paint, Snipping tool):
C:\Program Files\iTunes\iTunes.exe
C:\Users\Der.Reisende\Desktop\TCP_PE_AR_2o\NPE.exe
C:\Windows\system32\sihost.exe
C:\Windows\system32\BackgroundTaskHost.exe
C:\Windows\system32\RuntimeBroker.exe
C:\Windows\system32\dllhost.exe
C:\Windows\system32\PickerHost.exe (=Snipping Tool to create screenshots)
C:\Windows\system32\SnippingTool.exe (=Snipping Tool to create screenshots)
C:\Windows\explorer.exe
C:\ProgramFiles\SoftMaker Office 2021\TextMaker.exe
C:\ProgramFiles\SoftMaker Office 2021\PlanMaker.exe
C:\ProgramFiles\SoftMaker Office 2021\Presentations.exe
C:\Users\Der.Reisende\Desktop\TCP_PE_AR_2o\HitmanPro_64.exe
C:\Windows\System32\mspaint.exe

Folders protected by Data Locker: C://: Documents, Music, Pictures, Desktop (last named = custom)

Data Locker by default protects Pictures and Documents against writing performances by processes not whitelisted as above.
Malware testing
Malware samples are downloaded
Periodic security scanners
Norton Power Eraser (free by default)
HitmanPro (free)
Microsoft SysInternals AutoRuns and TCPView (free by default)
Mister Group System Explorer (free by default)
Secure DNS
ISP DNS, see first post.
VPN
F-Secure FreeDome v2.43.809.0 or later.
Password manager
Bitwarden (Chrome Extension for Brave Browser), Auto-Lock after 5 minutes inactivity / instantly after browser is closed
Browsers, Search and Addons
Brave Browser x64 (always latest stable), Edge Browser x64 (always latest stable).
Extensions:
Bitwarden (Password Manager, free version)
AdGuard (Adblocker, free version)
Google Translate
Bitdefender TrafficLight
Maintenance and Cleaning
None, all by hand.
Personal Files & Photos backup
Personal files are backupped to external HDDs, in case of infection / system failure, the system is freshly installed
Personal backup routine
Manual (maintained by self)
Device recovery & backup
See above.
Device backup routine
Manual (maintained by self)
PC activity
  1. Working from home. 
  2. Browsing the web. 
  3. Browsing to unknown sites. 
  4. Emails. 
  5. Shopping. 
  6. Banking. 
  7. Downloading software. 
  8. PC and cloud gaming. 
  9. Multimedia. 
  10. Streaming. 
  11. Malware samples. 
Feedback Response

Most critical feedback

Der.Reisende

Level 44
Thread author
Verified
Helper
Top poster
Content Creator
Malware Hunter
Well-known
Dec 27, 2014
3,388
Happy New Year everyone 🎆
Why change something when it's running smooth? So this is kinda the same config and hardware as it was 2021, beyond Windows 11 having replaced Windows 10, and I plan spending my money on travelling a lot this year instead :)