Advanced Security Dreams&Visions Security Config (Q4/2024)

Thread starter Dreams&Visions
Start date Today at 6:55 AM

Last updated: Nov 16, 2024

How it's used?: For home and private use

Operating system: Windows 11

On-device encryption: N/A

Log-in security

- Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)

Security updates: Allow security updates and latest features

Update channels: Allow stable updates only

User Access Control: Always notify

Smart App Control: Off

Network firewall: N/A

Real-time security: No login data is saved on the machine (for no software), everything is backupped on eHDD after creation, and is only plugged in on demand and after security check.

As for Network Firewall:
My internet connection is provided by a mobile hotspot from my Google Pixel 8a, no extra VPN on it (VPN will be added again, as I removed F-Secure Total package).

Malware testing will be stopped for now, as ShadowDefender is incompatible to Windows 11 24H2. If you have a suggestion for a comparable, comfortable tool, please feel free to share. I have no experiences with VirtualMachines, also I might not use them on my spare laptops because of performance / currently, they are also used for business purposes, so I don't test at all on those machines.

Firewall security: Other - Internet Security (3rd-party)

About custom security: K7 Total Security Infinity (v17.0.2xxx, always latest, does autoupgrade).

eMail:
Enable Worm Blocking, Scan outgoing eMails
Scanner:
also Scan Memory, Tracking Cookies, Unwanted Registry Entries, Unwanted Files
System Monitor:
Custom Level of Protection (actually all boxes are activated by default or because of "High" setting used before)
Always Prompt if a new Software is installed when changes are found
Do not automatically allow signed files / recognized by the System Monitor
Firewall:
Ask for outbound connections of non-whitelisted apps
Intrusion Rules: Activate also SMB Exploit Detection 1, HTTP Server Exploit Detection 1 and FTP Server Exploit Detection 1

Data Locker:
Trusted by Data Locker (some custom, like as SoftMaker, Paint, Snipping tool):
C:\Users\BR198\Desktop\TCP_PE_AR_2o\NPE.exe
C:\Windows\system32\sihost.exe
C:\Windows\system32\BackgroundTaskHost.exe
C:\Windows\system32\RuntimeBroker.exe
C:\Windows\system32\dllhost.exe
C:\Windows\system32\PickerHost.exe (=Snipping Tool to create screenshots)
C:\Windows\system32\SnippingTool.exe (=Snipping Tool to create screenshots)
C:\Windows\explorer.exe - would auto-whitelist anyway, I'm aware that for e.g. Netwalker Ransomware misuses this process
C:\ProgramFiles\SoftMaker Office 2024\TextMaker.exe
C:\ProgramFiles\SoftMaker Office 2024\PlanMaker.exe
C:\ProgramFiles\SoftMaker Office 2024\Presentations.exe
C:\ProgramFiles (x86)\Microsoft\Edge\Application\msedge.exe

Folders protected by Data Locker: C://: Documents, Music, Pictures, Desktop (last named = custom)

Data Locker by default protects Pictures and Documents against writing performances by processes not whitelisted as above.

Evorim Free Firewall in "Active" preset - does ask for every non-listed outbound process, does ask again once the application has changed (e.g. by an update), I regularly use the option to clear dead entries

CheckMAL AppCheck AntiRansomware Free (always latest)

Periodic malware scanners: Norton Power Eraser (free by default)
Microsoft SysInternals AutoRuns and TCPView (free by default)
Mister Group System Explorer (free by default)

Malware sample testing: I do not participate in malware testing

Environment for malware testing: I currently do not participate in malware testing. As soon as I found a replacement for ShadowDefender and a good VPN, I might again test. As for details, see details about my testing environment below.

Browser(s) and extensions: Edge Browser x64 (always latest stable), set to clear history on closure. Strong tracking prevention; no saving of passwords or other personal data; "Do not track" activated, block PUPs YES, disable M$ Rewards.

Extensions:
Bitwarden (Password Manager, free version)
AdGuard (Adblocker, free version)
Google Translate
Bitdefender TrafficLight

Secure DNS: ISP DNS, see first post.

Desktop VPN: Looking for a replacement, as I stopped using F-Secure; FreeDome alone is more expensive and rendered my internet speed useless lately.

Password manager: Bitwarden (Chrome Extension for Brave Browser), Auto-Lock after 5 minutes inactivity / instantly after browser is closed

File and Photo backup: Personal files are backupped to external HDDs, in case of infection / system failure, the system is freshly installed

Subscriptions

- None

System recovery: See above.

Risk factors

- Browsing to popular websites
- Browsing to unknown / untrusted / shady sites
- Working from home
- Opening email attachments
- Buying from online stores, entering banks card details
- Logging into my bank account
- Downloading software and files from reputable sites
- Gaming
- Gaming with third-party mods
- Streaming audio/video content from trusted sites or paid subscriptions
- Downloading malware samples

Computer specs: Main: Intel® Core™ i7-12700, Windows 11 Pro, NVIDIA® GeForce RTX™ 3070 LHR, 2 TB SSD, 16 GB RAM
Backup laptops:
Intel(R) Core(TM) i5-1035G1, Windows 11 Home, 500 GB SSD, 8 GB RAM
Intel(R) Core(TM) i5-7200U, Windows 11 Pro, 1 TB HDD + 128 GB SSD, 8 GB RAM

My mother employs a shared (with me) tower PC (currently Windows 10, will be upgraded to Windows 11 soon), with same security and office setup. I currently do not have the specs ready.

Within next year, I will get a personal laptop for home office by my employer.

What I'm looking for?: Looking for maximum feedback.

Dreams&Visions

New Member

Thread author

Today at 6:55 AM

Especially looking for input regarding VPN (might reuse Windscribe, as I have a good free subscription) and a replacement for ShadowDefender, most likely as comfortable as the named app. Have no experiences with VMs, might also not set up one, because of limited specs (see backup devices).

Reactions: Vitali Ortzi, silversurfer, harlan4096 and 1 other person