Advanced Plus Security ErzCrz Security Config 2024

Last updated
Oct 7, 2024
How it's used?
For home and private use
Operating system
Windows 11
On-device encryption
BitLocker Device Encryption for Windows
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
Security updates
Allow security updates and latest features
Update channels
Allow stable updates only
User Access Control
Always notify
Smart App Control
Off
Network firewall
Enabled
About WiFi router
Sky Router with built-in IPV4/IPv6 Firewall
Real-time security
Microsoft Defender
DefenderUI
CyberLock
WFC
Firewall security
Other - Internet Security (3rd-party)
About custom security
Cyberlock - ON - Create In/Out Firewall Rules for Unsafe Items. Require Captcha to exit.
DefenderUI - Recommended
WindowsFirewallControl - Medium/Display Notifications
Periodic malware scanners
Norton Power Eraser
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Primary: Edge with UBOLite in Complete Mode
Secondary - Firefox with uBO in Medium Mode
Secure DNS
Provided by ISP Sky Shield though occasionally Cloudflare DNS over HTTP.
Desktop VPN
None. Browsing primarily on home private network.
Password manager
Keepass 2.x or KeePassXC whichever is my flavour of the month though they use the same database file.
Maintenance tools
Windows built-in Disk Clean-up and Storage Sense.
File and Photo backup
Seagate - Toolkit - Weekly Backup
Subscriptions
    • None
System recovery
AOMEI System Backup Monthly to external drive.
Risk factors
    • Browsing to popular websites
    • Working from home
    • Making audio/video calls
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Downloading software and files from reputable sites
    • Gaming
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
ErzCrz Laptop Specs 2024
Notable changes
22.01.2022 - Reverted to Comodo Internet Security setup with Firefox as default browser and Thunberbird email client.
15.05.2022 - Reverted to Hard_Configurator setup following errors after uninstall and PC reset with Edge as default browser for MD integration while also sticking to Thunderbird for email & Updated backup routine.
13.08.2022 - Swapped to built-in backup solution.
12.09.2022 - General update in line with new guidelines.
29.10.2022 - Edge Exploit Tweaks re-implimented
15.11.2022 - Edge Exploit Tweaks removed. Removed OneDrive backups.
18.11.2022 - Firefox now my primary browser & Thunderbird primary email client.
12.12.2022 - updated Dec 2022 changes, backup now manual and onedrive. Experimenting with Comodo Internet Security but not fully committed to it yet.
11.01.2023 - Updated Security Configuration for new laptop and having won Emisoft giveaway.
22.01.2023 - Reverted to MD, ConfigureDefender - High & Enabled CFA, FWHardener, Added NPE to scanner, Edge exploit tweaks.
01.02.2023 - Now using Seagate Toolkit for Backup of Documents and Folders
18.05.2023 - Using H_C Beta and few unticks/ticks of PC use.
24.06.2023 - Back to Emsisoft Anti-Malware Home, Changed Password Manager to KeepassXC
02.09.2023 - Switched from Emsisoft Setup to CF/MD Configuration
20.10.2023 - Switched to Firefox, no longer using VPN for as work now has Azure cloud servers. Temporarily removed custom exploit settings.
01.11.2023 - Back to MD H_C setup
12.12.2023 - Added Anti-Exploit Tweaks and uBO in Hard Mode with noop rules.
20.12.2023 - Removed custom exploit rules as having some Edge freezes. Moved back to Comodo Firewall with Cruelsister Configuration.
21.12.2023 - Firefox now primary browser.
27.12.2023 - Edge changed to Primary Browser
06.01.2024 - Removed WFC, Implemented WFH & CL create firewall rules for not safe items.
08.01.2024 - Re-Added WFC
03.01.2024 - Firefox now primary browser.
21.01.2024 - Changed Primary Browser to Edge
28.01.2024 - Removed WFC and replaced with CF
05.02.2024 - Returned to WFC
28.02.2024 - Adjusted uBO Rules & Added Netcraft & BD:TL extensions
25.03.2024 - Changed to CIS .8012
10.04.2024 - Reverted to MD/DefenderUI/Cyberlock/WFC Config
11.04.2024 - Reverted to MD/DefenderUI/Cyberlock/CF
21.05.2024 - CIS Final Beta, AOMEI System Backup Monthly - Scheduled, Firefox Primary Browser and uBO only for browser extensions.
31.05.2024 - CIS Premium 2025 Released
18.06.2024 - CF 2025, DefenderUI, CyberLock
27.06.2024 - Swapped KeepassXC to Keepass
04.08.2024 - Swapped uBO for Ghostery in Edge
03.09.2024 - Swapped CF for WFC and Ghostery for UBOL
03.10.2024 - Renewed Emsisoft Anti-Malware Home Subscription and removed DefenderUI and WFC
07.10.2024 - Returned to MD (DefenderUI), CyberLock,WFC configuration.
20.11.2024 - WFH and Anti-Exploit added as protection layers.
10.12.2024 - Swapped DefenderUI For ConfigureDefender and Dropped WFC
31.12.2023 - New config for 2024 - MD (DefenderUI), CyberLock,WFC
----------------------------------------
14.12.2024 - Returned to MD (DefenderUI), CyberLock,WFC configuration.

Disclaimer we use date format DD/MM/YYYY here in the UK
What I'm looking for?

Looking for minimum feedback.

rashmi

rashmi

Level 12
Jan 15, 2024
577
ErzCrz said:
Just experimenting with just blocking rather than virtualization
Click to expand...
For auto-containment, I've set the "run virtually" rule to "block" in the "action" setting. This blocks unrecognized files and programs with elevated rights. Additionally, I've changed the firewall setting to "allow" connections and enabled stealth mode. I have also suspended the alerts and password-protected CF. I apply this setup to both the kids' systems and mine, but I specifically keep alerts enabled on mine.
 
  • Thanks
Reactions: ErzCrz
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Just a tweak to setup. Now CF 2025 with CruelSister Config, DefenderuI Recommended & CyberLock.

I'm using FF primarily but should be using Edge since I'm using MD and some things work better on it so undecided about what for primary though CF and CL and MD will catch it no matter where it comes from ;)
 
  • Like
Reactions: Nevi, micasayyo, Gandalf_The_Grey and 2 others
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
harlan4096 said:
CruelSister Config, DefenderuI Recommended & CyberLock... overkill? 🤔
Click to expand...
Technically, yes and chances are CL will block the virtualization like below when trying to run FF in Containment and I may just end up with WFC at some stage.

1718741822186.png


1718741466723.png

@oldschool is right that I do like the setup and primarily having CF available to assist CF users. Maybe I need a VM for that and just use WFC hmm.
 
  • Like
  • Applause
Reactions: Nevi, kylprq, Gandalf_The_Grey and 2 others
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Gone down the WFC, DefenderUI, CyberLock, MD route for now and swapped back over to Edge. Holding off on amending config for the moment in this topic but will do if I stick with it for a bit.
 
  • Like
Reactions: Nevi, oldschool and Gandalf_The_Grey
rashmi

rashmi

Level 12
Jan 15, 2024
577
Your return to Comodo is imminent. For those who understand how to use it effectively, Comodo is unmatched in simplicity and efficiency. Besides whitelisting and containment, you can also use HIPS and other advanced tweaks. You can open a virtual desktop for secure banking or online shopping. The contextual option allows you to run browsers or check programs virtually. Tools like KillSwitch, AutoRun Analyzer, and others quickly detect any malicious or unknown behavior on your system. No setup, whether layered or standalone, can guarantee 100% protection. I suggest using Comodo as a standalone solution for an effective and seamless experience.
 
  • Like
  • Thanks
Reactions: Behold Eck, Gandalf_The_Grey and ErzCrz
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Very minimal change. Swapped from KeepassXC to Keepass 2.x as KPXC update was silently crashing and I had to re-install MSVC Redistributable which is the second tim I've had an issue with a KeepassXC update. Normal Keepass 2.x just works well and I waa able to open the KPXC database including TOTP with Keepass ;)
 
  • Like
Reactions: Gandalf_The_Grey, SeriousHoax, micasayyo and 2 others
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
ErzCrz said:
Technically, yes and chances are CL will block the virtualization like below when trying to run FF in Containment and I may just end up with WFC at some stage.

View attachment 283877

View attachment 283876
Click to expand...
Did a test a unknown file with CIS installed as MD blocked the file and there wasn't any conflict when running unknown in containment manually though containment and CL alert when just running the unknown after bypassing Windows File block. Allowing in CL allowed CIS to put file in containment, block, blocked it from going to containment. File undetected in VT VirusTotal and Unknown in Valkyrie Verdict.

MD did well to block the download when I ran CF along side it:
1719769433379.png

Anyway, CF with MD/DefenderUI and CyberLock my current favourite combination at the moment as file allowed to be downloaded with CIS installed though contained when run. I don't have access to the file anymore but it was a useful test to see I'm protected from all sides :)

EDIT: it is overkill having CF which I'm aware of, WFC also a solution I've used but I guess it depends on my level of paranoia ;)
 
Last edited:
  • Like
Reactions: harlan4096, oldschool and Gandalf_The_Grey
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Swapped uBO for Ghostery for my Edge Adblocker. I watch a fair bit of catch-up telly on my laptop and Ghostery for the moment seems to hand that well, keeping ads away and smooth no issue streaming. Had some issue with uBOL but not narrowed it t down yet. Anyway Ghostery working quite well, it's like uBOL in Complete mode out of the box. Will revisit uBOL though again in the near future.
 
  • Like
Reactions: Nevi, Gandalf_The_Grey, Moonhorse and 1 other person
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Been thinking about using Emsisoft again. Probably just a passing contemplation but it worked well when I had it last year. Just a thought I guess. Been back and forth between UBOL and Ghostery but having to use the latter for some streaming sites.
 
  • Like
Reactions: root., Gandalf_The_Grey and Moonhorse
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
root. said:
I haven't touched an AV in years, but Emsisoft to this day was the smoothest experience I had on a secure Windows machine. Fastest full scan but a little low on detection rate.

I still don't trust Ghostery so I'll throw in the suggestion of setting up blocklist as similarly as possible to GitHub - yokoffing/NextDNS-Config: Setup guide for NextDNS, a DoH proxy with advanced capabilities..
Click to expand...
Thanks. Just a fleeting though regarding Emsisoft, MD with DefenderUI and CyberLock is more than sufficient.

Thanks. Will re-try uBOL, it's been updated since so filter list will have been updated. My ISP doesn't allow change of DNS as the router is theirs and altering DNS not possible with it. I can do DNS over HTTP at least. Anyway, will figure out what's been allowed through and a way to block it :)
 
  • Like
Reactions: Moonhorse
R

root.

ErzCrz said:
Thanks. Just a fleeting though regarding Emsisoft, MD with DefenderUI and CyberLock is more than sufficient.

Thanks. Will re-try uBOL, it's been updated since so filter list will have been updated. My ISP doesn't allow change of DNS as the router is theirs and altering DNS not possible with it. I can do DNS over HTTP at least. Anyway, will figure out what's been allowed through and a way to block it :)
Click to expand...
Can't change your VPN's DNS upstream?
 
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Back after brief hiatus.
Reverted to WFC for now. CF wasn't starting today for some reason and some network stability issue lately which I'm troubleshooting.
Swapped back to UBOL in Edge as Ghostery allowing ad on a streaming site I frequently use. UBOL in Complete Mode.
 
  • Like
  • Applause
Reactions: Gandalf_The_Grey, kylprq, rashmi and 3 others
rashmi

rashmi

Level 12
Jan 15, 2024
577
ErzCrz said:
CF wasn't starting today for some reason and some network stability issue lately which I'm troubleshooting.
Click to expand...
You are an experienced user who knows CF well. Why not just stick with CF and not use anything else? From the start, I've only used CF and have encountered no issues.
 
  • Like
Reactions: Sorrento
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
rashmi said:
You are an experienced user who knows CF well. Why not just stick with CF and not use anything else? From the start, I've only used CF and have encountered no issues.
Click to expand...
I'm just between installs and just trying to narrow down whether it was a full CIS thing or CF with CS's settings. It'll be back on before long, I think it was just a router channel issue or browser cache or browser extension. It may have also been down to changing install CIS components to just CF after trialling full CIS for a couple of weeks.

Anyway, it's just temporary and CF runs along side CL and DefenderUI just fine. Trialled full CIS for awhile but I think it'll not be until next fix release before I use the whole CIS product again.
 
  • Like
Reactions: Sorrento and Moonhorse
Moonhorse

Moonhorse

Level 38
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
I would stick to either defenderui + cyberlock or defenderui + cf, but if you have lifetime license on cyberlock i would use that config instead

defenderui+ cyberlock + cf is just too overkill

WFC doesnt offer same protection than cf though, not even close
 
  • Like
  • Thanks
Reactions: Sorrento, Gandalf_The_Grey and ErzCrz
ErzCrz

ErzCrz

Level 23
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,222
Moonhorse said:
I would stick to either defenderui + cyberlock or defenderui + cf, but if you have lifetime license on cyberlock i would use that config instead

defenderui+ cyberlock + cf is just too overkill

WFC doesnt offer same protection than cf though, not even close
Click to expand...
Thanks. I have 2 years of CyberLock which I bought at the start of this year. CF with CL is a bit of an overkill and I bough CL to be less reliant on CFs blocking due to lack of updates. The only reason I use WFC with CL & DefenderUI is for the additional firewall control but maybe I don't need WFC in reality. Anyway, I chop and change a lot and I try to revert to my setup at the start of the year when that's too often and it really has been lately. Appreciate the input :D

EDIT: If not using WFC I'd certainly use @Andy Ful 's FIrewall Hardening.
 
Last edited:
  • Like
Reactions: Sorrento and Gandalf_The_Grey
Moonhorse

Moonhorse

Level 38
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
ErzCrz said:
Thanks. I have 2 years of CyberLock which I bought at the start of this year. CF with CL is a bit of an overkill and I bough CL to be less reliant on CFs blocking due to lack of updates. The only reason I use WFC with CL & DefenderUI is for the additional firewall control but maybe I don't need WFC in reality. Anyway, I chop and change a lot and I try to revert to my setup at the start of the year when that's too often and it really has been lately. Appreciate the input :D

EDIT: If not using WFC I'd certainly use @Andy Ful 's FIrewall Hardening.
Click to expand...
Its fine to try out different setups/configs, i do that often myself too

I meant to be referring on cruelsisters video where its easier to disable windows firewall by malware than comodo firewall, so i rather use comodo firewall over windows firewall if possible...but cf+cl+dui is maybe too much for someone ( if it works for you thats okay to keep it then )
 
  • Like
  • Thanks
Reactions: ErzCrz, micasayyo, Sorrento and 1 other person

Similar threads

ErzCrz
    • Like
    • Applause
    • +Reputation
Advanced Plus Security ErzCrz config 2021
Replies
54
Views
13,286
CSC Archive
ErzCrz
ErzCrz
SpyNetGirl
    • Like
    • +Reputation
    • Hundred Points
Harden Windows Security | Only with official documented methods | Always up to date
Replies
75
Views
14,315
Other security for Windows, Mac, Linux
Warencom
W
4
    • Like
    • Thanks
    • +Reputation
Reverse Engineering Rogue Kaspersky browser extension
Replies
12
Views
3,266
Malware Analysis
oldschool
oldschool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top