Advanced Plus Security Gandalf_The_Grey's laptop config for 2020

Last updated
Nov 30, 2020
How it's used?
For home and private use
Operating system
Windows 10
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
Microsoft Defender Antivirus
HomeCare by Trend Micro on TP-Link Archer AX6000 router
Firewall security
Microsoft Defender Firewall
About custom security
Microsoft Defender Antivirus set to High with ConfigureDefender
Controlled Folder Access enabled (not on the kid's laptops)
Memory integrity under Core Isolation enabled (not on the kid's laptops)
Hard_Configurator with Windows_10_Basic_Recommended_Settings
Periodic malware scanners
HitmanPro, Kaspersky Virus Removal Tool and AdwCleaner (for the kids)
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Microsoft Edge with uBlock Origin, Bitdefender TrafficLight, Bitwarden and Microsoft Editor
Google Chrome with the same extensions plus the Microsoft Defender Browser Protection extension on the kid's laptops.
They use Edge for school and Chrome for fun
Maintenance tools
Autoruns, CCleaner, PatchMyPC, SUMo and Driver Easy Pro
File and Photo backup
Windows File History on external drive (weekly)
OneDrive with Microsoft 365 ransomware protection (always on sync)
System recovery
Windows system image
Risk factors
    • Browsing to popular websites
    • Logging into my bank account
    • Working from home
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
Computer specs
Acer Aspire VN7-791G-576X
Intel Core i5-4210H
Intel HD Graphics 4600 / NVIDIA GeForce GTX 860M
Kingston 16GB Dual-Channel DDR3 PC3-12800 RAM
Samsung SSD 850 EVO M.2 250GB
Seagate HDD ST1000LM014-1EJ164 1TB
Realtek High Definition Audio
Notable changes
2020.02.23 removed VoodooShield and uBlock Origin and added Kaspersky Security Cloud Free and AdGuard (extension).
2020.03.09 removed AdGuard and Kaspersky Security Cloud Free and added Hard_Configurator 5.0.0.1 beta uBlock Origin and the Netcraft extension. replaced Bandizip with Explzh because of the advertisements in the free version.
2020.03.22 removed Hard_Configurator, kept ConfigureDefender, DocumentsAntiExploit and RunBySmartscreen.
Added NoVirusThanks SysHardener, VoodooShield and the Certificate Info extension.
2020.03.28 added Ziggo safe Online and Hard_Configurator and removed SysHardner.
2020.03.30 removed CCleaner Pro
2020.04.05 installed HC 5.0.01 beta with recommended settings. Removed VoodooShield.
Tried to minimize extensions: replaced uBlock Origin with AdGuard and removed Certificate Info and Netcraft. Added Microsoft Editor. All extensions are now from the Microsoft Store except Browsing Protection by F-Secure (installed automatically).
2020.04.22 Removed Ziggo Safe Online and Hard_Configurator Trying Windows Defender with Comodo Firewall.
2020.05.04 removed Comodo Firewall and installed Emsisoft Ant-Malware Home.
2020.05.08 replaced Emsisoft Anti-Malware with Kaspersky Security Cloud Free
2020.05.18 replaced KSC Free with WD and uninstalled some browser extensions.
2020.07.05 back to Bitwarden and Bitdefender TrafficLight and WhitelistCloud added.
2020.07.08 switched form WhitelistCloud to VoodooShield Pro. Went from uBlock Origin to AdGuard.
2020.07.15 Back to KSC Free.
2020.08.09 added SpywareBlaster 5.7 Private Beta with MS Edge support.
2020.08.12 back to Microsoft Defender Antivirus
2020.08.15 back to Kaspersky Security Cloud Free
2020.08.31 removed O&O ShutUp 10 and went back to Microsoft Defender
2020.09.27 removed Bitdefender TrafficLight and went back from Simple Windows Hardening to Hard_Configurator
2020.10.27 went from WD to KSCFree and from uBlock Origin to AdGuard.
2020.11.14 back to WD on high and simplified config
Stopspying

Stopspying

Level 19
Verified
Top Poster
Well-known
Jan 21, 2018
814
Gandalf_The_Grey said:
Did a clean install of Windows 10 version 20H2 Build 19042.423.
Got SpywareBlaster 5.7 Private Beta with MS Edge support from javacool at Wilders.
Click to expand...
SpywareBlaster - there is a blast from the past. I used this for a long time, javacool were good at what they did IMO. Some AVs clashed with it so I stopped using it, it would be good to know if it still does does its job well.
 
  • Like
Reactions: Protomartyr, harlan4096, SeriousHoax and 1 other person
Soulbound

Soulbound

Level 29
Verified
Well-known
Jan 14, 2015
1,761
how is spywareblaster so far after you added, considering it can be irrelevant due to your current security configuration. If you were running Windows Defender, then i would fully agree having SB in the system.
 
  • Like
Reactions: Protomartyr, Stopspying and oldschool
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
Soulweave said:
how is spywareblaster so far after you added, considering it can be irrelevant due to your current security configuration. If you were running Windows Defender, then i would fully agree having SB in the system.
Click to expand...
Well it still is a simple added layer of browser protection.
It blocks stuff like tracking cookies (example double-click) and scripts (example coin miners).
You can see the blocked items in the program itself and in the settings of the (supported) browsers.
No magic but less work for your adblocker and antivirus program.
It's more like privacy tools and system hardeners, you can do it yourself but not that easy.
 
  • Like
  • Thanks
Reactions: Protomartyr, Moonhorse, Stopspying and 2 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
security123 said:
Block 3th party cookies in browser.


Mainstream browser do that already.

stay secure, not paranoid ;)
Click to expand...
Well I do block third party cookies, but sometimes it's not easy.
Microsoft Teams on the web is a difficult one with third party cookies blocked.
Some media also need third party cookies to play.

I hope I stay secure and a little bit paranoid ;)
All those data leaks these days fuel my healthy paranoia :D
 
  • Like
  • HaHa
Reactions: brambedkar59, harlan4096, Deletedmessiah and 7 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
This thread Q&A - Free Kaspersky Security Cloud’s notification, is it a mitm attack?? inspired me to go back to Microsoft Defender Antivirus and Bitdefender TrafficLight as extra browser protection.
Two annoying bugs left on my system:
Optimize drives tool doesn't remember when it was last run:
malwaretips.com

Windows 10 version 2004 rollout imminent

I was going to post that above. ;) No. About a month ago I installed 2004 with MCT and then went back to 1909 with an image. I received several driver updates, etc. in the following days and then was offered 2004 via Windows Update. I still waited a number of weeks before recently updating...
malwaretips.com malwaretips.com
Had to turn off memory integrity to let Windows Defender Network Inspection Service run automatically:
malwaretips.com

Windows Defender network inspection service fails to start

Windows Defender network inspection service fails to start as reported here: https://www.tenforums.com/antivirus-firewalls-system-security/161859-windows-defender-network-inspection-service-fails-start.html. I have the first two error codes showing. The immediate solution is to disable Memory...
malwaretips.com malwaretips.com
Hope these will be fixed soon.
Then I can recommend Windows 10 2004 (20H2 is just a small upgrade) and Microsoft Defender Antivirus without any doubt.
 
  • Like
Reactions: Protomartyr, brambedkar59, Stopspying and 5 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
Back to Kaspersky Security Cloud Free.
Simply seems to work the best with my laptop, no delays opening folders, programs and when browsing and no unnecessary blocks.
From my SpywareBlaster thread, trying to keep things simple:
malwaretips.com

SpywareBlaster 6.0 has been released

SpywareBlaster 6.0 has been released! Defend your security and privacy while browsing the web. Prevent the installation of spyware, malware, trackers, and other potentially unwanted software! SpywareBlaster works alongside your web browser and existing security setup, to provide a powerful...
malwaretips.com malwaretips.com
I use O&O ShutUp10 for privacy (also covers Edge), Simple Windows Hardening from @Andy Ful for as the name implies Windows hardening and SpywareBlaster for browser hardening next to uBlock Origin (adblocker).
It seems that MS Outlook uses IE11 for displaying HTML mails, so in that case SywareBlaster also protects MS Outlook in my system.
Programs and drivers are kept UpToDate using Internet, PatchMyPC, SUMo and Driver Easy Pro.
 
  • Like
Reactions: Protomartyr, Lenny_Fox, blackice and 3 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
Inspired by the blog postings of Wladimir Palant the developer of Adblock Plus I decided to go back to Microsoft Defender Antivirus.
palant.info

Almost Secure

Wladimir Palant's blog
palant.info palant.info
The Windows Defender network inspection service fails to start bug was fixed with a platform update.
www.wilderssecurity.com

Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

My definitions are actually newer, but I'm still on an older version of the client and engine. Hi, there was an update to the Platform, it's now at...
www.wilderssecurity.com www.wilderssecurity.com
So, I could enable Memory Integrity again.
Removed O&O ShutUp 10 because I needed full telemetry to update to the latest beta builds.
Doing my own privacy settings manual with the help of these 2 resources:

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - AskVG

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - Since when Windows 10 development started and free Insider Preview build released to public, there have been lots of talks about Windows 10 privacy policy, data
www.askvg.com www.askvg.com
privacy.kaspersky.com

How to Change Your Windows 10 Privacy Settings

Learn how to change your privacy settings on Windows 10. These steps adjust your privacy and security settings to Tight level protection.
privacy.kaspersky.com privacy.kaspersky.com
 
  • Like
  • Applause
  • +Reputation
Reactions: Lenny_Fox, Protomartyr, plat and 4 others
blackice

blackice

Level 39
Verified
Top Poster
Well-known
Apr 1, 2019
2,868
Gandalf_The_Grey said:
Inspired by the blog postings of Wladimir Palant the developer of Adblock Plus I decided to go back to Microsoft Defender Antivirus.
palant.info

Almost Secure

Wladimir Palant's blog
palant.info palant.info
The Windows Defender network inspection service fails to start bug was fixed with a platform update.
www.wilderssecurity.com

Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

My definitions are actually newer, but I'm still on an older version of the client and engine. Hi, there was an update to the Platform, it's now at...
www.wilderssecurity.com www.wilderssecurity.com
So, I could enable Memory Integrity again.
Removed O&O ShutUp 10 because I needed full telemetry to update to the latest beta builds.
Doing my own privacy settings manual with the help of these 2 resources:

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - AskVG

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - Since when Windows 10 development started and free Insider Preview build released to public, there have been lots of talks about Windows 10 privacy policy, data
www.askvg.com www.askvg.com
privacy.kaspersky.com

How to Change Your Windows 10 Privacy Settings

Learn how to change your privacy settings on Windows 10. These steps adjust your privacy and security settings to Tight level protection.
privacy.kaspersky.com privacy.kaspersky.com
Click to expand...
I leaning the same way. Feeling kind of done with the messiness in 3rd party apps.
 
Last edited:
  • Applause
  • Like
Reactions: Lenny_Fox, Protomartyr, Gandalf_The_Grey and 1 other person
sepik

sepik

Level 11
Verified
Well-known
Aug 21, 2018
505
Hello,
Are you fighting against Microsoft telemetry or network and host mitigation or both? Andy's software is good, no question about that, but never ever rely on the windows own stuff, i suggest for Symantec SEP firewall IDS with Andy's own tool. You do need a proper IDS firewall, and Symantec SEP component is only that can provide that.
 
  • Like
Reactions: oldschool
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
sepik said:
Hello,
Are you fighting against Microsoft telemetry or network and host mitigation or both? Andy's software is good, no question about that, but never ever rely on the windows own stuff, i suggest for Symantec SEP firewall IDS with Andy's own tool. You do need a proper IDS firewall, and Symantec SEP component is only that can provide that.
Click to expand...
Well not really fighting Microsoft telemetry because some telemetry is useful to fix bugs, but it's more wanting to limit what's out there on me.
Not sure if a firewall and thus more third-party code is needed for me.
I have tried many firewall's in the past but found them more a nuisance than helpful when prompting to let stuff access the internet, but I have never tried Symantec SEP.
 
  • Like
  • +Reputation
Reactions: Protomartyr, ForgottenSeer 85179, harlan4096 and 2 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
oldschool said:
@Gandalf_The_Grey when did you move to Windows Insider?

Thanks for the lead to that resource. (BTW, Malwarebytes BG blocked that site! :LOL:)
Click to expand...
I moved to insider at the end of July too see the improved start menu and see if some bugs present in 2004 were resolved.
The optimize drives bug is still fixed only in the beta channel and still not in 2004.
www.windowslatest.com

Windows 10's fall 2020 update could come with the new Start menu

As we’ve been reporting, Windows 10 20H2 is going to be delivered in the form of a small enablement package and the system’s build number will bump by one digit, just like November 2019 Update. When Windows 10 20H2 preview update was announced, Microsoft didn’t reveal any major new features, nor...
www.windowslatest.com www.windowslatest.com
www.windowslatest.com

Microsoft tests fix for Windows 10 bug that breaks drive defrag tool

Over time, a drive (both SSD and HDD) can begin to operate with less efficiency. To speed up your drive, Windows 10 allows you to defrag and optimize it using a built-in tool called ‘Drive Optimize’. The Optimize Drives window presents a list of all of the drives in your system that are eligible...
www.windowslatest.com www.windowslatest.com

It's an interesting blog from the developer/CEO of Adblock Plus, maybe there were some bugs in Malwarebytes published there in the past?
 
  • Like
Reactions: Protomartyr, blackice, harlan4096 and 1 other person
F

ForgottenSeer 85179

Gandalf_The_Grey said:
Doing my own privacy settings manual with the help of these 2 resources:

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - AskVG

[Guide] Best Privacy Settings for Windows 10 to Disable Telemetry and Data Collection - Since when Windows 10 development started and free Insider Preview build released to public, there have been lots of talks about Windows 10 privacy policy, data
www.askvg.com www.askvg.com
privacy.kaspersky.com

How to Change Your Windows 10 Privacy Settings

Learn how to change your privacy settings on Windows 10. These steps adjust your privacy and security settings to Tight level protection.
privacy.kaspersky.com privacy.kaspersky.com
Click to expand...
The askvg article is:
last updated on November 21, 2015 by VG
Click to expand...

But the kaspersky is a good one (y)
 
  • Like
Reactions: Protomartyr, oldschool and Gandalf_The_Grey
You must log in or register to reply here.

Similar threads

RRlight
    • Like
Advanced Security RRlight gaming laptop config 2024
Replies
4
Views
218
PC Setup Configuration Help & Showcase
RRlight
RRlight
Gandalf_The_Grey
    • Like
Microsoft pulls fix for Outlook bug behind ICS security alerts
Replies
1
Views
489
Office, email and business apps
Bot
Bot
S
New Microsoft guidance for the DoD Zero Trust Strategy
Replies
1
Views
643
Microsoft Defender
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top