SECURITY: Complete Geminis3's Security Config 2020

Last updated
Dec 13, 2020
About device
Primary device
Operating system
Windows 10
Sign-in identity
Sign-in with Local account
Log-in security
    • Account password
Permissions
Standard user account
Security updates
Automatic - allow all types of updates
Windows UAC
Default - notify when programs attempt to make changes
Malware samples
No - malware is not downloaded
Firewall protection
Microsoft Defender Firewall
Real-time malware protection
Microsoft Defender
RTP & OS hardening settings
PUP detection
Periodic scanning
[LIST]
[*]MBAM Free
[*]EEK
[*]Hitman.Pro
[*]NPE
[/LIST]
Browsers
Firefox, Chrome and Edge:
  • uBlock Origin
  • Bitwarden
Optimisation apps
Cleanmgr+
CCleaner portable
My Files & Photos backup
Google Drive
My Files backup schedule
Automatic - sync to a trusted cloud provider, or local attached storage
Device recovery & settings
Macrium Reflect
Device backup schedule
Manual - backups are made in my own time to local attached storage
Computer specifications
Acer Predator Helios 300 (G3-571-77QK):
  • i7-7700HQ
  • GTX 1060 6GB
  • 16GB DDR4
  • 1TB WD Blue SN550 NVMe
  • 120GB Kingston SSD
Device activity usage
  1. Generic web browsing
  2. Downloading and installing new software(s)
  3. Downloading files from unfamiliar sites
  4. Working from home
  5. Office software and video conferencing
  6. Computer games
  7. Video and photo editing
  8. Streaming audio and video content from the Internet

geminis3

Level 18
Verified
Malware Tester
Sep 10, 2015
854
Same config from the last year, the only major difference is that I dropped Chrome completely in favor of Firefox.
BTW some day Chrome's Software Reporter Tool was eating 50% of my CPU without even having it open, I hated that so much I ended importing everything to my FF account and removing it completely. I kept Edge Chromium as a backup if I ever found a bad-designed website that deliberately block non-chromium users.
 

geminis3

Level 18
Verified
Malware Tester
Sep 10, 2015
854
Lovely config, just seen you use Chocolatey too, looks like a really easy GUI to navigate around.

~LDogg
It's just live having apt on Windows, clean and efficient

I would add Configure Defender ( High) to WD. Make an image then try it. The support here by Andy Ful is exceptional......
I'm no longer using WD but forgotten to update the config
 

geminis3

Level 18
Verified
Malware Tester
Sep 10, 2015
854
27/04/2020
  • Avast Free with minimal installation + email shield + WiFi scanner (very handy to find vulnerable router FW)
  • Vivaldi as default browser
  • Edge for Teams and resource hog websites (FB and Reddit).
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
Apr 18, 2016
3,496
hello, which mode of Hardened mode are you using? Default/moderate or Aggressive?
I strongly suggest you to use Aggressive because it's simply much better. Moderate is not strong enough and can be bypassed more easily
Capture.PNG
 

geminis3

Level 18
Verified
Malware Tester
Sep 10, 2015
854
hello, which mode of Hardened mode are you using? Default/moderate or Aggressive?
I strongly suggest you to use Aggressive because it's simply much better. Moderate is not strong enough and can be bypassed more easily
View attachment 238242
Currently using default, however tomorrow I'll test aggressive and see if something breaks on normal use.
 

geminis3

Level 18
Verified
Malware Tester
Sep 10, 2015
854
06/05/2020
  • Replaced Avast with KIS
  • Disabled script injection (soviet techonology that renders your capitalist fiber internet into a good ol' dial-up connection)
PD: Will continue to test Avast in the hub
PD2: Detailed config in the above section
 
Top