By Staff harlan4096 Security Config 2025

Last updated
Jan 22, 2025
How it's used?
For home and private use
Operating system
Windows 11
On-device encryption
VeraCrypt
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
    • Basic account password (insecure)
Security updates
Allow security updates
Update channels
Allow stable updates only
User Access Control
Always notify
Smart App Control
Off
Network firewall
Enabled
About WiFi router
ZYXEL EX3301 (ISP router)
Real-time security
  • Kaspersky Endpoint Security 12.8
  • KeyScrambler Free
  • SandBoxie Classic
Firewall security
Other - Internet Security (3rd-party)
About custom security
  • Windows 11 Core Isolation Enabled
  • Host Intrusion Prevention: Trust group for applications that could not be added to existing groups -> UnTrusted
  • Host Intrusion Prevention: Trust group for applications started before Kaspersky Endpoint Security -> UnTrusted
  • Host Intrusion Prevention: Trust digitally signed applications -> Disabled
  • Host Intrusion Prevention: Manage Resources: my C:\User\<account> protected with special strong rights
  • Treat port scanning and network flooding as attacks -> Enabled
  • MAC Spoofing Protection -> Enabled
Periodic malware scanners
  • AdwCleaner
  • NPE
  • EEK
  • HitManPro
  • McAfee Stinger
  • ESET Online Scanner
Malware sample testing
I do participate in malware testing. See details about my testing environment below.
Environment for malware testing
VMWare Pro with 2 virtual machines: Kaspersky Premium, Kaspersky Endpoint Security
Browser(s) and extensions
I have 6 browsers installed: Mozilla FireFox, LibreWolf, Opera, Brave, Chrome and of course Edge (🤢)

But my main daily is Mozilla FireFox (using DuckDuckGo URL as main page for searching), with add-ons:
  • uBlock Origin
  • NetCraft
  • WebRTC Leak Protection
  • DarkReader
  • Simple Translate
  • Language Tool
  • DuckDuckGo Privacy Essentials
In the rest of browsers, I have, at least, uBlock Origin (Lite in Chromium based) add-on installed.
Secure DNS
  • CloudFlare
  • Quad9
Desktop VPN
  • Mega VPN Unlimited
  • WindScribe (10GB monthly)
Password manager
KeePassXC (offline)
Maintenance tools
  • WPD to stop unnecessary Windows services and Telemetry.
  • CrystalDiskInfo
  • CrystalDiskMark
  • HWMonitor
  • QuickCPU
  • FastCopy
  • Free Download Manager
  • AnyDesk (paid subscription, I need it for my working)
File and Photo backup
MegaSync app + Mega Pro Lite (400GB)
Subscriptions
    • None
System recovery
  • Macrium Reflect Home (paid)
  • Hasleo BackUp Suite (free for now)
Weekly cloning both images to external hard drive.
Risk factors
    • Browsing to popular websites
    • Working from home
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from unknown / untrusted / shady sites
    • Requesting and accepting remote access
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
Computer specs
malwaretips.com

Showcase - harlan4096 MINISFORUM new main system

After using for long years my main system with an AMD Athlon II X3 450 + 12GB RAM DDR3 + Crucial MX300 SSD 512GB, I'm changing to this new system :) Anyway, the AMD Athlon II X3 still alive and kicking! And will keep it for testing purposes :) The new system it's a beast, very fast, not so...
malwaretips.com malwaretips.com
Notable changes
  • 22/01/2025: Updated versions of some already installed apps, added Mega VPN.
What I'm looking for?

Looking for medium feedback.

As I posted before, with KES We don't have all those additional modules / features, no browsers add-ons, no script injection unless You want to use that additional Web Control logging, etc.
 
  • Like
Reactions: zkSnark and Berny
I am testing Eset Smart Premium and it uses around 70Mb only. Is there any way to bring Kaspersky usage below 100Mb?
 

You may also like...