Advanced Plus Security Moonhorse's Security Config 2019

Last updated
Nov 18, 2019
Windows Edition
Home
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
Sophos home premium FREE
Comodo firewall
Firewall security
About custom security
Comodo firewall on internet security config
Periodic malware scanners
Emsisoft emergency kit
Malwarebytes adwcleaner
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Firefox stable channel (70.0.1 currently)

Extensions:
- Ublock origin
- Bitwarden
- Bitdefender trafficlight

About:config
- network.trr.mode = 2
- media.peerconnection.enabled = false
- security.secure_connection_icon_color_gray = false
- security.identityblock.show_extended_validation = true
Maintenance tools
Geek uninstaller
File and Photo backup
External drive
System recovery
Aomei backupper Free
Risk factors
    • Gaming
    • Logging into my bank account
    • Browsing to popular websites
    • Streaming audio/video content from shady sites
Computer specs
Asus m5A97
AMD FX-6300 @ 3.8ghz
MSI GTX-970
HDD 1TB
8GT Kingston Ram, @1600Hz

Nestor

Level 9
Verified
Well-known
Apr 21, 2018
397
I did minium install, nothing has popped up for me.

It just sounds like you had adware installed where the pop-ups coming from?
Onclickads.net Browser Redirect Removal

i would run adwcleaner from malwarebytes incase there is something sketchy going + zemana probably
I tried everything, HMPA, Adwcleaner, NPE, EEK and nothing found. Maybe I will try Zemana but i know will flag Thor as a Dns Hijack.Maybe the only solution is to reset the router.
 
Last edited:

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,601
...
Edit: @Andy Ful Is it possible to use H_C as default allow .exe and just benefit from WD hardening + script blocking ( sponsors) if WD has block in first sight? If the whitelisting is painful for someone
Yes, you can use WD. Just load the Avast profile in H_C. The Avast profile automatically sets default-allow SRP for EXE files, so there is no need to whitelist EXE files anymore. You can block some sponsors if you need. In this way, you can have a similar setup to:
SECURE: Complete - Moonhorse's Security Config 2019
except the protection of double extensions.
Maybe I will add double extension protection for default-allow setup in the future - of course, it is covered already in default-deny setup.
 
Last edited:

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
Update 31.1.2019

Removed browser extensions:
- Trace
- Bitwarden
- Decentraleyes
- Malwarebytes extension

Added:
+Google chrome;
- Ublock origin
- Netcraft
- Windows defender browser protection
+ bitwarden desktop version

This is probably lightest setup i can get for now. Below my ublock origin filters;

blocklists1.png
 

stefanos

Level 28
Verified
Top Poster
Well-known
Oct 31, 2014
1,712
Update 31.1.2019

Removed browser extensions:
- Trace
- Bitwarden
- Decentraleyes
- Malwarebytes extension

Added:
+Google chrome;
- Ublock origin
- Netcraft
- Windows defender browser protection
+ bitwarden desktop version

This is probably lightest setup i can get for now. Below my ublock origin filters;

View attachment 207641
Is realy light with strong protection (y)
 

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
Update 14.2.2019

- Removed H_C and did clean install. Reason i have uninstalled H_C is because i want to have default allow antivirus and i want to have setup wich i can install to someone elses computer

+ Added:

+ Kaspersky cloud av ( Harlans tweaks; )

+ Syshardener ( max ) Everything enabled except; show hidden system files, disable superfetch and block bitadmins

+ Firefox as mainbrowser
  • Ublock origin (1hosts mini, coinblockerlists, nocoin, nano defenders lists)
  • Privacy possum
  • Canvasblocker
  • Netcraft
  • Malwarebytes extension
  • Bitwarden extension
As im using kaspersky now, i could remove malwarebytes but i dont see reason for that
 

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
17.2.2019

-Just removed syshardener and replaced with OSA

Google chrome:
+ nano adblocker & defender replaced with ublock origin

Google chrome flags set on

Privacy
Anonymize local IPs exposed by WebRTC (enable)
Reduce default 'referer' header granularity. (enable)
Hyperlink auditing (disable)

Security
Enable AppContainer Lockdown (enabled - by default, but as long as it is in flags I enable it)
Enable GPU AppContainer Lockdown (enable)
PDF isolation enabled
Block unsafe downloads over insecure connections (enabled)
Mark non-secure origins as non-secure (mark actively as dangereous)
TLS 1.3 downgrade hardening (enabled)

This is the configuration until chrome breaks ublock origin
 

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
23.2.2019

- Removed OSA

+

  • added Comodo firewall ( proactive security) , because im using the sandbox i dont set up cs settings at all
  • Comodo secure DNS, just for fun
Comodo dragon has same extensions as google chrome, but yandex as search engine ( better results than google)
 
Last edited:

Burrito

Level 24
Verified
Top Poster
Well-known
May 16, 2018
1,363
23.2.2019

- Removed OSA

+

  • added Comodo firewall ( proactive security) , because im using the sandbox i dont set up cs settings at all
  • Comodo secure DNS, just for fun


Well-thought out system Moonhorse.

Based on your additions/subtractions... what are your thoughts on OSA and Syshardener?

And.... I hope all is going well for you.
 

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
Well-thought out system Moonhorse.

Based on your additions/subtractions... what are your thoughts on OSA and Syshardener?

And.... I hope all is going well for you.
Well OSA is kind of behaviour blocker, and i doubt you need it with avast or kaspersky
Syshardener is to disable common attack vectors, i could run it with comodo firewall but i rather not since comodo tend to be buggy sometimes, i let it run completely free along with kaspersky

Im using comodo sandbox with comodo dragon as secondary browser

Aswell i rather use proactive config , over cs settings since i get the pop-ups and eye candy about whats happening on my system. I just recently installed browser extension, comodo firewall asked me if i want to keep these browser settings , its much more advanced software than OSA is

Also comodo killswitch is good to monitor things
 

Burrito

Level 24
Verified
Top Poster
Well-known
May 16, 2018
1,363
Well OSA is kind of behaviour blocker, and i doubt you need it with avast or kaspersky
Syshardener is to disable common attack vectors, i could run it with comodo firewall but i rather not since comodo tend to be buggy sometimes, i let it run completely free along with kaspersky

Im using comodo sandbox with comodo dragon as secondary browser

Aswell i rather use proactive config , over cs settings since i get the pop-ups and eye candy about whats happening on my system. I just recently installed browser extension, comodo firewall asked me if i want to keep these browser settings , its much more advanced software than OSA is

Also comodo killswitch is good to monitor things

Yeah, makes sense.

I've used both OSA and Syshardener, and I like both. But when little things go wrong, maybe rightly or wrongly, I usually suspect them as the culprit. Sometimes I can tell.... sometimes not so much.

And I'm going to check out Comodo Killswitch.

Thanks.
 

Moonhorse

Level 38
Thread author
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
16.3.2019
Did an clean install

Current setup:

Antivirus: Windows defender ( sandbox)
Firefox:
  • Ublock origin
  • Netcraft
  • Malwarebytes extension
  • Trace
  • Bitwarden
+about:flag; network.trr=2

Most of the apps i use from microsoft store: Whatsapp, spotify

I think Im keeping this setup until next big movement from microsoft/ microsoft chromium browser
 

LDogg

Level 33
Verified
Top Poster
Well-known
May 4, 2018
2,261
Have you thought about Tinywall or MWFC to compliment Windows Firewall at all?

Nice to see another post from you as well!

~LDogg
 
  • Like
Reactions: Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top