At-Risk Nagisa security config 2020

Last updated
Dec 17, 2020
How it's used?
For sharing
Operating system
Windows 10
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
Microsoft Defender
Firewall security
Microsoft Defender Firewall
About custom security
Cloud Protection level - Block
SmartScreen - Warn
All ASR rules enabled
Network Protection enabled
CFA enabled
Memory Integrity enabled
Firewall Hardening - LOLBins blocked
Periodic malware scanners
NPE
EEK
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Microsoft Edge
Maintenance tools
Windows built-in tools
File and Photo backup
no
System recovery
no
Risk factors
    • Browsing to popular websites
    • Downloading software and files from reputable sites
    • Gaming
    • Streaming audio/video content from shady sites
Computer specs
R5 1600
8 Gigs of RAM
1 TB HDD
Notable changes
Comodo FW + KSC Free
SUA
Memory Integrity
Notes by Staff Team

  1. This setup configuration does not have a backup plan. We strongly recommend to add a backup solution for your data so that you can restore it in the case of an emergency.
    Backing up allows the recovery of data that has been lost due of a malware attack (eg. ransomware) or a hard disk crash. In such events you might lose family photos, your music collection, documents, or financial data. Backups are fast and simple to perform so it should be done on a regular basis.

imuade

imuade

Level 12
Verified
Top Poster
Well-known
Jul 29, 2018
566
Nagisa said:
- Reinstalled Forticlient with only antivirus module

Web filter cause random connectivity issues. (one specific site refuses to load at all)
Click to expand...
Yes, I'm also experiencing some issues, FortiClient web filter is blocking absolutely safe websites such as bing.com. It looks like it's blocking random websites first, but it allows them later.
Not sure if it's due to some incompatibilities with Windows 10 version 2004
 
  • Like
Reactions: ForgottenSeer 89360, Protomartyr, Vitali Ortzi and 1 other person
Vitali Ortzi

Vitali Ortzi

Level 25
Verified
Top Poster
Well-known
Dec 12, 2016
1,405
imuade said:
Yes, I'm also experiencing some issues, FortiClient web filter is blocking absolutely safe websites such as bing.com. It looks like it's blocking random websites first, but it allows them later.
Not sure if it's due to some incompatibilities with Windows 10 version 2004
Click to expand...
Another thing is that if a new version fixes it .
lastest version of Forticlient still isn't free.
 
  • Like
Reactions: ForgottenSeer 89360, ANNOx and Protomartyr
N

Nagisa

Level 7
Thread author
Verified
Jul 19, 2018
342
Installed CIS.

x.png

0.png

1.png

2.png

3.png

4.png

5.png

6.png
7.png

8.png

9.png
 
  • Like
  • Applause
Reactions: oldschool, Protomartyr, ForgottenSeer 89360 and 5 others
F

ForgottenSeer 89360

Nagisa said:
Installed CIS.

View attachment 249165

View attachment 249155

View attachment 249156

View attachment 249157

View attachment 249158

View attachment 249159

View attachment 249160

View attachment 249161
View attachment 249162

View attachment 249163

View attachment 249164
Click to expand...
Hi,

Just one suggestion. I would enable the Scanning Optimisation for Real-Time protection. Keeping it disabled will cause files to be rescanned again and again, which is pointless when you have other powerful layers found in Comodo. In a long run, not only it can decrease your performance, but also, the lifespan of your HDD/SDD.

Let @cruelsister have a look at other settings.
 
Last edited by a moderator:
  • Like
  • Thanks
  • +Reputation
Reactions: oldschool, Protomartyr, Nagisa and 1 other person
N

Nagisa

Level 7
Thread author
Verified
Jul 19, 2018
342
McMcbrad said:
Just one suggestion. I would enable the Scanning Optimisation for Real-Time protection. Keeping it disabled will cause files to be rescanned again and again, which is pointless when you have other powerful layers found in Comodo. In a long run, not only it can decrease your performance, but also, the lifespan of your HDD/SDD.
Click to expand...

I tested it myself and found 'on access' scanning to be much reliable and faster. Also as far as i can observe, on access scan uses transient cache as well. I don't see any disk usage from comodo when running a program second time.
 
  • Like
Reactions: oldschool, ANNOx, Protomartyr and 2 others
N

Nagisa

Level 7
Thread author
Verified
Jul 19, 2018
342
Today my system just stuck at welcome screen on startup without an apparent reason. No matter how many times i restarted i couldn't get into desktop. I have had to boot into safe mod and run ciscleanup script and looks like that fixed the issue. Im suspecting that my configurations probably blocked a script or a file that's created by Windows itself because it hasn't got yet flagged safe by Comodo. Maybe it could have been solved by itself if i waited but anyway i decided no. I will either install again and add some exclusion rules for Windows system proccesses or install McAfee ENS or AVG.
 
  • Like
  • Wow
Reactions: oldschool, Protomartyr, ForgottenSeer 85179 and 3 others
F

ForgottenSeer 89360

Nagisa said:
Today my system just stuck at welcome screen on startup without an apparent reason. No matter how many times i restarted i couldn't get into desktop. I have had to boot into safe mod and run ciscleanup script and looks like that fixed the issue. Im suspecting that my configurations probably blocked a script or a file that's created by Windows itself because it hasn't got yet flagged safe by Comodo. Maybe it could have been solved by itself if i waited but anyway i decided no. I will either install again and add some exclusion rules for Windows system proccesses or install McAfee ENS or AVG.
Click to expand...
That’s why I suggested you don’t overkill your system. It’s not necessary and it might break your system and patience 😅😅
If you keep Comodo, make sure you find a balance of productivity and security, which will most likely be the default setup.
 
  • Like
  • +Reputation
Reactions: oldschool, Protomartyr, ForgottenSeer 85179 and 1 other person
N

Nagisa

Level 7
Thread author
Verified
Jul 19, 2018
342
McMcbrad said:
That’s why I suggested you don’t overkill your system. It’s not necessary and it might break your system and patience 😅😅
If you keep Comodo, make sure you find a balance of productivity and security, which will most likely be the default setup.
Click to expand...
Yeah the default setup were actually good :D

Guess im going to choose CFW with tweaked Defender. By the way, Defender instantly blocked the sample you sent me with wacatac(I guess ml based) named detection.
 
  • Like
  • Applause
Reactions: oldschool, Protomartyr, ForgottenSeer 89360 and 2 others
F

ForgottenSeer 89360

Nagisa said:
Yeah default setup were actually good :D

Guess im going to choose CFW with tweaked Defender. By the way, Defender instantly blocked the sample you sent me. I guess wacatac is the nickname for ML based static detections.
Click to expand...
Wacatac is the name of a trojan that can perform various actions. Normally all AVs have clear markings of what’s detected by machine learning. Indicators can vary, but mostly you’ll see a number, which represents the machine learning model. It might have ML or AI appendix and you might see percentage of confidence with some.
 
  • Like
Reactions: oldschool, ForgottenSeer 85179, Protomartyr and 1 other person
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • Hundred Points
Security News Germany drafts law to protect researchers who find security flaws
Replies
0
Views
243
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Divine_Barakah
    • Like
    • Applause
Advanced Security Divine Barakah's PC Security Config 2024
Replies
97
Views
4,190
PC Setup Configuration Help & Showcase
Divine_Barakah
Divine_Barakah
M
    • Like
    • Applause
    • +Reputation
Improving text editing on the web, one feature at a time
Replies
0
Views
517
Microsoft Edge
Microsoft Edge Team
M

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top