Latest changes
Apr 13, 2020
Operating system
Windows 10 Pro
OS build or version
1909
System type
64-bit operating system; x64-based processor
Update and Security
Allow all automatic updates
User Access Control
Always notify
Firewall and Network protection
Provided by a third-party security vendor
User permissions
Administrator account
User account
Local account only
Sign-in options
  • Windows Hello PIN
  • Malware exposure
    No malware samples are downloaded
    Real-time Malware protection
    Kaspersky Internet Security 2020
    Modified security settings
    1. Kis: Applications Control tweaked
    2. Removed pre-installed apps by Microsoft or third-party
    3. O&O ShutUP10 to manage the computer’s privacy settings
    4. Disable unnecessary Windows services.
    Periodic scanners
    Norton Power Eraser
    Browser and Extensions
    Edge Chromium: Bitwarden - Privacy Badger
    Google Chrome: Bitwarden - Privacy Badger
    Privacy tools and VPN
    Mullvad VPN
    Password manager
    Bitwarden / KeePass
    Search engine
    Google
    Maintenance tools
    Soft Organizer Pro / Wise Care 365 (paid) / O&O shutup10
    Photos and Files backup
    Macrium Reflect Home / OneDrive (1TB)
    File Backup schedule
    Once or multiple times per week
    Backup and Restore
    Macrium Reflect Home
    Backup schedule
    Once or more per week
    Computer Activity
  • Online banking
  • Browsing the web and checking emails
  • Regularly installing new software every week
  • Testing security software using malware samples
  • Downloading files from different websites
  • Office and other work-related software (Work from Home)
  • Recording and editing video or photos
  • Computer Specifications
    Asus i5 - 6198du - 12 GB ram - 500 GB Hd

    Outpost

    Level 5
    Verified
    Your KIS setup is very strong, especially for unsafe applications/DLLs/scripts (TAM). I am not sure if it is equally strong for LOLBins and fileless attacks, but it can probably mitigate most of them in some way. Many such attacks can be done via the weaponized MS Office documents. Normally, SysHardener could be tweaked to harden MS Office applications. But on SUA, the SysHardener's hardening for MS Office does not work.
    I do not think that your setup requires any modification. Please, treat my notes as some theoretical considerations.
    You touched on an important point: the mitigation of LOLBin attacks on KIS isn't actually very strong. I had already considered it and I have not yet had time to try if it is possible to do something on KIS (create specific rules).
    SysHardener is tweaked, but I wasn't aware of its limitation with Office in the SUA.
    Your considerations and advice are always welcome, so tell me if you have alternative proposals to recommend.
     

    Outpost

    Level 5
    Verified
    It was the only reason that made me use Kaspersky in the first place. It was the perfect set-and-forget setup especially if you're not experienced enough to play with settings. Too bad!
    Yes, TAM was practical, especially in situations where the PC is or can be used by people with no experience. The alternative is to the tweaking of Application Control.
     
    Top