Advanced Plus Security Protomartyr's ThinkPad Security Config 2020

[Protomartyr]

Updated:
- Malwarebytes Premium - Disabled Malware and Ransomware real-time protection modules

Testing to see if it impacts system performance. With just Web Protection and Exploit Protection enabled, the system does seem lighter.

 

[CyberTech]

Maybe try a short sleep time and lock on wake?

Ah i know that but that stop programs running in background which downloading on torrent client the lock is prefect for me leave downloading when i left PC

 

[Vitali Ortzi]

Updated:
- Malwarebytes Premium - Disabled Malware and Ransomware real-time protection modules

Testing to see if it impacts system performance. With just Web Protection and Exploit Protection enabled, the system does seem lighter.

My suggestion use Malwarebytes on demand.
Use my SEP config for firewall and host exploit mitigation only(this config is very light because it has no signatures in memory or proactive protection running or installed) .
And if you want Malwarebytes web protection run the extension .

Config hosted at ImgBB

Image Config hosted in ImgBB

ibb.co

For exploit protection H_C has many options to reduce the attack surface and block payloads.
If you really want extra protection twaek exploit guard and better if you can move to windows store apps.

 

[Protomartyr]

Updated:
- Malwarebytes Premium - Disabled Web Protection module

I was recently experiencing connection issues when trying to visit sites. It would take 20-30 seconds to resolve hosts no matter what browser I used. The Web Protection module of Malwarebytes Premium was the culprit. Disabled the module and can now browse with no issues.

The only protection module I have enabled now is the Exploit Protection. It's probably not really needed as I have Hard_Configurator. Malwarebytes Premium is now removed from 'Real-time Web & Malware Protection' category to 'Virus and Malware Removal Tools'.

 

[blackice]

Updated:
- Malwarebytes Premium - Disabled Web Protection module

I was recently experiencing connection issues when trying to visit sites. It would take 20-30 seconds to resolve hosts no matter what browser I used. The Web Protection module of Malwarebytes Premium was the culprit. Disabled the module and can now browse with no issues.

The only protection module I have enabled now is the Exploit Protection. It's probably not really needed as I have Hard_Configurator. Malwarebytes Premium is now removed from 'Real-time Web & Malware Protection' category to 'Virus and Malware Removal Tools'.

It seems that just as Malwarebytes was improving 4.0 has caused a lot of performance issue not in 3.0.

 

[Protomartyr]

It seems that just as Malwarebytes was improving 4.0 has caused a lot of performance issue not in 3.0.

Which is a shame because I liked the company and their products and was hoping that they would make a lot of improvements in 4.0.

 

[blackice]

Which is a shame because I liked the company and their products and was hoping that they would make a lot of improvements in 4.0.

I feel exactly the same way. I think they are trying to do some good, and they actually respect privacy, which I commend.

 

[Protomartyr]

Updated:
- Malwarebytes Premium - All real-time protection modules disabled

For some reason, Malwarebytes refused to open/launch. Did a reinstall and have decided to just keep all modules turned off.

 

[blackice]

Updated:
- Malwarebytes Premium - All real-time protection modules disabled

For some reason, Malwarebytes refused to open/launch. Did a reinstall and have decided to just keep all modules turned off.

I had a lot of trouble installing it as a second opinion scanner today. It crashed when I tried disabling real time scanners. I think they broke something.

 

[Protomartyr]

I had a lot of trouble installing it as a second opinion scanner today. It crashed when I tried disabling real time scanners. I think they broke something.

Same here. Their removal tool is really easy to work with though so I'm glad for that.

I also noticed that activating Premium automatically registers itself as the main AV by default without any prompt that it's doing so. I wish they wouldn't do this as default behavior. At least notify the user so they can decide whether or not they want to keep Defender as the primary AV.

 

[blackice]

Same here. Their removal tool is really easy to work with though so I'm glad for that.

I also noticed that activating Premium automatically registers itself as the main AV by default without any prompt that it's doing so. I wish they wouldn't do this as default behavior. At least notify the user so they can decide whether or not they want to keep Defender as the primary AV.

Especially when installing the free version without a key.

 

[Brahman]

@ Protomartyr Since you are using Chrome/ Chrome based browser in conjunction with cloudflare dns you can enable DOH in its settings for added security.
(To enable DoH in Chrome, start by typing or copy-pasting “chrome://flags/#dns-over-https” into the address bar and press Enter.


Open the drop-down menu to the right of “Secure DNS Lookups” and select “Enabled."
and restart chrome.)
Try the new firefox it is as fast as chrome now.

 

[Protomartyr]

Removed:
- Bitdefender TrafficLight from Edge

I still use TrafficLight in Brave for my Linux VMs.

 

[Protomartyr]

Removed:
- Emsisoft Emergency Kit

Was doing scans with AV + second opinion scanners before I made my monthly system image backup. For some reason EEK refused to update. Didn't feel like troubleshooting so I removed it. I still have HitmanPro and Malwarebytes so I'm good.

EEK is still a great second opinion scanner that I'd recommend to anyone.

 

[Protomartyr]

Updated:
- From Windows Version 1909 to 20H2

Update went through without any problems and the system is running flawlessly on this 6 year old ThinkPad. I'm impressed!