Status
Not open for further replies.
Latest changes
Dec 26, 2019
Operating system
Not listed
System type
32-bit operating system; x86-based processor
Update and Security
No security updates
User Access Control
Notify me only when programs try to make changes to my computer
Firewall and Network protection
Microsoft Defender Firewall is active
User permissions
Administrator account
User account
Local account only
Sign-in options
  • Account Password
  • Malware exposure
    No malware samples are downloaded
    Real-time Malware protection
    • Windows Firewall
    • Firewall Hardware on router
    • 1° AdGuard DNS / 2° CloudFlare DNS
    • MBAE Premium - Custom Setting
    • OSA - Custom Setting
    • Black Viper's List - Some services Disabled/Manual
    Modified security settings
    • Trick POS Ready 2009 + KB4500331.
    • PsExec - Run browsers + email client with limited rights - Exceptions (OSA) for Interlink Mail News and New Moon.
    • DEP Always ON
    • SMB Protocol Disabled
    • No NET Framework Installed
    • I.E.8 No Flash + Trick 1803 (Block the downloadable executable files) + Disable script (F12 - on/off) + block execution I.E.8.
    Periodic scanners
    Hitman Pro,McAfee Stinger,HijackThis Portable,Adwcleaner v.6.0.4.7
    Browser and Extensions
    New Moon 28 - (Pale Moon fork for Windows XP) Custom Setting about:config

    • Noscript
    • U.B.O.Legacy
    • Decentraleyes
    • No Resource URI Leak
    • Canvas Blocker Legacy 0.2 - Only to pass the ClientRects Fingerprint test
    Privacy tools and VPN
    • 1° AdGuard DNS / 2° CloudFlare DNS
    • W.M.P. off
    • O.E. off
    • New Moon Home page = DuckDuckGO - Custom settings saved via URL no cookies
    Password manager
    My Memory
    Search engine
    DuckDuckGo
    Maintenance tools
    • CCleaner - Many custom rules created by me
    • RegSekeer
    • Process Explorer
    • SigcheckGUI
    • Dependency Walker
    • CFF Explorer
    • Currports
    • WWDC
    • IobitUnistaller Portable
    • Speedyfox -Custom Rule for Interlink Mail News
    • SUMo Portable
    • JKDefragGUI
    Photos and Documents backup
    Pen Drive
    Data Backup Schedule
    Once or multiple times per month
    Backup and Restore
    Acer System Backup
    Backup Schedule
    Once or more per year
    Computer Activity
  • Online banking
  • Browsing the web and checking emails
  • Office and other work-related software (Work from Home)
  • Learning computer languages or creating apps
  • Computer Specifications
    Acer Intel Celeron M380 1.60 GHz 1GB RAM
    Your changelog
    1. Added some custom rules in OSA for Mimikatz Dump Lsass.exe mitigation.
    2. Added "sc" command rule block in OSA.
    3. Added rule to block execution of I.E.8 in OSA.
    4. Added rule to block msbuild.exe in OSA and the same rule on the Registry Key.
    5. Blocking rule in host file for CCleaner.
    Staff notes

    This setup configuration may put your device at risk .
    We don't recommend that other members use this security setup. We cannot be held responsible for problems that may occur to your device by using this security setup.

    This computer configuration is using an unsupported operating system. If possible, we recommend to upgrade to an operating system that is supported by its developers.

    Sampei Nihira

    Level 6
    Verified
    This Zero-Day almost certainly also affects I.E.8:


    I entered a rule for the total block of I.E.8.
     

    Sampei Nihira

    Level 6
    Verified
    Now that I have some free time I have done a test to check the CVE-2020-0674 vulnerability in my I.E.8.
    I found the test file thanks to 0Patch:


    To make the test after the creation of the HTML file I had to make 2 changes:

    500a.JPG

    500c.JPG

    but the result is unexceptionable:

    500.JPG

    I.E.8 is vulnerable.
    I did well to take the countermeasures already mentioned .(y):)

    P.S.

    I would like to advise users who have multiple browsers installed to check which is the default browser that opens the HTLM and HTM files and possibly change this setting with the browser they consider more secure.
     
    Last edited:

    Sampei Nihira

    Level 6
    Verified
    Home users doesn't need IE anyway, better remove it.
    There are those who say that the removal of I.E.8 is possible in Windows XP.
    I believe it is inadvisable to remove I.E.8.
    Why Trident in Windows XP is used in multiple software.
    And this is easy to avoid, just don't use them.
    But it is also used:

    ..... in Windows XP it is also used for the User Accounts Control Panel, which is an HTML Application ......

    And this cannot be ignored.


    Indeed, since the command below is configured as an HTML application, I placed it under anti-exploit protection

    Control.exe nusrmgr.cpl

     

    Sampei Nihira

    Level 6
    Verified
    :D

    With my XP, however, I don't have to worry about new forms of attack that are increasingly incisive:


    I would say an attack on several fronts which, in my opinion, could bypass some of the security configurations included in this sub-forum.

    :giggle:

    P.S. Precautionarily I added a rule for blocking MSBuild. *
     
    Last edited:

    Sampei Nihira

    Level 6
    Verified
    CCleaner ver. v5.64.7613, release today, no longer supports Windows XP (and Windows Vista).
    There is a special version of CCleaner 5.64.7577 which can be downloaded on the page below:


    This version will only ever receive critical security updates.
     

    Sampei Nihira

    Level 6
    Verified
    Today some free time.
    I entered my customizations in ccleaner ver 5.64.
    I insert some pictures:

    Start:
    700.JPG

    New Moon 28 which is recognized as Firefox (I don't have Firefox installed), note the custom rules marked with *
    700a1.JPG

    Interlink Mail New + Potplayer +MBAE:
    700a.JPG
     
    Last edited:

    Spawn

    Administrator
    Verified
    Staff member
    You can use a $300 smartphone, but cannot replace an insecure OS for a cheap and secure Chromebook, or Low-End Windows 10 S device.

    Microsoft Surface Go is sub-$400.
    Chromebooks are as low as $200.

    This thread is a joke and an embarrassment.

    All opinions are my own.
     
    Last edited:

    Sampei Nihira

    Level 6
    Verified
    You can use a $300 smartphone, but cannot replace an insecure OS for a cheap and secure Chromebook, or Low-End Windows 10 S device.

    Microsoft Surface Go is sub-$400.
    Chromebooks are as low as $200.

    This thread is a joke and an embarrassment.

    All opinions are my own.
    I can't replace it because besides the pc with W.XP we also have another pc with W.10.
    I wrote it several times.
    It was enough to read.
    So your replacement advice is as useless as your comments.
     

    Spawn

    Administrator
    Verified
    Staff member
    I can't replace it because besides the pc with W.XP we also have another pc with W.10.
    I wrote it several times.
    It was enough to read.
    So your replacement advice is as useless as your comments.
    You have 2 PCs. You deliberately chose to share a controversial topic.

    There are 10 pages of nonsense. No one is going to read a dead product thread.

    Windows XP is no longer supported by Microsoft.
     

    LDogg

    Level 31
    Verified
    Usage of IE 8 should ring some alarm bells and shouldn't be used at all, regardless of what you're doing. Same for XP, again unless you're a company, hospital, or an organisation with critical infrastructure, there's no need to be using Win XP.

    When upgrading to Windows 7 (optional, not forcing you), backup everything or the essential stuff.

    ~LDogg
     
    Status
    Not open for further replies.
    Top