Latest Changes
Dec 28, 2018
Operating System
  • Windows 10
  • Windows Edition
    Build Version
    Windows 10 1809
    System Architecture
    Security Updates
    Automatic Updates (recommended)
    User Access Control
    Always Notify
    Network Security (Firewall)
    Windows Defender Firewall
    Device Security
  • Windows Defender SmartScreen (Windows 10)
  • User Account
    Sign-in Accounts
    Malware Testing
    None - No Malware on host PC or VM
    Real-time Web & Malware Protection
    Windows Defender with ConfigureDefender
    Software Restriction Policy with Hard_Configurator
    Custom Settings For Real-Time Protection
    Custom - Major changes for Increased Security
    Virus and Malware Removal Tools
    Macrium Reflect does the job just fine...
    Browsers and Extensions
    Web Privacy
    uBlock Origin w/added filters, Netcraft
    Password Manager
    Web Search
    System Utilities
    Hard_Configurator, SysHardener, BandiZip, PatchCleaner, autoruns
    Data Backup
    Frequency of Data backups
    Always-on Sync
    System Backup
    Macrium Reflect, Timeshift (Ubuntu)
    Frequency of System backups


    Level 19
    Great security configuration.

    The only note I would like to make is for you to try to use a physically separate computer to run your virtual machines on, for maximum security, or even use a separate subnet for the virtual machines, to avoid contact with your main productive PC altogether.

    You obviously have backup images covered as well, so... I guess I cannot recommend anything else. :D

    Thanks for sharing your new config. :p


    Level 24
    Malware Hunter
    That's a pretty no-nonsense setup. Total coverage :)
    I hope I get to try reHIPS sometime!

    By curiosity , what ERP will cover that KIS won't? (I don't know much of KIS because i don't like it ^^)
    Why dislike KIS :/
    Is it the alerts or something else? I am aware of your lockdown approach :) but you said you dislike a particular AV solution, that triggered my curiosity.
    In terms of standard AV solutions, it goes well beyond. I'll rate it in top two any time based on the features and protection.. my learning.
    but you can still enables those alerts no?
    KIS, by default, "disables" HIPS (the traditional alerts).
    Yes we can enable..And when enabled, it showers with notifications right :D
    Most of the times, looking at the application, I'll either "Trust the application" so that that sub-application/application related popups in the sequence are minimized. If it is not exactly trustable, I'll either respond to each (popups except during installations are quite less comparatively) or will trust the sequence for skipping its recurrence.

    If at all the concerned app is risky and I allow some initial actions, the System Watcher+other restrictions+ZETA approach of Kaspersky (and my complementary protections) should further do the guarding.