Basic Security Spawn's W10 Security 2021

[Ink]

Purchased brand new in 2014.

Fresh installation performed 7th February 2021.

 

[Kongo]

Purchased brand new in 2014.

Fresh installation performed 7th February 2021.

Even tho it's quite natural to use OperaVPN when also using the browsers I still would highly advise against using it. It's not trustworthy at all. Correct me if I'm wrong, but I also think that it is just a proxy and does not encrypt any traffic. Read more about it here:

Opera VPN Review - Data Collection Tool in Disguise?

Opera VPN may be a popular "free" product in the Opera browser, but we found some big problems in this Opera VPN review.

restoreprivacy.com

Also consider setting UAC to always notifiy.
Since you are an admin here on MalwareTips I'm pretty sure that you know the hardening tools of AndyFul. Why are you not using tools like ConfigureDefender or FirewallHardening? Apart from that, a real solid config without too many frills.

 

[harlan4096]

Not an image full system back up? also how about hardening MD AV settings?

 

[FireHammer]

Real nice Configuration(perhaps UAC always notify), thanks for sharing.

 

[Andy Ful]

With this software, you can use Standard User Account. You will not see the difference but the setup will be stronger.

 

[Ink]

Not an image full system back up? also how about hardening MD AV settings?

Turned off the laptop. Spent a good 3 hours troubleshooting this unreliable OS.

 

[Andy Ful]

Turned off the laptop. Spent a good 3 hours troubleshooting this unreliable OS.

Did you consider buying a Chromebook? It should perform all tasks you have mentioned in your setup.

 

[Ink]

Did you consider buying a Chromebook? It should perform all tasks you have mentioned in your setup.

Thanks for the suggestion.

However I don't waste money on unnecessary technology. I can get away with using my Android Phone for most things, except Steam and Office apps.

The laptop hardware still works decent, see specs. Throwing it away will likely to end up in landfill, or recycled if lucky.

Most Chromebooks are encased in cheap plastics and have expiration dates for updates. It will become redundant far sooner than what I currently own.

It's also my secondary laptop.

With this software, you can use Standard User Account. You will not see the difference but the setup will be stronger.

Extra work with creating another user account.

Real nice Configuration(perhaps UAC always notify), thanks for sharing.

I can try this.

 

[enaph]

Simple setup. I like it.

 

[ForgottenSeer 85179]

I'm a little bit shocked that forum's admin setup isn't more hardened.

Or is this laptop only a second device beside e.g. desktop pc?

 

[Ink]

Since you are an admin here on MalwareTips I'm pretty sure that you know the hardening tools of AndyFul. Why are you not using tools like ConfigureDefender or FirewallHardening? Apart from that, a real solid config without too many frills.

I'm a little bit shocked that forum's admin setup isn't more hardened.

Or is this laptop only a second device beside e.g. desktop pc?

Relax! Give me time to set it up, I don't have time to sit at the laptop for 16 hours.

 

[Andy Ful]

...
The laptop hardware still works decent, see specs. Throwing it away will likely to end up in landfill, or recycled if lucky.
...

I suggested Chromebook because you said: "Spent a good 3 hours troubleshooting this unreliable OS". So, Chromebook could be a good solution when buying a new secondary laptop. Your laptop is 6 years old and will not work forever. Anyway, your laptop hardware is good, so I would probably do the same as you.
I do not want to convince you about the usability of Chromebooks. But, there are many Chromebooks built of very solid components (not cheap ones). Most Chromebooks launched in 2020 have 6-8 years Auto Update Expiration date. The price of a good Chromebook will be only slightly lower as compared to a good Windows Laptop - one pays for better performance, battery life, and security (but much worse universality).

...
Extra work with creating another user account.
...

Yes (a few minutes). But, it is worth your effort (only a suggestion).

 

[Ink]

Every 6-8 months something always goes wrong, but I need Windows to use Steam.

 

[Andy Ful]

Every 6-8 months something always goes wrong, but I need Windows to use Steam.

Did you manually install Windows without the laptop firmware? I noticed an important performance improvement when doing so. But, having problems every 6-8 months is not good news. This can indicate that there are some memory problems (RAM, SSD) that cause data corruption. Similar problems can happen when the machine is suddenly powered off (poor power supply).
I manage several computers with a similar setup (most are hardened) and there are 0 problems for several years.

 

[Ink]

Even tho it's quite natural to use OperaVPN when also using the browsers I still would highly advise against using it. It's not trustworthy at all.

I haven't gotten around to installing NordVPN. In general, I don't use them for most tasks. VPN is off.

 

[Kongo]

I haven't gotten around to installing NordVPN. In general, I don't use them for most tasks. VPN is off.

Fair enough, but then I'd recommend not using a VPN in general instead of using OperaVPN which basically is only good for unblocking geo restricted content. Privacy wise it's just worse than not using a VPN at all.

 

[Ink]

Did you manually install Windows without the laptop firmware? I noticed an important performance improvement when doing so. But, having problems every 6-8 months is not good news. This can indicate that there are some memory problems (RAM, SSD) that cause data corruption. Similar problems can happen when the machine is suddenly powered off (poor power supply).
I manage several computers with a similar setup (most are hardened) and there are 0 problems for several years.

Clean install Windows from the ISO file via Media Creation Tool. No firmware is installed manually, as the last updates from the manufacturers site provide for Windows 8.0 only.

Previous issues:
Through 2018 - Multiple power outages, connected over mains.
Late 2019 - Battery cells expanded, removed.
Early 2020 - Registry damage, created a new user account, based on @shmu26's recommendation.
Early 2021 - Unbootable, unknown reason. No Windows installation found via Troubleshooting/CMD Prompt.

As far as I know, these are mostly software problems. I have data backed on my external drive and the rest cloud sync'd.

 

[Andy Ful]

Clean install Windows from the ISO file via Media Creation Tool. No firmware is installed manually, as the last updates from the manufacturers site provide for Windows 8.0 only.

Previous issues:
Through 2018 - Multiple power outages, connected over mains.
Late 2019 - Battery cells expanded, removed.
Early 2020 - Registry damage, created a new user account, based on @shmu26's recommendation.
Early 2021 - Unbootable, unknown reason. No Windows installation found via Troubleshooting/CMD Prompt.

As far as I know, these are mostly software problems. I have data backed on my external drive and the rest cloud sync'd.

The two last events (especially the last) can be also caused by some disk/memory corruption. I assume that you did not use 3rd party tools to clean up the disk, Windows Registry, etc.
Did you check the reliability of your SDD and RAM modules? After 6 years they can produce some problems.

 

[sepik]

I can share my experience. Couple of month ago, my friends' windows 10 suddenly started to behave stranglely, cortana did not work, cant open explorer etc strange anomalies. We scanned the system with various AV tools, no infection. SFC etc DISM stuff did not finish at all. After all, we ended to re-install windows 10. The same strange things happened. The SSD was 7 years old. That was the culprit. We ended to buy the new SSD system drive. All well now

 

[Jan Willy]

Why not use software to test the health of the SSD, e.g. Crystal Disk Info?