dmiranda

True that. It may also happen that basilisk (mypal too) runs out of VM, making some extensions crash -the aw snap of chrome, without the notice).

Oh yeah. I will definitely try this, thanks @genieautravail

I will try them, thanks.

I always delete or replace specific items in supernium, preferably using a bat file. Among them, for example, I delete unneeded locale items. One issue with this is the constant change in chrome version (e.g., 124.0.6367.245, as per the last pre-release). My point/question: Is there any way to write a command to delete specific files within the yourpathto\Chrome\124.0.6367.245\... so that it works even if the numbered folder's name changes (from say 124.0.6367.245 to 126.0.6367.245)? Thanks!

I don't mind rar format from sources in the linux-bsd community (including windows ports), though.

Yeah, as it is almost always the case with chrome, little to no choice, until a hack is found. That a specialized detection site such as brobserleaks uses that specific api doesn't mean all sites do. Meaning: flags/switches that are rendered useless in browserleaks may nonetheless be useful somewhere else. Just sayin.

OpenVPN is quite good too, I used to use it before other user here (our youtubedl guy) suggested quad9, a few years back. Since I've gone bareback since 2014 (except for on demand avast/clamwin and until recently malwarebytes), it seems quad9 (and openVPN before) has served me well. Be well!

Yeah, something like that. Same happened to me with a then (2002) equally light AV (NOD32?)following the invasion of Afghanistan, and (Symantec/Norton?) before (1997) when MS started sending its update databases to some intelligence agency a month in advance than it released them to the public. Let me be clear: I currently use quad9 security as systemwide DNS, and their prior equivalents before. I do not quite mind (albeit I don't like it) for big intelligence orgs to have access to my system. Nothing I can do about it, any way. I mind and protect myself from potential intervening on part of the third party subcontractors and the myriad of local agents with access to parts of the "system," and their unchecked capacity to access the backholes left by said "system," for my "safety," mind you.

You've gotta name them first. My queen I named 69! Nope. But looking at logs I get a flurry of UPD 17 calls, which I block by default. That may be it...

--hide-avatar-button switch doens't work in mu thorium set up

For vanilla I just run chrome.exe (renamed for thorium) --user-data-dir=...\Chrome3 --no-first-run --no-default-browser-check. Bat I use for semi-Vanilla: :: Clear and copy Profiles to RAMDISK rmdir /q /s "...\Chrome" mkdir ....\Chrome\ mkdir ...\Chrome\Default\ copy "....\Profiles\Chrome\Local State" "....\Chrome\Local State" copy ",,,,\Chrome\Default\Secure PreferencesV" "...\Chrome\Default\Secure Preferences" copy "....\Chrome\Default\Bookmarks" "...\Chrome\Default\bookmarks" copy "...\Chrome\Default\Favicons" "...\Chrome\Default\favicons" copy "...\Chrome\Default\PreferencesV" "...\Chrome\Default\Preferences" START ....\chrome.exe --user-data-dir=...\Chrome --no-first-run --no-default-browser-check --no-referrers --no-pings --disable-component-update --disable-logging --disable-background-networking --disable-background-mode --allow-outdated-plugins --disable-client-side-phishing-detection --safebrowsing-disable-download-protection --disable-quic --disable-suggestions-service --kiosk-printing --disable-print-preview --load-media-router-component-extension=0 --ssl-version-min=tls1.2 --enable-strict-mixed-content-checking --process-per-site --site-per-process --renderer-process-limit=1 --disable-breakpad --disable-machine-id --block-new-web-contents --disable-crash-reporter --disable-default-apps --disable-domain-reliability --disable-external-intent-requests --disable-file-system --num-raster-threads=4 --enable-gpu-rasterization --ignore-gpu-blacklist --lite-video-force-override-decision --time-zone-for-testing=UTC --use-fake-device-for-media-stream --enable-features="BlockInsecurePrivateNetworkRequests,BlockInsecurePrivateNetworkRequestsForNavigations,BrowserDynamicCodeDisabled,DesktopScreenshots,DisableProcessReuse,ElementSuperRareData,EnableCsrssLockdown,EncryptedClientHello,ForceIsolationInfoFrameOriginToTopLevelFrame,GpuAppContainer,ImprovedCookieControls,IntensiveWakeUpThrottling:grace_period_seconds/10,IsolateOrigins,IsolatePrerenders,IsolateSandboxedIframes,MinimizeAudioProcessingForUnusedOutput,NetworkServiceSandbox,NetworkServiceCodeIntegrity,OpaqueResponseBlockingV01,OriginIsolationHeader,PartitionConnectionsByNetworkIsolationKey,PartitionDomainReliabilityByNetworkIsolationKey,PartitionExpectCTStateByNetworkIsolationKey,PartitionHttpServerPropertiesByNetworkIsolationKey,PartitionNelAndReportingByNetworkIsolationKey,PartitionSSLSessionsByNetworkIsolationKey,PartitionedCookies,PostQuantumCECPQ2,PrefetchPrivacyChanges,ReduceUserAgent,ReducedReferrerGranularity,RendererAppContainer,RestrictGamepadAccess,SandboxExternalProtocolBlocked,ScopeMemoryCachePerContext,SplitAuthCacheByNetworkIsolationKey,SplitCacheByIncludeCredentials,SplitCacheByNetworkIsolationKey,SplitHostCacheByNetworkIsolationKey,StrictOriginIsolation,SubframeShutdownDelay,SuppressDifferentOriginSubframeJSDialogs,ThirdPartyStoragePartitioning,ThrottleForegroundTimers,TurnOffStreamingMediaCachingAlways,TurnOffStreamingMediaCachingOnBattery,WinSboxDisableExtensionPoint,WinSboxDisableKtmComponent" --disable-features="DownloadBubble,TabHoverCards,PowerBookmarksSidePanel,AcceptCHFrame,AdInterestGroupAPI,AllowClientHintsToThirdParty,AllowURNsInIframes,AnonymousIframeOriginTrial,AutofillEnableAccountWalletStorage,AutofillServerCommunication,BrowsingTopics,ClearCrossSiteCrossBrowsingContextGroupWindowName,ClientHintThirdPartyDelegation,ClientHintsDPR,ClientHintsDPR_DEPRECATED,ClientHintsDeviceMemory,ClientHintsDeviceMemory_DEPRECATED,ClientHintsMetaHTTPEquivAcceptCH,ClientHintsMetaNameAcceptCH,ClientHintsResourceWidth,ClientHintsResourceWidth_DEPRECATED,ClientHintsViewportWidth,ClientHintsViewportWidth_DEPRECATED,ComputePressure,ContextMenuPerformanceInfoAndRemoteHintFetching,ConversionMeasurement,CookieDomainRejectNonASCII,CopyLinkToText,CrashReporting,CriticalClientHint,CrostiniAdditionalEnterpriseReporting,CssSelectorFragmentAnchor,DocumentReporting,EnableStructuredMetrics,EnterpriseRealtimeExtensionRequest,ExpectCTReporting,EnableTLS13EarlyData,FedCm,Fledge,FontAccess,GreaseUACH,IdleDetection,InterestGroupStorage,Journeys,LensStandalone,MediaDrmPreprovisioning,MediaEngagementBypassAutoplayPolicies,NavigationRequestPreconnect,NetworkTimeServiceQuerying,NotificationTriggers,OmniboxTriggerForNoStatePrefetch,OptimizationHints,OptimizationHintsFetching,OptimizationHintsFetchingAnonymousDataConsent,OptimizationHintsFieldTrials,Parakeet,Prerender2,PrefersColorSchemeClientHintHeader,PreloadMediaEngagementData,Reporting,RetailCoupons,SCTAuditing,SegmentationPlatform,SignedExchangeReportingForDistributors,SignedHTTPExchange,SpeculationRulesPrefetchProxy,SubresourceWebBundles,TabMetricsLogging,TFLiteLanguageDetectionEnabled,TextFragmentAnchor,SafeBrowsingBetterTelemetryAcrossReports,UserAgentClientHint,UserAgentClientHintFullVersionList,UsernameFirstFlow,UsernameFirstFlowFilling,UsernameFirstFlowFallbackCrowdsourcing,ViewportHeightClientHintHeader,WebNFC,WebOTP,WebSQLInThirdPartyContextEnabled,WebXR,WinrtGeolocationImplementation,RecordWebAudioEngagement" --cipher-suite-blacklist=",0x000A, 0xc013,0xc014,0xe013,0x009c,0x009d,0x002f,0x0035" --component-updater=url-source=0.0.0.0 --crash-server-url=0.0.0.0 --gcm-checkin-url=0.0.0.0 --gcm-mcs-endpoint=0.0.0.0 --gcm-registration-url=0.0.0.0 --google-apis-url=0.0.0.0 --lso-url=0.0.0.0 --oauth-account-manager-url=0.0.0.0 --override-metrics-upload-url=0.0.0.0 --realtime-reporting-url=0.0.0.0 --reporting-connector-url=0.0.0.0 --sync-url=0.0.0.0 --variations-server-url=0.0.0.0 --variations-insecure-server-url=0.0.0.0 --cipher-suite-blacklist="0xc013,0xc014,0x009c,0x009d,0x002f,0x0035" --blink-settings="dnsPrefetchingEnabled=false,preferredColorScheme=1,strictMixedContentChecking=true,strictMixedContentCheckingForPlugin=true,strictlyBlockBlockableMixedContent=true" --isolation-by-default --js-flags=--jitless --hide-avatar-button --close-window-with-last-tab=never --wm-window-animations-disabled --animation-duration-scale=0 --no_registry_writes --use-angle=d3d9 --ignore-gpu-blocklist Hardened bat with static customized apps and such go in images (basically 0-byte files to prevent folder creation, and empty folders to prevent file creation:

I like it very much. I use mostly the same flags and settingsI reported in the supermium thread, now with your streamlined progwrp.dll, and the results are quite impressive:snappy pages, stable multiple tabs, good YT-GM. In xp, though I still can't enter official EU sites (even with vanilla settings -i.e., no flags/customized local state). For instance: https://commission.europa.eu/strategy-and-policy/priorities-2019-2024/stronger-europe-world/global-gateway_en. I use a site to watch movies to learn second languages that used to work fine with all XP browsers, then only with chrome derivatives, then now only with thorium pure vanilla (although allowing for switches --user-data-dir=...\Chrome3 --no-first-run --no-default-browser-check . Overall, great, superior at the time to supermium. Thanks @IDA-RE-things

Ignorance is bliss for them digital flies.

I ceased to use KY back in 2014, around Ukraine's coup d'etat, figuring it was going to go the way of "western" AV (i.e., serving another version of echelon). Back then there was a tool that worked quite well: KAV Removal Tool 1.0.179.0 © 1997-2011 Kaspersky Lab ZAO.

Pack it to the brink with probably unnecessary lists. Back when @Sampei.Nihirawas on XP he helped us keeping it to a minimum. As stated above, the slow startup issue is a sp52 issue, though, and happens even with the minimal list basic lists, as the corresponding sqlite grows and fragments. This is not an issue with mypal, that uses "storage" (can't remember technical name) which can be switched on in sp52 but is too rudimentary to be used with webextensions (assuming you can patch them to use "storage" instead of sqlite)..