-{ Quote: "No suprise as sandboxie is like prison,its very hard to escape with armed guards.;D" }-
I still go with AV's just in case. You never know man. ;D

-{ Quote: "Back to EAM + OA. ;D
Got licenses for both! :thumb:" }-
I thought you always used that combo :what: ;D ;D 8)

-{ Quote: "I thought you always used that combo :what: ;D ;D 8)" }-
Yeah, i always use it but a few days ago my licenses expired so i gave KIS and Norton 360 a try, both were good performance wise. ;D

My curiosity for security software days have been gone a long time ago.
I think i've tried almost all security software discussed here. ::)

-{ Quote: "I still go with AV's just in case. You never know man. ;D" }-
I was running just DeepFreeze but then i was thinking what will stop damage to my network or puter before reboots and until then Malware can be doing cartwheels..I figured I would trial WSA AV and so far so good and Problems I had in the past seem to be worked out.I also went back to Shadow Defender since I have a license for it.

Sandboxie is a safer bet then system wide vitualization IMO because it isolates at the browser and internet facing apps and Many get away with out resident scanners because of this and I have to for years, but as you say you never know nothing is invincible.

Stopped using Sandboxie in exchange for Security Essentials Win Patrol and Hostsman..

Gonna miss Sandboxie..

99% of the time I am using this:

Runing on Windows 7 x64
KIS2012; Macrium Reflect Complete; Periodic (free) MalwareBytes scan; NortonDNS(free); Tunnelbear VPN(paid); Sandboxie browser on demand (for instance when on public network)

I used to use bit torrent or azure/vue within a virtual machine on a desktop (for downloading movies/tv shows), but got fed up with waiting/having to be paranoid, so now use one machine for occasional graboid use, and haven't had a problem. There also use superantispyware (paid)

Other than the graboid, habitually I don't go sticking my head above any parapett.

I am more worried about network exposure when travelling / don't have any file/folder sharing enabled or network discovery. I have bios/hard disk passwords, and use axcrypt to encrypt some files/folders rather than use bit locker (think it slows pc down too much); and use xsecrets for their cloud password storage, which lets me change passwords more frequently without worrying about forgetting them. I know its cloud but had got in the habit of using a few similar passwords for everything which was an accident waiting to happen.

Back to my second favorite snapshot
Avast free
Comodo FW no D+
SpyShelter free
WinPatrol Plus
Sandboxie

For my new laptop (Latitude D520, Core Solo T1350, 1.5GB ram) I use light setup:

Comodo Dragon (with Adblock, MyWot and LastPass extensions)
Norton DNS
Zemana AntiLogger
Keyscrambler
Avast! SecureLine (for public Wifi spots)

-{ Quote: "Still with only Sandboxie..." }-

Add EMET and that's pretty much what my setup would look like running Win7 too. I'd use the native FW and maybe MSE too since I hear you don't even notice it (light). Unfortunately it doesn't play as nicely with XP. I love the minimalist approach.

The only problem is I really got used to liking a HIPS (D+ to be precise). Can anyone recommend a stand-alone HIPS comparable to D+, that's light, to compliment the Win7 firewall?

Windows XP Pro SP3 (32-bit) - Hardened as all hell, default deny SRP, LUA, Unsimple file sharing
NAT router w/ SPI
Windows FW - No exceptions, hardened from termination via GP edit
Comodo FW - Custom Policy, stealth all ports / D+ - Safe Mode, Untrusted, trusted vendor list removed
Comodo Secure DNS
Sandboxie - Paid
Macrium Reflect Standard
Keyscrambler Premium
Open VPN - IVPN (2 hops) + Mullvad
Firefox - Hardened as hell - NS, ABP, Ghostery, Request Policy, CSlite, WOT, BetterPrivacy, HTTPS-Everywhere
Ixquick search engine - SSL forced, proxy used on occasion w/VPN's

On demand scanners - Hitman Pro, MBAM, SAS, CCE, Kaspersky TDSS Killer, Bitdefender (online)

Safe browsing habits

... and it'll probably stay this way until they stop supporting XP. I love this setup and see no reason to change it. Very snappy on only 1 GB of RAM, and effective.

-{ Quote: "Back to my second favorite snapshot
Avast free
Comodo FW no D+
SpyShelter free
WinPatrol Plus
Sandboxie" }-
Joe how is avast running with sandboxie and comodo? Last time I used the same combo avast slowed down my browsing on firefox sandboxed.

-{ Quote: "Joe how is avast running with sandboxie and comodo? Last time I used the same combo avast slowed down my browsing on firefox sandboxed." }-
As i'm using only the FW part,i can say that they're working super smooth and fast.Although i have Firefox installed,i use it very rarely and i didn't noticed any obvious slowdowns.My primary browser is Chrome and it's lightning fast,same for Comodo Dragon.
Quick update:beside a longer delay for starting,Firefox doesn't seems slowed down.

-{ Quote: "I was running just DeepFreeze but then i was thinking what will stop damage to my network or puter before reboots and until then Malware can be doing cartwheels..I figured I would trial WSA AV and so far so good and Problems I had in the past seem to be worked out.I also went back to Shadow Defender since I have a license for it.
" }-
Hahahaha yeah, i feel naked without an AV. :-[ ;D

-{ Quote: "
The only problem is I really got used to liking a HIPS (D+ to be precise). Can anyone recommend a stand-alone HIPS comparable to D+, that's light, to compliment the Win7 firewall?" }-

I also prefer HIPS to other blacklisting type apps. You can try Malware Defender (http://labs.360.cn/malwaredefender/index.html) and see if you like it.

-{ Quote: "As i'm using only the FW part,i can say that they're working super smooth and fast.Although i have Firefox installed,i use it very rarely and i didn't noticed any obvious slowdowns.My primary browser is Chrome and it's lightning fast,same for Comodo Dragon.
Quick update:beside a longer delay for starting,Firefox doesn't seems slowed down." }-
Thanks joe. Must just be me. I does take a while for me to open firefox. Part of which I know is sandboxie as well. It roughly takes a 7 count to open with avast and about 4 seconds without. Not too much of a big deal but enough to notice. I guess I could try chrome or dragon if I was looking to start a quick session.

djohn=Dark Shadow=Dave

He's going incognito.

yeap:)

-{ Quote: "Thanks joe. Must just be me. I does take a while for me to open firefox. Part of which I know is sandboxie as well. It roughly takes a 7 count to open with avast and about 4 seconds without. Not too much of a big deal but enough to notice. I guess I could try chrome or dragon if I was looking to start a quick session." }-
You're welcome.Yep,you should try kj.About Firefox,I know how it is when you're get used to a browser,it's hard to let go and go for another one.But damn...Chrome and Dragon are so fast... ;)

Trying out the light version, no on-demand etc.

Running W7 Professional 64, EMET (maximum security settings), Restricted User, SRP, UAC max setting, Gpedit.msc -> this post (http://www.wilderssecurity.com/showpost.php?p=2056033&postcount=5) , Secunia PSI, Windows Firewall, Avira Free for on demand scanning, Spywareblaster. And of course, I try to install only the software I really need. Also have disabled a bunch of services. For backup purpose I use Clonezilla.

System is incredibly fast (on i3, 4 gb ram, 500 gb 5400 rpm disk) and responsive.

trying out Jetico Personal Firewall v2.0:thumb:

@ j,Yea man out with the old in with the new and speaking of out so is WSA what a disaster.

Didn't like WSA dave?

anyone here run roboscan IS free? what do you think?

@Kjdemuth, WSA flaged DeepFreeze and quarantine it,so I restored it to find out the file was missing to open the gui to thaw from a frozen state. DF frozen does not allow restore or last know good config in safe mode and even a recovery management kicked me back to windows frozen and I had to reformat all over.A false positive that nuked my system so I will never again run a resident scanner, I rather take my chances with nothing.DeepFreeze runs great when nothing damages it and if it does, man is it one tough program outside of format to defeat.

On a good note all the install and removing left overs are gone with registry nice and tidy and a lot faster system.:thumb:

-{ Quote: "DF frozen does not allow restore or last know good config in safe mode and even a recovery management kicked me back to windows frozen and I had to reformat all over." }-

What about Macrium Reflect backup image? Wouldn't restore save the day?

You're right about RT scanners. Sometimes, they can do more harm than good.

lol whats up with all thawing and freezing going on here.. reminds me of chicken..just saying:argh:

-{ Quote: "@Kjdemuth, WSA flaged DeepFreeze and quarantine it,so I restored it to find out the file was missing to open the gui to thaw from a frozen state. DF frozen does not allow restore or last know good config in safe mode and even a recovery management kicked me back to windows frozen and I had to reformat all over.A false positive that nuked my system so I will never again run a resident scanner, I rather take my chances with nothing.DeepFreeze runs great when nothing damages it and if it does, man is it one tough program outside of format to defeat.

On a good note all the install and removing left overs are gone with registry nice and tidy and a lot faster system.:thumb:" }-

You were using Shadow Defender a couple of days ago just saw now that you are back to DeepFreeze again.Why did you remove SD?

-{ Quote: "What about Macrium Reflect backup image? Wouldn't restore save the day?

You're right about RT scanners. Sometimes, they can do more harm than good." }-

To be honest I did not try that but thought to start with clean format and start fresh with everyhting.

-{ Quote: "You were using Shadow Defender a couple of days ago just saw now that you are back to DeepFreeze again.Why did you remove SD?" }-
Yes I am going back in fourth on my system between the two programs SD - DF.I do still have SD on my kids puter and its working great.I do like the convenience better of SD but still like DF and its being developed and very very stable.O unless a AV program decides to snack on its important files.

Added Anti-Excutable.:thumb:

Anti-Excutable.:thumb:

AE and DF are compatiable and there playing nice together.What can be possiable to ever get through these two programs together.

-{ Quote: "AE and DF are compatiable and there playing nice together.What can be possiable to ever get through these two programs together." }-

If you run a linux system on boot and format everything :argh:

Yes that wiill do it linux. I had a little taste of linux distros couple yrs back Dual boot Vista - Linux and Some I ran off CDs.
Its not for me anymore but I rather run OSX and going to in a couple of weeks.I went looking in a pawn shop today to see what they had and found a used Macbook 2010 With Snow leopard,I could not believe the condition,it is pristine condition and everything seems to work well.It's one of the last carbonite white macs before going over to the Aluminum body.I put it on layaway for a couple of weeks.

Trying out PCAV Pro again. Seems to being working nicely. No slow downs. No weird error's. I don't care so much about the scanning speed. I don't scan with it anyways. HMP is set to scan daily. I should have got a WSA license when it was really cheap. It would have been a great addition instead of PCAV. I'm happy at the moment with my setup. I might flip flop between this and NVT ERP again. My mainstay though is comodo firewall and sandboxie. Anything else is optional.
Rollback RX got the boot. I don't like the fact that you can't partition you HD. Tried to do that yesterday and it F'd up my system partition. Since I had just wiped my HD it wasn't a big deal just to do it again.

Went back to Sandboxie and Windows Defender.. thought part of the problems i was having may have been due to Sandboxie... come to find out my tower needed cleaning out it was overheating.. :argh:

Trying out Emisoft Anti-malware combined with Outpost Pro firewall.

Great combination so far although they were having a mini vendetta with each other at the start until exceptions were made :p

DefenseWall Personal Firewall 3.18
Shadow Defender 1.1.0.325

Macrium Reflect
System Explorer
SeconfigXp
AdMuncher

DrWeb CureIt
Malwarebytes
SpyReveal
GMER

OpenDNS
Opera

Still Hooked on Faronics.;D

Good Morning ! Vipre I.S.2012 ...WSA Essentials...Zemana Anti-Logger. Sincerely...Securon

Added NOD32 back to my setup. So, I'm back to my RT AV setup :)

Still using what's in my sig. Feeling very light and fast. :)

-{ Quote: "Still using what's in my sig. Feeling very light and fast. :)" }-
Does keepass integrate with your browser????

-{ Quote: "lol whats up with all thawing and freezing going on here.. reminds me of chicken..just saying:argh:" }-
Freezing reminds you of chicken? K where do you live, in the North Pole?;D I like my chicken freshly cooked. ;)

-{ Quote: "Does keepass integrate with your browser????" }-
What do you mean by integrate? If you mean if KeePass offers things like LastPass does automatically in a browser then there is an add-on in Firefox called KeeFox. That would do the trick. I use KeePass alone. I just use it's autotype feature and all goes smoothly. ;)

-{ Quote: "Still Hooked on Faronics.;D" }-

Please correct the Typo in your signature.
Is Anti-Executable light on the system?

-{ Quote: "What do you mean by integrate? If you mean if KeePass offers things like LastPass does automatically in a browser then there is an add-on in Firefox called KeeFox. That would do the trick. I use KeePass alone. I just use it's autotype feature and all goes smoothly. ;)" }-
That's what I was curious about..Thanks..Do you know if there's an add-on for chrome?

-{ Quote: "Please correct the Typo in your signature.
Is Anti-Executable light on the system?" }-
Typo correct thanks.Yes AE is light.

-{ Quote: "That's what I was curious about..Thanks..Do you know if there's an add-on for chrome?" }-
Oh and just for the facts, you've got to have KeePass in your pc to use KeeFox. ;) And I do not use Chrome. So don't know if it has a similar add-on.:(

Added...

Kingsoft Antivirus 2012 (Real-Time)
Comodo Firewall (Real-Time)

Comodo Cleaning Essentials (On-Demand)
Spybot S&D 2 - Testing it (On-Demand)

done with Jetico Personal Firewall v2.0 too much pop ups:)

added VIPRE Internet Security 2013 :thumb:

How is it J?

Something different for a change j 8)

-{ Quote: "Something different for a change j 8)" }-
Yup he is always on the go. ;D

it is :thumb: :thumb: so far so good:thumb: :thumb:

-{ Quote: "it is :thumb: :thumb: so far so good:thumb: :thumb:" }-
Is it sluggish?

Added sbie and just gone AV- less. Using what's in my sig. Am I protected enough?

-{ Quote: "Added sbie and just gone AV- less. Using what's in my sig. Am I protected enough?" }-

It looks good to me :)

-{ Quote: "It looks good to me :)" }-
Ah thx Tom. I'm also backing up my drives with Drive Snapshot. Oh and I'm using firefox with ABP and Adobe's Shockwave flash player as the only extensions and plugins.

-{ Quote: "Ah thx Tom. I'm also backing up my drives with Drive Snapshot. Oh and I'm using firefox with ABP and Adobe's Shockwave flash player as the only extensions and plugins." }-

Yes, backup is a must. Maybe you can add EMET also?

Running as Admin on Windows7 x32 ultimate with no third party real time security Changes/updates in orange

Network protection
Wireless Router with WPA2, SPI with Flood/Poisoning/Spoofing protection and Norton DNS (malware). ISP service includes email scanner and spam-filter. Using Windows 7 internal FireWall both for inbound and outbound.

Low Rights Browsing and Privacy Protection
Using Chrome (in Program Files) with Chrome sandbox (AppContainer), Flash and PDF PPAPI (sandboxed) plug-ins and build in safe browsing website blacklisting and download reputation scoring. Block indirect and HTTP cookies, allow HTTPS cookies, block javascript (except from *.NL and *.COM), click to play flash, installed Referer Control extension only (allow only HTTPS) with Windows7 skin.

Threat gate protection
Running browser, mail, media player with EMET 3.5 memory protection. Added an ACL deny execute for everyone on all threat gate folders (browser download, e-mail and media player). Used Group policy hardening to deny execution from USB and never execute autoruns of USB sticks (and lot's of other GPO hardening).

AppLocker protection
Users and Admins are allowed to only execute signed executables and DLL's from safe places (Program Files and Windows). Admins are allowed to run installers from Microsoft and run scripts in Windows directory.

On demand
- Running CCleaner through scheduled task (/run /tn) to evade UAC pop-up
- HitmanPro Free (cloud) scan

-{ Quote: "Yes, backup is a must. Maybe you can add EMET also?" }-
EMET does little in a XP system. And I do not like to use EMET even in my Win 7 system. >:(

-{ Quote: "EMET does little in a XP system. And I do not like to use EMET even in my Win 7 system. >:(" }-

How comes? Do you have problems with certain software when it's under EMET control?

-{ Quote: "Running as Admin on Windows7 x32 ultimate with no third party real time security Changes/updates in orange

Network protection
Wireless Router with WPA2, SPI with Flood/Poisoning/Spoofing protection and Norton DNS (malware). ISP service includes email scanner and spam-filter. Using Windows 7 internal FireWall both for inbound and outbound.

Low Rights Browsing and Privacy Protection
Using Chrome (in Program Files) with Chrome sandbox (AppContainer), Flash and PDF PPAPI (sandboxed) plug-ins and build in safe browsing website blacklisting and download reputation scoring. Block indirect and HTTP cookies, allow HTTPS cookies, block javascript (except from *.NL and *.COM), click to play flash, installed Referer Control extension only (allow only HTTPS) with Windows7 skin.

Threat gate protection
Running browser, mail, media player with EMET 3.5 memory protection. Added an ACL deny execute for everyone on all threat gate folders (browser download, e-mail and media player). Used Group policy hardening to deny execution from USB and never execute autoruns of USB sticks (and lot's of other GPO hardening).

AppLocker protection
Users and Admins are allowed to only execute signed executables and DLL's from safe places (Program Files and Windows). Admins are allowed to run installers from Microsoft and run scripts in Windows directory.

On demand
- Running CCleaner through scheduled task (/run /tn) to evade UAC pop-up
- HitmanPro Free (cloud) scan" }-

How do you know what policy rules to make? Can they be done on Windows 7 Pro and Home Premium?

Has any tried Geswall lately.I recently tried it with comodo dragon and it goes nuts saying I am under attack just by openning the browser on windows 7 32bit.Maybe its something with chrome.Actually IE9 is doing it as well, maybe something broke it in windows 7.

-{ Quote: "Running as Admin on Windows7 x32 ultimate with no third party real time security " }-

Good man! :thumb: ...except for the "Running as Admin" part :ouch: :P

...but I know you'll be perfectly okay :)

btw, what's UAC set at?

-{ Quote: "How comes? Do you have problems with certain software when it's under EMET control?" }-
Yeah lots of apps. I also had slowdowns. I've since kept my distance from EMET and do not intend on reducing the distance any soon.

-{ Quote: "Yeah lots of apps. I also had slowdowns. I've since kept my distance from EMET and do not intend on reducing the distance any soon." }-
My comodo browser is a little flaky at times with EMET.I have it cranked on maxiumum.

Yeah, it made one of my program not run and EMET was the last thing I found out to be the problem. :-[

Added ScriptNo for Chrome. Figured most drive-by-downloads will come from scripts so why not block them? May get rid of an AV and just scan downloads with HitmanPro.

Does that seem secure assuming I left everything else the same?

-{ Quote: "Added ScriptNo for Chrome. Figured most drive-by-downloads will come from scripts so why not block them? May get rid of an AV and just scan downloads with HitmanPro.

Does that seem secure assuming I left everything else the same?" }-
Yeah sure my friend. You'll be well protected. With AG and HMP you don't need an AV and heck you wouldn't even need ScriptNo as Chrome is already sandboxed.

Just added Online Armor. Just couldn't stay away from it for long. ;)

-{ Quote: "Just added Online Armor. Just couldn't stay away from it for long. ;)" }-

I thought about a HIPS FW but figured it would just annoy me, and be redundant with AppGuard. And drive-bys can't penetrate Google's sandbox?? If that's the case, that means I could only be infected by running malware manually?

-{ Quote: "I thought about a HIPS FW but figured it would just annoy me, and be redundant with AppGuard." }-
Yeah HIPS FW is probably redundant with your AG. I just love a HIPS/AE FW combo. Gives me a sense of immense control over my system. Thus a peace of mind. :)

-{ Quote: "If that's the case, that means I could only be infected by running malware manually?" }-
An exploitation of the sandbox? And many more ways! I'm no expert but you will always find lots of threads discussing how many ways you can be infected even with such prevention measures. I would advise not to underestimate your opponent- malware.;D

-{ Quote: "Added ScriptNo for Chrome. Figured most drive-by-downloads will come from scripts so why not block them? May get rid of an AV and just scan downloads with HitmanPro.

Does that seem secure assuming I left everything else the same?" }-

Isn't ScriptNo buggy? I've seen a lot of reports at Wilders from users saying that it doesn't block scripts at first; you actually need to reload the page... which would be pointless. You should be careful and test whether or not it blocks script when you first visit a page, even if it says it's blocking. Visit a page that you know it normally requires JavaScript, and if it that functionality of the page doesn't work, then it probably means ScriptNo did it's job. But, even then, don't be 100% confident that it will work all the time.

It's stuck using Asynchronous APIs so it can't stop the page from loading while it works. So the first time it's likely that you'll get Javascript going through but the second time you visit the page it probably won't.

Bought a second laptop yesterday,and "his highness" received as guards:
Avast free
OA free.I will think about adding SBIE,just want to see and feel how's going without it.
The other laptop:
PCAV pro
CIS FW D+
SBIE.

Rollback Rx|Shadow Defender|Sandboxie|Windows 7 firewall

Other than imaging,do i need to add anything further to my setup?

How to add right click unblock execute only trick to a particular folder?(The one suggested by Kees)

nothing changed here except that I created a new backup with Macrium. Still the good ol' setup. AV's become more and more pointless to me!8)

i like your security set up:thumb:

-{ Quote: "It's stuck using Asynchronous APIs so it can't stop the page from loading while it works. So the first time it's likely that you'll get Javascript going through but the second time you visit the page it probably won't." }-

Well, the first time is the only time that matters - when the user first visits the web page. If there's a script to load exploit code, then it will work at first; it doesn't matter if the user reloads the page. ;D

-{ Quote: "It's stuck using Asynchronous APIs so it can't stop the page from loading while it works. So the first time it's likely that you'll get Javascript going through but the second time you visit the page it probably won't." }-

If that's true it's useless lol. However, I think it does block on the first time, because I've had sites messed up the first time visiting them after installing ScriptNo, and they are like that until I allow the script. For example YouTube is messed up right now and it's the first time I've visited it since installing ScriptNo.

Maybe someone could test it against malicious JavaScripts in a VM to see for sure if it does block the first time or not?

Does Online Armor lagg your computer? I am hesistant to use it because of that before :'(

Added Kingsoft AV to the mix. Liking it. Nice and light and has a lot of features. Now I just need to find out what kind of detection it has.

Good Evening ! Re-installed K.I.S.2012...and so far running nimble and light...alongside WSA Essentials and Zemana Key-Logger. Sincerely...Securon

-{ Quote: "Added Kingsoft AV to the mix. Liking it. Nice and light and has a lot of features. Now I just need to find out what kind of detection it has." }-
I heard they use avira engine..anyone can confirm?????

Webroot Essentials, Malwarebytes real-time version, Windows firewall + router firewall, Avira Antivirus Premium 2012

August 8, 2012 (http://www.wilderssecurity.com/showpost.php?p=2085649&postcount=24863) - Updated , Added , Removed

Windows 7 Ultimate SP1 x64 - SUA & Applocker (MrBrian Ruleset)

(UAC: MAX , WD: OFF, FW: OFF, DEP: ON, SEHOP: ON, EMET 3.0: MAX)

Network
Three Linksys WRT54G Routers (DD-WRT Firmware)
Netgear PowerLine AV 500 Adapters
Wired Cat5e Connection between all 3 Routers
WPA2-PSK AES Encryption
SPI Firewall Enabled
OpenDNS Configuration
Resident
Online Armor Premium 5.5.0.1617 Beta (Paid)
Emsisoft Anti-Malware 7.0.0.4 Beta (Paid)
Sandboxie 3.81.03 Beta (Paid)
- Sandboxie Container Folder on RAMDisk
KeyScrambler Premium 2.9.1.0 (Paid)
On-Demand
Active@ Disk Image 5.2.5* (Paid)
VMWare Workstation 8.0.4 build-744019 (Paid)
Hitman Pro 3.6.1.163
Browser, Immunization, Tweaks
Firefox 15.0b3 (Fanboy's Blocking Lists via ABP, WOT, BetterPrivacy, TrackMeNot, Gmelius)
- Firefox Profile Folder on RAMDisk
LastPass 2.0.0 Premium (FireFox)
Bluetack Safepeer SPLists (via OA for P2P Only)
Spyware Blaster 4.6 (All Protection Enabled + Customblocking.txt)
BlackViper's Services Registry Files (Safe W7 Ultimate 64 Start)
Ultimate Windows Tweaker 2.2 (Customized)
SpeedGuide.net Vista TcpIp Patch 1.5
Active Disk Image (Weekly)

dja2k

-{ Quote: "Rollback Rx|Shadow Defender|Sandboxie|Windows 7 firewall

Other than imaging,do i need to add anything further to my setup?
" }-
Yeah. You need KeePass, HitmanPro and replace win 7 fw with a HIPS fw preferably Online Armor or Comodo.

-{ Quote: "Does Online Armor lag your computer? I am hesistant to use it because of that before :'(" }-
It absolutely does not. ;) It is very light and fast.

-{ Quote: "August 8, 2012 (http://www.wilderssecurity.com/showpost.php?p=2085649&postcount=24863) - Updated , Added , Removed

Windows 7 Ultimate SP1 x64 - SUA & Applocker (MrBrian Ruleset)

(UAC: MAX , WD: OFF, FW: OFF, DEP: ON, SEHOP: ON, EMET 3.0: MAX)

Network
Three Linksys WRT54G Routers (DD-WRT Firmware)
Netgear PowerLine AV 500 Adapters
Wired Cat5e Connection between all 3 Routers
WPA2-PSK AES Encryption
SPI Firewall Enabled
OpenDNS Configuration
Resident
Online Armor Premium 5.5.0.1617 Beta (Paid)
Emsisoft Anti-Malware 7.0.0.4 Beta (Paid)
Sandboxie 3.81.03 Beta (Paid)
- Sandboxie Container Folder on RAMDisk
KeyScrambler Premium 2.9.1.0 (Paid)
On-Demand
Active@ Disk Image 5.2.5* (Paid)
VMWare Workstation 8.0.4 build-744019 (Paid)
Hitman Pro 3.6.1.163
Browser, Immunization, Tweaks
Firefox 15.0b3 (Fanboy's Blocking Lists via ABP, WOT, BetterPrivacy, TrackMeNot, Gmelius)
- Firefox Profile Folder on RAMDisk
LastPass 2.0.0 Premium (FireFox)
Bluetack Safepeer SPLists (via OA for P2P Only)
Spyware Blaster 4.6 (All Protection Enabled + Customblocking.txt)
BlackViper's Services Registry Files (Safe W7 Ultimate 64 Start)
Ultimate Windows Tweaker 2.2 (Customized)
SpeedGuide.net Vista TcpIp Patch 1.5
Active Disk Image (Weekly)

dja2k" }-
Nice setup. :thumb:

-{ Quote: "Nice setup. :thumb:" }-
Thanks! And KelvinW4, here is a screen shot of what Online Armor is using.

Yeah, Its not alot but the system somehow felt sluggish. I will try again;)

Rollback Rx|Shadow Defender|Sandboxie|Windows 7 firewall|Lastpass

Added Lastpass to my setup.

Added Emsisoft Anti-Malware (just had the Mamutu part installed before). Removed Emsisoft Emergency Kit. Removed EMET. Unchecked Hitman Pro's scan at startup. Still have scheduled scans with MBAM turned on.

-{ Quote: "Added Emsisoft Anti-Malware (just had the Mamutu part installed before). Removed Emsisoft Emergency Kit. Removed EMET. Unchecked Hitman Pro's scan at startup. Still have scheduled scans with MBAM turned on." }-
Ah great going. :thumb: I think it's a bad move to uncheck HMP's startup scan though. Also you're missing out the good website and realtime malware protection of MBAM. Unless you have very low RAM you should have no slowdowns with MBAM and it will run very smooth. Also I'd suggest adding OA for all-round protection with EAM. :)

Added MBAM Pro. Keeping it in realtime. ;)

Currently running:
AVG Anti-Virus Free 2012
avast! Free Antivirus 7
Microsoft Security Essentials 4
Panda Cloud Antivirus Pro 2.0 (Firewall OFF)

On 4 different machines of course, all running Windows XP Pro SP3 with Windows Firewall and No Autorun.

Kinda like different things about each one but they all work great.

Mbam Pro:thumb: :thumb: in Real Time;)

New set up. Sandboxie Full Time and Shadow Defender Full Time.= 0.00 percent chance for malware.However, the malware does has my sympathy.:-*

-{ Quote: "New set up. Sandboxie Full Time and Shadow Defender Full Time.= 0.00 percent chance for malware.Howvere the malware does has my sympathy.:-*" }-
LOL! WTG! Sandboxie is back. :thumb:

-{ Quote: "LOL! WTG! Sandboxie is back. :thumb:" }-
Yea that other thread and my lost license made me really start missing sandboxie.:thumb:

You guys running MBAM Pro protection module are definitely benefiting from some solid protection. Do you also enable website blocking? I do! :thumb:

-{ Quote: "Yea that other thread and my lost license made me really start missing sandboxie.:thumb:" }-
Ha ha... it was calling out to you. 8)

website blocking for sure:thumb: :thumb:

-{ Quote: "website blocking for sure:thumb: :thumb:" }-
MBAM = malware monster and it gets stronger by snacking on malware.I just hope it never grows to chunky.

yeap:)

Old XP SP3 32 Bits

Sandboxie
NoScript

New W7 32 Bits

Sandboxie
NoScript
UAC, to the max.

Trying UAC for the first time. I thought the prompts were gonna bother me but they really don't. I am getting prompts when I open Task manager, Event log, CCleaner and the old version of KMPlayer that I use for watching videos. I wont be using this machine to watch videos so I think its going to be OK to use UAC.

Bo

Running Panda Cloud Pro. :) Light as a feather~

-{ Quote: "Ah great going. :thumb: I think it's a bad move to uncheck HMP's startup scan though. Also you're missing out the good website and realtime malware protection of MBAM. Unless you have very low RAM you should have no slowdowns with MBAM and it will run very smooth. Also I'd suggest adding OA for all-round protection with EAM. :)" }-

Good advice, Amit, and I probably should take it, except browsing and downloading are my 2 main vulnerabilities and Sandboxie has browsing covered, and also the download folder where things sit sandboxed until getting a good going over with a scanner or two. I figured since I was using Mamutu and EEK anyway, I might as well use EAM instead. But to tell you the truth even that feels like over-doing it, since scans never find anything getting past Sandboxie, and if something did I have a system image waiting on an external hard drive.

I think Online Armor is great, I have a license for it, and wonder about using it (or Privatefirewall) more than any other security question I have, but the Windows 7x64 firewall along with a router seems to be doing the job and very quietly.

-{ Quote: "Old XP SP3 32 Bits

Sandboxie
NoScript

New W7 32 Bits

Sandboxie
NoScript
UAC, to the max.

Trying UAC for the first time. I thought the prompts were gonna bother me but they really don't. I am getting prompts when I open Task manager, Event log, CCleaner and the old version of KMPlayer that I use for watching videos. I wont be using this machine to watch videos so I think its going to be OK to use UAC.

Bo" }-

Nice set up from a trusted gentleman!:thumb:

My Mini Tool Box, I'm sure I missed a few things though.

ON DEMAND SCANNERS

MALWAREBYTES PRO
EMSISOFT ANTI MALWARE
HITMAN PRO
NORMAN MALWARE CLEANER
DR WEB CURE IT
MACAFEE AVERT STINGER
SPYWARE TERMINATOR

AV
KASPERSKY
BITDEFENDER
G-DATA
AVIRA
PANDA CLOUD
WEBROOT
NORTON
KINGSOFT CLOUD
COMODO IS
AVAST
AVG
MSE
SOPHOS
IKARUS
MACAFEE
DR WEB
VIPRE
NETWORK MALWARE CLEANER
TRUSTPORT
CRYSTAL SECURITY
ANVI SMART DEFENDER
IMMUNENT
VIRUSBUSTER
ESET
TREND MICRO
ROBOSCAN
F-SECURE
CLAM AV
BULLGUARD


SYSTEM DIAGOSIS
HIJACK THIS
HIJACK HUNTER
OTL
DDS
HIJACK FREE
ATTACK SURFACE ANALYZER
MINI TOOL BOX


MALWARE CLEANUP TOOLS
COMBOFIX
ROOTKILL
KASPERSKY REMOVAL TOOL
MALWARE DEFENDER
SOPHOS REMOVAL TOOL
COMODO CLEANING ESSETIALS
REGRUN REANIMATOR
UNHACKME
ROOTKIT REVEALER
ROOT REPEAL
AVZ ANTI ROOTKIT
EMSISOFT EMERGANCY KIT
REMOVEIT PRO
NORTON POWER ERASER
ANTI TROJAN PLUS
SPYDDL REMOVER
F-SECURE EASY CLEAN
MALWARE REMOVER
SPYBOT S&D
ULTRA VIRUS KILLER
ROUGE KILLER
FIXEXE
GMER
KASPERSKY TDSSKILLER
VBA ANTI ROOTKIT

USB
BITDEFENDER USB IMMUNIZER
USB OBLIVION


FIREWALL
DEFENSEWALL
COMODO FW+D
ONLINE ARMOR
PRIVATEFIREWALL
TINYFIREWALL
fireBwall
ZONE ALARM
OUTPOST
JETICO
GESWALL
SPYSHELTER

MALWARE PREVENTION
SANDBOXIE
EMET
APPGUARD
VOODOOSHEILD
EXERADARPRO
XP ANTI SPY
WINPATROL

VIRTUALIZATION
VIRTUAL BOX

CLEANUP
CCLEANER + CCENHANCER
JETICO BCWIPE
ERASER
BLEACHBIT
JETCLEAN
COMODO CLEANING
AUSLOGICS REGISTRY CLEANER
WISE DISK CLEANER
WISE REGISTRY CLEANER

DISK WIPING
JETICO BC TOTAL WIPE
DBAN

DEFRAG
DEFRAGGLER
AUSLOGICS DEFRAG
SMART DEFRAG


RESCUE CD
COMODO
F-SECURE
KASPERSKY
DR WEB
BITDEFENDER
AVG
AVIRA

ANTIKEYLOGGING
KEYSCRAMBLER
ZEMANA ANTI LOGGER


What do you think? If anyone needs reviews of any software listed I'm glad to help. I just listed the AV's don't use them all!

-{ Quote: "I just listed the AV's don't use them all!" }-

You better not! Your system would probably never boot, if you manage to install them all :)

Otherwise it's a nice list.

-{ Quote: "Nice set up from a trusted gentleman!:thumb:" }-
RR, thanks for the kind words.

Greetings

Bo

-{ Quote: "New set up. Sandboxie Full Time and Shadow Defender Full Time.= 0.00 percent chance for malware.However, the malware does has my sympathy.:-*" }-

Very good setup

-{ Quote: "You guys running MBAM Pro protection module are definitely benefiting from some solid protection. Do you also enable website blocking? I do! :thumb:" }-
Of course I keep website blocking module enabled. MBAM is absolutely light and fast(makes old machines with low RAM sluggish though because of the relatively high RAM that MBAM consumes for an anit-malware). So why not? It's protection features are totally and exceptionally solid. :D

-{ Quote: "Old XP SP3 32 Bits

Sandboxie
NoScript

New W7 32 Bits

Sandboxie
NoScript
UAC, to the max.

Trying UAC for the first time. I thought the prompts were gonna bother me but they really don't. I am getting prompts when I open Task manager, Event log, CCleaner and the old version of KMPlayer that I use for watching videos. I wont be using this machine to watch videos so I think its going to be OK to use UAC.

Bo" }-
How would you know if the file you just downloaded is safe to recover from the sandbox? I mean you don't use HMP or MBAM like stuffs. Nor do you use multi-AV scanning online services like VirusTotal. :what: :doubt:

-{ Quote: "Very good setup" }-
Thanks.

-{ Quote: "How would you know if the file you just downloaded is safe to recover from the sandbox? I mean you don't use HMP or MBAM like stuffs. Nor do you use multi-AV scanning online services like VirusTotal. :what: :doubt:" }-
That's why I keep Hitman Pro just in case.A few days ago I let my kids download in Shadow Mode everything looked normal until we got to the toolbars,websearch change and Homepage etc.Ran a scan with HMP and it was screaming with riskware, addware,and malware.We also had about five new desktop icons.Rebooted and ran another scan with HMP and nothing was found everything was like nothing happened.Some files are way to big to upload them to VT or jiotti.IMO its good to at least have On Demand for that very reason.

-{ Quote: "Good advice, Amit, and I probably should take it, except browsing and downloading are my 2 main vulnerabilities and Sandboxie has browsing covered, and also the download folder where things sit sandboxed until getting a good going over with a scanner or two. I figured since I was using Mamutu and EEK anyway, I might as well use EAM instead. But to tell you the truth even that feels like over-doing it, since scans never find anything getting past Sandboxie, and if something did I have a system image waiting on an external hard drive.

I think Online Armor is great, I have a license for it, and wonder about using it (or Privatefirewall) more than any other security question I have, but the Windows 7x64 firewall along with a router seems to be doing the job and very quietly." }-
Ah yes I know you could go with sbie, an on-demand scanner and an imaging software alone and will rarely get any infections. But hey I thought you were Wilders material by now - over paranoid! Just kidding. You're at least smarter than me. I also reside in the same situation as yours- only threats are downloading and vulnerabilities.

But I change my setup(rather like pump it up into a handsome bulk) from time to time because it serves two purposes. 1. Keeps me interested in security prospective. 2. Gives me a false sense of security thus allowing me to sleep tight and peace of mind.

Added HTTPS Everywhere for Chrome. Worried a bit since it's in alpha stage but no problems so far.

Still thinking of ditching an AV but I feel like something would be missing.

-{ Quote: "That's why I keep Hitman Pro just in case.A few days ago I let my kids download in Shadow Mode everything looked normal until we got to the toolbars,websearch change and Homepage etc.Ran a scan with HMP and it was screaming with riskware, addware,and malware.We also had about five new desktop icons.Rebooted and ran another scan with HMP and nothing was found everything was like nothing happened.Some files are way to big to upload them to VT or jiotti.IMO its good to at least have On Demand for that very reason." }-
Good going Dave. :thumb: That way you'll face no hassle of a realtime/on-access AV and enjoy a light and fast system. You've got rock solid protection there Dave. :)

-{ Quote: "How would you know if the file you just downloaded is safe to recover from the sandbox? I mean you don't use HMP or MBAM like stuffs. Nor do you use multi-AV scanning online services like VirusTotal. :what: :doubt:" }-
I don't stop running files, downloaded from the internet, in a sandbox "just because they have been recovered to my system from a browsing sandbox". I run all files that I download from the internet and programs that I use every day in a sandbox all the time. As long as I use SBIE like that, I'll only concern myself with programs that I instal on my real system, something that I don't do often. I feel comfortable doing it like this, unlike if I was updating, upgrading, running scans all the time.



Bo

Bo do you think it is too risky to introduce unknown files to real system???

Well AV-less setup was short lived. Added WSA.;D

you felt lonely my friend;) with no av

-{ Quote: "Good going Dave. :thumb: That way you'll face no hassle of a realtime/on-access AV and enjoy a light and fast system. You've got rock solid protection there Dave. :)" }-
Thanks,hey no more Iron Man.

Removed HTTPS Everywhere after 5 minutes. It makes Google go to encrypted.google.com, which removes everything but Sign In. Annoying.

Also how is BitDefender Trafficlight at malware blocking? I've added it to Chrome and there are no slowdowns, but how effective would it be?

And what about System Explorer along AppGuard, just so I can make sure no malware is running? Then I could probably go AV free.

-{ Quote: "Bo do you think it is too risky to introduce unknown files to real system???" }-
To me, all files and programs are "risky", that's why I dont stop running them sandboxed.

In my mind, Trust No Program is how it is...

Bo

good to know man:thumb:

-{ Quote: "To me, all files and programs are "risky", that's why I dont stop running them sandboxed.

In my mind, Trust No Program is how it is...

Bo" }-
That's a good way of thinking.Trust no program.

-{ Quote: "good to know man:thumb:" }-
Saludos Sr. Monge.

Bo

thanks:thumb:grasias:)

-{ Quote: "you felt lonely my friend;) with no av" }-
I sure did. I just love all the bumping and hassle of an AV. ;D

-{ Quote: "Thanks,hey no more Iron Man." }-
Nope. I've retired now. And have sold the Iron Man tech to the Government. It's just the real me now.;D

-{ Quote: "Also how is BitDefender Trafficlight at malware blocking? I've added it to Chrome and there are no slowdowns, but how effective would it be?" }-
Here (http://www.wilderssecurity.com/showthread.php?t=325217) you go.;)

-{ Quote: "To me, all files and programs are "risky", that's why I dont stop running them sandboxed.

In my mind, Trust No Program is how it is...

Bo" }-
That's a little over paranoia. Don't you think Bo? I mean if that's your preferred philosophy(ok maybe it's not the correct term, but you know what I mean) then you would always be sitting in a enclosed super protective capsule in some laboratory in fear of Trust no particles for they could be pathogens, intoxicating compounds, etc. :D

Avira - Best free detection with realtime protection even, without additional protection that maybe, useless if don't have adequate signature like Avira except for behavioural detection.

Malwarebytes - Best free malware removal, very thoroughly to cleanup malware to the deep.

Emsisof anti malware - Best free ultimate detection, true detection that can detect almost malware and sometime, federal trojan.

Zonealarm - Best free firewall, the experienced firewall that care your identity data. Also, it is PCmag Editors' Choice

SpyShelter - Best free HIPS and anti keylogger, but webcam, sound and networkspy-logger(VPN like SpotFlux can prevent this networkspy) for paid user. After tried several HIPS, I think SpyShelter is the fastest HIPS response.

GeSWall - Best free sandboxing, can prevent keylogger too but not as good as SpyShelter.

ToolWiz TimeFreeze - Best free system change prevention, but not effective against sophisticated rootkit (can be prevented by anti malware above or HIPS). I think ToolWiz TimeFreeze is now most stable light light virtualization

SpotFlux - Best free full featured VPN, after tried several VPN, I think SpotFlux is the fastest VPN

WOT - Best free to know trusted website

KeyScrambler - Best free keystrokes encryption

DNScrypt from OpenDNS - Best free DNS encryption

(^_^)

-{ Quote: "Here (http://www.wilderssecurity.com/showthread.php?t=325217) you go.;)" }-

According to the BTL thread they are releasing a new version in 2 weeks that may use HTTPS.

-{ Quote: "According to the BTL thread they are releasing a new version in 2 weeks that may use HTTPS." }-
Until then stay away from BTL.

@KaizsYou should probably use IMO at the end of your post for all those 'Best free' in the post. ;D

-{ Quote: "That's a little over paranoia. Don't you think Bo?" }-
No, actually. thats taking everything that SBIE offers and using it is all about.

Like I said earlier, I feel comfortable doing it like this. Antiviruses make me nervous, at least twice I remember feeling excited about a new version of an AV coming out, only to be a real bummer. The second time that happened, I took the AV off and did not look for a replacement.

I know its hard for you to understand how I feel but its sort of like, for me, doing things the way I am doing it, my stress level when using the PC is about 1. If I was using a real timer and a couple of scanners all the time together with a HIPS and only using SBIE for certain things, the level would go up to around 8.

Bo

-{ Quote: "No, actually. thats taking everything that SBIE offers and using it is all about.

Like I said earlier, I feel comfortable doing it like this. Antiviruses make me nervous, at least twice I remember feeling excited about a new version of an AV coming out, only to be a real bummer. The second time that happened, I took the AV off and did not look for a replacement.

I know its hard for you to understand how I feel but its sort of like, for me, doing things the way I am doing it, my stress level when using the PC is about 1.

Bo" }-
I absolutely understand. I still think you could give HMP a chance. I mean the only two things that haven't changed over the years in my setup are sbie and HMP.

-{ Quote: "If I was using a real timer and a couple of scanners all the time together with a HIPS and only using SBIE for certain things, the level would go up to around 8." }-
By the way, I use all those things and also sbie full time. So where do you think my level is right now?

Current setup

Windows 7 x64

Avast free
Default Windows 7 firewall
Sandboxie- Browsers, thunderbird, and per case basis for installing programs.
(Firefox with addons- WOT, Ad-block+, No script)
Dns service is opendns.

On demand scanners
MBAM free
Hitman pro free
Emsisoft emergency kit

Kind of new the whole security thing have always had a basic setup but looking to get a better setup so any suggestions or corrections would be greatly appreciated :)

-{ Quote: "Current setup

Windows 7 x64

Avast free
Default Windows 7 firewall
Sandboxie- Browsers, thunderbird, and per case basis for installing programs.
(Firefox with addons- WOT, Ad-block+, No script)
Dns service is opendns.

On demand scanners
MBAM free
Hitman pro free
Emsisoft emergency kit

Kind of new the whole security thing have always had a basic setup but looking to get a better setup so any suggestions or corrections would be greatly appreciated :)" }-
Sanboxie is your main player keeping bad stuff out while on the web,really cant see anything getting past this.
You also have avast and 2 very good ondemand scanners so all looks
fine to me :thumb:

firefox
avast 7 free
hitman pro free
privatefirewall 7
emisoft anti malware
opendns
keyscrambler


anything else i should add?

whats the difference between emisoft antimalware free and emisoft emergency kit?

-{ Quote: "firefox
avast 7 free
hitman pro free
privatefirewall 7
emisoft anti malware
opendns
keyscrambler


anything else i should add?" }-
Malwarebytes Antimalware free, Sandboxie free and solid backup solutions- a cloud backup solution for personal data and a drive imaging solution.

-{ Quote: "Current setup

Windows 7 x64

Avast free
Default Windows 7 firewall
Sandboxie- Browsers, thunderbird, and per case basis for installing programs.
(Firefox with addons- WOT, Ad-block+, No script)
Dns service is opendns.

On demand scanners
MBAM free
Hitman pro free
Emsisoft emergency kit

Kind of new the whole security thing have always had a basic setup but looking to get a better setup so any suggestions or corrections would be greatly appreciated :)" }-

:thumb: Your setup looks good to me. I would suggest you to add software to backup your system - for quick recovery, if something goes wrong. And also backup your personal data to external USB disk.

I'm loving Kingsoft AV. I'm not really sure if the detection is any good. I like all the features. USB scan, mult av engines, exploit scan. I was going to go back to panda pro. I think I'll stick around with kingsoft AV for a while. It would be great if they gave some confirmation on what engine its using.

-{ Quote: "And also backup your personal data to external USB disk." }-
Plus a cloud backup solution like Dropbox or SkyDrive.

-{ Quote: "

Still thinking of ditching an AV but I feel like something would be missing." }-

If that's the way you feel, then it's not for you. I saw someone in the AV forum say they felt like "living dangerously", ditching the AV. If you feel that way, you're not ready for it.

You should feel like you've been lugging around a dead weight for years (resource wise), that isn't doing anything worthwhile. And not only feel just as safe, but maybe even safer as a result of ditching it. These are the people that are ready.

-{ Quote: "If that's the way you feel, then it's not for you. I saw someone in the AV forum say they felt like "living dangerously", ditching the AV. If you feel that way, you're not ready for it.

You should feel like you've been lugging around a dead weight for years (resource wise), that isn't doing anything worthwhile. And not only feel just as safe, but maybe even safer as a result of ditching it. These are the people that are ready." }-
I totally agree with everthing.:thumb:

-{ Quote: "If that's the way you feel, then it's not for you. I saw someone in the AV forum say they felt like "living dangerously", ditching the AV. If you feel that way, you're not ready for it.

You should feel like you've been lugging around a dead weight for years (resource wise), that isn't doing anything worthwhile. And not only feel just as safe, but maybe even safer as a result of ditching it. These are the people that are ready." }-

I don't think it is that big of a change. If your anti-virus is catching stuff you need it. If it never does anything your ready to go without. I ran Defensewall by it self for a long time and got along fine. It kept things broke up enough they couldn't do damage. But remnants are still going to be there so you use a antivirus either to look for them or try to remove them. No big deal it is just how you prefer to deal with it. Now I run CIS and the computer is just as responsive and if it warns me of something I reinstall image and it is good as new, Probably. But what I like about a anti-virus is you are warned at all all detections so you fix it one way or another. Without you are depending on online scanners anyway.

-{ Quote: "I ran Defensewall by it self for a long time and got along fine. It kept things broke up enough they couldn't do damage. But remnants are still going to be there so you use a antivirus either to look for them or try to remove them." }-

Better yet is to pair DefenseWall with Light Virtualization such as Shadow Defender or similar and with a simple reboot all is back to where it was, at least this combo has worked quite well here for years now.

I would love to us defensewall. I'm way to cheap to buy it though. The only reason I bought sandboxie was it was 50% a lifetime license. :P

Webroot® SecureAnywhere™v8.0.1.203 hips to the Max:thumb: :thumb:

-{ Quote: "Webroot® SecureAnywhere™v8.0.1.203 hips to the Max:thumb: :thumb:" }-

I should be keeping a calendar for your AV usage instead of Trjam ;D

Emsisoft Anti Malware + Online Armor + EMET + Malwarebytes

My current setup. Anything I should add?

listen to this, Webroot® SecureAnywhere™v8.0.1.203 is here to stay;) :thumb:

-{ Quote: "listen to this, Webroot® SecureAnywhere™v8.0.1.203 is here to stay;) :thumb:" }-

Have they improved their detection rates? I really like Webroot just the low detection rates holding me back from renewing my subscription.

-{ Quote: "listen to this, Webroot® SecureAnywhere™v8.0.1.203 is here to stay;) :thumb:" }-
Great to hear jmonge wait till you see the next public update!

-{ Quote: "Have they improved their detection rates? I really like Webroot just the low detection rates holding me back from renewing my subscription." }-
@ ComputerSaysNo - You should look at this post: http://www.wilderssecurity.com/showpost.php?p=2099241&postcount=22

TH

-{ Quote: "
@ ComputerSaysNo - You should look at this post: http://www.wilderssecurity.com/showpost.php?p=2099241&postcount=22

TH" }-


WOW! Impressed 93% that's great compared to earlier tests.

-{ Quote: "WOW! Impressed 93% that's great compared to earlier tests." }-

You still don't understand how WSA works read the whole article!

TH

-{ Quote: "You still don't understand how WSA works read the whole article!

TH" }-


OK done! Well the automatic sand-boxing is impressive and the explanation was great. But I found it a bit lacking in info about browser hijacks/MITM attacks and your details about your firewall. Can you say what technology is used in those cases? I;m not asking for the source code :P I'm just asking for a little bit more technical information on those aspects of your product so I can make my opinion up.

you bet :thumb: Triple Helix:thumb: :thumb:

-{ Quote: "OK done! Well the automatic sand-boxing is impressive and the explanation was great. But I found it a bit lacking in info about browser hijacks/MITM attacks and your details about your firewall. Can you say what technology is used in those cases? I;m not asking for the source code :P I'm just asking for a little bit more technical information on those aspects of your product so I can make my opinion up." }-

Come post your questions in the Prevx forums if you don't get the info from me you will get your answers from the VP of Development Joe (PrevxHelp)!

TH

-{ Quote: "Emsisoft Anti Malware + Online Armor + EMET + Malwarebytes

My current setup. Anything I should add?" }-
Is MBAM on-access/realtime? Anyways, I suggest you add sandboxie, HitmanPro, a solid password manager like LastPass or KeePass and a comprehensive backup solutions- drive imaging, cloud backup solution like dropbox or Skydrive, data backup on flash drives, on external hdds.

-{ Quote: "listen to this, Webroot® SecureAnywhere™v8.0.1.203 is here to stay;) :thumb:" }-
Good going J. I'm also gonna keep WSA. ;)

-{ Quote: "wait till you see the next public update!

TH" }-
That's nice to hear TH. I'm definitely waiting for the next release. :D

Added Comodo fw/D+ over default windows 7 firewall
and replaced Emsisoft emergency kit with Emsisoft anti-malware free.

Good Morning ! Re-Installed Avira I.S.2012...WSA Essentials...and Zemana Key-Logger. Sincerely...Securon

-{ Quote: "Good Morning ! Re-Installed Avira I.S.2012...WSA Essentials...and Zemana Key-Logger. Sincerely...Securon" }-
How is Avira IS, Securon? Is it light and fast? Also how do you like Zemana AL?

Good Morning ! Yes Amit... Avira I.S.2012 is nimble and fast...and Zemana is really effective in detecting changes to the apps on your system...so far I'm impressed with Zemana's performance. Sincerely...Securon

-{ Quote: "Good Morning ! Yes Amit... Avira I.S.2012 is nimble and fast...and Zemana is really effective in detecting changes to the apps on your system...so far I'm impressed with Zemana's performance. Sincerely...Securon" }-
Ah great to know. :) Do you know think Zemana AL overlaps with any security suite or firewall with antilogger features(nowadays most suites even AVs and individual firewalls come with solid antilogger protection features)? I have Zemana warning me and blocking unknown apps which tries to get keystrokes, webcam shots, etc. But so does my OA. I am always concerned with apps overlapping with one another, causing possible hidden conflicts. Another example is, WSA protects browser against MITB and MITM. But so does OA. And I use both of them. Most people and even Webroot people including Joe here say I should be fine with both.

Good Morning ! Amit...I agree as previously stated Zemana..is very pro-active almost has Hips like behaviour. But that's O.K. Most important Zero conflicts with WSA and Avira. Sincerely...Securon

-{ Quote: "Good Morning ! Amit...I agree as previously stated Zemana..is very pro-active almost has Hips like behaviour. But that's O.K. Most important Zero conflicts with WSA and Avira. Sincerely...Securon" }-
Ah okay. :)

Added CAV/D+

Just started MSE with WSA Antivirus as my real-time protection, with both programs set up for one another. Super light system resource usage with no noticeable slowdowns, and I feel more secure than with just either program by itself. :thumb:

-{ Quote: "Added CAV/D+" }-

That's interesting. I don't think I've ever seen anyone before just use the AV & D+, and not the FW. So you have the FW disabled altogether then?

Do you use Outbound filtering in the Win7 FW?

It would be really cool if Comodo could make a streamlined D+ (ONLY) HIPS program. It'd be so convenient for people on Win7 that wanted to use the native FW, but also like HIPS. This is the dilemma I'll be running into when I upgrade to Win7. I want to use everything built into the OS I can, but I've really grown to love HIPS. Nobody wants to install an entire suite when they only really want 1-2 of the components in it. Too much bloat left behind.

A FW/D+ only program would be sweet too. That's what I'd use right now.

I just used the AV and D+ but I did not select the firewall to install. I'm pretty sure D+ can catch things before they hit the drive so a firewall might not be needed. I am using windows 7 firewall just to be light.:)

-{ Quote: "That's interesting. I don't think I've ever seen anyone before just use the AV & D+, and not the FW. So you have the FW disabled altogether then?

Do you use Outbound filtering in the Win7 FW?

It would be really cool if Comodo could make a streamlined D+ (ONLY) HIPS program. It'd be so convenient for people on Win7 that wanted to use the native FW, but also like HIPS. This is the dilemma I'll be running into when I upgrade to Win7. I want to use everything built into the OS I can, but I've really grown to love HIPS. Nobody wants to install an entire suite when they only really want 1-2 of the components in it. Too much bloat left behind.

A FW/D+ only program would be sweet too. That's what I'd use right now." }-

when you install comodo antivirus it comes with defense + just like when you install the firewall it comes with defense +.

Just bought a appguard license. 3 for $20 can't go wrong! Thing is I'm quite happy with Emsisoft Antimalware + Online Armor + Emet + MBAM Pro so I'm not sure if I need Appguard?

Are there MBAM Pro giveaways going on? :)

-{ Quote: "Are there MBAM Pro giveaways going on? :)" }-

PANDA scored 96/100 on a Malware test I saw. I don't think you need it ;)

But its always safer to have an some extra coverage ya know perhaps cover that 4%;)

-{ Quote: "But its always safer to have an some extra coverage ya know perhaps cover that 4%;)" }-

True! I do like MBAM PRO for it's url blocking. It's one of the best.

Next on the list Sophos UTM, Avira + Sophos scanning = good

Not only that, those are lifetime licenses so... yeah. ;D

Removed Sandboxie just for the sake of testing the full Comodo suite again. I can say that I'm impressed because I can't feel the drag of the AV anymore (I was using Comodo Firewall+Sandboxie).

So two possibilities:

1: I'm getting old... :P
2: They have done something to it in the past 6 months that I haven't heard about ;D .

A couple months now and still running with the tools in my signature...:thumb: 8)

I changed my security setup again, but finally I'm quite happy I think with my security setup as it is now (also in signature).
Also I'm starting to use a LUA account or Standard User as it is called in Windows 7.

I added PeerBlock (http://www.peerblock.com/) to filter internet traffic. I use P2P, Spyware and Advertising lists.

I hope, that this time I won't have problems with it.

still using RIS.:thumb:

-{ Quote: "Just bought a appguard license. 3 for $20 can't go wrong!" }-
Good going. :thumb:

-{ Quote: "Thing is I'm quite happy with Emsisoft Antimalware + Online Armor + Emet + MBAM Pro so I'm not sure if I need Appguard?" }-
I don't think you would need AG with that setup. :)

-{ Quote: "Not only that, those are lifetime licenses so... yeah. ;D" }-
Yeah sweet. ;D

-{ Quote: "A couple months now and still running with the tools in my signature...:thumb: 8)" }-
Very good setup you got there Mongol. :thumb:

-{ Quote: "I changed my security setup again, but finally I'm quite happy I think with my security setup as it is now (also in signature).
Also I'm starting to use a LUA account or Standard User as it is called in Windows 7." }-
I wonder why you would need Comodo Firewall/D+ when you've got KIS.:doubt: Also I think MVPS HOSTS is not needed with your already solid setup. :)

-{ Quote: "I added PeerBlock (http://www.peerblock.com/) to filter internet traffic. I use P2P, Spyware and Advertising lists.

I hope, that this time I won't have problems with it." }-
How do you like it Tom? Also do you use a paid subscription for OpenDNS and do you use DNSCrypt for it?

-{ Quote: "How do you like it Tom? Also do you use a paid subscription for OpenDNS and do you use DNSCrypt for it?" }-

So far, it's good. No I don't use paid subscription and no DNSCrypt for me for now.

-{ Quote: "So far, it's good. No I don't use paid subscription and no DNSCrypt for me for now." }-
Oh I see. Great then. :thumb:

Paranoid mode:wacko: :thumb:

Running now Norton Internet Security 2012, So far running well and lite on the system. :thumb:

Still using what's in my sig. It's light and fast. I think I'm well protected. ;)

Been the same for 3-plus years now. No need to keep changing all the time.

I'm in the process of reformating my pc and was thinking of changing my current setup. I have been using Panda Cloud for close to a year but am a little weary of the program not having an option to disable automatic upgrades. Version 2.0 has been worse than 1.5.2 IMO.

I'm thinking of going with LUA + SRP + Sandboxie Free + Avast Free (File System Shield only) + Ghostwall + MBAM Free + HitmanPro Free

-{ Quote: "Been the same for 3-plus years now. No need to keep changing all the time." }-

I liked GeSWall on my Mom's 32-bit PC, but it seems they are not developing it anymore, and have abandoned the 64-bit version :'(

However, I had removed it because it wouldn't work with Chrome or IE9.

-{ Quote: "still using RIS.:thumb:" }-

When you say "still" have you been using it the last few days? Because your signature and avatar have been blank the last few days.

1.PCAV Pro
CIS FW D+
SBIE
CTM 2.8

2.Avira free
CIS FW D+
SBIE
CTM 2.9 Beta

PC Setup:
Bufferzone
Comodo FW/D+
EMET 3.0
Key Scrambler
MBAM
NOD32
Sandboxie PAID
Windows UAC Enabled

Browser Setup:
Firefox
- Adblock Plus
- Adblock Plus Pop-up Addon
- Better Privacy
- Calomel SSLValidation
- Cookie Monster
- Flashblock
- Ghostery
- HTTP Logout
- HTTPS Finder
- HTTPS-Everywhere
- Keyscrambler
- NoScript
- Perspectives
- Redirect Remover
- RefControl
- Request Policy
- UAControl
Most of the settings for the plug-ins have been manually configured, but I've kept some of the plug-ins for the UI.

Comodo FW/D+
Firewall
- Custom Policy
- General Settings (Enabled IPV6 Filtering, IPV6 is Disabled)
- Alert Very High
- Advanced (All Checked)
Defense +
- Safe Mode, considering Paranoid
- General Settings (Enabled Adaptive Mode, Enabled Enhanced Mode)
- Execution Control Enabled (Untrusted, All Checked)
- Sandbox Enabled (All Checked except Automatically Trust Files)
- Monitoring Setting (All Checked)
Network Security Policy
- Global Rules: Blocked ports, except those needed (must ask first)

I've been running dual sandboxes (Sandboxie & Comodo). No Problems, Headphone problem resolved itself.

bought and am using nothing else now but VoodooShield.

Added AppGuard:thumb:

Removed my anti-virus (Returnil).
System start-up, responsiveness, cpu usage, etc. improved. ;D

Will now let Sandboxie, Online Armor, EMET, and daily scans of HitmanPro to protect my computer. ;D

-{ Quote: "PC Setup:
Bufferzone
Comodo FW/D+
EMET 3.0
Key Scrambler
MBAM
NOD32
Sandboxie
Windows UAC Enabled" }-

Hellou to all :D
I'm new on this forum.

@Techwiz
Why did you give up from BufferZone?

Good God, Some poor computers.LOL

-{ Quote: "bought and am using nothing else now but VoodooShield." }-
How do you like it, trjam?

-{ Quote: "Added AppGuard:thumb:" }-
Wow you finally added AG! Awesome man.:thumb: You know you could keep sbie and use it with AG. Anyways, I think you would not need any other app. Just go with AG + HMP and malware will bounce off your system. ;D

-{ Quote: "Good God, Some poor computers.LOL" }-
You talking to me Dave?;D All my pcs are poor you know.;D

-{ Quote: "You talking to me Dave?;D All my pcs are poor you know.;D" }-
No,not you.

-{ Quote: "No,not you." }-
LOL. OK then.;D

@Dave
Hey how do you like AG now that you've been using it for a long time? Do you get bored sometimes, that you are just safe with it? No more malware no nothing. No action. No fireworks.

ANy suggestion about EMET settings when is first time installed?
Put everything on max (http://upload.slike.com/slike/cTUxY.png) and what else?

Tnx :-*

[EDIT]

OK, i found something here (http://www.wilderssecurity.com/showpost.php?p=2056033&postcount=5):

Next Run EMET, and click the "Configure System" button. Make sure the following is configured:

DEP is set to always enabled
SEHOP is set to opt-out
ASLR is opt-in enabled


After which you can start to add applications to EMET, select the "Configure Apps" button at the bottom of the window, and use EMET to provide extra protection to your programs. Examples:

Web browsers
Media players
PDF readers

Found a personal giveaway on a gaming forum and got a license. Lucky me. :)

Now using Malwarebytes Pro alongside PCAV Pro. PRO power! ;D

-{ Quote: "@Dave
Hey how do you like AG now that you've been using it for a long time? Do you get bored sometimes, that you are just safe with it? No more malware no nothing. No action. No fireworks." }-
I love it,does its job very well.Yes its one of them quiet programs of no excitement like a paranoid Hips, but thats what i like about.
When I install I need to lower its protection,So I save the files to a download folder then with Hitman Pro enable shell intergration right click scan files first before running the executable and run it shadow mode before I commit changes to my HDD.Any new software has to earn its way on.If its not worthy it gets the boot.

-{ Quote: "Found a personal giveaway on a gaming forum and got a license. Lucky me. :)

Now using Malwarebytes Pro alongside PCAV Pro. PRO power! ;D" }-
Congrats. :thumb: Are you using website blocking also?

-{ Quote: "I love it,does its job very well.Yes its one of them quiet programs of no excitement like a paranoid Hips, but thats what i like about." }-
I like fireworks.;D Glad to know you are in silent mode.:argh:

-{ Quote: "Congrats. :thumb: Are you using website blocking also?" }-
Thanks! :) Yes I am. It complements Panda Cloud very well. RAM usage did go up but the setup still feels very light. :thumb:

-{ Quote: "Thanks! :) Yes I am. It complements Panda Cloud very well. RAM usage did go up but the setup still feels very light. :thumb:" }-
Ah! Great. MBAM is very good at complementing other security apps and is very much compatible. That's it's always in my setup. Did you test if website blocking works properly? Visit iptest.malwarebytes.org

-{ Quote: "Did you test if website blocking works properly? Visit iptest.malwarebytes.org" }-
I did not know about the test page. Thanks. :thumb:

To be honest I couldn't live without fireworks either. ;D

I removed Peerblock and Malware Defender. What's left is in my sig.

-{ Quote: "I did not know about the test page. Thanks. :thumb:

To be honest I couldn't live without fireworks either. ;D" }-
Welcome buddy. :)

Yeah fireworks are fun, now aren't they?;D Especially when HIPS don't lie.:argh:

-{ Quote: "Hellou to all :D
I'm new on this forum.

@Techwiz
Why did you give up from BufferZone?" }-

Bufferzone Pro is a great product that I'd recommend to anyone. Works well even on a 64 operating system. At present though, I decided to shelve it to see if sandboxie would play nice with comodo's sandbox. Admittedly SBIE has been a favorite of mine for a while, and I've finally decided to buy a life license. I don't think you could wrong using either one, but SBIE just works nicely.

-{ Quote: "I removed Peerblock and Malware Defender. What's left is in my sig." }-

Did you remove MD because you didn't feel a need for a HIPS given the other Win7 built-in security? Because I was thinking about how I'd make the transition from XP to 7 regarding Comodo. I'd use the built-in 7 FW for outbound. I certainly aint installing an entire suite for just 1 component (HIPS), so I was looking at something like MD. But then I thought to myself... would I really need one at all? With a good SRP, a standard account, UAC, EMET, and the fact that I trust everything I put on my box... would I really "need" one? Probably not.

My Win7 setup would look a lot like yours, only either substitute MSE for Nod32, or no real-time AV at all. I think the need for 3'rd party security software on that OS is, well... not a "need" at all. Sandboxie would probably be the only thing. I'd even try to justify using IE to myself, but don't know if I could.

-{ Quote: "Wow you finally added AG! Awesome man.:thumb: You know you could keep sbie and use it with AG. Anyways, I think you would not need any other app. Just go with AG + HMP and malware will bounce off your system. ;D" }-

I'm still testing different apps right now, but after what I've seen with AppGuard....I might actually go AV-LESS for the first time. Yeah, I miss my Sandboxie, I feel naked without it. HMP might be added sometime in the future, but for right now...I don't see a need for it.

-{ Quote: "ANy suggestion about EMET settings when is first time installed?
Put everything on max (http://upload.slike.com/slike/cTUxY.png) and what else? " }-
Also see: -http://rationallyparanoid.com/articles/microsoft-emet-3.html

Windows 7 Home Premium SP1 32-bit

Firewall:
NAT Router (Password Protected)
Look’n’Stop Firewall 2.07 (Phant0m’s Ruleset)

Anti-Virus:
Emsisoft Anti-Malware 6.6.0.4 Beta

HIPS/Blocking/Hardening:
DefenseWall HIPS/Personal Firewall 3.18
VoodooShield 1.04
EMET 3.0 (Internet facing applications & MS Office)
SpywareBlaster 4.6 (Ad-Aware custom blocking list)

Resident On Demand Scanners:
Malwarebytes Anti Malware Pro 1.62.0.1300
HitmanPro 3.6.1 Build 164
Mischel TrojanHunter 5.5 (1002)
SUPERAntispyware 5.5.1012
Comodo Cleaning Essentials 2.5.242177.201
WinPatrol Plus 25.0.2012.5

-{ Quote: "Did you remove MD because you didn't feel a need for a HIPS given the other Win7 built-in security? Because I was thinking about how I'd make the transition from XP to 7 regarding Comodo. I'd use the built-in 7 FW for outbound. I certainly aint installing an entire suite for just 1 component (HIPS), so I was looking at something like MD. But then I thought to myself... would I really need one at all? With a good SRP, a standard account, UAC, EMET, and the fact that I trust everything I put on my box... would I really "need" one? Probably not.

My Win7 setup would look a lot like yours, only either substitute MSE for Nod32, or no real-time AV at all. I think the need for 3'rd party security software on that OS is, well... not a "need" at all. Sandboxie would probably be the only thing. I'd even try to justify using IE to myself, but don't know if I could." }-

Hi! Yes, I really don't need HIPS to secure my system and it never saved me so far. I mainly use it because I occasionally let my brother and sister to use my computer. I can create safe environment for them and prevent any undesirable changes to my system with help of MD. For now I will settle down without it and rely on other security measures.

With Windows 7 you can build your security with almost no 3rd party software. UAC, SRP, LUA, EMET and Applocker are some of built-in options that you can use. You can check setup from Kees1958 (http://www.wilderssecurity.com/showpost.php?p=2097606) for additional options.

Instead of IE you can also use Chrome.

So am I correct in hearing Sandboxie doesn't work right with Win7 64-bit? Or is it just some isolated incidents? I hope this is remedied by the time I upgrade, because I'd prefer to use the 64-bit version. And it's hard to imagine life without Sandboxie. They've got until mid 2015 to work on it...

Using Sandboxie and some other stuff, on W7 64-bit.
The 'other stuff' just got shuffled a bit as I dropped Online Armor and added Comodo Firewall.
Liking everything about my new firewall so far. :thumb:

Okay, so Sandboxie works just fine on Win7 64-bit then? Comforting to know. Must just be some isolated incidents after all then. I never seem to have the problems some people do with things.

And do I understand correctly that Chrome is built into Win7, along with IE? If so, I'd probably become a Chrome user.

-{ Quote: "Okay, so Sandboxie works just fine on Win7 64-bit then? Comforting to know. Must just be some isolated incidents after all then. I never seem to have the problems some people do with things.

And do I understand correctly that Chrome is built into Win7, along with IE? If so, I'd probably become a Chrome user." }-
Built into W7?
IE is default, and one has to download Chrome and choose it as default if that is the way one wants to go.
;)

-{ Quote: "

And do I understand correctly that Chrome is built into Win7, along with IE? If so, I'd probably become a Chrome user." }-
Chrome is not built into Win 7.

webroot says Trend Micro Titanium.™
is virus so i temp disable it

-{ Quote: "listen to this, Webroot® SecureAnywhere™v8.0.1.203 is here to stay;) :thumb:" }-

3 days before switching, not bad ;D

-{ Quote: "Built into W7?
IE is default, and one has to download Chrome and choose it as default if that is the way one wants to go.
;)" }-
I think he's referring to (on purpose or not) to the sandbox, which is built into Windows.

Trend Micro Titanium is giving me alot of problems:thumbd: :thumbd:

-{ Quote: "I think he's referring to (on purpose or not) to the sandbox, which is built into Windows." }-

Actually, I wasn't, but that explains what someone else was talking about earlier when they made it sound as if Chrome was built into Win7.

So this Chrome sandbox I hear about is actually built into the OS, not Chrome itself? I'm confused...

Anyhow, it would certainly give me incentive to use Chrome when I upgrade my OS... to take advantage of such functionality. Kees has provided some great info. on how to harden it. If ScriptNo could get "near" the level of effectiveness of NoScript, it'd probably be the deal-maker for me.

-{ Quote: "Trend Micro Titanium is giving me alot of problems:thumbd: :thumbd:" }-

I saw that product on a friends laptop the other night, and it was crazy unresponsive. I uninstalled it, turned on the Win7 FW, and gave him Avira Personal AV... it found 3 viruses Trend whiffed on. I cleaned them, then threw CCleaner on there and ran a scan with that as well... it got rid of like 3 gigs of crap, lol! Turned the thing off and took the battery out for 2 min. to clear the memory.

When it came back on it was like a new laptop. He was amazed by it, lol. To have the mouse pointer actually go where you aim, immediately... or have a window pop open right after you click on something, not 10 seconds later. The simple things I take for granted, to him was a miracle.

-{ Quote: "I'm still testing different apps right now, but after what I've seen with AppGuard....I might actually go AV-LESS for the first time. Yeah, I miss my Sandboxie, I feel naked without it. HMP might be added sometime in the future, but for right now...I don't see a need for it." }-
Good going. Did you max out the settings of AG?

-{ Quote: "webroot says Trend Micro Titanium.™
is virus so i temp disable it" }-
Maybe because you had put the heuristics of WSA to maximum?;D