What is your security setup these days?

Good Evening! Shock and Awe Mk 19!... ESET S.S.7...AppGuard...WSA Security Plus. Sincerely...Securon

 

I've learned over the years to stick with Eset. Everything else always lets me down in some way, so I gave up on the 'hunt' a long time ago.

With ESET in place, I've switched between Trend, Fortinet, and Kaspersky on UTM appliances, and ultimately chose Kaspersky (Flow/Proxy) as my ultimate UTM solution. So that means I have Kaspersky at the front door, and Eset/Trend(depending) at the backdoor. Mind you, the enterprise UTM version of Kaspersky is vastly different in terms of speed/reliability than their desktop solutions. Kaspersky UTM is exceptionally fast, and reliable.

http://www.zyxel.com/web/utm/utm_02.htm

 

Very interesting. So is this Kaspersky UTM thing a hardware based AV, or is it still need software/firmware update frequently, just like the signature update of desktop version of Kaspersky?

 

Hardware based solution that leverages a specialty dual core processor within the appliance for incredibly fast (instant) scanning. Updates can be configured to be hourly, daily, etc. The hardware device automatically pulls down the updates, seamlessly. I push through 60Mbps with zero latency using flow through, and deny traffic that can't be unpacked and examined on the fly. Last week I blocked 311 viruses/trojans at the gate, without them ever hitting my network. In the last 24 hours it's blocked 19.

Even though I am a Fortinet Engineer, I prefer ZyXEL because for the price they have better IPS/AV throughput. ZyXEL utilizes the following procedure; CommTouch-->BlueCoat-->IPS/IDS Signatures(Secrunia)-->Antivirus/Malware (Kaspersky)
It's layered, so everything passes through each one if you have it configured in policies for Lan->Wan scanning with all of them enabled. Maximum throughput with them all enabled is 90Mbps. Remember, the hardware is dedicated for this purpose, so you get the benefit of all of that on 'every' device in your home/office, without exception. I don't even really need to bother with AV's for individual devices, and really only view Eset as a backup, and for when devices leave the protection of the strong home network.

I purchase a license renewal for the appliance once a year, about $100 a year for the bundle. Once people figure out this is the way to go, a lot of these AV companies will lose out. ASUS has decided to make all of their mid to upper range consumer based routers have UTM features. Their latest AC2400 router has Trend build into it with a dedicated dual core processor just for Trend, and free updates forever.

 

Thanks much for the detailed explanation, it's very enlightening. This solution does sound like a solid fence against malware around one's home I'll look into ZyXEL and the ASUS AC2400 you mentioned.

Regards,
oliverjia

 

Microcenter has the USG50 for under $200 at times. Then you use a WAP/AP for your wireless. If you require a good amount of throughput, then you need to spend more money to get the USG60 which has the next generation processors, and an extremely high throughput. Otherwise for most home connections, the $180-$200 ZyXEL USG50 would be sufficient. That includes bundled IPS/IDS/AV/URL Scanning like the USG60. Keep in mind the USG60 is their next generation, which is why it has 190Mbps throughput, vs the paltry 24mbps on the USG50. So I personally think the extra $200 futureproofing is a wise choice.

http://www.amazon.com/ZyXEL-Internet-Security-Firewall-Dual-WAN/dp/B0042WCFI2/

Also note, as I said ASUS includes Trend Enterprise scanning now, free for life.

http://www.asus.com/us/News/hE5SJg3y7bbIBIGO

 

Securon,

VIPRE does have this feature. It's called fast second scan or RapidScan depending on the version of VIPRE you're running. The option can be set for individual scheduled scans or under the general scan options.

 

It turned out that I can't keep my cookies whitelist because I'm using private browsing which also won't remember site preferences that regulates cookie management. Any suggestion for a cookie blocker extension for Firefox? Cookie Monster is great but somehow it still hasn't passed the “preliminarily reviewed” stage in AMO.

 

Good Morning! Thanks for Your reply Nick. I had Rapid Scan checked in the past and still not much of an improvement in Scanning Times. But I still Might use Vipre. The results of the latest A/V Comparitives were disappointing lending cause for concern...I'm sure the developers at Threat Track are hard at work to improve detection rates and restore consumer confidence. I'll re-install Vipre next week and re-set Rapid Scan...any feedback in how to utilize it more effectively? Once again thanks for your input. I have Vipre I.S.2014. Sincerely...Securon

 

Forgot to add my on demand scanners... *fixed*.

I use VT Hash Check, MBAM Free, Hitman Pro, TDSS Killer, GMER

 

Asus T100, simplified setup for Windows 8.1
- UAC only allow signed exectuables to elevate (set validateadminsignaturescode to 1with regedit)
- EMET memory exploit protection (block flash ocx and VBscript and JavaScript dll's to load in office apps)
- Add a local CHILD (standard) user with Parential Control to allow all programs (filters only executables)
- Enabled SafeDllSearchMode (through regedit) to increase effectiveness of Parential Control a bit
- Smartscreen set to require admin approval to run unknown applications
- Set WFW up to also block outbound
- Disabled Windows Defender

 

There was an issue with the beta for 2015 where RapidScan was not enabling properly in the scan settings. That may have been what you were running into. You should see a rather big difference in scan times with that option enabled. Also, you of course need to complete one scan with RapidScan enabled to create the cache before you will see the speed increase.

 

Good Morning! Thanks for your Prompt Reply Nick! I'll Scan with Rapid Scan enabled...and I'll let you know the Outcome! Sincerely...Securon

 

Windows 7 admin account

Windows 7 firewall behind router

AppGuard on lockdown

WinPatrol paid

Zemana Anti Logger paid

Malwarebytes Anti Exploit free

Voodoo Shield trialing right now

DNS Trigger


added HitmanPro.Alert 3 to the mix

amazingly no conflicts as of yet.

 

DefenseWall
ShadowDefender
Macrium Reflect
Thats all folks..

 

Good Evening! Nick! I just finished a Custom Scan with Vipre...and with Rapid Scan Checked. It took 3hrs 47min...So you've stated that come Sunday when a Custom Scan is re-run the time of scan should be substantially reduced? By the way I currently have Version 7.0.6.2...is this the latest Version? And if it is...everything should change for the good come Sunday. Here's Hoping! Sincerely...Securon

 

Still using ZA free AV+Firewall. It's pretty good and reliable.

 

I do remember that there was a usb stick or cat5 attached dongle with a cpu on it and an antivirus.
Is that still around?
Dont have a company as it was not recognised by me.
It was on the gadget tv show in the uk.

I think it was something like £70

 

Have installed ssd last week , so i was curious as to which antivirus i should put now ? Because i think many read and writes will degrade ssd and so i must put an av that has lower read and writes ?

 

Don't worry about it. It's all based on MTBF. Most of the good major brands have a MTBF of between 1,000,000-3,000,000 hours of continuous use. You will never blow out an SSD. (well, it's highly unlikely) In fact, I have seen only a few SSD failures this year, and I monitor 32,000 machines as a NOC Controller for an MSP. Any AV you like is fine.

 

Couldn't find an alternative for a default-deny cookie permission addon, I don't like the concept of Cookie Controller. So I decided to stay with Cookie Monster. Still wondering why Cookie Monster is still on “preliminary” stage in AMO. It works perfectly well from what I can tell.

 

Desktop setup (Win7 Ult. 32 bits):
- Enabled outbound control in Windows Firewall and disabled riskware services
- Deny execute for basic user and run IE, WMP and Outlook as basic user (SRP)
- Block 'elevation of unsigned' (UAC) and 'change user autoruns' (ACL) for all
- Run IE11 in protected mode with GPO locked settings & no-plugins
- Run Chrome with Sandboxie Free in Virtual PC XP-Mode

 

Good Morning! Pleased too report a Major Improvement with Vipre's Rapid Scan! I ran another Custom Scan and it Clocked in at 52min a Vast Improvement! Needless to say I'm Very Pleased at this Result...and as a Result will Continue to Use Vipre. Sincerely...Securon

 

Good Morning Securon & Wilders World,

Reference McAfee Internet Security--

Holy Cow, you are correct Securon. The scan did not run as the preset time. It just didn't go. A quick Google search shows that we are not the only ones who noticed this glitch.

This is a feature I really don't use, so that does not make a real difference for me. But still, it indicates that there are some kinks to be worked out at McAfee.

http://chart.av-comparatives.org/chart1.php

And while the sample set was low on this AV-Comparatives test, it indicates that Intel still has some work to do.

As a free product that is getting better on an older laptop, I'm good with McAfee. On my more primary systems, I want better.


Hava Good Day,

-Frank