What is your security setup these days?

I started writing laudatory post about my combo of MBAE 1.08+SBIE 5.06 on my PC with Win-7 x64 Prof. But found out that MBAE icon disappeared. No other problems actually.

 

same here

 

Running Windows 10 Home.
4GB RAM, 128GB SSD, Intel Graphic Card

• Emsisoft Anti-Malware
• Zemana Anti-Maware
• Hitman Pro Alert
• Adguard
• No Virus Thanks EXE Radar Pro
• Shade
• TimeFreeze

New to this forum here.
Cheers!

 

Panda Free
Malwarebytes Free

Running on windows 10

 

I already have MBAE running, i'll think about it thanks.

 

Dec. 1, 2015 - Updated, Added, Removed

Network

• Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
• Four Netgear PowerLine AV 500 Adapters
• Wired Cat5e Connection between both Routers
• WPA2-PSK AES Encryption
• SPI & NAT Firewalls Enabled
• OpenDNS Configuration

Computers

• Desktop (Custom Built) - Windows 10 Pro x64
• Laptop (Sony Vaio) - Windows 10 Home x64
• Tablet (Surface Pro 4) - Windows 10 Pro x64

Built-In Security

• USER ACCOUNT CONTROL: HIGHEST SETTING
• WINDOWS SMART SCREEN: ENABLED
• WINDOWS DEFENDER: DISABLED
• WINDOWS FIREWALL: DISABLED

Resident

• Emsisoft Internet Security 11.0.0.5958 Beta (Paid)
• Sandboxie 5.07.1 Beta (Paid) - Sandboxie Container Folder on RAMDisk
• NoVirusThanks EXE Radar Pro v3.1 BUILD1-15052015 Beta (Paid)
• Adguard Premium 6 Beta (Paid)
• KeyScrambler 3.8.2
• DNSCrypt 0.0.6 - HTTPS Enabled

On-Demand

• PeerBlock 1.2 (P2P Blocking List)
• Macrium Reflect Home Edition 6.1 Built 936* (Paid)
• VMWare Workstation 12.0.1 build-3160714** (Paid)

Browser, Immunization, Tweaks

• Chrome 46.0.2490.86 m x64 (HTTPS-Everywhere, Gmelius Premium, Lastpass Premium) - Chrome Profile Folder on RAMDisk and Sandboxed
• Homepage and Search Providers set to Startpage (Chrome)
• Cleaner Professional Edition 5.12.5431 (Paid)
• Spyware Blaster 5.2 (All Protection Enabled + Customblocking.txt)
• CryptoPrevent Premiium Edition 7.4.20 (Paid)

*Macrium Reflect Home Edition installed in both Desktop & Tablet - Backup Template: Deferential Backup Set
**VMware Workstation only installed on Desktop

dja2k

 

Generic Security Policy (facilitated by Microsoft's free upgrades to Windows 10)
1. Using Open DNS (malware filters), WFW blocks in+outbound connections (by default)
2. Disabled risk-ware (shell, scripts, shared, remote, etc) with services and gpedit/regedit
3. Deny elevation of unsigned (UAC), run internet facing in low rights/integrity level container
4. Set Basic User SRP* on user folders and ACL deny execute for Everyone on drive-by folders
5. Using Smartscreen (admin constent), disabled macro/add-in/activeX in Office trustcenter

Windows 10 Pro 32 bits Desktop (G3240 CPU, 4GB RAM, 64GB SSD + 2x500GB HD)
5. Allow scripts from few high level domains in Chrome, block 3rd-party (uBlock origin)

Windows 10 Pro 32 bits Laptop (P4600 CPU, 4GB RAM, 1TB HHD + 4GB SSD-cache)
5. Running MBAE-premium (added Outlook) and Chrome with AdGuard (ads & spy)

Windows 10 Home 32 bits Tablet-PC (Z3740 CPU, 2GB RAM, 32GB SSD + 64GB SD)
5. Running MBAE-premium for Office and internet facing Apps in AppContainer

Note: wife uses Laptop, I am using Desktop, Tablet-PC is used by both, generic security policy is based on:
1=filter internet, 2=reduce surface, 3=restrict rights, 4=deny execution, 5=mitigate threats
*Pretty Good Security still works on Windows 10 32 bits version to install Software Restriction Policies (SRP)

 

Windows 10 Pro x64
Windows Defender + UAC (Always Notify) + Windows SmartScreen
Windows Firewall Control
HitmanPro.Alert
Chrome w/ uBlock + HTTPS Everywhere + LastPass

 

Microsoft Windows 10 SL x64
- Standard User Account
- User Account Control, always notify
- SmartScreen Filter: enabled, get administrator approval
- Internet Explorer: Enhanced Protected Mode
- Windows Defender: disabled
- Windows Firewall: enabled

Mozilla Firefox 42 64-bit
- Master Password enabled
- µBlock Origin
- DownThemAll!
- No Java, Flash enabled on a couple sites

Kaspersky Anti-Virus 16
- Protection Defaults
- Scheduled weekly scans

EMET 5.2
- Maximum security settings
- Popular software added

SyncBackFree 7.3
- Back-up every three hours
- Mirror important documents and media to separate storage

pfSense 2.2.5
- IPv4 only, block IPv6
- Snort IDS/IPS configured on both WAN/LAN interfaces; blocks WAN violators
- Snort rules: Snort VRT Free Oinkmaster, Snort Community, Emerging Threats, OpenAppID detectors
- Added Snort suppress list for false-positives
- pfBlockerNG Inbound and Outbound behavior defaults
- pfBlockerNG Malware Domains List, Spamhaus DROP, iBlocklist Spyware/Hijacked/dShield/Webexploit
- net flow monitor via ntopng

 

Good Evening! Outpost I.S.9.3...Heimdal Pro...ZAM Pro...Sincerely...Securon

 

Hello Securon,
How is Outpost on your system? Last time I tried it it slow down my computer to a crawl.

 

W7x64, EMSISOFT Internet Security 11

 

Not much has changed on my system. I have Windows 7 SP1 x64 installed and use this setup:
security ~ Software Restriction Policies, User Account Control,
privacy ~ Sandboxie, uBlock Origin, Freedome VPN,
backup ~ Macrium Reflect Standard,
on-demand scanners ~ HitmanPro, Emsisoft Emergency Kit, Avira PC Cleaner, Malwarebytes Anti-Malware.

 

@Minimalist, why categorize Sandboxie as privacy, not security?

Flushing client side data in the sandbox, does not flushes browser fingerprints stored is portals (a booking website for instance recognize your return visits and interest for specific hotels or flights). Freedom VPN is supposed to protect you from those tracking tactics.

Regards Kees

 

I use SBIE manly to increase privacy but partly for security also.
Client side data is where it improves privacy. It redirects all browser writes to RAM disk and it flushes that data when browser is closed (flush is also done when computer is restarted with no possibilities to "undelete" that data).
Privacy on server side is not protected by SBIE. It's partly covered by uBlock Origin and partly by VPN (hiding my real IP). Right now I don't use any additional anti-fingerprint solutions and protections.
When it comes to security I use SBIE to prevent browser from accessing my personal data.

 

Added Malwarebytes Antimalware trial in real time. So far so good.

 

Good Morning! Antarctica! So Far the newest version Outpost I.S. 9.3...is very fast and completely bloat free...very impressive! Sincerely...Securon

 

I've uninstalled MBAM PRO and MBAE Free in favour of Emsisoft Anti-Malware. I've used it before and continue to be impressed by its lightness and power. Truly a first class product.

 

Nothing much has changed here: KIS, MBAM Pro, MBAE Pro, AdwCleaner and VT Uploader, Firefox supported by UBlock Origin, Iperius as backup software, HitManPro removed (not needed). That's all, and I hope this is sufficient. Anything else I should use?

 

Avira (Free)

Malwarebytes (Free)

Malwarebytes - Anti - Exploit.

Running on Windows7(64 bit) Home Premium and Firefox 42.0 for the browser.

Always,
Wildman

 

Security Policy (1=filter internet, 2=reduce attack surface, 3=deny execution, 4=mitigate execution risk)
1. Windows Firewall 2-way, Norton DNS (malware filters), AdFender (ads+trackers)
2. Disabled IE11, WMP, remote, sharing, unsigned install, shell+scripts (GPO/regedit)
3. Set Basic User as default SRP (group policy/PGS*), allow Run as Admin for installs
4. Prevent Smartscreen bypass, disabled macro/add-in/activeX with Office trustcenter

Windows 10 Pro 32 bits Desktop (G3240 CPU, 4GB RAM, 64GB SSD + 2x500GB HD)
4. Chrome click to play plug-ins, allow scripts from NL+COM, block 3p (uBlock0)

Windows 10 Home 32 bits Tablet-PC (Z3740 CPU, 2GB RAM, 32GB SSD + 64GB SD)
4. Running MBAE-premium with all internet facing applications in AppContainer

Windows 10 Pro 32 bits Laptop (P4600 CPU, 4GB RAM, 1TB HHD + 4GB SSD-cache)
4. Running MBAE-premium (added Outlook) and Chrome with Privacy Badger

*Pretty Good Security still installs Software Restriction Policies on Windows 10 - 32 bits version

 

Panda Free
Glasswire Firewall Free

 

Built-in Windows security:
Standard User Account = Enabled
Windows Defender = On (Adware protection added via registry, Scheduled Task set to update definitions every 2 hours)
Windows SmartScreen = On
Windows Firewall = On
UAC = Always notify
Windows Update = On
Security & Privacy tweaks applied

Network:
Router NAT
Powerline adapters
Manual configuration
Verisign Public DNS (Per machine)

Third-party real-time protection:
Blue Coat K9 Web Protection
EMET 5.5 Beta = Recommended security settings, All known vulnerable applications added

Browser:
Mozilla Firefox
Adobe Flash = Ask to Activate
DuckDuckGo search engine
uBlock Origin
Security & Privacy tweaks applied (about:config)

On-demand:
VT Hash Check

Other Tools:
CCleaner
PrivaZer
Autoruns
O&O ShutUp 10
Spybot Anti-Beacon
VPN (Occasional use on mobile devices)

System structure:
No personal or important files are ever present on drive(s)
Small amount of installed software

 

@Tyrizian
hi there. do you mind if i ask what those security & privacy tweaks that you applied both for windows & ff are?

 

Not sure about the Win tweaks. But for FF see: https://www.wilderssecurity.com/thr...etup-these-days.111264/page-1485#post-2532524