What is your security setup these days?

I absolutely love ESET NOD32 Antivirus, it is worth any penny. It is my choice, since it is the only program I don't dislike (together with Hitman Pro) for some (maybe a nugatory) reason. After testing a lot of programs I always return to ESET.
Together with the Windows 7 built-in components (firewall, UAC, DEP, SEHOP, SmartScreen-filter) it gives great protection.

By the way, why all the fuzz about zero-day protection? I have never encountered some zero-day malware in my whole life. All the testing and comparing with percents of detection are meaningless, the only thing which matters is how you feel about your product, your own experiences with it in the past. Sure ESET is looks to be degrading in some tests (AV-Test, AV-Comparatives), but it has never let me down. Also it is performing great in the, in my eyes, most relevent tests performed by VirusBulletin (In-the-Wild and RAP).

[Kees1958]

Matthijs,

The same can be said for the opposite: My play PC and wife's laptop only have windows build in:

Windows firewall also outbound application level protection

High rights boundery
- drivers: block unisgned drivers and printer driver install
- UAC: elevate from safe places and deny elevate of unsigned programs

Medium rights world
- RunAsInvoker: all internet facing software running virtualised
- EMET2: all internet facing
- disabled autorun
- wife's laptop internet facing aps run basic user (Vista32 + PGS) and UAC is set to auto elevate (no prompt)
- my play PC (windows 7 32 bits) full UAC without safe desktop prompt

Low rights world
- Chrome (full policy isolation, including all plug-ins) and IE8 (protected mode including adobe reader 10)
- ACL: deny execute on download and mail directory
- 1806: deny download of executables (IE8 ) and allow download but block execution by explorer (Chrome), block can be removed with right click


Hitman Pro, A2 Free on demand for occasional (pre-backup) scan. Never encountered a virus

Going to configure son's play PC with safe-admin alfa this weekend (has new CPU and Mobo on Vista x64). Have not changed setup since three months now.

[Dundertaker]

Quote:

Originally Posted by dja2k

Are you running two firewalls or did you mean "(w/o firewall and proactive)"?

dja2k

@dja2k;

Sorry got stuck with the office abbreviation for "without" = w/o :-)

It's without the firewall and without Proactive module.

girlfriends pc (I maintain it also..tsk):

Win7 PC:
Realtime: Avira Premium ver10 / Prevx(free) / Malwarebytes(paid) / Online Armor Premium 4.5 / Sandboxie 3.5(paid)
On-demand: HitmanPro Build 117 / VirusTotalUploader / Superantispyare Pro

[m00nbl00d]

Quote:

Originally Posted by Kees1958

[...]
Hitman Pro, A2 Free on demand for occasional (pre-backup) scan. Never encountered a virus [...]

Does that, by itself, really tell that no infection has taken place? Do not take this a bad critic, rather see it as me being analytical.

You run occasional scans with Hitman Pro and A2 Free, right before you make image backups (I'm assuming that's what you mean.). Both apps report no infections. Does that really mean nothing is there? It means one of two things: Both those apps cannot detect anything, because they cannot detect, or at the moment you run the scan there really isn't there anything to be found, which is not the same as saying it is clean or that it was clean.

Even running an antimalware real-time is no way to tell it's clean, even less with on-demand apps, IMO.

I know that you have other measures in place, and that you know better, but why believe on-demand scanning to tell you all is OK, and that you're about to backup a clean image? Wouldn't something more aggressive (and, not necessarily confusing/a lot confusing) fit better?

Quote:

Originally Posted by Kees1958

Matthijs,

The same can be said for the opposite: My play PC and wife's laptop only have windows build in:

Windows firewall also outbound application level protection

High rights boundery
- drivers: block unisgned drivers and printer driver install
- UAC: elevate from safe places and deny elevate of unsigned programs

Medium rights world
- RunAsInvoker: all internet facing software running virtualised
- EMET2: all internet facing
- disabled autorun
- wife's laptop internet facing aps run basic user (Vista32 + PGS) and UAC is set to auto elevate (no prompt)
- my play PC (windows 7 32 bits) full UAC without safe desktop prompt

Low rights world
- Chrome (full policy isolation, including all plug-ins) and IE8 (protected mode including adobe reader 10)
- ACL: deny execute on download and mail directory
- 1806: deny download of executables (IE8 ) and allow download but block execution by explorer (Chrome), block can be removed with right click


Hitman Pro, A2 Free on demand for occasional (pre-backup) scan. Never encountered a virus

Going to configure son's play PC with safe-admin alfa this weekend (has new CPU and Mobo on Vista x64). Have not changed setup since three months now.

I am currently also using a machine with probably the best setup I have ever used:

- Windows 7 Home Premium 64-bit, everything on out-of-the-box settings;
- latest (beta) version of all programs I use, also on default settings (IE9, Reader 10, and so on);
- and then the only security program is EMET for all internet facing;
- Standard User Account.

It absolutely rocks . But I will probably implement some of the UAC/elevate tricks and switch back to an Administrator account.

[justenough]

Defender turned off. Mamutu added.

[moontan]

Trying out EMET 2.0

[Ibrad]

Ahh I finally worked out something to do tomorrow. I shall be replacing Windows Defender and SuperAntiSpyware with CounterSpy. If all goes well CS will be moved onto all my machines replacing Defender.

[Noob]

Removed MD and replaced it with Online Armor

[jmonge]

what happened NooB?

[Kernelwars]

Quote:

Originally Posted by jmonge

what happened NooB?

he ran out of aspirin

[1chaoticadult]

Quote:

Originally Posted by Noob

Removed MD and replaced it with Online Armor

Good choice

[Noob]

Quote:

Originally Posted by jmonge

what happened NooB?

Nothing happened, since i'll switch to x64 (64-Bit) soon i was giving OA a try because MD isn't x64 friendly (Testing HIPS that are x64 compatible)

Quote:

Originally Posted by Kernelwars

he ran out of aspirin

Nope, as soon as i re-stock with my Pop Up relievers i'll get it
Hahahaha

Quote:

Originally Posted by 1chaoticadult

Good choice

Yeah, it is good but the startup ARE slower than with MD


BTW, any other HIPS that are FULLY x64 compatible?

[Kyle1420]

AFAIK...
Comodo..

[1chaoticadult]

Quote:

Originally Posted by Noob

Nothing happened, since i'll switch to x64 (64-Bit) soon i was giving OA a try because MD isn't x64 friendly (Testing HIPS that are x64 compatible)


Nope, as soon as i re-stock with my Pop Up relievers i'll get it
Hahahaha



Yeah, it is good but the startup ARE slower than with MD


BTW, any other HIPS that are FULLY x64 compatible?

What Kyle said Comodo

[The_ChamP]

Back to comodo firewall

[J_L]

Shared Network:
Actiontec Modem with SPI Firewall
DyDNS Free (Ads and Pop-ups, Conficker Worm, Phishing, Spyware)

Real-time Protection:
AVG Anti-Virus Free (w/o E-mail Scanner) [UAC Protected]
Comodo Internet Security Premium (w/o Antivirus) [Password Protected]
WinPatrol Free Cloud Edition

System (Windows 7 Pro 64-bit):
Enabled DEP, SEHOP, Default-Deny SRP, Silent UAC
Disabled Windows Firewall, System Restore, Internet Explorer, Autorun/Autoplay
Enhanced Mitigation Experience Toolkit
Spybot - Search & Destroy (Immunize)

Firefox 3.6.12:
Adblock Plus (Malware Domains subscription)
LastPass
WOT - Safe Browsing Tool
SandBoxie Free (+ DropRights & Internet Access Restrictions)

On-demand Scanning:
ArcaVir MicroScan
Avira Free
BugBopper
ESET Online Scanner (Smart Installer)
Emsisoft Free Emergency Kit
Hitman Pro
Kaspersky Virus Removal Tool
Malwarebytes' Anti-Malware
Norton Power Eraser
SUPERAntiSpyware Free
Trend Micro HouseCall

Analyzers:
http://camas.comodo.com/
Sysinternals Autoruns
http://www.urlvoid.com/
VirusTotalUploader

Updates:
Freeware Files RSS
KC Softwares SUMo
NOD32 Update Viewer

Backup:
Paragon Backup & Recovery Home Special Edition


Ubuntu Lucid Netbook:
Chromium --safe-plugins, AdThwart, LastPass, WOT
Regularly updated. Sudo only, no root

[The_ChamP]

Toying with my setup .. added avast - only web and network shield

[eugene91]

Trialing Immunet Protect Plus + Windows Defender + Windows Firewall

[trjam]

64 bit-Sandboxie and Hitman Pro

32 bit-Geswall Pro and Hitman Pro

[Kernelwars]

Quote:

Originally Posted by Noob

Nothing happened, since i'll switch to x64 (64-Bit) soon i was giving OA a try because MD isn't x64 friendly (Testing HIPS that are x64 compatible)


Nope, as soon as i re-stock with my Pop Up relievers i'll get it
Hahahaha



Yeah, it is good but the startup ARE slower than with MD


BTW, any other HIPS that are FULLY x64 compatible?

I have been using spyshelter premium for a while..it didnt let me down yet..it has a nice little HIPS component with it too..you can try it

[moontan]

added:
- Norton DNS
- EMET 2.0

since those 2 dont use any resources at all.

[LoneWolf]

RealTime
DefenseWall 3.09
Prevx 3.0.5.219 (w/o SO)

Light Virtualization
Shadow Defender 1.1.0.325

On-Demand
Gmer 1.0.15.15281
HitmanPro 3.5.7/117
MalwareBytes 1.50

BackUp
Macrium Reflect 4.2

Misc
AdMuncher 4.9
Task Manager Pro 6.3.1
CCleaner 3.00.1303
Tuneup Utilities 6.0.1255

OpenDNS ~ Opera 10.63

[1chaoticadult]

removed Emsisoft Anti-Malware & Privatefirewall. added Online Armor Premium, SuperAntiSpyware Pro and MSE v2 Beta

update: removed Online Armor Premium, Added Mamutu & PeerBlock & Privatefirewall.

[Ibrad]

Windows Defender turned off, SuperAntiSpyware removed. CounterSpy installed and activated