If you don't use an AV please post your Security Setup

I thought you were 63?
I am 63 and have never

 

My age changes like my avatar.

 

here is a good one. Go to google and type in trjam and click on images.

 

Don't use an AV.
Anti-Executable and Threatfire are both full time.

Tried to set it up based I want I wanted each piece of software to cover.
Its pretty pain free in usage.

Laptop with OS – XP Home.
Physical
Privacy / ID Theft /Physical Theft :

• Dekart Private Disk 2.02 (special offer)

USB - Prevention :

• TweakUI

Internet
Internet - Prevention :

• Windows XP Firewall
• Threatfire.
• Secunia PSI (online scan) ,
• AntiExectutable v2.2

Installation
When Installing Applications check some/all of these:

• Turn AE Off
• VirusTotal (online scan)
• NOD32(online scan) ,
• KAV (online scan )

Recovery
Recovery from Malware:

• Log-in using XP’s Safe Mode.
• Scan/Remove with MalwareBytesAntiMalware (free)
• Scan/Remove with SuperAntiSpyware (free)
• Scan/Remove with Drweb CureIT ( free)
• SysInternal’s Process Monitor (free)

Recovery from System Crash

• XP’s System Restore ,
• XP’s Last Known Good Configuation.

Recovery from other :

• + ATI 2009 - image saved on separate hard drive - (paid).

 

Found nine newish malware samples this am so far, six aren't hit by Prevx.

 

No av, no scanners - Nix minimal. Light, fast, no hassles.

 

I do not use an antivirus either. You can see what I use by my signature. I believe whole heartedly in virtualization.

 

At the time of uploading to VT only 3 of the 9 samples were hit by Prevx and missed by quite a few others as well.
Result: 8/41 (19.52%)
Result: 6/41 (14.64%)
Result: 7/41 (17.08%)
Result: 3/41 (7.32%
Result: 13/41 (31.71%)
Result: 22/41 (53.66%
Result: 11/41 (26.83%)
Result: 10/41 (24.4%)
Result: 3/41 (7.32%)

 

Here it goes...

Prevention & Detection:
Comodo Internet Security: Proactive Security; Defense+ Clean PC Mode, Firewall Safe Mode, Antivirus Stateful. Using this in Parental Control with Defense+ and Firewall Alerts Suppressed (I still want to see AV Alerts). Defense+ in Clean PC Mode will allow all my applications to run currently in my computer with ZERO Alerts, And Denny all the rest with ZERO Alerts... I keep my "Internet Security" Configuration to switch to, to install applications I know and trust (Renamed it to Install/Uninstall Config).
Sandboxie: To test unknown/new applications when CIS is in "internet security" configuration that might be malware, or applications I don't know/trust (Malware, etc - Only used when switched to internet security mode again, since proactive/parental control will block anything).

Cure:
Comodo Backup 2 RC3 (Soon Final) - To image my system.
Comodo Live PC Support.

The AV in CIS basically is only there to remove known malware instead of completely blocking, Kind of usability to the Prevention approach in CIS.

Cheers,
Josh

 

Laptop 1

OA ++
Sandboxie


Laptop 2

DefenseWall
Vista Firewall

 

COMODO BackUp 2.0.102745.6 RC3 released!

 

Please don't use virus total to make av test, it is a wrong approach..
http://www.prevx.com/blog/106/Why-using-VirusTotal-for-AV-testing-is-a-bad-idea.html

if you want to test av you have to create a new OS image, install only security application (that you want to test), execute the malware, verify if the appl blocked the infection and, at the end, verify that system has not been infected at all...
otherwise the application failed the test.

 

I reckon it's better to hit the installer/exe straight up rather than rely on heuristics or try to clean up after the install.

I only test one app which is used as on demand with VT results being used to get an idea of what I've got.

No harm in helping to get siggys updated in a few good guy's blacklists.

 

What IS wrong when writing a result based on the report of VT is that the results don't make Prevx justice, and Joe has explained this many times. I saw a threat that I knew would be detected by Prevx 3.0 but wasn't in VT, because it uses old engines and technologies in Prevx's case.

 

Virus Total results give me an idea of what I have and I ain't about to test every single app out there.

Besides, my mainstay security doesn't rely on blacklists/heuristics with sample hunting being more of a pastime and which are posted to another forum for anyone to see the results and grab the sample if wanted.

 

I understand that. All I'm doing is delivering their own words once again. What I'm saying is that if you're gonna do a real comparison/result/whatever, when talking about Prevx (atleast, cause I'm pretty sure there might be other software having the same situation) - VT is not what should be used as reference.

 

It is funny how we feel that some products are not like AVs. In the end, they all scan a file or action in one way or another.

 

win xp home
custom services tweek
Acronis.True.Image.Home.2009 v12
FirstDefense-ISR_3.31
appguard
malware defender
firefox portable(noscript, adblocker, betterprivacy, random useragent)

i use fresh image every 2weeks, all the data saved externally on usb,

 

WindowsXP sp3

Router with SPI firewall
Windows firewall
System safety monitor

Online scan every now and then.

I ditched AV almost a year ago and never looked back.

 

i dumped antivirus/antispyware apps since 2007

 

The results from VT for Prevx and for any AV are vastly different from any real world detection results - both with more FPs and less real detections because the engines are entirely different products (at least in our case and I know some others). Ourselves and may other AVs most likely do block the installer exes immediately but its impossible to judge detection by VT results.

We've also had some major inconsistencies with VT recently - files which should have been found by us on VT aren't being found... even ones as simple as the EICAR test virus Still investigating what could be causing the issues but our actual products are completely not effected by the issues.

If you haven't already, it may be a good idea to send the malware samples to various AV submission addresses (see: https://www.wilderssecurity.com/showthread.php?t=132843 and our new one which is report@prevxresearch.com) so that the AV companies can prioritize detection. VT sends samples to the AV companies but they get literally thousands of samples every day so it gets hard to find a single sample - it is more reliable to send it individually via their email addresses.

 

-Firewall Router with Stateful Packet Inspection
-Firewall Router filters: Proxy, Cookies, ActiveX, Anonymous Internet Requests, Multicast, Internet NAT Redirection, and IDENT (Port 113)
-Internet Explorer Blocks: First Party Cookies, Third Party Cookies, and Session Cookies
-Internet Explorer Popup Blocker Enabled
-Internet Explorer Phishing Filter toggled on/off
-AdBlockPro v2.6 for Internet Explorer with Default and Custom Rules
-Windows Firewall Disabled
-Windows Administrative Account with Full NTFS Customized Permissions
-Windows Registry with Customized NTFS Permissions
-No Flash Installed (removed Microsoft's')
-No Instant Messengers Installed (removed Microsoft's')
-No Third Party Firewall
-No Third Party Antivirus
-No Third Party Antispyware
-Weekly Antivirus/Spyware Scans with Microsoft OneCare Online Scanner
-Registry and Internet Cache maintained and kept scrupulously clean and compressed with Special Tools:
CyberScrub, Amust Registry Cleaner, Registry First Aid Platinum, and Microsoft OneCare Cleanup Tool
-Hard Disk maintained and keep Defragmented with Special Tool: Diskeeper v10
-Spot Check System with Microsoft AutoRuns, ProcessExplorer, and ProcessMonitor
-Considering OpenDNS Account

Windows Version and Internet Explorer Version irrelevant as same settings apply to all

Been navigating the Internet for the past six months with safehex and not so safehex with no problems

Just informed that I have won one of the ten Agnitium Outpost Security Suite Lifetime Licenses, this is good news and could not have
happened at an better time. I have been searching for the ideal security suite with powerful firewall minus hardcoded rules that allows
the client full control. I have installed and tried them all, there are some good and there are some not so good, all of them exist one
or more strong points only to lack in other areas. Agnitium Outpost, when installed trial, overall was well rounded out according to my
standards and requirements for protection and usability. The only problem I have is the Worlds economical status, especially here in the
States, has rendered me unable to purchase luxury items.
The Gift of the Free Lifetime License for the Agnitium Outpost Security Suite from Agnitium is Greatly Appreciated by Me.
Now I can beef up my security the proper way.

I believe through my six month experience, that if Cookies, ActiveX, Ads, and Internet Cache are purged from the Internets Navigation,
along with special NTFS Permissions and an Firewall Router, one is "Safe" on the Internet. Some Sites are not accessible under these settings,
but hey, then I have no business being there.

HKEY1952

 

it takes times to detect a malware any thing between 24 hours to a month, soon as you detect it they update them self, what good is av then?

 

Any AV requiring a month to detect a threat is doing something fundamentally wrong Most threats today last for less than 24 hours so adding detection after that window is almost useless.

 

Oh hello proactive protection, how are you doing today?