What is your security setup these days?

using Deepfreeze 8.1 currently although I still have some issues regarding Data Igloo cause I can't Redirect my user Profile to a thawspace. My user Profile is connected with my Microsoft account and Data Igloo keeps telling me that the user Profile is in usage and you can't Redirect a user Profile that you are currently logged on to. But it is the same even when I Switch accounts and try it from a different one....Oh well I will fix this sooner or later.

Careful with the new installer of Deepfreeze as it crashes on Installation when it detects a Ramdisk on your System. Turn the ramdisk off before Installation. You can turn it on again afterwards.

 

Thanks for the info

 

Windows XP Home SP3 (all updates) Admin account behind a router
1 Panda Antivirus Pro 2015 (unknown applications set to block)
2 Google Chrome starting limited with PsExec and plugins clicktoplay (μblock: Easylist, EasyPrivacy, Peter Lowe’s Ad server list, Dan Pollock’s hosts file, hpHosts - Ad and Tracking servers only, MVPS HOSTS)
3 Secondary browser Firefox starting limited with PsExec (NoScript block all javascripts)
4 Norton DNS
5 SpywareBlaster (Custom blocking list)
6 No Java installed


Light - Secure - SetAndForget

 

Using Sandboxie v4.13.4,AppGuard v4.1.45.1,Hitman Pro build 225,Hitman Pro.Alert CTP 3, Adguard 5.10 and LastPass Premium on Windows 7 Ultimate x64

 

Updated Sandboxie to v4.13.4 also. Am trying out RequestPolicy extension in Palemoon. Will see how it gets along with NoSript and Ghostery.

 

After failed windows 8.1 update, changed setup of Asus T100 to default (Windows Defender + Smartscreen) plus a few mitigations (EMET, UAC allow only signed, ACL deny execute for Everyone for internet folders), also removed non essential ASUS stuff which was not ASLR enabled.

 

panda cloud free - private firewall - hitman pro alert free

 

Current Setup
Online Armor, NOD 32, AppGuard, and Shadow Defender

Primary Setup over the years
Online Armor: 2003-2014.
NOD 32 AV Only: 2003-2014.
AppGuard: 2007-2014.
Prevx: 2002-2010
Webroot WSA: 2010-2013
Returnil Virtual System: 2006-2008
Shadow Defender: 2008-2014

Next choice of AV
Kaspersky, Avira

Other Security Software I have used
Kaspersky
AVira
Avast
Bitdefender
Norton
Sygate Firewall
Look 'n' Stop Firewall
Jetico Firewall
SpySweeper (2001-2006)
ProcessGuard
System Safey Monitor
Spyware Doctor
CA eTrust PestPatrol
Spyware Terminator
CyberHawk
Mamutu
VoodooShield
ASquared
CounterSpy
Spybot Search & Destroy
Malware Defender
Private Firewall
Outpost Firewall
Comodo Firewall
Sandboxie
DefenseWall
BufferZone
GesWall

Software I may add to my primary setup soon
Exe Radar Pro
EMET 5.0
VoodooShield
MBAE
HMPA

On-Demand Software I use:
MBAM
HerdProtect
Emsisoft Emergency-Kit
Hitman Pro
GMER
HijackThis

 

1) Outpost Firewall Pro 9.1, SpyShelter Firewall 3.1, AppGuard 4.1.45.1
2) VMware Wokrstation 11(Beta), Sandboxie 4.13.4(Beta), Shadow Defender 1.4.0.553
3) Paragon, Parted Magic
4) Malwarebytes Anti-Malware 2.0.2.1012, RescueCD Avira & Kaspersky

 

20+ clients attached to my network (avg) at home.

Connection/Multi-Homed:
WideOpenWest 60Mbps Cable Connection WAN1
AT&T 10Mbps DSL - Multi-Homed, Failover via WAN2 on the USG60 if the WideOpenWest drops.
AT&T 4G LTE Hotspot Box - Provided by work for free, in the event everything else fails.

Frontend:
Motorola DOCSIS3.0 SB6141
Zyxel USG60 NGFW-BND (Next Generation Firewall - Bundle) This offers Kaspersky AV scanning on WAN (Proxy/Flow), COMMtouch+Bluecoat URL Filtration on the WAN, as well as extensive IPS/ID packet inspection.
Zyxel Enterprise WAP's integrated into the USG60 acting as a controller.
https://www.cdw.com/shop/products/ZyXEL-USG60-security-appliance/3423238.aspx

Systems:
Win 8.1x w/Tweaks+Lockdowns
ESET Antivirus (Default Settings), Trend 2015. (depending on machine, situation)
Opera w/uBlock, HTTPS Everywhere

Nothing else needed at all, since the USG60 is pretty much bulletproof I consider ESET optional, but have it as a final layer just in case. In 4 months of running this setup over 25 clients in the home have never had an infection. Verified with HMP, HerdProtect, and MBAM on demand scans on each performed monthly. I have considered removal of ESET for ultimate speed of each machine, but it's cheap, and a good insurance policy.

Backup/Redundancy
Lenovo IX4-300D 12TB Raid10 Network Access Storage (NAS)
3X Cyberpower 1500VA AVR UPS
Generac 20,000 Watt Air-Cooled Aluminum Enclosure Natural Gas Powered Standby Gen w/Transfer Switch

Given the network security, I DMZ policy the DSL (when not in failover capacity) a honeypot system for research purposes, running VMWare. (obviously) I also run multiple servers in the home, including an FTP, Security, Camera, etc. I'm paid to do some of this as a disclaimer, but don't generally work out of the home more than a few hours a week. I do run multiple VLAN's, and have several subnets for isolation purposes, and VPN action into work, etc.

 

Windows 7 admin account

Windows 7 firewall behind router

AppGuard on lockdown
WinPatrol paid
Zemana Anti Logger paid
Malwarebytes Anti Exploit free
Voodoo Shield trialing right now
DNS Trigger

 

Haven't you tried Sandboxie at least once?

 

Present setup on Vista/32
on real-time: system's FW, SpyShelter Premium, VoodooShield
on demand: Shadow Defender, EEK, Crystal Security, Avz Antyviral Toolkit, Blowfish Advanced CS
browser: Firefox with NoScript, Bluhell Firewall

 

Good Morning! Vipre I.S.2014...WSA Security Plus...and HMP. Sincerely...Securon

 

I just put the DoD version of McAfee on an older laptop.

I have not used McAfee in over a decade.

It's really smooth now. I don't think I'll put it on my primary systems as I'm pretty happy with what is on there now, but I think McAfee is making a come back.

 

I had to refuse from Emsisoft AM (lic) as after every switching on PC slugged first 5 min. Still choosing among combos with OA, CF, 360 TS/IS, Baidu, EMET, PCAV.

 

Good Afternoon! Frank! Agree with your assessment of McAfee...only problem I had with it was when I set up my Scan Schedule it wouldn't Scan at the preset time.That to me is a Major Glitch. Otherwise as you mentioned a Big Improvement...which is Good to see. Sincerely...Securon

 

Yes, I forgot to mention Sandboxie. I have used it several times. I'm sure there are plenty more I did not list. I just jotted those down off the top of my head. I was in a bored mood. I added it to the list with a couple of others.

 

Securon, how is Vipre IS?

 

Good Evening! sportsfan7700...Vipre I.S. itself is excellent. No lagging or bloat! Only one small problem...while running a deep scan or a custom scan it takes way too long. As a result I removed it and re-installed Avira A/V Pro...in tandem with AppGuard. I have to contact the people at Threat Track and ask them when their ever going to introduce some form of Cacheing or Digital Fingerprinting...to remedy the Scan Times. Sincerely...Securon

 

Home Land Security?

 

Desktop- XP Pro SP3 - Secondary Admin, Default Deny SRP, Barebones host hardening

Router w/SPI (hardwired)
Comodo FW/D+ 5.10
Sandboxie 3.76
Shadow Defender 1.1.0.325
Macrium Reflect 4.2
TrueCrypt 7.1 - FDE

On Demand Scanners: VT Hash Check 1.01, MBAM Free, Hitman Pro, TDSS Killer, GMER

Firefox 27.0.1 - NoScript, ABE, Calomel SSL Validation, CS Lite Mod, HTTPS-Everywhere, Private Tab, RequestPolicy, WOT, EHH4ABP, Youtube ALL HTML5
No Plugins, Also no Flash, .NET FW, PDF program, JAVA, or IE

Macbook- VM/Debian, 2xVPN, TOR/Firefox

 

I'm still using no antivirus software, or any kind of real time protection. I just do very occasional scans with MBAM.

Periodically I check Softpedia and download.com for new AV software, and if anything looks interesting I'll give it a try. But, I usually end up uninstalling it quickly.

When I find an antivirus which is light enought for my liking, I will use it. Until then I'll stay unprotected, and virus free.

 

Good Morning Securon!

Thank you for the McAfee tip. I'll test it to see if I get the same result.

And..... stay sicher my friend.


-Frank

 

Good Morning! Frank! I'd be interested in the outcome of Setting Up the Scan Schedule. Sincerely...Securon