What is your security setup these days?

Joker
On your Macbooks

https://www.wilderssecurity.com/thre...etup-these-days.111264/page-1481#post-2518083

 

Chrome was nice but sooooooooooooooo basic.

 

Are you Putin me on? What's your opinion of the current Dr. Web? In the past was very good but haven't heard much lately. Tnx trjam.

 

Good Evening! NIS 2016...Heimdal Pro...ZAM Pro...HMP Alert...Norton Super Light...Very Pleased! Have a Super Boss...Downtown...Groovy...and The Hits just Keep On Coming...Weekend...Everyone! Sincerely...Securon

 

FYI, Norton have done away with adding the year to the title, meaning new versions can be released at any time, not necessarily each year at the same time like what used to happen.

Also NAV, NIS and N360 are being phased out and being replaced by Norton Security and Norton Security with Backup.

 

thank you my friend

 

Windows 10 PRO policy restrictions
1. Disabled autoruns, 16bits, cmd, scripts, aps & risk-ware
2. Block unsigned drivers/executables to install/elevate
4. Enable protection mitigations for dll's and memory
3. Windows Firewall blocking in- and outbound
5. Deny execute Basic User in user folders

Browser security measures
1. IE11 (disabled), Edge is PDF-reader (no flash/javascript/internet)
2. Chrome sandbox with locked plug-ins/extensions/download
3. Only allow scripts/plug-ins from HTTPS and some TLD's
4. Safe Browsing, Adguard (spy and ads blocklists)
5. Deny execute Everyone in internet folders

Safe Admin: 1=reduce surface, 2=restrict rights, 3=mitigate threats, 4=filter internet, 5=deny execution

 

Same setup, running great!

 

Good point, but I do believe that in "paranoid mode" it's basically a HIPS, correct? But yes, I was also thinking about Outpost but I read some bad things about it in the latest thread. And I will never install Comodo again, I have always had bad experiences with it. I have never tried Trend Micro, and I'm not into AV's anyway, most of them are bloated and privacy invading. So all in all it doesn't look too good.

 

Actually I was referring to your previous testing with Trustport HIPS versus the TrendMicro ref.. As I recall, you thought Trustport HIPS was pretty good.

Outpost's Suite w/AV is not that great. However, Firewall Pro w/HIPS is still top rated I believe. To early to tell how it runs on WIN 10.

Paranoid mode doesn't exist anymore in EIS/EAM behavior blocker. They got rid of it in ver. 10. Been a few complaints about that. To bad Emsisoft let Online Armor died. I was hoping someone else would buy it from them. Guess that will not be happening.

Another possibility is Eset Endpoint Security ver. 6. Functionally it is equal to that of the retail version. However, has features lacking in retail ver. such as full wildcard character support in HIPS rules, etc..

 

Added Malwarebytes Anti-Exploit Free to my lineup.

 

Moved to Kaspersky Antivirus, unfortunately on Windows 10, I'm having trouble pinning Start Menu items. Searched around the Internet and found a couple of workarounds, (1) logging in/out and (2) restarting the explorer process.

Good thing MBAE updated to 1.08.1.1044 and fixed conflicts with KAV 16 -- that's one less compatibility issue to think about.

Any of you experiencing the same issue?

 

Turned my D+ back to Clean PC mode on my Win7 Ult. setup and turned UAC back on, (next to highest setting). I've come to find that using Paranoid mode on Win7 is just absolutely absurd... the prompts relentless, because there's so much bloat on that OS running at all times, and things need privileges out the whazoo to function right. I could die of natural causes before I filtered through every single rule for every single thing on a Win7 installation.

 

Interesting. I have it set on maximum and rarely get any prompt. Only when I perform maintenance (update software) or change system settings. I usually expect the prompt and until now didn't get one that would surprise me.

 

~ Removed Off Topic Remarks ~ I never posted anything about Trustport. And I didn't know they scrapped this feature in EIS. BTW, I never liked OA because of several reasons. I think I will give Outpost a try.

 

I was following the posts on it in the Firewall section. Appears the HIPS only works for 32 bit OS's. They never made it x64 compatible.

 

Penny dropped late, did not not noticed the capital P as in Владимир Путин

 

Isn't this HIPS ? From my win7-64bit - Outpost screenies:

 

Yeah, I see the 64bit registry key protection. Does it hook 64 bit processes?

 

Yes, I believe you're wrong, it would make Agnitum look silly. I believe they were one of the first to make their HIPS work on 64 bit systems.

 

I believe the HIPS in Outpost is quite powerful, it always did well in anti-leak testing.

 

Kaspersky running smooth

 

Outpost HIPS working well here on 64 bit and in Matousec Challenge 64 for quite some time.

Regards Eck

 

Windows 10 Home 32 bits Asus Book (Z3740 CPU 2GB RAM 32GB SSD 64 GB SDXC)
1. Disabled unused/unsafe options/services/apps/, enabled recovery
2. Deny elevation of unsigned executables, internet apps in AppContainer
3. Enabled mitigations in registry, disabled active content in Office trustcenter
4. WFW blocks in-and outbound connections, Smartscreen requires UAC consent,
5. Set deny execute in user folders and sdxc-card using ACL and USB Disk Manager

Safe Admin policy: 1=reduce surface, 2=restrict rights, 3=mitigate threats, 4=filter internet, 5=deny execution.
This tablet-book is only used for work, so surfing is limited to cloud services and (searches to) corporate websites.
Disabled wmplayer and internet explorer, using Office Home 2013. All internet facing are W10-apps (sandboxed).

 

In Process explorer, a whole bunch of .exe files show wl_hook.dll and wl_hook64.dll.
Is there a hook lister such as was a good one in XP called Rootkit Unhooker?