What is your security setup these days?

Windows XP SP3
Avast Free 10.4.2233;
Agnitum Outpost Firewall Pro 9.3 (maximum security settings + HIPS):
Malwarebytes Anti-Exploit 1.12.1.109;
NoVirusThanks OSArmor 1.4.3 (all settings enabled including Advanced);
Comodo Memory Firewall 2.0.4.20;
MVPS Hosts file;
OpenDNS.

The above all play nice together.

Frequent scans by SuperAntiSpyware, Avast and Malwarebytes Antimalware on-demand scan almost never report evidence of malware.

Internet router uses Stateful Inspection. Gibson Research ShieldsUp!! confirms full stealth and no UPNP.

With so few updates after End-of-Life, security software like Outpost and OSArmor can be set to the max.

I do not use this system for online banking and purchasing or any other privacy/confidentiality sensitive purposes.

 

Btw a user in our forum reported that Outpost was bypassed by ransomware a few months ago here (in Bulgarian).

https://www.kaldata.com/forums/topic/245234-%D0%BF%D0%BE%D0%B4%D0%BF%D0%BE%D0%BC%D0%B0%D0%B3%D0%B0%D0%BD%D0%B5-%D0%BD%D0%B0-%D0%B0%D0%B2-%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%B8%D1%82%D0%B5-%D1%81-%D0%B4%D0%B5%D1%84%D0%B8%D0%BD%D0%B8%D1%86%D0%B8%D0%B8-%D0%BE%D1%82%D0%BA%D1%80%D0%B8%D0%B2%D0%B0%D0%BD%D0%B5-%D0%BD%D0%B0-%D0%BD%D0%BE%D0%B2%D0%B8-%D0%B7%D0%B0%D0%BF%D0%BB%D0%B0%D1%85%D0%B8-%D1%87%D0%B0%D1%81%D1%82-18/?do=findComment&comment=4407287

Outpost is a good software (even abandoned) but I would advise you to add some kind of anti-ransomware protection (better than OSArmor) but unfortunately most of the tools are not supporting XP nowadays so be careful.

I still remember my protection setup back in the XP days. I loved MalwareDefender and OSSS (not installed together of course) but I guess they will be vulnerable to ransomware as well currently.

 

Been using Ubuntu 19.10 since November or thereabouts. Probably the best and snappiest version to date. Fully intend to move to the LTS release in April.

 

Gonna try Linux since Microsoft is being a dick about ending W7 support. I'll probably end up thanking MS for the push.

 

If you leave off the bit 'about ending W7 support' from that first sentence it kinda sums up my feelings when I took the same plunge . Back having a good test out of Win 10 again though.

If you're still a Sandboxie and some other stuff user Firejail might be something you want to look at if you make the move. While very different under the hood you can get similar results with it. TBH though for a while at the start I really replaced my Windows security software flip flopping (albeit usually around what to partner with SBIE) for distro hopping. Linux biggest strength is the variety of distros and sofware available to chose from a ridiculously wide source of very commited developers. Unfortunately it is also its biggest drawback. If the best from each community got together there would be no debate about what to use. It would be best OS out there by miles. It is just not like that though. Anyway sure the Unix forum on here will tell you all you need to know. Anyway back on topic.

On Win 10 pro x 64 currently only have SBIE (container on RAM drive), OS Armor with most boxes checked, block execution in user space and some exceptions to allow my portables on another drive to run and Shadow Defender. FF as browser with UBo at medium and trying to tame privacy issues inherant in the OS with O & O shut-up and thats about it. Runs OK but I see Andreas and Tony have stepped back a little again and SBIE is in transition so we'll see what the future brings.

Still dualbooting with Manjaro KDE (only really Firejail with private home flag on browsers and again only because I'm a SBIE refugee probably) and have a Neon back-up to bring in if the whole Windows experiment doesn't pan out. Not that it matters much, but IMO the latest KDE Plasma desktop is the best currently available across all platforms......although as always in Linux 'others are available'

Cheers

 

I am that.

Appreciate the input, Elwe.

 

Sphinx Firewall
AppGuard Solo
ShadowDefender
Raxco InstantRescue

 

Simple is better. WD with Configure Defender and MBAE.

 

Simplest.

Although I usually end up adding stuff, EAM, HmP.A, even testing e.g. BFP. Not really out of particular concerns, as I doubt I'd ever get infected.

And I thought I'd cancelled AppGuard SOLO, but it renewed (reduced price though) so I have that too.

Macrium Reflect is probably my biggest protector though.

 

I replaced my computer so now I'm on Windows 10. Still I have same security setup as on previous system.

Macrium Reflect
Kaspersky Internet Security
SUMo
uBlock Origin

 

Kaspersky free cloud
Malwarebytes firewall
Sandboxie

 

For Win7:
RD-Drive Image plus Toshiba external HD
OSArmor
EXE Radar Pro
SecureAPlus Essentials
Win FW + Webroot (for its FW)

 

I'm not that bright. Since 2000 I have been broadband internet connected and in the intervening 20 years have not experienced a single malware intrusion or activity. I have not done anything special. For 18 of those years I have been protected by Agnitum Outpost Firewall (not after Windows 7) and Avast Free. Am I lucky or what? Is this malware really a threat? I have kept my various Windows versions up-to-date including XP although the POSReady updates for XP fell apart in 2018. Mr Nadella's cost-cutting of testers seemed to have buggered the updates for my pre-SSE2 processor driven XP system. Even so, since POSReady updates effectively ceased there have been no malware events.

I scan with AV routinely and hardly ever is malware identified and I cannot remember when that was. PUPs are a little more frequently detected. So what's this security palava all about? Surely using OpenDNS since about 2010 cannot be the answer. What I have said about my own systems also applies to those of friends and family. That's more than ten Windows systems and none have fallen victim to malware or even had malware detected.

I haven't a clue what I have been doing right so why have the Windows systems I have been administering for the last two decades lived such a charmed life? OK, I have introduced protections like MBAE and OSArmor but surely these are not totally foolproof.

 

The apps vary often, but I always use: Regrun Security Suite Platinum of Greatis[.]com

 

Yes you are. Your posts in this forum show that you are very bright. Don't ever bad-mouth yourself.

In my opinion, your main security protection is that you, your family, and your friends, are bright and exercise good judgment about the use of your computers as to which email you do & don't open, which websites you do & don't visit, etc. Common sense is THE most important security device, PERIOD!

Most targeted hacker attacks are against banks, hospitals, military outfits, big companies, celebrities, etc. Everyday folks are not usually the subject of targeted attacks. Most of the nasty stuff that tries to lure everyday folks will come from websites or email offering get-rich schemes, sex, miracle cures, porn, etc. Bright folks instinctively stay away from that crap.

While nothing is totally bullet proof, MBAE & OSArmor are definitely excellent protection. I'm pretty sure that you had some other security besides that. However, I'm sure you already know that continued use of outdated OS such as XP is risky so, yes, you have been fortunate to a degree. That being the case, I do hope that you use Macrium Reflex or similar software in order to image your computers to a free-standing HD every few days or so, and retain those images for a month or so.

 

Thank you bellgamin for those kind words. I have no problem with being self-critical and would rather appear to be that than boastful. I take frequent backups as and when I feel like it. Acronis 2011 is still useful.

Your comments are very helpful to me in setting a context for my security aims. I work in isolation and so points of view like yours are very valuable. I will say that being handy with Windows security is a good way of keeping friends.

 

Operating system
Win10 Home 64bit ( version 1909, build 18363.693 )

Firewall
Windows Defender Firewall

Antivirus
Webroot SecureAnywhere Internet Security Plus 9.0.27.64

• Firewall/Web Shield: warn if any process connects to the Internet unless explicitly allowed
• Heuristics: warn when any new program executes that is not specifically whitelisted

On demand
AdwCleaner, HitmanPro

Others
NoVirusThanks SysHardener

Privacy
Windows Privacy Dashboard, O&O ShutUp10

DNS
CleanBrowsing DNS - Security Filter

Browser
Google Chrome with the following extensions:

• Close & Clean
• Dark New Tab
• Join windows
• Trace - Online Tracking Protection
• uBlock origin
• Webroot Filtering Extension
• WebRTC Control
• WebRTC Protect

 

WD with Configure Defender and SysHardener.
Windows firewall.
UBO, Privacy Possum and Malwarebytes Browser Guard in Chrome.

 

Firewall & Anti-Virus:
Router NAT/SPI (Password Protected) (McAfee Secure Home Internet)
Windows Firewall
Emsisoft Anti-Malware 2020.3.0.10024 (+MVPS Hosts File)

Blocking/Hardening:
AppGuard 6.2.9.1113
HitmanPro.Alert 3.8.2 Build 867
Quad9 DNS

 

Connection: Cable Ethernet Public Network connection + covered up screen camera on laptop.

OS: Windows 10 home (64 bit) version 1909 build 18363.720 + UAC Max + Windows defender SmartScreen set to 'warn', User account: administrator.

DNS: Quad9, Remote assistance disabled.

AV: Kaspersky Internet Security 20.0.14.1085 (i)

Browser: Google Chrome v. 80.0.3987.132 + uBlock Origin + SpywareBlaster v5.6

Virtualizer: Shadow Defender version 1.4.0.680 (default configuration) always on, no exclusion/commit pre-selected.

Backup: Macrium Reflect home edition (64 bit) version 7.2.4744 [UEFI], (highly recommended).
Macrium Image Guardian turned on
Important data: kept outside on unplugged USB hard drives

 

Talk about Paranoia!

 

Maybe I'm a bit paranoid, but most Wilders members are, otherwise we wouldn't be here. There are reasons though for my paranoia: I use cable Ethernet because I don't want my brain to be exposed to Wi-Fi signals in the room for long periods of time and furthermore the signal can't be picked up by another apartment, above or below, although exposure to signal is my main concern.

The covered up screen camera is due to my location, I live in Seoul, and lately there has been a spate of cases of hackers spying on people, like using the laptop camera (or smartphone camera) to record what people are doing in their rooms and then uploading the material on the internet, most targets are women and some of them even committed suicide out of shame and embarrassment (horrible people).

I keep almost all data on USB hard drives unplugged because of security against ransomware but also my laptop is always lean, consisting only of the operating system and installed programs, which means daily incremental backups lasting 50 seconds to 1 minute and restores done in about 3 to 4 minutes.

 

Good reply, Osaban.

 

Fair enough. I appreciate your response. I was genuinely interested by the way not picking on you. Cheers.

 

I concur. Gotta do what's right for you, first and foremost.

Switched back to uBlock Origin with some imported lists versus the built-in ones. AdGuard for Windows was spontaneously toggling itself off and I couldn't didn't want to find the trigger for that. So, it's off in a corner for time-out, possibly permanently.