What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,175
    OVVERHIPS-ED
     
  2. Warklen

    Warklen Registered Member

    Joined:
    Jan 17, 2009
    Posts:
    112
    My new setup is in my sig...... Fast and Light :thumb:
     
  3. Bio-Hazard

    Bio-Hazard Registered Member

    Joined:
    Jan 10, 2007
    Posts:
    529
    Location:
    Cornwall, UK
    ACTIVE:

    XP SP3
    Router (SPI and NAT)
    Online-armor 3.5 (Paid)
    DefenseWall v. 2.55 (Paid)
    Prevx 3.0 (Paid)


    ON DEMAND:

    Malwarebytes' Antimalware (Paid)
    Anvir Task Manager (Free)
    CCleaner


    BROWSER:

    Firefox 3 with No-scripts, Roboform toolbar, Adblock Plus, Malware Search.

    BACK UP:

    FDISR
    ShadowProtect



    Wifes computer

    ACTIVE:

    Vista SP2
    Router (SPI and NAT)
    DefenseWall v. 2.55 (Paid)
    Prevx 3.0 (Paid)
    Malwarebytes' Antimalware (Paid)

    ON DEMAND:

    CCleaner


    BROWSER:

    Firefox 3 with No-scripts, Adblock Plus.
     
  4. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,571
    ACTIVE:

    XP SP3 Firewall
    Router (SPI and NAT)
    NOD32 version 3.x on two Windows XP PC's, 4.x on 3rd Windows XP PC
    Comodo Internet Security 3.9x (without Ask Toolbar) on Windows 7 RC PC
    Sandboxie (Paid) on all PC's (All web browsers Forced to Sandbox)
    Windows Defender (on 2 of Windows XP PC's and on Windows 7 RC PC)

    PASSIVE:

    SpywareBlaster
    Spybot Search & Destroy with Immunization

    LINKSCANNERS:

    AVG LinkScanner without Toolbar
    McAfee SiteAdvisor Free

    ON DEMAND:

    a-squared Free
    SuperAntispyware Free (Not on Windows 7 RC since it is not compatible)
    AVZ Antiviral Toolkit (Rarely used)

    BROWSER:

    Firefox 3 with Adblock Plus and IE7

    BACK UP:

    Image for Windows/Image for DOS
    Syncback Free

    SECURE FILE DELETION:

    Spybot Search & Destroy
     
  5. BrendanK.

    BrendanK. Guest

    I have to disable OA HIPS due to my sister. So Prevx and TF make up for OA HIPS :(

    But in a weeks time TF will go, and OA HIPS will be turned on :)
     
  6. demonon

    demonon Guest

    New setup for fully patched XP Pro SP3:

    Hardware Firewall
    OpenDNS

    Lua achieved with SuRun
    SRP
    DEP all programs
    KAFU for locking down system further

    Browsing with Opera 10

    On-Demand
    Shadow Defender
    Macrium Reflect
    Syncback free
     
  7. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,175
    NORTON 360
    DR WEB CUREIT
     
  8. PsychEroc

    PsychEroc Registered Member

    Joined:
    May 3, 2009
    Posts:
    14
    I have OA+, is there a RTM or generally available version of OA++ or is it only in beta?
     
  9. Gaeko

    Gaeko Guest

    Trying a new setup

    Vista SP1 (FW On, UAC On, WD Off)
    -> Waiting for SP2 Korean

    NAT/SPI Router
    SandboxIE
    Dr.Web CureIt!
    SuperAntiSpyware Free
     
  10. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    My signature, a NAT router and several on demand scanners.
     
  11. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Basic security level (application level security is futile when you have not taken precautions on network and data level)
    - external off line harddisk image backup/recover with Paragon Free, data backup/recovery with Syncback Free
    - router
    a) partitioned LAN (no traffic between clients - we have a gamer in da house, which is not allowed to access other PC's)
    b) Wireless longest key WPA2 AES,
    c) SSID hidden, new WL clients need a PIN to connect also, changed (ADMIN/USER passwords, IP address of router, name of network)
    d) MAC Address control
    e) DHCP reservation (clients get same IP addres based on Mac Addres)
    f) Network filter on used clients, other IP addresses are dropped
    g) Inbound filter on our own IP addresses (so internal IP addresses from WAN side blocked)
    h) ARP Spoof checking, DDOS/flood attack protection, no respond to Ping from Wan side enabled, UPnP disabled, SPI enabled (limited DPI with Network filter)
    i) Added OpenDNS primary and secondary servers in router (enabled phising protection in OpenDNS, disabled it in IE8 )
    j) Wireless clients the SSID and Router MAC address is preset in wireless card adaptor (this to assures adaptor only binds with Router)

    Realtime
    - Windows FW
    - DefenseWall 2.56 Dutch
    - Windows Defender (Scheduled scan and on-execution disabled for performance reasons)
    - Avira Free Proactive Beta 150 (check on write only ahead heuristics high, smart file extentions)
    - Keyscrambler free for IE8

    Banking/Shopping with IE8, Daily browsing with Chromium


    On demand
    - OSAM
    - Avira hidden objectsscan
    - Panda Anti-rootkit
    - Process Hacker
     
    Last edited: Jun 4, 2009
  12. Capsize

    Capsize Registered Member

    Joined:
    May 25, 2009
    Posts:
    10
    Xp pro:

    router
    Sandboxie
    ThreatFire
    Windows FW
    Avira (scan when writing only.smart extensiosns)
    Chromium for browsing
     
    Last edited: Jun 2, 2009
  13. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    i am very happy and well convince by malware defender+appguard combo;)
    so if you take a look at my signiture the only products for sure that will survive are as follow:appguard/defensewall/malware defender/sandboxie

    note:prevx and my beloved appranger will go out the windows after licence expired:)

    note:the software that will survive will be place in 3 diferents pc's ;)

    xp2(mine)MalWare Defender+AppRanger(untill expired)+AppGuard:thumb: love this combo:)
    vista(wife)Defensewall+prevx(temporary use untill expired)
    vista(son)Sandboxie+MalwareBytes:thumb:
     
  14. arran

    arran Registered Member

    Joined:
    Feb 5, 2008
    Posts:
    1,156
    jmonge just wondering why would you need AppGuard with MD? MD can be configured so it is 100 percent bullet proof. What Malware can possibly bypass MD that you need AppGuard to catch?

    anyway I am currently thinking about adding either Deep Freeze or Shadow Defender to keep my Operating System at a FRESH INSTALL STATUS and for a second security layer after I have finished configuring MD to the MAX. Its possible I might dump defense wall.
     
  15. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    i know i just added a 2 layer;)
     
  16. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    It makes sense, you can set the default to allow Execute of MD and deny execute of the user space. This will reduce pop-ups of MD and assure relative security, combined with LUA environment of some aps.

    As long as MD does implement rules inheritage, it makes sense to LUA with AppGuard when you don't want a very restrictive MD rules implementation (like Arran has problably setup)

    Regards

    Kees
     
  17. trismegistos

    trismegistos Registered Member

    Joined:
    Jan 29, 2009
    Posts:
    363
    The redundancy or double-layered approach is likewise in my case but this time in my firewall set-up...
    I have two redundant software firewalls both have application filterings, both as a stand-alone would be configured to pass any stealth tests, one has SPI and the other an oldversion(latest version is a notorious sluggish bloat), both are configured not to phone home, but both will catch the other from phoning home(counter checking for utmost privacy). Though both are not updated and unpatched and have documented exploits and vulnerabilities and perhaps zero day malwares in the wild, I have my HIPS and bufferoverflow protections to give me no worries. Finally, freedom from endless senseless updates which add complexities adding more surface area or holes to be patched.
     
  18. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    you got my point;)
     
  19. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,166
    Location:
    PA
    Could someone offer some setup advice?

    Avira and Outpost don't seem to run well together on my computer. I'd rather keep Avira. But then what firewall should I use? I'm not going to use Comodo right now. And even though I'm on Vista 64-bit, I'd like HIPS protection.
     
  20. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,166
    Location:
    PA
    OA is coming out with a 64-bit version later in the year, I think. Maybe try the Avira Suite until they do?
     
  21. nomarjr3

    nomarjr3 Registered Member

    Joined:
    Jul 31, 2007
    Posts:
    502
    Removed Rising PC Doctor.


    Now using:

    DSL router
    Avira Antivir
    Online Armor
    EAZ-Fix
    Sandboxie
    Returnil
    External HD (as backup)
     
  22. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    MVDU,
    Vista64 bit architecture and UAC make them much more resistant to malware intrusions. Vista is a lot stronger than XP (Addres Space Randomization, Protected mode, etc). When you use UAC Vista applies limited file and registry virtualisation for 32bits aps (64 bits kernel integrity has not been intruded at the moment to my knowledge). When you want to play with these features see for registry http://msdn.microsoft.com/en-us/library/bb530198.aspx and for files http://thelazyadmin.com/blogs/thelazyadmin/archive/2007/04/26/file-system-virtualization.aspx).

    Intrusion Prevention
    Run UAC as (Admin user ID with LUA rights, prompt on elevation request). With UAC I used Norton's UAC tool for Vista64 (http://www.nortonlabs.com/inthelab/uac.php). To remember my choices.
    On top of this I set Windows Defender to advanced user, selected heuristics and set restore point, deselected scheduled scan and the realtime on execution (scan) agent (Avira does that for you).

    AntiVirus
    Avira Free with heuristics high for real time, low for scan, also set scan for unattended removal (copy to quarantaine, 1st=repair, 2nd = delete), with optimised scan.

    FireWall
    I used this procedure for setting up the Vista FW for my Son's gaming Rig. but I used a trick to collect all the programs needing outbound connections. I first installed Vista FireWall Control for Vista 64 bits (a freebie - short VFWC64), copied all the programs seeking outbound (name and path). Next I used Stem's excellent post to setup Vista's own FireWall:https://www.wilderssecurity.com/showthread.php?t=239750 . Disabled VFWC64 checked whether everything worked and de-installed VFWC64.

    Online security
    Download the freeby Keyscrambler free for IE8 and use IE8 64bits for dodgy browsing and 32 bits for normal browsing (IE8 has cross site scripting protection, smart screen filter etc, 64 bits lacks some plug-ins, but for dodgy browsing this is okay). Register to OpenDNS and let the server do the phising protection (disable it in IE8, will still allow for manual smart screen check).
    Add AVG Linkscanner free for Vista64 to detect exploits in an early stage. Disable the toolbar without disabling the associated plug-in (you won't see AVG security toolbar :)

    Others
    Setup a dirty harry user with restricted rights and setup the regsitry key
    HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System
    as follows:
    "ConsentPromptBehaviorUser"
    User Account Control: Behavior of the Elevation Prompt For Standard Users
    0 = no pop-up, disallow/block when UAC is on and running as limited user account

    Bottom line
    A fast all freebie secure PC.

    Regards Kees
     
    Last edited: Jun 4, 2009
  23. Godlike

    Godlike Registered Member

    Joined:
    Feb 9, 2004
    Posts:
    12
    Location:
    New York
    XP Pro SP3
    NAT/SPI Router
    Outpost Firewall Pro
    Kaspersky AntiVirus
    Malwarebytes' AntiMalware
    SUPERAntiSpyware
    SpywareBlaster
    CCleaner
    Eraser
    MailWasher Pro
    Sandboxie
    Firefox with NoScript
     
  24. Shady92

    Shady92 Registered Member

    Joined:
    Apr 18, 2009
    Posts:
    2
    Can you explain me please? Why to put low heuristics for scan and not set both high? Thanks
     
  25. Creer

    Creer Registered Member

    Joined:
    Jun 29, 2008
    Posts:
    1,345
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.