What is your security setup these days?

Run MBAM or a-squared now

 

I know MBAM and A-squared will detect it, because they have really have some false positive problems...So i am not reluctant to run them.

 

Realtime
DefenseWall Personal Firewall v3

Light virtualization
Shadow Defender 1.1.0.325

Back-up
Macrium Reflect

OpenDNS
Opera 10.53

 

So far so GOOD!!!
I want it as a kepper, but currently im using it in learning mode, ill have to wait until i switch it to normal mode to see if theres too much pop ups or i mean to see if it annoys my bro hahaha

 

Windows XP Pro SP3 [Administrator Account] (No Realtime AV Setup)
(DEP/ACL)

Realtime:

• Windows XP Firewall
• GeSWall 2.9 Professional Edition [15-day TRIAL] (System-wide Intrusion Prevention System)
• Prevx SafeOnline v.3.05.136 Beta (Browser Protection)
• Windows Defender (Application Execution agent: OFF)
• MBRGuard (Master Boot Record protection)
• Peerblock Beta (IP Blocklist)
• Deepfreeze (System Virtualization)

On-Demand:

• Macrium Reflect [FREE] (Disk Imaging)

 

That looks a lot like one of mine Konata.

 

what is your plan when something slips by on your defensewall? i dont see any on demand scanner

 

You mean "if" something slips by?
Well then I would simply reboot and discard my current shadow session (shadow defender)for another one.

 

Hmm I hardly suspect anything will ever slip by

 

Win XP - Pro. with SP3 (Auto Updates ON)

NAT SPI Router Modem

Immunet Protect
Zemana AntiLogger
Peerblock Beta
Hostsman
AntiARP
USB Disk Security
Geswall Free
Comodo Time Machine

Firefox 3.6.3 (Adblock Plus + WOT)
MBAM (On demand)
SuperAntispyware (On demand)
Ccleaner

 

do you guys trust imunet protect? as primary Av i mean

 

IMO the detection is okay but, I personally don't trust cloud technology.
you should read immunet EULA whether you agree in its data collection.

 

Windows XP Pro SP3 [Administrator Account] (No Realtime AV Setup)
(DEP/ACL) (Unstable... doing a reformat)

Realtime:

• Online-Armor Personal Firewall FREE (with HIPS features)
• GeSWall 2.9 Professional Edition [15-day TRIAL] (System-wide Intrusion Prevention System)
• Prevx SafeOnline v.3.05.136 Beta (Browser Protection)
• Windows Defender (Application Execution agent: OFF)
• MBRGuard (Master Boot Record protection)
• Peerblock Beta (IP Blocklist)
• Deepfreeze (System Virtualization)

On-Demand:

• Macrium Reflect [FREE] (Disk Imaging)

 

LOL, thanks man.
These sigs really takes time and PATIENCE hahaha

 

Windows XP Pro SP3 [Administrator Account] No realtime AV
(DEP/ACL)

Realtime:

• Windows XP Firewall
• cFosSpeed Firewall (more info below...)
• Peerblock Beta (IP Blocklist)
• Avast Network Shield (URL Blocker and Intrusion Detection System)
• GeSWall 2.9 Professional Edition [15-day TRIAL] (System-wide Intrusion Prevention System)
• Prevx SafeOnline v.3.05.136 Beta (Browser Protection)
• MBRGuard (Master Boot Record protection)
• Deepfreeze (System Virtualization)

On-Demand:

• Macrium Reflect [FREE] (Disk Imaging)
• Avast 5 Free Antivirus

Browsers: (ACL Protection)

• Google Chrome (--safe-plugins -incognito) [GesWall]
• Internet Explorer 8 (All security levels set to high) [GesWall]

Some random crashes but overall its stable.

EDIT: I might try Panda Cloud AV on its next official update.

Source: http://www.cfos.de/speed/documentation/options_e.htm#link_firewall

Screenshot:

 

not trying to offend you konata, but you seem a little too obsessed with your security set up lol. more obssessed than jmonge

 

Actually I've noticed that too... I'm wasting alot of time.
I think I'm going to settle now with my current setup.

I need to find a way to earn money online now as I don't have any source of income

 

Current setup is very light. Maybe too light. But if it fails me, well, that's what Macrium Reflect is for.

Base:
- Static XP SP3 core (Macrium Reflect image)

Hardening:
- Seconfig XP and SafeXP
- Autorun disabled via registry (as always)
- Default object owner for admins changed to Admin group (on install)
- SRP limited-user restrictions on all internet-facing apps, viewers, editors, and media players
- DEP enabled, remote help rubbish disabled

On-demand scanning:
- MBAM
- HJT
- SAS

Firewall:
- Windows XP Firewall (all exceptions disabled)

And that's it.

The idea is simple, don't let anything run as admin unless I deliberately start it as admin. MBAM and SAS are there on-demand to tell me if it's wise to start something as admin. Otherwise, autorun being disabled means that software won't install automatically from external media, and the SRP restrictions (plus DEP) should (at least in theory) prevent nasties that attack the browser from getting admin privileges.

The one big hole I can see here is userspace keylogger detection. The SRP restrictions don't completely protect against that, so I should probably be using a realtime defense of some sort. Snoopfree maybe? Is that still maintained?

(I would use PrevX Free, which appears quite handy for telling when you're infected; but between PrevX's business model and their false positives I want nothing to do with them.)

 

yo wutsup you got a point you litle bugger

 

Not in my opinion.
Not with what you use.
An occasional scan or two once in a while is not a bad idea though.

 

Switched to MBAM Pro and trying out OpenDNS (without filtering for personal reasons )

 

k thanks ill copy your setup lonewolf and i hope it pass my tests. 1 more thing anyone of you use itunes cause i use it for my ipod and iphone but i have to disable always defensewall just so to be able to sync cause if i dont disable im always getting errors




1 more thing im on windows 7 and i used the imaging built in there but havent tried to restore to it yet. does anyone has testimonials about how good the built it windosw 7 system imaging and how is it compared to macrium reflect? im planning to use it also

 

Well this is going to stay for some time on my play PC (still recovering from rugby accident, so plenty of time to experiment)

XP Pro

Realtime
* Comodo Time Machine protecting Programs partition (all temporary data folders are moved to Temp partition, all user data like mail and documents to data partition. to reduce updates of C:\ partition, hence reduce data replication by CTM driver)

* Windows XP FW inbound protection

* Bufferzone sandboxes new programs and scripts (simular Comodo Sandbox)
* Bufferzone denies untrusted to go outbound (only Chromium allowed)

* Running ADMIN with Software Restriction Policy on data partition (deny), allow on temp partition and running office and internet facing as limited user

* IE8 + keyscrambler free + AVG Linkscanner free for daily browsing

* Chromium sandboxed in BZ (simular to Sandboxie) for dodgy browsing/testing

On demand
* Hitman Pro
* Panda on-line Active Scan
* Microsoft on-line One Care scan

Regards Kees

 

I always enjoy watching your signature change. I love the colors and shades (Panda).

 

new and improve security set up for my xp2 is
Blue Point Security 2010
Mamutu
HitMan Pro