What is your security setup these days?

added Emsisoft Anti-Malware 6.5,i have these 2 cookie monsters together
dave nice blanket you are building man

 

Thanks man you to.

 

I've made a review of my security setup and thought of posting it here. So here it is:

OS:
Windows 7 Ultimate 32 bit
Administrator user account
UAC disabled
Unnecessary services disabled

Network security:
Router with firewall to block inbound connections. Wireless access secured with strong password. Access from WAN disabled.
Windows 7 firewall blocking inbound connections from LAN. Outbound connections not monitored.
Malware Defender monitoring outbound network connections.

System and apps security:
Malware Defender controlling: application executions, other process activities, system modifications (through file and registry rules), access to and modifying of sensitive/personal data.
Sandboxie: all browsers sandboxed in separate sandboxes. Browsers are run with dropped rights and have no access to personal data.
EMET: system configured to default, apps to maximum (all mitigations). All apps that have internet access and all apps that open files are subject to EMET mitigations.
Denied execution from download folder with MD rules. Script engines and Powershell executables are also not allowed to run.

Data security:
Access and modification of all important data is controlled by MD.
Acronis True Image: weekly backup of system image to another HDD.
Cobian Backup: backup of Outlook PST file and other personal data 2-3 times a week.
Manual monthly backup of all important data to external disk.
Using Keepass for storing passwords (unique password for each login). App and database are under MD protection.
Truecrypt: store sensitive data in encrypted container. Access to container is protected by MD.
Recuva: undelete for accidentaly deleted files.

Internet security and privacy:
Adblock Plus plugin for Firefox and Chrome makes my internet experience clean.
Using Chrome for sites where I have to log on. Using Firefox for other casual surfing.
No third party cookies allowed.
Flash doesn't use local storage.
Sandboxes are automatically deleted when closing browser.
ESET Nod32 AV monitors all internet traffic from browsers and Outlook. Local disks are not monitored by Nod.
OpenDNS for domain name resolutions.
CCleaner cleans other junk files and MRUs on demand.

Online banking security:
Internet Explorer can communicate only with my bank's site (enforced by MD network rules).
Identification with personal certificate (access to certificate is password protected).
My own personal message on login screen (anti-phishing feature).
Strong login password.
SMS received each time my certificate is used to login.
When transfer to non-saved account is attempted, 2 random letters from additional password must be entered. Letters are selected through onscreen keyboard.
Only payments through Paypal for online purchases.

On-demand checking:
Daily scan with HitmanPro.
Weekly scan with ESET Nod32 AV.
Monthly scan with BitDefender Rescue CD.
Virustotal Uploader to scan individual files online.
Before installing anything, installer is checked by Virustotal, HitmanPro and ESET Nod32 AV.

Updating:
Windows Update: updating system. Update is performed manually each patch Tuesday. Before updating, system image is created.
Secunia PSI: used for weekly check for security updates of my software and system.

Other tools:
Virtualbox: used for testing purposes.
Autoruns: used to check all startup entries.
Process Hacker 2: used to check what's going on under the hood.


I feel secure with this setup. No system slowdown noticed.

 

@ tomazyk:

Quite nice and detailed security setup.

 

Excellent Setup tomazyk

 

Excellent Setup tomazyk

 

Thank you all

 

Darn strong setup tom and very well thought out.

 

Thanks

 

KIS 2013 Technical preview
Added sandboxie

 

Looks like a lot of work tomazyk.

 

Not really. It takes me about an hour a week and 2-3 hours once a month for maintenance. I don't consider it as too much work.

 

Changed my mind, back to simple and even lighter. I have seriously made up my mind this time HaHaHa

avast! Antivirus - Real-Time
EXE Radar Pro (Soon) will act as HIPS - Real-Time

Sandboxie - On-Demand (Auto starts when sanboxed apps are executed - Example: Firefox)

Malwarebytes - On-Demand

Simple, Not too much (But enough)

I basically got rid of a lot of stuff I wasn't using...I was adding too much.

No matter how much I tried, I couldn't go Antivirus Free, I have used one for too long. I guess I am too comfortable with one.

 

Trying this combo out. AppGuard - Malware Defender - Shadow Defender

 

Good combo

 

Too sad malware defender is 32-bit only. I would definitely run it on one of my machines. I don't think anything can get pass your combo. Very nice!

 

You were starting to look fat.

 

Switched to and trying...
Avast free
OA free
Bufferzone

 

finally did it. Just gave up on this whole frustrating game of looking for perfection with imperfection. MSE will do me well with MBAM as a back up scanner. And the lunacy ceases.

 

Looks like this weight watchers program is starting to pay off...hahaha.

 

Does OA and Bufferzone works together? According to this: Trusware - Known Compatibility Issues, it's possible that Bufferzone won't work.

 

Didn't know about it Maybe it's too soon to talk,but today is the 3d day with this combo and i didn't encounter any issues.I added BZ to OA's exclusions and that's it.If something goes wrong,i'll surely post here about it.
UPDATE.I forgot to mention that some of the "send to" context menu are missing with BZ installed and this is a well known issue though it's not fixed by developers.And has nothing to do with OA.Uninstalled because i found this very annoying and i don't know if there is a "hack" fix for it.

 

It's not so easy to get off with Wilder's Syndrome. You will be changing your setup in no time. LOL

 

That's not enough even for a normal user with light activity.

Having MBAM as backup is the worst thing. Because MSE will miss a lot of things. In the time I had MSE + MBAM setup, MSE was sleeping all the time and MBAM was doing all the job.

Btw, Why everytime I run HitmanPro the scan finishes exactly in 10 minute ? I tried both on my PC and laptop and there were the same (10m and 10sec).