What is your security setup these days?

Hmm.....interesting duo. But why an anti-executable when you got HIPS and auto-sandboxing?

 

ERP can fill the gap when it comes to Trusted malware that bypass CIS.

 

Yeah well you know, every pc and its settings are different. WSA is doing great here. Also using EAM and Titanium IS on other pcs.

 

Good news for you my friend. You can get 80% off your common sense renewal. Use the coupon code: Amit.

I guess you get huge discounts on your renewals of ESET. You've been using it for so long!

 

If the malware is trusted by CIS and allowed, what's the chance the user would not allow it with NVT ERP?

 

Use the Lockdown Mode, Luke....no popups....unknown is automatically blocked.

 

I just disable the Trusted Vendors in CIS. I see no real reason to use both.

 

Cloud lookup can say it is safe.
You should also turn it off.

 

Those could also been done using Comodo preventing trusting unknown. Why complicate things by adding more? Simple and effective is the way to go. And on-demand scanner like Hitman Pro would do with Comodo. And the ultimate protection against malware, an imaging app would complete the setup. Good nice and simple setup.

 

Not if you use default settings.

 

Oh it's no big deal. In my opinion it's perfectly acceptable to OCD on a hobby. I aspire to have every aspect of my PC's locked in like yours. At that point, I will have to find a new hobby

In terms of physical security, I haven't really put much effort into it. I keep my sensitive info encrypted but that's it. I figure if someone I didn't trust had enough access to get into my bios and mess with it, they would probably just want to steal the computer instead. I can't imagine anyone breaking into my apartment and going "I'm going to melt his CPU. Muahahahaha" and then leaving. By the way, is your PC overclocked?

 

Thanks. Sometimes I forget about it.

 

It's easy to lost track in many settings and options...

 

Win7Ultimate64bit Standard User Account
Software Restriction Policies.
Hardened Group Policies with Baseline Security Template via LocalGPO.

EMET
Peerblock
Google DNS
SandboxIE

setup is rock solid for 2 years.

Now that I've upgraded my PC, I want to try a FREE firewall a non-complicated one. Suggestions?

 

Pure FW or with HIPS?

 

I would try TinyWall.

 

I only use the freeware common sense option.

 

Made some changes yesterday and am continuing to research and update. This is what I'm running now:

Realtime- CIS 6.1 (full suite- AV, D+, FW set to Untrusted, HIPS off).
AVG Linkscanner (trying to figure out if its worthwhile or not, if not then I'm looking for something to replace it). IE10 all security settings on. Testing Comodo Dragon (not sure I like it because I can't stand Chrome).

On Demand- MBAM free, Kaspersky TDSSKiller, CCleaner, Glary Utilities, Comodo System Utilities

I'm researching Emsisoft Emergency Kit, Winpatrol and SAS.

Please let me know what else I can do to tighten things up. I'd like to run a cloud AV in real time with CIS 6.1 if possible and am always looking for advice on set ups.

Thanks!

 

Immunet Free

 

Thanks Siketa. Looks like Immunet doesn't have the best reviews. I'm curious if something like Panda Cloud free would play nice with Comodo. It gets decent reviews.

 

Question is do you expect any better protection by running something more ? It's rather useless for me.

 

360 Internet Security + Zemana Antilogger, pretty good on Windows 8 x64.

 

@spywar- Well My thought is to catch anything that gets passed my primary AV (CIS). I've also read that CIS doesn't do any type of phishing/web protection etc so was hoping to fill that gap.

 

This is why CIS installed with default installer settings, also intalls you Comodo Dragon based on Chromium meaning that you still get a phishing protection.
Immunet is a bit useless, and won't catch a lot of missed samples. Comodo uses DDP meaning that you should be correctly protected without troubles. What you should do is set AutoSandbox to Untrusted or Limited.

 

@spywar- yep I followed Chirons CIS installation manual. Auto sandbox is Untrusted, Dragon browser installed and I'm trying to make myself use it lol. I've really gotten to like IE10 lately so it's hard to even look at another browser. Probably going to remove FF tonight since I never use it anyway. I'll keep Dragon though since it seems pretty secure. BTW Dragon does feel pretty fast to. Thank you for the replies and advice. I tend to get bored with my set up every once in a while and experiment a bit