What is your security setup these days?

Back to just WSA

 

My security setup and update ideas

I have frequently sought out advice on these forums and my local computer technician and like to have my results checked. So here they are (after 2 years of usage and refinement.

OS
Windows 8.1 64bit

Software
Windows Defender
Malwarebytes Anti-Malware Pro (live protection enabled)
Secunia PSI
CCleaner (and other piriform utilities)
Crashplan (backs up to my NAS, which in turn backs up to the web)
Revo Uninstaller Pro (the only way I uninstall)

Chrome Extensions (excluding entertainment stuff)
-Adblock Plus
-HTTPS Everywhere
-WOT

Most important of all
Common sense

Currently being investigated on my changes list are:
-Glary Utilities, I have Piriform's tools (ccleaner, speccy, defraggler and recuva) but i'm wondering whether Glarys Utilities can replace all of those in 1 hit and still do the same job, and possible automate it.
-Ubuntu Live USB for overriding external support if the proverbial **** hits the fan

So far I seem to be going good, although I have reinstalled (from scratch) for a new HDD or OS update almost yearly.
What are your opinions on what i'm using, what can be improved and what do you think of my proposed list of changes?

 

Win-7 Ultimate:
SUA
UAC - max
Windows Updates - Automatic
Eaz-Fix (Rollback Rx 9.1 Clone)
Panda Cloud Pro (6 month free trial)
K9 Web Filter
MalwareBytes AntiExecutable beta
MBAM Pro real-time (thanks to Chica-PC promo)
EMET 4.1: Dep,SEHOP OptOut, ASLR AlwaysOn

I like most Panda here.

 

Running ESET Nod32 with AppGuard and Sandboxie.

 

Re: My security setup and update ideas

Panda cloud has been getting good results lately plus you get web filer when you install the toolbar(which can be uninstalled and still retain the web filter).

I would be very wary of 3rd party system utilities. Glary once nearly bricked one of my machines. They aren't really necessary as windows comes with it`s own utilities.

I wouldn't bother with cleaning the registry as a quick search online should provide you with enough info on the subject.

But all in all you have a good setup especially when you add a good dolope of "common sense".

 

I removed MSE and installed avast! 2014 Free. I've not used avast! for a while and was rather impressed with its current state. Hardened Mode is especially good.

 

Re: My security setup and update ideas

So Panda Cloud is an anti-virus? Why do you recommend it?

Glary was just me trying to minimise the amount of apps whether it be revo uninstaller, recuva or ccleaner (the main replacements i'm looking at) with registry cleaning never really coming into it. If I ever feel my machine is getting sluggish/bogged down from over use I feel it is time for a reinstall, this helps remove a lot of unwanted and unnecessary crap that I may have forgotten about, along with clearing out my HDD of games I no longer play.

So in the sense of Glary replacing those 3 is it worthy? Also I hate to admit it but when a program looks all new and slick I can't but help feel it is better maintained than older looking things.
I feel if the app does a good job then it is worthy of me paying for it, but i'm not a fan of ongoing costs (hence one of the reasons I switched to Windows defender from Kaspersky, also it is less maintenance).

Oh I also forgot to mention I was looking into SAS (paid as another addition to the security lineup)

 

Re: My security setup and update ideas

Just don't run Glary Utilities' registry cleaning. It's not worth the trouble without examining every single entry.

As for SAS: https://www.wilderssecurity.com/showthread.php?t=352826

 

Looking at Seconfig XP it looks like a fair amount of that could be done with a firewall like outpost.

Can all of it be done in a firewall?

ANy reason to use this instead of doing it in a firewall.
My concern is if i used this the changes are all hidden in the registry and so i might end up scratching my head wondering what is happening.

Interesting starting point though.

Martin

 

Laptop 1:
- LMDE 03.2013
- FF 64Bit + ABP
- plastic black tape on the camera

Laptop 2:
- Windows 7 64bit
- No software security
- plastic black tape on the camera

 

On my desktop:
Windows Defender
Windows firewall with Windows Firewall Control
SpyShelter Premium
Exe Radar Pro
AppGuard
SandBoxie
Malwarebytes Antimalware Pro
Malwarebytes AntiExploit beta
UnhackMe with Partizan enabled
Sticky Password
Firefox with Bluhell Firewall,Image Blocker,Keylogger Beater,Smart Referer and Sticky Password Autofill Engine as security addons.
US Robotics hardware router

On my laptop,the only difference is that I use Outpost Security Suite Pro,instead of Windows Defender,Windows Firewall Control and SpyShelter Premium.

 

That's great security tool. Do you also tape the mic?
What about disabling the device in BIOS or through device manager? Wouldn't that be safe enough?

 

I dont mind the microphone as much as the camera. Bios and device manager can be exploited. A simple plastic tape can't ever be bypassed by any exploit. The funny part is that few months ago people would think I am crazy. But these days it's a common knowledge that whatever NSA can exploit can also be exploited by hackers, it is just a matter of time.

 

Windows 7 Ultmate 32 bits with Windows FW 2-way behind Router with NAS backup

System intrusion mitigation
- Enabled DEP, SEHOP, ASLR (memory) and UAC (file) protection
- Deny elevation/installation of unsigned programs and drivers (GPO)
- Deny execute for Basic Users outside all UAC protected folders (SRP)
- Block USB execute access and executable download from Internet (GPO)

Vulnerable process protection
- Added EMET Memory Mitigations for all scripted content and internet facing programs
- Disabled all risk-ware services (MMC & GPO) and locked HKCU autoruns for Basic Users (ACL)
- Run media player, email and web browser broker as Basic User with secured settings (SRP & GPO)
- Run browser sub-processes and admin allowed plug-ins (Adobe flash & Reader) in low rights sandbox

Browser usage & security
- IE11 for HTTPS (secure transactions) with EMET certificate pinning and firewall IP-address restrictions
- Chromium for HTTP with click to play plug-ins, allow javascript from [*.]NL & COM and Adguard & Avast

 

Probably could do most of this with a decent Firewall but not all I believe.
I've used this on a couple of machines over the years without any problems.
Always making a backup on an external HD before hand, as with any new install, just in case.

 

Wow you should have my username lol...how's SSP and SB getting along?

 

I like it, are you using default HIPS?

 

Re: My security setup and update ideas

As I mentioned, I was looking at Glary as an all in one replacement to, CCleaner (automated monthly cleaning [non registry]), Recuva, Defraggler (kinda useless on a windows 8 computer), Speccy, and Revo Uninstaller Pro. Anything else it may cover? To be honest though , I rarely use ccleaner if at all and is only if i'm allowing someone on my computer for extended periods, I use Revo a lot, and the other stuff I haven't even touched so it doesn't worry me that much if you recommend sticking with revo+ccleaner. Just kind of a minimalist wanting as few things installed as possible.

After reading those reviews of SAS I will leave it outta my routine then.

I looked further into Panda but it had a recurring cost if you don't want ads, and I was wondering is it that much of an improvement over Windows Defender or would it be added on top of it, also how would my privacy fare with that (considering my usage will be analysed)?

I generally like my setup to be hassle and maintenance free (self automated [protecting and updating] a.k.a install and forget)

 

I had just started playing around with the HIPS settings but it didn't last long, ESET Nod32 is good software, but it felt like a little more than needed with Sandboxie and AppGuard. WSA is back in its place. Hard to give up an AV that light.

 

And I even forgot to mention Shadow Defender ......

They are quite nice to each other...
Upon installation,SpyShelter noticed that SandBoxie was installed,and offered the option to disable 1 of it's components which was incompatible with SandBoxie.

 

I tried your wonderful combo last week. I even stole your avatar I had configured appguard and things were working smoothly. Until I updated something and sandboxie was giving me some "hive not find" error. I remember last time that I had tried appguard and it was a constant adjustment for me. Love the protection, hate the constant tinkering. Great combo though. Didn't have to think of anything and I knew I was totally protected.

 

After a bit of tinkering and experimenting of late, I find that the combination of Sandboxie, Online Armor and WSA AV appears to be very promising and reasonably light on system resources.

 

Yep. Not too far off from you. CIS, WSA and sandboxie. Still a great combo. CIS av in stateful is really light.

 

Re: My security setup and update ideas

Sure, you could do that if it works for you. I have Glary Utilities myself, although the older portable version, because I don't like how they integrate boot defrag when I have a SSD.

I'd recommend HitmanPro as a replacement. It's free without removal, and has a 30-day trial that doesn't start until you activate it. I'd just restore from a disk image like Macrium Reflect if it detects any real threats.

Any anti-virus can analyze your usage if it can connect to the Internet. It's all about trust. Although Panda Cloud has higher test results than Windows Defender, it's up to you which to choose. Do note that Windows Defender has the lowest false positives rate.

 

Re: My security setup and update ideas

That's exactly what I do. Well, it hasn't actually found anything yet but that's my plan. My only gripe is the 10 seconds that you have to wait after scanning something before you can close the window.