What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    I have been too, but I'm routed through California so it's not the quickest DNS service. I've been in contact with Quad9 and they have determined they need to work out a bug with my ISP (Telstra).
     
  2. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    How did you determine this?
     
  3. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    I noticed how slow Quad9 was compared to others using Steve Gibson's DNS Benchmark, so I contacted them and they said to do this.

    Admin Command Prompt > press Enter after each
    • nslookup
    • server 9.9.9.9
    • set class=chaos
    • set type=txt
    • id.server
    After all of that you will get something like (in my case) "res300.bur.rrdns.pch.net", which turns out to be Burbank, CA, US.
     
  4. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    Ah, very interesting. Mine seems to be based in Sydney, which is good as I'm in Adelaide (not with Telstra though).

    Code:
    res300.syd.rrnds.pch.net
     
  5. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    Lucky bugger! :D

    Things really grind to a halt when I use my VPN.
     
  6. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    I seem to get resolving host message a lot with Quad9 and Chrome.
     
  7. JasonUK

    JasonUK Registered Member

    Joined:
    Nov 24, 2017
    Posts:
    112
    Location:
    UK
    My current security setup on a Win10 desktop... not sure if its overkill but as I've had no real performance issues have let them all happily coexist :)

    - Real time ~ Avast (Free), Malwarebytes (Full), Zemana Antimalware (Full) & VoodooShield (Free)
    - On demand ~ Emsisoft Emergency Kit, ADWCleaner & Windows Defender
    - Backups ~ Macrium Reflect (Full) & AOMEI Backupper (Full)
    - Browser ~ Opera (built-in Ad-Blocker) & Firefox (uBlock Origin)
    - Other ~ Sandboxie, ProtonMail & ProtonVPN
     
  8. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,501
    Location:
    .
    Welcome to the Wilders...:D
     
  9. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,156
    Location:
    Canada
    I tried Window Defender since the fall update, however, I am back to EAM now, product and customer service is best in the industry in my opinion. So I am now using EAM, MB3 and Sandboxie. Nothing against WD I just think EAM has better protection and the price is right seeing I've used it for years and got the loyalty discount.
     
  10. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    How do you determine where
    After you do all of this, how do you determine where it's out of? Mine is res300.pao.rrdns.pch.net.
     
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    Where ever a city or location that Pao stands for. Could it be Palo Alto?

    I'm not expert so I culdn't say for sure.
     
  12. plat1098

    plat1098 Guest

    Hahaha, lol. :)

    No software hassles with the machines, please. So this setup is fine as I don't scamper around online much.

    Security: Basic Windows Defender with PUA detections enabled. Sandboxie. HitmanPro Alert.
    Browsers: uBOScope/uBlock Origin in Chrome. Adblock Plus in Internet Explorer. Adguard in Edge.
    On demand: Emisosft Emergency Kit. HitmanPro.

    That's all, folks.
     
  13. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    Yes, that's what I was thinking too. I'm about an hour or so away from there.
     
  14. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,418
    Location:
    Slovakia
    After 2 years, I have decided to use Windows Firewall. Hard to imagine, but it actually works pretty well, very well indeed. CCleaner "helped". I do not believe in trusted software anymore.

    My signature is actual. Still no realtime or ondemand AV, it is too bothersome. My current rules, I have tried to be as restrictive as possible:

    Code:
    netsh advfirewall set allprofiles state on
    netsh advfirewall set DomainProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall set PrivateProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall set PublicProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall firewall delete rule name=all
    netsh advfirewall firewall add rule name="COD MW2 DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW2 TCP" dir=out action=allow protocol=TCP remoteport=27015 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW2 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 TCP" dir=out action=allow protocol=TCP remoteport=3074 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="DriverEasy DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
    netsh advfirewall firewall add rule name="DriverEasy TCP" dir=out action=allow protocol=TCP remoteip=169.53.0.193,172.217.11.14 remoteport=80,443 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
    netsh advfirewall firewall add rule name="POP Peeper DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
    netsh advfirewall firewall add rule name="POP Peeper IMAP" dir=out action=allow protocol=TCP remoteip=94.100.176.0-94.100.183.255,217.69.136.0-217.69.141.255 remoteport=143,587 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
    netsh advfirewall firewall add rule name="PortableApps DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="F:\PortableApps\PortableApps.com\PortableAppsUpdater.exe"
    netsh advfirewall firewall add rule name="PortableApps TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="F:\PortableApps\PortableApps.com\PortableAppsUpdater.exe"
    netsh advfirewall firewall add rule name="RadioSure DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%LocalAppData%\RadioSure\RadioSure.exe"
    netsh advfirewall firewall add rule name="RadioSure TCP" dir=out action=allow protocol=TCP remoteport=80,1025-65535 program="%LocalAppData%\RadioSure\RadioSure.exe"
    netsh advfirewall firewall add rule name="Steam DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam TCP" dir=out action=allow protocol=TCP remoteport=80,443,27015-27030,27050 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam Web TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="E:\Steam\bin\cef\cef.win7\steamwebhelper.exe"
    netsh advfirewall firewall add rule name="Steam Web DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\bin\cef\cef.win7\steamwebhelper.exe"
    netsh advfirewall firewall add rule name="TeamViewer DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="TeamViewer UDP" dir=out action=allow protocol=UDP remoteport=5938 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="TeamViewer TCP" dir=out action=allow protocol=TCP remoteport=80,443,5938 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="Update Time DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
    netsh advfirewall firewall add rule name="Update Time UDP" dir=out action=allow protocol=UDP remoteip=85.236.36.0-85.236.36.127 remoteport=123 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
    netsh advfirewall firewall add rule name="WRT DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
    netsh advfirewall firewall add rule name="WRT TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
    netsh advfirewall firewall add rule name="WU DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%WinDir%\System32\svchost.exe"
    netsh advfirewall firewall add rule name="WU TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%WinDir%\System32\svchost.exe"
    netsh advfirewall firewall add rule name="Yandex DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex DNSS" dir=out action=allow protocol=UDP remoteip=208.67.220.123,208.67.222.123 remoteport=443 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex Sync" dir=out action=allow protocol=TCP remoteip=213.180.193.0-213.180.193.255 remoteport=443,5222 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
     
  15. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    Welcome back to EAM d. c.
     
  16. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    Windows 7 Pro SP1 x64

    Firewall & Anti-Virus:
    Router NAT/SPI (Password Protected)
    Windows Firewall
    Emsisoft Anti-Malware 2017.10.2.8188 (with MVPS & hpHosts files)

    Blocking/Hardening:
    AppGuard 4.4.6.1
    HitmanPro.Alert 3.7.1 Build 723
    Norton ConnectSafe DNS (Malware, Phishing)
     
  17. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,156
    Location:
    Canada
    Thanks G111.
     
    Last edited: Nov 26, 2017
  18. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    The only way i could get Quad9 to work was to put opendns as the backup server.
     
  19. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Windows 7 x64
    • Standard User Account used
    • User Account Control set to max
    • Windows Firewall monitoring inbound and outbound network traffic
    • various OS tweaks and modifications
    Macrium Reflect using grandfather - father - son backup scheme

    Emsisoft Anti-Malware installed and configured

    Sandboxie for Firefox with uBlock Origin

    OpenVPN
    and Mullvad as service provider

    Avira PC Cleaner, KVRT and HitmanPro for on demand scans.
     
  20. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    Dual Boot

    W7
    AppGuard 5.2.9.1
    Comodo FW 5.12 D+ & SB Disabled

    Linux Mint
     
  21. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,920
    • Emsisoft Anti-Malware (trial version, 15 days left)
    • Voodooshield (Pro user for two days) removed
    • NVT OSArmor (Experimental)
    • Windows Firewall Control
    • HitmanPro, VT Uploader and adwcleaner as on-demand scanners
    • Firefox with uBlock Origin

    Edit: VS removed
     
    Last edited: Dec 20, 2017
  22. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    NVT OSArmor and Voodooshield are overlapping in functionality. VS protects more and better.
     
  23. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,175
    Avira Optimization Suite
     
  24. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,156
    Location:
    Canada
    Back to the dynamic duo, EAM and Appguard.
     
    Last edited: Dec 23, 2017
  25. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Windows 10 Firewall Control Plus from Sphinx-soft

    Zemana AL with pandora on

    MalwareBytes AntiExploit

    Now I use only Macrium free for imaging. Ditched Paragon though I have lic - couldn't restore from the bootable flash disk.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.