What is your security setup these days?

That overkill. SSF + Virtualization (Shadow Defender or SBIE) + imaging is all you need. I won't trust anything that relies on signatures.

 

You are 100% right!

 

I'm only using UAC which is also optional, I've even tested UAC settings disabled and no UAC exploits bypassed it using SpyShelter Firewall Software. And a very basic MIFI Router hardware which is NAT protection and I can choose from home made Perl (NIDS) Network Intrusion Detection Systems program as with SpyShelter Firewall!

1. Router - (NAT) Network Address Translation Protection
2. Perl (NIDS) Network Intrusion Detection Systems - (Port Probing) - (Honey Pots)
3. Google Chrome Web Browser - (JavaScript disabled etc.) - (No add ons installed)
4. SpyShelter Firewall - Code Protection (Kelloggers, Sockets, Webcam etc.) - HIPS Protection (File System) - Application Rules (Exploit blocking) - (VirusTotal file analyzing)
5. KeePassX Password Manager - (Vulnerable)

Note: I don't use third-party proxy websites, because you don't know if it's infected with a Botnet?

 

Windows 7 Pro SP1 x64

Firewall & Anti-Virus:
Router NAT/SPI (Password Protected)
Windows Firewall
Emsisoft Anti-Malware 2017.12.1.8340 (with hpHosts file)

Blocking/Hardening:
AppGuard 4.4.6.1
HitmanPro.Alert 3.7.3 Build 729
Norton ConnectSafe DNS (Malware, Phishing)

 

I tested ConnectSafe here it and the results were, "Excellent". Speed is better for me than Quad9 too.

https://www.grc.com/dns/dns.htm

It performed well on this test too.

https://blog.cryptoaustralia.org.au/2017/12/23/best-threat-blocking-dns-providers/

 

Thanks Krusty. Good to know.

 

Currently running what's in my sig below...

 

NOD32 and NVT-OSA

 

Yeah, that's justenough. Nice setup!

 

Been using CFW w/ hips on in safe mode. Along with KFA it's running smooth. I have the web blocker in CFW turned off. KFA is much better.

 

Thanks. I've run Sandboxie for years, so this is something different for me. If I didn't have NOD32 on, like you I'd be using something from Emsisoft. Well something real-time by them, I've always got Emsisoft Emergency Kit at hand.

 

Just moved from OpenDNS to Quad9 DNS, everything else is the same:

OS : Win10 home 64bit
RT: CCAV + WF (block both in and out traffic)
OD: ZAM, HMP, AdwCleaner
Browser: Chromium (with ublock origin)
DNS: Quad9
Misc: Some tweaks from here http://hardenwindows10forsecurity.com/ and here https://fdossena.com/?p=w10debotnet/index_1709.frag

 

OS: Windows 10 PRO
AV: Norton 360 \ Webroot
AM: Zamane Antilogger
AR: Acronis TM /w anti-ransom active
OnDemand: all of them for second opinion
Adblocker: switch to Ublock Origin from Adblock Plus

Router: Pfsense w/ pfblockng-dnsbl and snort

 

Why both?

Here's what Symantec says about running more than one AV.

https://support.norton.com/sp/en/us/home/current/solutions/kb20080520095244EN_EndUserProfile_en_us

 

I normally run layered combo depending on free or commercial products setup and have been doing for years since 2010. This my usual setup model: protection, performance, and set-it forget-it . Usually based anti-virus, cloud solution, and anti-malware\ransom. Browser must have some form of ad blocking, privacy tracking, or security toolbar. I found these combination works pretty well, even for aged hardware, but need etiquette memory. So the combination must provide excellent protection without much user intervention and definitely can not have a noticeable slowdown on the hardware.

 

Hey, I use Windows Defender+Malwarebytes Premium+Zemana Anti Malware Premium(real-time protection turned off, I use it as an on-demand scanner)+Vodoo-Shield Pro+HitmanPro and occasionally Adware-Cleaner, and I have a subscription on five VPN services(ProtonVPN Plus+Windscribe+NordVPN+P.I.A.+VyprVPN).
They are all installed.

 

Webroot by design can run alongside an exisiting av.

 

Using Webroot with OSArmor since one month. Very light and no problem so far...

 

https://www.facebook.com/quad9dns/p...2520080736537/147665252555353/?type=3&theater

OS: Windows 7 32bit
Shade Sandbox
OD: Zemana AntiMalware Free Portable
DNS: Quad9

 

Sorry, I don't do farcebook.

 

OS: Windows 10 Home Premium x64
Account Type: Admin
VPN: Private Internet Access
UAC: Default
SmartScreen: Enabled
Firewall: Windows Firewall
Windows Defender: Enabled
Real-Time:

• Bouncer
• Pumpernickel (FIDES)

Password Manager: Keepass 2.x
Browser: Firefox x64 (uBlock Origin)
On Demand: HitmanPro

• All partitions (data and system) encrypted with Veracrypt
• Weekly data backup with SyncBackFree
• Weekly system backup with Macrium Reflect WinPE Recue Disk
• All data uploaded to cloud encrypted with Cryptomator

 

The non-farcebook version.

https://www.quad9.net/threatblocking1/

 

Windows XP Home (My PC)
Windows Firewall
Google DNS
PsExec for (Limited Rights) protected by MBAE
DEP Always ON
Trick POSReady 2009
Black Viper's List
No NET Installed
No Java
No Flash I.E.8
Added TLS 1.1 and 1.2 Support to I.E.8.
SMB Protocol Disabled *
MBAE Premium
OSArmor

Firefox ESR - Custom Setting About:Config

U.B.O. - Nocoin Filter List + CoinBlocker List + AaK list
NoScript
Canvas Defender
No Resource URI Leak

 

Sandboxie, and some other stuff.

 

Latest versions: Emsisoft Anti-Malware, Windows Firewall Control (Paid), uBlock Origin and O&O ShutUp 10
Removed (for the time being): OS Armor