What is your security setup these days?

Testing my new setup:
Firewall: Comodo firewall with Proactive setup(only firewall, custom ruleset, ask for auto-sanboxing)
HIPS: Spyshelter Premium
Keystroke encryption; Spyshelter Premium
AV: NOD32, HIPS in smart mode
Expoilt Protection: HMPA

On my old 2009 PC w7 setup with 5400 rpm HDD boot time is really fast.

Cons are:
- When Comodo runs an unknown program as restricted or even partially limited
- NOD32 wants to check the file is it malware.
- Race condition will occur, which causes blue screen FLTMGR File system error

Managed to exclude infamous Eset eamonm.sys. Works like a charm now.

Then i tested famous Atelier Firewall test, especially the first test of it.

-Comodo asked for outbound connection
-HMPA flagged it instant terminate
-Spyshelter Premium "Anti Networkspy module" auto-blocked it

Atelier test is still valid, because its based on basic injection methods.

How is your outbound firewall vs Aterlier test?

-moredhelfinland

 

Windows 7 x64

• Standard User Account used
• User Account Control set to max
• Windows Firewall monitoring inbound network traffic
• various OS tweaks and modifications

Macrium Reflect using grandfather - father - son backup scheme

Emsisoft Anti-Malware

Firefox with uBlock Origin

 

I have not tried out connectsafe for years, so i just started using it again. It seems to be about as fast as my isp, and according to the link is very good at threat blocking also.

 

The thing to note with that link:

From my recent tests Norton ConnectSafe is yet another slow DNS provider for me here in Australia.

 

OS: Windows 10 PRO
AV: Norton 360 \ Webroot
AM: Drop Zemana (detection suck) for VoodooShield 4.17 since VS was original what I used and is out of beta
AR: Acronis TM /w anti-ransom active
OnDemand: all of them for second opinion
Adblocker: switch to Ublock Origin from Adblock Plus

Router: Pfsense w/ pfblockng-dnsbl and snort

Norton for general protection\ Webroot to backup Norton since it have weak protection against adware and scare-ware\ VoodooShield for signed signature detection and command hooking \ Acronis for backup and ransom.

Unbelievable this setup perform well again recent malware and intentional ransom test without bogging down the laptop. Each security software do have some overlay protection but that what it make me save.

 

Windows 10 Home (64-bit)
Real-time protection
Kaspersky Free
SUPERAntiSpyware Professional
ZoneAlarm Free Firewall

 

Trend Micro Internet Security

 

All machines have had all Symantec / Norton products removed. ... More later.

 

DESKTOP & TABLET

Feb. 22, 2018 - Updated, Added, Removed

Network

• Two Netgear Nighthawk AC1900 (R7000) Routers (Stock Firmware)
• Four Netgear PowerLine AV 500 Adapters
• Wired Cat5e Connection between both Routers
• WPA2-PSK AES Encryption
• SPI & NAT Firewalls - Enabled
• OpenDNS Configuration

Computers

• LOCAL ACCOUNTS - Administrator Password Protected
• DESKTOP (Custom Built) - Windows 10 Pro x64 Ver. 1709 Built 16299.125
• TABLET (Surface Pro 4) - Windows 10 Pro x64 Ver. 1709 Built 16299.125

Built-In Security

• USER ACCOUNT CONTROL: HIGHEST SETTING
• WINDOWS SMART SCREEN: REMOVED - SET TO BLOCK
• WINDOWS DEFENDER: REMOVED - GPEDIT CUSTOM SETTINGS!
• EXPLOIT PROTECTION: REMOVED - IMPORTED EMET XML
• FOLDER PROTECTION: REMOVED - ADDITIONAL FOLDERS ADDED
• WINDOWS FIREWALL: ENABLED

Resident

• Emsisoft Anti-Malware 2018.2.0.8461 Beta (Paid)
• PIA VPN Client v77 - VPN Enabled (Paid) - Different Servers On Demand
• Windows Firewall Control 5.0.1.20 - Medium Filtering Enabled (Paid)
• Sandboxie 5.23.6 Beta (Paid) - Container Folder on RAMDisk
• Adguard Premium 6.2.437.2171 Beta (Paid)
• Simple DnsCrypt 0.4.9 (Holland & Denmark) - Enabled

On-Demand

• Emsisoft Emergency Kit 2017.12.0.8334 - Weekly Manual Scans
• Macrium Reflect Home Edition 7.1.2899* (Paid)
• VMWare Workstation 14.1.1 built-7528167** (Paid)

Browsers, Immunization, Tweaks

• Windows 10 Debotnetted https://fdossena.com/?p=w10debotnet/index_1709.frag - Everything Removed
• Windows 10 Hardening Tips from http://hardenwindows10forsecurity.com - Selectively Applied
• Windows 10 Services "Tweaked" for DESKTOP by Black Viper*** www.blackviper.com - Selectively Applied
• Privacy Repairer 1.5.0.0 - Custom Settings Enabled
• Windows and User Temp Folders set to RAMDisk - Cleared on Reboot
• Documents on External Drives - BitLocker Enabled
• Chrome 64.0.3282.167 (LastPass Premium, HTTPS Everywhere) - User Profile in RAMDisk / Forced to run Sandboxed
• Microsoft Edge and Internet Explorer (LastPass Premium) - Internet Explorer Forced to run Sandboxed
• Homepage and Search Providers set to Startpage (Chrome)
• CCleaner Professional Edition 5.40.6411 (Paid) + CCEnhancer - Automatic Cleaning Enabled
• Spyware Blaster 5.5 (All Protection Enabled + Customblocking.txt)

*Macrium Reflect Home Edition installed in Desktop & Tablet - Backup Template: Incremental Forever
**VMware Workstation only installed on Desktop
***Services only tweaked on Desktop

 

Bit of a change for me, and I like it!

• Still behind SPI + NAT firewalls
• Windows Firewall
  
• Windows Defender
• HitmanPro.Alert
• Malwarebytes (mainly for additional Web Protection), with Exploit Protection and Ransomware Protection disabled
• BlackFog Privacy
• NoVirusThanks OSAmour
• SpywareBlaster
• Secunia PSI
  
• Browsers hardened
• Macrium Reflect free version

 

Installed a third party antivirus for the first time in ages, just to see how things have changed. Settled on Avast Free for now, with only the File Shield and Behaviour Shield installed. Have also activated Hardened Mode on the Aggressive setting. No problems so far; seems pretty light actually.

 

Been running barebones for a while

• Windows Firewall + WFC
• Sandboxie
• Shadow Defender
• uBlock Origin on browsers

 

SpywareBlaster still exists? Did not know that.

 

Added: novirusthank's OSA BETA!

 

Got rid of Avast and went back to Windows Defender. Nothing wrong with Avast per se, just realised that Windows Defender was already doing all I want.

 

Replaced Kaspersky with ZoneAlarm Free Antivirus.

 

windows 10 x64:

chrome ( various privacy and security oriented tweaks via flaggs )
various privacy and security related tweaks on the operating system
comodo internet security 10 ( cruelsisters settings )
adguard tweaked
norton connectsafe dns
dnscrypt
tigerVPN

 

Was using: Windows 10, with Glasswire firewall and Bit Defender Free anti virus.

Currently using: Ubuntu LTS
Browsers: Opera or Firefox only. Sometimes Chromium (not Chrome) for Linux. Didn't use Chrome anymore since 2015,
Antivirus: ClamTK antivirus. Not really helpful since most Linux OS are safe.
Browser extension: Privacy badger, WebRTC Leak Prevent, Decentral Eyes. But for Firefox and Opera only.
For Chromium, I simply turned off all javascript, cookies, images, location access for all websites, with exception the ones that I visited most.
Encryption: I use Veracrypt. Highly recommended if you are on Windows and want to secure/lock your USB drive.

 

Nice lite setup, it's all that you need.

 

Trying Emimsoft Antimalware...thoughts?

 

REALTIME: Gdata Antivirus

Second Opinion Scanner: Zemana Anti-Malware

Browser: Firefox with uBlockorigin and Norton Safe Web

 

Running EAM with OSA now, a flawless, low impact, super quite combo.

 

Definitely can't go wrong with that one!

 

@Krusty Noticed that you mentioned Browsers hardened. I'm using Firefox, so what exactly would that entail?

 

You can probably get some ideas from this site or similar sites showing how to harden it.