What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    make sure to check if it indeed reduced impact
    https://vgy.me/ZVq5f4.png
     
  2. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    I’ve only ever experienced system slowdown using WD when opening a folder full of exe files. To combat this, I excluded said folder.
     
  3. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    and thats where WD will rape your PC, opening stuff. excluding folders isn't a solution..
     
  4. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    I have one folder full of exe files, all of which are scanned before being stored there. For me, excluding that folder is indeed a solution.
     
  5. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Added:: A new twist on this end with Browsers again. UBlockO + uMatrix and some granular customizations.

    Firefox Portable! v59.01 (64 Bit). Never ever thought I would ever turn to FF. BUT, this series seems is surprised even this end user.

    Another new learning curve to take up, but SPEED is vital and FF seems has the goods in this department for the time being.
     
  6. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    Thinking on the points @roger_m and @Phoenix raised (here and here respectively) caused me to re-evaluate my position. I have since decided to put Kaspersky Free back on my machine. Thanks guys.
     
  7. roger_m

    roger_m Registered Member

    Joined:
    Jan 25, 2009
    Posts:
    8,627
    @The Seeker You're welcome. I'd be interested to hear if you find your system runs faster with Kaspersky installed.
     
  8. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    I’ll give it a few days then get back to you.
     
  9. JimboW

    JimboW Registered Member

    Joined:
    Oct 22, 2010
    Posts:
    280
    Windows 10 Enterprise x64

    Windows 10 privacy tamed with WindowsPrivacyDashboard and Group Policy.

    Windows Firewall Control (Binisoft)
    MemProtect (protecting Chromium)
    Simple DNSCrypt
    MBR Filter
    Maximum WD Exploit Guard protections
    Other system tweaks like LSASS protected process and numerous other settings forgotten.

    Chromium with NanoAdblocker and NanoDefender. Blocking third party scripts and iFrames. Chromium switches --disable-reading-from-canvas --enable-appcontainer --site-per-process --reduced-referrer-granularity --enable-features=V8VmFuture

    DNSCrypt-Proxy FYI contains the CoinBlockerLists from here https://github.com/ZeroDot1/CoinBlockerLists for system wide protection. Simple DNSCrypt is set to Adguard DNS.

    I've probably forgotten something. So light but so tight :D:thumb:
     
  10. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Sandboxie
    NOD32
    NVT-OSA
     
  11. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    Is NOD32 able to monitor inside of Sandboxie?
     
  12. AMD

    AMD Registered Member

    Joined:
    Jul 9, 2012
    Posts:
    93
    Location:
    UK
    Kaspersky Total Security (Trusted Application Mode enabled)
    Keyscrambler Premium
    NVTERP V3.1
    Adguard 6.2
    Sandboxie- sandboxing Browsers & PDF reader(forced), Downloads folder and Windows Explorer
    Zemana AntiMalware (on demand)

    Hopefully this will keep me protected.
     
  13. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    NOD32 has given alerts about site activity when using the browser while sandboxed. Other than that indication, I don't know if all of NOD32's protection methods are working for sandboxed programs. I haven't really looked into it because over the years Sandboxie for months at a time has successfully been my only security program. Maybe someone else who has the testing skills can answer your question better than I can.
     
    Last edited: Mar 28, 2018
  14. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    You can test using the Eicar test. If NOD32 detects it as malware when running your browser sandboxed, then it does. I havent read about any issues (lately) between SBIE and NOD.

    Bo
     
  15. TheErzengel

    TheErzengel Registered Member

    Joined:
    Dec 28, 2012
    Posts:
    38
    Location:
    WWW
    1.-Emsisoft Antimalware
    2.-Windows firewall with WFC (binisoft)
    3.-NVT sys hardener
    4.-NVT OsArmor
    5.-NVT ERP v4 (beta)
    6.-Adguard (Paid)

    Second option
    -Malwarebytes
    -Zemana AM
     
  16. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    I'd heard about the Eicar test before, but never bothered to look into what its purpose was. Glad you mentioned it Bo. After first deleting the cache each time in unSandboxied Chrome, I tried downloading the Eicar test in 3 forms (regular, zipped and double zipped) with Sandboxied Chrome and all 3 times NOD32 put up alerts that it had been blocked.
     
  17. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Is Eicer test detected with network component of NOD32? If it is, then this test won't be reliable to test it's compatibility with SBIE. Network component intercepts test file before it reaches browser, on network level.
    When I run SBIE and NOD32 together, I checked if there were software compatibility for NOD enabled. If it was I was "sure" that they'll work together with no problems.
     
  18. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Good point, I hadn't thought to look there. Sure enough, Sandboxie has detected ESET NOD32 and lists it as compatible.
     
  19. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Software compatibility settings are settings from the Sandboxie side to make SBIE work better with other programs. They are designed to fix some sort of known incompatibility but sometimes they become obsolete and instead of helping, they hurt compatibility. So, my opinion has always been, to try programs along Sandboxie without enabling compatibility settings. If they work well with Sandboxie without them, don't enable them. If they dont get along without the settings being enabled, then you try them.

    Keep in mind. An update at any time by Sandboxie or the other program can break Software Compatibility settings. And sometimes its better not to use them as using them actually ends up breaking compatibility. Last, a program having Software compatibility settings available doesn't mean it gets along with Sandboxie just because it is in the list and you shouldnt assume (in the case of NOD) its gonna detect malware in the sandboxed browser as it does in the unsandboxed one, again, just because it is in the list.

    Bo
     
  20. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    I usually agree with you Bo, but not about this. For "regular programs" using SBIE without compatibility settings might work, but for AV, AM or FW I wouldn't go that way. Incompatibilities might have more severe consequences as incompatibilities with some other programs. Yes those settings could be redundant or may not work as intended but why gamble, when you don't have anything to gain? I wouldn't advise anybody to disable compatibility settings for other security related programs.
     
  21. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Software compatibility settings being available means there is some sort of incompatibility that is known and the setting is supposed to make things work better. Justenough said, "Sandboxie has detected ESET NOD32 and lists it as compatible." And thats not what it means when Sandboxie prompts the user about this settings. We all who use SBIE should know that. This is why I replied to his post.

    This settings are supposed to make things better and we should use them most of the time when they are available but after they being around for a while, they need to be updated to continue working properly. Sometimes without the update, this settings not only become obsolete but they also break compatibility. Time and time again, over the years, you read posts at the Sandboxie forum about problems that end up being worked around by disabling compatibility settings. This are cases were the settings did more harm than good. It happens all the time. In my opinion, we should play it by ear with this settings. Compare how SBIE and the other program work along each other with and without them being used. If they are not needed, don't use them. And vice versa.

    Bo
     
  22. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    The Sandboxie "Software Compatibility" window literally says that Sandboxie has detected the following software applications and lists ESET NOD32 Antivirus. So I posted "Sure enough, Sandboxie has detected ESET NOD32 and lists it as compatible." That's a factual statement, no? And sure I know that adjustments have been made by the Sandboxie team so that programs listed in the "Software Compatibility" window can run smoothly within the sandbox.

    There are times when updates to Sandboxie or other programs break compatibility. When that happens I either undo the update or more often just uninstall one of the offending programs, sometimes Sandboxie, and give everyone time to sort it out. That situation has probably been a good thing in the long run, because I had to learn to be flexible and to rearrange security layers to the best effect.
     
    Last edited: Mar 30, 2018
  23. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Hi Justenough, I commented on this statement, "Sandboxie has detected ESET NOD32 and lists it as compatible." because I thought it was for your benefit to know that just because a program appears in one of the Software compatibility settings lists or you get prompted about the settings by Sandboxie when you install a program, doesnt mean the program is compatible with Sandboxie. All it means when a program is included in one of this lists or when you get prompted, is that there are settings available designed to improve compatibility.

    The settings get developed when something doesnt work properly between the program and Sandboxie and IF something can be done about on the Sandboxie side. Sometimes there's not much that can be done about from the SBIE side. At the same time, not appearing in one of this lists or not being prompted by Sandboxie when you install a program, doesnt mean the program is not compatible with SBIE. In fact, the programs that get along the best with Sandboxie, don't appear in any Software compatibility list nor you get prompted by SBIE when you install the program.. The reason being because there's no need for any special settings to be developed to improve compatibility.

    Let me give you some examples. Norton is one of the 2 antiviruses that get along the worst with Sandboxe, historically that's how it is and is listed on this list.

    2.jpg

    Another example. Look for Foxit PDF Reader under PDF/Printing or All Applications. You will not find it. Why? Because it gets along perfectly well with Sandboxie. So good, that there is no need for any special setting from Sandboxie to improve compatibility.

    Bo
     
  24. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Bo-

    Is your post based on assumptions or is it based on information from the programmers and/or testing methods that I don't know about?

    In my case, I'm just going by my assumptions based on 7 years of using Sandboxie. My experience has been consistent that programs in the compatibility list will work with Snbxie, and that sometimes programs that aren't in the compatibility list won't work. I am unclear how a person would be able to tell if programs that aren't in the compatibility list are going to be running better with Sndbxie than ones that are in the list.

    As I mentioned in an earlier post, when conflicts show themselves, I delete either Sndbxie or the program and wait for the fix. It's a casual solution, but it has worked for me. If you have a method other than trial and error (and looking at the compatibility list;)) to know exactly how well a program fits with Sndbxie, I genuinely would like to know what it is.
     
    Last edited: Apr 1, 2018
  25. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,343
    Location:
    Italy
    W.10 Home 1709 (PC my Daughter)
    S.U.A.
    UAC Max
    Windows Smart Screen
    Google DNS
    Black Viper's List
    Windows Firewall
    I.E.11 Off - WMP Off - Disable Flash in Edge - Onedrive Off
    Validate Admin Code Signatures set to 1
    Additional LSA Protection.
    OSArmor
    Windows Defender Security Center

    • Controlled Folder Access.
    • Exploit Protection - Added MicrosoftEdgeCP.exe (13 override)
    • PUA Protection
    Chrome x64
    • --no-referrers
    Chrome://Flags
    • Extension Content Verification - Enforce Strict
    • Enable AppContainer Lockdown - Enabled
    • framebusting-needs-sameorigin-or-usergesture - Enabled
    • Strict Site isolation - Enabled
    • Hyperlink auditing -Disabled
    • Experimental QUIC Protocol - Enabled
    U.B.O.
    ScriptSafe
    HTTPS Everywhere
    Click & Clean
     
    Last edited: Apr 1, 2018
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.