What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Moogle Stiltzkin

    Moogle Stiltzkin Registered Member

    Joined:
    Oct 12, 2014
    Posts:
    18
    OS: Win10 Pro 64bit ( *latest )
    FW: MBAM WFC (*it's free for now, so why not, has more options. though tbh i'd be fine with the default windows firewall.)
    AV: Avast (*free. Although i'm considering whether Avira is a better choice.)
    OD: AdwCleaner, Zemana AntiMalware, mbam free, hitman pro
    Active anti malware: Zemana AntiMalware (i'd probably prefer MBAM but i don't have a premium account....)
    Others: OSArmor, MBAE, stardocks Fences (not really a security tool but it keeps win10 desktop clean and neat automatically without requiring user intervention much); and lastly just some common sense by not downloading or opening dodgy files/phishing site urls/nigerian prince emails also keeping apps/os/software all updated regularly, use secure and unique credentials for login
    Privacy: uBlock Origin (lots of added filters, probably too many to list specifically), uBlock Origin Extra, uMatrix (i use this for manually unblocking what sites can load for the first time i visit a new site), https everywhere, Netcraft, decentraleyes, Nanodenfer (configured for ublock use by adding filter to uBlock), cookie autodelete, PIA VPN, RT Merlin F/W using ddnssec/dots cloudflare dns. Chrome for regular usage (some important extensions i use only available on chrome), and Firefox when privacy matters.
    Backup: Aomei Backupper (system backup) + QNAP TS-877 NAS raid5 using hybridbackupsync rtrr one way sync to TS-653a (anything for permanent storage goes onto main NAS. everything else that is temporary storage or in transit is on desktop. Even if pc goes kapoot, can recover from backup, and any important files is already on NAS. And thats backed up to another NAS)




    a few other things i tried but ended up uninstalling
    Sysharderner: This killed access to my NAS. It's too restrictive, so i system restore and removed it. I'm sure people who are familiar with the settings can avoid the landmine, but this is beyond my knowlege.
    VoodooShield: was gonna try this but there is discussion whether it is secure or not. some comments about how easy it is to disable this app to bypass it's protection. thats why i did not bother.
    Reg guard service: I could not start the app. Something is probably blocking it but i'm not sure what. So i couldn't try it out.
    Hitman alert pro: was considering this as a replacement for zemana and MBAE, since it has an active malware scanner, but from my experience with this app, it feels to restrictive and may break stuff from working. I did not have this issue when using MBAE for anti exploit.
    Sandboxie /shadow defender: looks like a secure setup, but in actual usage i found it a bit annoying to use.
     
    Last edited: May 15, 2019
  2. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,344
    Location:
    Italy
    Windows XP Home
    Windows Firewall
    AdGuard DNS - CloudFlare DNS
    PsExec
    DEP Always ON
    Trick POSReady 2009 + KB4500331
    Black Viper's List
    No NET Installed
    SMB Protocol Disabled
    MBAE Premium
    OSArmor
    I.E.8 No Flash + Trick 1803 - Block the downloadable executable files.

    New Moon (Pale Moon fork for XP) - Custom Setting About:Config
    Home page = Startpage - Settings saved via obfuscated URL
    Default Search Engine = Ecosia

    UBO
    NoScript
    Decentraleyes
    No Resource URI Leak
    Super Start
     
  3. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    Windows 7 Pro SP1 x64

    Firewall & Anti-Virus:
    Router NAT/SPI (Password Protected) (McAfee Secure Home Internet)
    Windows Firewall
    Emsisoft Anti-Malware 2019.4.0.9412 (with hpHosts file updated daily)

    Blocking/Hardening:
    AppGuard 6.2.9.1113 (powershell, cscript & wscript added to User Space "yes." Several apps added to Guarded Apps)
    HitmanPro.Alert 3.8.0 Build 839 (CryptoGuard only)
    Quad9 DNS

    Mozilla Firefox (Avira & Emsisoft Browser Safety & HTTPS Everywhere)
     
  4. GrDukeMalden

    GrDukeMalden Registered Member

    Joined:
    Jun 16, 2016
    Posts:
    487
    Location:
    VPN city
    Sandboxie Lifetime License,
    Forced for all daily used applications and personal file-folders in one box
    For interwebs browsing, admin privileges disabled for that sandbox Separate sandbox for "dirty things" and that one has admin rights disabled too.
    For IM'ing there's yet another box for that also with admin rights disabled.

    Proper usage of Safety nets like sandboxie are all well and good, but how do I maintain a clean and secure machine?


    Standalone product, Comodo I.S. free edition,
    Proactive security preset.
    Antivirus set to auto-quarantine.
    HIPS is on safemode, with "do not show popup alerts" enabled and set to "block requests".
    Firewall automatically labels newly discovered networks as "public" and also has "do not show popup alerts" enabled and set to "block requests".
    Container is set to auto-deny admin requests and to auto-block all unknown files.
    VirusScope is set to monitor all applications and automatically quarantine detections.
    File rating is set to automatically "block and terminate" anything detected by cloud scanning
    "suspicious autoruns" are set to be auto-terminated

    Supplementary Product, VoodooShield. (Paid)
    While I'm at the PC, it's on auto pilot mode, while AFK, It's on "always on" mode and the option to disable it after 10 minutes has been disabled. The UI is password locked
     
  5. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    Couple of changes: Moved from Windows 10 LTSC to Pro 1903. I want to take advantage of some things coming down the pike (mainly Windows Terminal) plus I like being able to install WSL. (I know it's possible to install without the store but it's a little messy.)

    I also installed Kasperky Free as I got a little tired of Defender freaking out when I opened a folder full of exe files.
     
  6. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    Please let us know if you notice KFA using heaps of your CPU when it shouldn't be doing anything, like not updating or scanning.

    Thanks.
     
  7. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    KDE neon with Gufw :)
     
  8. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,120
    Location:
    South Texas, USA
    DESKTOP & TABLET - REFRESHED SETUP
    May. 27, 2019 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk AC1900 (R7000) Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls - Enabled
    • PIA DNS Configuration
    Computers
    • LOCAL ACCOUNTS - Administrator Password Protected
    • DESKTOP (Custom Built) - Windows 10 Pro x64 Ver. 1903 Built 18362.116
    • TABLET (Surface Pro 4) - Windows 10 Pro x64 Ver. 1903 Built 18362.116
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS DEFENDER SECURITY CENTER: ALL ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Malwarebytes WFC v6.0.2.0 - Medium Filtering, Display Notifications, Outbound & Inbound)
    • NVT OSAmor 1.4.3 - Default + Custom Advanced Settings
    • PIA VPN Client v1.2 beta 2 Build 02667 (Paid) - VPN Enabled on Startup
    • Adguard Premium 7.0.2638.6551 Beta (Paid) - Additional Filters Enabled
    • KeyScrambler 3.12.0.1 - Anti-Profiling Enabled
    On-Demand
    • Macrium Reflect Home Edition 7.2.4328 (Paid) - Backup Template: Incremental Forever
    • Emsisoft Emergency Toolkit 2018.6.0.8742
    • Windows Sandbox & Edge Application Guard Window
    Browsers, Immunization, Tweaks
    • Microsoft Edge (Lastpass & Emsisoft Browser Security)
    • O&O ShutUp10 1.6.1402 - All Settings Enabled Excluding Windows Defender Settings
    • ConfigureDefender 2.0.0.0 - Defender High Settings
    • Windows Privacy Dashboard 1.3.1164 - Privacy: All Disabled / Blocker: Spy & Extra Enabled
    • NVT SysHardener 1.5 - Custom Settings Applied
    • Windows 10 Services "Tweaked" for DESKTOP by Black Viper | blackviper.com - Selectively Applied¹
    • Windows 10 Services "Safe" for TABLET by Black Viper | blackviper.com - Selectively Applied²
    • Windows and User Temp Folders set to RAMDisk - Cleared on Reboot
    • Documents on External Drives - BitLocker Enabled
    • Homepage and Search Providers set to Startpage (Edge)
    • CCleaner Free Edition 5.57.7182 + CCEnhancer 4.5.4
    • Spyware Blaster 5.5 - All Protection Enabled + Customblocking.txt
    ¹Only Applied on Desktop
    ²Only Applied on Tablet

    May. 27, 2019 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk AC1900 (R7000) Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls - Enabled
    • PIA DNS Configuration
    Computers
    • LOCAL ACCOUNTS - Administrator Password Protected
    • DESKTOP (Custom Built) - Windows 10 Pro x64 Ver. 1903 Built 18362.116
    • TABLET (Surface Pro 4) - Windows 10 Pro x64 Ver. 1903 Built 18362.116
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS DEFENDER SECURITY CENTER: ALL ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Malwarebytes WFC v6.0.2.0 - Medium Filtering, Display Notifications, Outbound & Inbound)
    • NVT OSAmor 1.4.3 - Default + Custom Advanced Settings
    • PIA VPN Client v1.2 beta 2 Build 02667 (Paid) - VPN Enabled on Startup
    • Adguard Premium 7.0.2638.6551 Beta (Paid) - Additional Filters Enabled
    • KeyScrambler 3.12.0.1 - Anti-Profiling Enabled
    On-Demand
    • Macrium Reflect Home Edition 7.2.4328 (Paid) - Backup Template: Incremental Forever
    • Emsisoft Emergency Toolkit 2018.6.0.8742
    • Windows Sandbox & Edge Application Guard Window
    Browsers, Immunization, Tweaks
    • Microsoft Edge (Lastpass & Emsisoft Browser Security)
    • O&O ShutUp10 1.6.1402 - All Settings Enabled Excluding Windows Defender Settings
    • ConfigureDefender 2.0.0.0 - Defender High Settings
    • Windows Privacy Dashboard 1.3.1164 - Privacy: All Disabled / Blocker: Spy & Extra Enabled
    • NVT SysHardener 1.5 - Custom Settings Applied
    • Windows 10 Services "Tweaked" for DESKTOP by Black Viper | blackviper.com - Selectively Applied¹
    • Windows 10 Services "Safe" for TABLET by Black Viper | blackviper.com - Selectively Applied²
    • Windows and User Temp Folders set to RAMDisk - Cleared on Reboot
    • Documents on External Drives - BitLocker Enabled
    • Homepage and Search Providers set to Startpage (Edge)
    • CCleaner Free Edition 5.57.7182 + CCEnhancer 4.5.4
    • Spyware Blaster 5.5 - All Protection Enabled + Customblocking.txt
    ¹Only Applied on Desktop
    ²Only Applied on Tablet
     
    Last edited: Jun 1, 2019
  9. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    Will do.
     
  10. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,344
    Location:
    Italy
    Windows XP Home
    Windows Firewall
    AdGuard DNS - CloudFlare DNS
    PsExec
    DEP Always ON
    Trick POSReady 2009 + KB4500331
    Black Viper's List
    No NET Installed
    SMB Protocol Disabled
    MBAE Premium
    OSArmor
    I.E.8 No Flash + Trick 1803 - Block the downloadable executable files.

    New Moon (Pale Moon fork for XP) - Custom Setting About:Config
    Home page = DuckDuckGO - Custom settings saved via URL no cookies
    Default Search Engine = DuckDuckGO

    UBO
    NoScript
    Decentraleyes
    No Resource URI Leak
    Super Start
     
  11. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    512
    Location:
    Bulgaria
    No problems here:

    https://i.imgur.com/TcwEvcv.png

    It can reach 0.8% from time to time (for the 2 processes) but for most of the time they are 0% when idle.
     
    Last edited: May 28, 2019
  12. XenMan

    XenMan Registered Member

    Joined:
    May 8, 2018
    Posts:
    130
    Location:
    Australia
    I don't know if anyone else shares this view but this endless, and interesting thread, is too focused on loading as many apps as possible to prevent the most unlikely of events.

    I have changed my personal setup to a holistic view of security with malware being an administrative inconvenience. You can do this if you look at the worst possible scenarios, and have contingencies.

    So a good presentation of your security setup would be like this.

    Catastrophic compromise of computer, SIM card and all passwords:

    Identity theft protection by Credit Alert account

    Bank accounts protected by 2FA apps (not SMS)

    Weakness: SMS on PayPal, eBay

    Computer stolen, destroyed or house burnt down:

    Offsite image of drives, recent images on external drives

    LastPass password manager requiring password on startup, other password docs protected

    Malware protection:

    Macrium Reflect

    VM with Ubuntu for daily internet activities, Firefox with uMatrix

    Sandboxie for closed sessions, and on demand

    WFC and Win10 Defender
     
  13. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    Sandboxie
    Some
    Other
    Stuff
     
  14. plat

    plat Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    2,233
    Location:
    Brooklyn, NY
    Windows 10 1903 Home.
    Browsers: Firefox and Edge.old
    Antivirus: Windows Defender
    Helpers: OSArmor w/custom settings/Sandboxie latest beta/gpedit.msc
    On demand: HitmanPro paid, AdwCleaner
    Macrium: Rare imaging for emergency rescue
    Enclosure: several scavenged Western Digital HDDs 1 TB ea. for manual data backup/system image
    Browser: Nano/Emsisoft for Edge.old Trace/uBlock Origin/Emisoft for sandboxed Firefox

    The system runs without errors or performance impacts.
     
  15. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    652
    Location:
    Milan, Italia
    Still the same as signature. Stay safe, not paranoid! :thumb:
     
  16. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    Exactly :thumb:
     
  17. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    I did notice Kaspersky being a little CPU happy. This was brought to my attention by my fans kicking in much more often than usual. I've uninstalled and have returned to Windows Defender (sandboxed). Fans are nice and quiet again, oh and my web browsing is noticeably snappier too.
     
  18. ProTruckDriver

    ProTruckDriver Registered Member

    Joined:
    Sep 18, 2008
    Posts:
    1,444
    Location:
    "An Apple a Day, Keeps Microsoft Away"
    I went back to running WSA beta on the Mac computer. :)
    Also what's in my Signature.
     
  19. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Not much changes: Kaspersky Internet Security, Macrium Reflect, uBlock Origin and Mullvad VPN.
     
  20. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,920
    Nothing much has changed here, either: Kaspersky Internet Security, NVT SysHardener (set-and-forget settings), NVT OSArmor (experimental settings), O&O ShutUp10, Iperius Backup, uBlock Origin and a couple of on-demand scanners.
     
  21. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    CFW 11 with hips disabled...
     
  22. acid king

    acid king Registered Member

    Joined:
    Jan 19, 2019
    Posts:
    101
    Location:
    europe
    Windows 10 Pro 64-bit 1903

    Heimdal Thor Premium
    BlackFog Desktop
    GlassWire Elite

    Windows Privacy Dashboard
    Firefox Hardening +addons (uBlock Origin, Decentraleyes, CanvasBlocker, HTTPS Everywhere)
    Startpage seach engine
    Cloudflare ESNI Checker ByPass

    Keepass
    BitLocker enabled
    Macrium Reflect
    Sync cloud storage​
     
    Last edited: Jun 8, 2019
  23. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    No changes needed. This security is locked tight and running comfortably as if living on MARS :D
     
  24. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    @EASTER ,

    "Privacy Badger-Possum"

    Which is it? I use Privacy Possum myself.
     
  25. amico81

    amico81 Registered Member

    Joined:
    Oct 18, 2017
    Posts:
    100
    Location:
    Germany
    My Update:

    NVT Syshardener + Voodooshield (free) + Panda Dome (free)
    Firefox with Bitdefender Traffic Light + Ublock Origin + Netcraft
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.