What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Rules

    Rules Registered Member

    Joined:
    Mar 3, 2009
    Posts:
    697
    Location:
    EU
    Windows 10 Pro 22H2
    DefenderUI Pro (WD tamper protection disabled)
    WFC
    KeyScrambler
    Emsisoft Emergency Kit
    KeepassXC
    UBO + Chromium
     
  2. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    345
    Windows 10 Pro (same setup when running Win 11 Pro)
    1. Turned off Cortana via Group Policy
    2. Turned off telemetry via Group Policy
    3. UAC on High
    4. Brave browser
    5. Macrium Reflect 8.0 paid (backup strategy)
    6. Bleach Bit (privacy)
    7. Windows Defender
    8. Repair install every 3-4 months
    9. Do not use cloud services (external SSDs only)
    10. Control Windows 10 updates via Group Policy
     
    Last edited: Jan 23, 2023
  3. Rules

    Rules Registered Member

    Joined:
    Mar 3, 2009
    Posts:
    697
    Location:
    EU
    Some Changes :
    Windows 10 21H2 Entreprise (Telemetry enabled set=0) + OO shutup
    Chromium + UBO + Keepassxc
    GDATA internet security with anti-keylogger disabled (indeed nice firewall and very effective)
    KeyScrambler Premium
    Emsisoft Emergency Kit
     
  4. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    Installed Firefox as default browser.
    Still running NoVirusThanks OSArmor | ESET NOD 32 | Sandboxie | AdGuard for Windows |KeePass | MailWasherPRO | Macrium Reflect
     
  5. pvsurfer

    pvsurfer Registered Member

    Joined:
    Sep 1, 2004
    Posts:
    1,617
    Location:
    USA
    Gave-up on WiseVector StopX and switched to Bitdefender Free with Windows Firewall Control (as per my new sig).
     
  6. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    652
    Location:
    Milan, Italia
    Good move. :thumb:
     
  7. Ibrad

    Ibrad Registered Member

    Joined:
    Dec 8, 2009
    Posts:
    1,972
    Simply running McAfee LiveSafe on my production machine.

    Running WiseVector on my test box.

    Looking to see if there's anything worthy out there to compliment McAfee. Did some testing on Immunet and wasn't super impressed so may be putting WiseVector on my production machine.
     
  8. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,344
    Location:
    Italy
    W.10 Home x64 22H2
    Local Account - Standard user - Limited permissions
    UAC maximum - Always notify
    Cloudflare DNS
    Onedrive,Cortana,Advertising ID,Web Search - disabled
    Usage of location data for Cortana disabled
    Telemetry OFF
    Removed some Windows optional features.

    Microsoft Defender Firewall hardened with H_C.
    Microsoft Defender hardened with Configure Defender (Customized level) - Cloud Block Level

    • Ransomware protection - disabled
    • No run in a sandbox
    • Core Isolation: Memory integrity - disabled
    • Some softwares hardened with maximum AE protection
    • All Windows Exploit Protection options - enabled
    MS Edge --no-pings --time-zone-for-testing --enable-features="GpuAppContainer,IsolateSandboxedIframes,EnableCsrssLockdown,EncryptedClientHello"
    • StartPage - Home page and deafult search engine (no extension)
    • Enabled Security Mitigations - Strict
    • Detection Protection - Strict
    • Always HTTPS
    • Next DNS DOH - (oisd + Easy Privacy)
    • Share browsing data with other Windows features - disabled
    • 4 Insecure Cipher Suites - 0x002f,0x0035,0xc013,0x009c - disabled
    • TLS_RSA_WITH_AES_256_GCM_SHA384 - enabled
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA - enabled
    • IL AppContainer - enabled
    • Audio Service -sandboxed
    • Network Service - sandboxed
    • Clipboard permissions - blocked

    Edge://flags:

    Enabled:

    • Block scripts loaded via document.write
    • Enables the BrowsingDataLifetimeManager service to run
    • Experimental QUIC protocol
    • Use DNS https alpn
    • Support for HTTPS records in DNS - DNS-over-HTTPS only
    • Enable Back/Forward Cache
    • Project Robin experiment
    • Automatic HTTPS
    • Strict-Origin-Isolation
    • Show block option in autoplay settings
    • Experimental Tracking Prevention Features
    • Block insecure private network requests
    • Enable Digital Signature for PDF
    • Partitioned cookies
    • Microsoft Edge tracking prevention
    • Experimental third-party storage partitioning - Third party cookies blocker enabled
    Disabled:
    • Show feature and workflow recommendations
    • Allow tab-to-search using Microsoft Search with Bing
    • Allow Microsoft Search with Bing for any default search engine
    • Allow preloading of pages by other applications
    • Enable First-Party Sets
    • Consider SameParty cookies to be first-party
    Extensions:

    Microsoft Edge Store:

    • UBO - Hard Mode with TLD's
    Chrome Web Store:
    • JShelter
    • Don't add custom search engines
    • ( on/off) - AdGuard MV3 - Hard Mode with TLD's + UBO Lite - only AdGuard URL Tracking Protection List
     
  9. Cherub

    Cherub Registered Member

    Joined:
    Oct 13, 2006
    Posts:
    183
    Location:
    Kentucky
    Here's my setup, would like to get any suggestions if I need anything else.

    Windows 10 Firewall
    Malwarebytes Premium
    Voodoo Shield
    Hitman pro alert

    I dropped bitdefender because it was crashing my computer and was wondering if Windows own firewall would be sufficient.

    Again, love to hear any suggestions or if there is some program that I could use to supplement my set up.
     
  10. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    Hi,
    Watch Computer Solutations, video, then make your decision.
    But look at Avast One Video.
     
  11. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    652
    Location:
    Milan, Italia
    Windows 11
    MS Defender | Block all unknown executables
    Exploit Protection | All system setting On | Custom settings for apps
    Smart Application Control | On
    Edge | µBO
    Firefox | µBO
     
  12. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    652
    Location:
    Milan, Italia
    Your two anti-malware solutions can conflict with each other, even if it appears everything is OK. You should stick with one or the other. Depending on your choice, you could just use MS Defender. Frankly, Defender and VS are enough. Less is more, my friend! :cool:

    Windows Firewall is fine.
     
  13. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    Added AdGuard VPN. Currently 75% off for 2-year subscription with 30-day money back guarantee.
     
  14. plat

    plat Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    2,233
    Location:
    Brooklyn, NY
    I demoed this vpn (Adguard) once a couple of years ago and then promptly unloaded it as it slowed the browsing down--considerably. Do you notice any problems with slower browsing versus without it?
     
  15. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    The jury is still out, @plat. Just installed last night. Browser (Firefox) seemed the same, possibly even faster. Today I notice an ever-so-slight slowdown. More use will tell. Either one of the above conditions may have had nothing to do with AdGuard VPN. Plus soon I will be adding it to a second computer and I can observe how it reacts as well.
     
  16. bellgamin

    bellgamin Registered Member

    Joined:
    Aug 1, 2002
    Posts:
    8,102
    Location:
    Hawaii
    My security set-up:

    Windows
    Firewall- Evorim Free
    Antivirus- G-data
    Whitelist/default-deny/anti-executable- VoodooShield

    Zorin Pro (Linux)
    Firewall- internal default-deny
     
  17. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,344
    Location:
    Italy
    W.10 Home x64 22H2
    Local Account - Standard user - Limited permissions
    UAC maximum - Always notify
    Cloudflare DNS
    Onedrive,Cortana,Advertising ID,Web Search - disabled
    Usage of location data for Cortana disabled
    Telemetry OFF
    Removed some Windows optional features.

    Microsoft Defender Firewall hardened with H_C.
    Microsoft Defender hardened with Configure Defender (Customized level) - Cloud Block Level

    • Ransomware protection - disabled
    • No run in a sandbox
    • Core Isolation: Memory integrity - disabled
    • Some softwares hardened with maximum AE protection
    • All Windows Exploit Protection options - enabled
    MS Edge --disable-webgl --no-pings --time-zone-for-testing --enable-features="GpuAppContainer,IsolateSandboxedIframes,EnableCsrssLockdown,EncryptedClientHello"
    • DDG - Home page and deafult search engine
    • Enabled Security Mitigations - Strict
    • Detection Protection - Strict
    • Always HTTPS
    • Next DNS DOH - (oisd + Easy Privacy)
    • Share browsing data with other Windows features - disabled
    • 4 Insecure Cipher Suites - 0x002f,0x0035,0xc013,0x009c - disabled
    • TLS_RSA_WITH_AES_256_GCM_SHA384 - enabled
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA - enabled
    • IL AppContainer - enabled
    • Audio Service -sandboxed
    • Network Service - sandboxed
    • Clipboard permissions - blocked

    Edge://flags:

    Enabled:

    • Block scripts loaded via document.write
    • Enables the BrowsingDataLifetimeManager service to run
    • Experimental QUIC protocol
    • Use DNS https alpn
    • Support for HTTPS records in DNS - DNS-over-HTTPS only
    • Enable Back/Forward Cache
    • Back-forward cache - Enabled force caching all pages (experimental)
    • Project Robin experiment
    • Automatic HTTPS
    • Strict-Origin-Isolation
    • Show block option in autoplay settings
    • Experimental Tracking Prevention Features
    • Block insecure private network requests
    • Enable Digital Signature for PDF
    • Partitioned cookies
    • Microsoft Edge tracking prevention
    • Experimental third-party storage partitioning - Third party cookies blocker enabled
    Disabled:
    • Show feature and workflow recommendations
    • Allow tab-to-search using Microsoft Search with Bing
    • Allow Microsoft Search with Bing for any default search engine
    • Allow preloading of pages by other applications
    • Enable First-Party Sets
    • Consider SameParty cookies to be first-party
    Extensions:

    Microsoft Edge Store:

    • UBO - Hard Mode with TLD's
    Chrome Web Store:
    • Don't add custom search engines
    • ( on/off) - AdGuard MV3 - Hard Mode with TLD's + UBO Lite - only AdGuard URL Tracking Protection List
     
    Last edited: Mar 1, 2023
  18. Lagavulin16

    Lagavulin16 Registered Member

    Joined:
    Nov 26, 2014
    Posts:
    195
    Location:
    Emerald City
    On W10 Home Edition (with MS Office 2021 installed).
    All browsers paired with UBO, Privacy Eraser, Patch My PC, Simplewall, Bitwarden, Surfshark VPN, Voodoo Shield (lifetime license), Sandboxie +,
    Bitdefender free w/2nd-hand scanners EEK and Sophos S&C, AOMEI backupper pro, and the icing on the cake--- Faronics DeepFreeze.
     
  19. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    652
    Location:
    Milan, Italia
    Windows 11 22H2
    MS Defender | Block all unknown executables | ASR rules
    Smart Application Control | On
    Exploit Protection | All system setting On | Custom settings for apps
    Firefox | µBO Medium mode | https://search.disroot.org/
    Chrome | µBO Medium mode | https://search.disroot.org/
     
    Last edited: Mar 1, 2023
  20. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    Sphinx Firewall Plus
    AppGuard Solo
    OSArmor
    DeepFreeze
     
  21. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    @LoneWolf
    What happen to Raxco Software:)?
     
  22. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    Still here, doing its job.
     
  23. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
  24. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    1,131
    Location:
    Baden Germany
    See my signature, for my setup.
    A longtime friend and colleague
    doesn't use any security, accept brain 2.0, and Pi-Hole.
    He is fine for years with his setup.
     
  25. Alexai

    Alexai Registered Member

    Joined:
    Mar 12, 2023
    Posts:
    11
    Location:
    Italy
    Hi everybody! I read you by many years and finally I'm here, I apologise for my english in advance.
    I've always struggling to get a definitive configuration.

    ryzen 5600u - Win11
    quad9 - I'm evaluating others (https://www.privacytools.io/encrypted-dns)
    O&O ShutUp10++ - I wanna to reset original settings cause I don't like it anymore ... I would switch to privacysexy
    DiagTrack service disabled

    WinDefender
    I used some of the Andy Ful soft finded on the other forum in the past, by I don't remeber exactly what :/ but now I decide to install DefenderUI, so I dunno exactly how the things are going. I would remove Andy Ful soft from my pc, also because I read some functions of his softs were deprecated by microsoft.

    Firewall
    I used for years simplewall but now I have to choose between it and wfc (...)

    Browser
    I had Vivaldi for years, cause it's the only one which permit sidebars, left for sites, right for favourites. Then I discover Edge and recently Brave even if the latter doesn't have favourites sidebar, and edge one isn't "sizeable". I like edge but I don't like this https://privacytests.org/ ... I look at Sampei settings, they are very complicated and not understandable for me ... maybe in a future I will go for Brave.
    I've LibreWolf as a second browser.

    The only extension is uBlock Origin (I dunno what mode), for months used with tld three lists founded on the other forum, but after one of these had no more updates I switch ...

    Search Engines
    duckduckgo, google, brave, searx (have to choose instances among 2/3)

    Always work in progress, tips are very appreciated
    Cheers
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.