What is your security setup these days?

WSFuser,

I run a 3.2 GHz P4.


Peace & Love,

CogitoErgoSum

 

Yeah it seems that a lot of people confuse cpu usage for ram usage. 50 % cpu usage is a lot for something that is checking each minute. Version 4.5 only goes to 13% on mine checking each minute.

dja2k

 

Hi, I will say 50% of CPU spikes per min seem to be too much, not looking normal to me.

 

An alternative to RegRun's RegGaurd? Hmmm, I found a way to do the same thing without changing to 4.6 and not having the added CPU usage by using regdefend, enabling it, and closing the GUI making all changes defualt to block or what the rule says.

dja2k

 

"UPDATED FROM PREVIOUS POST 443"

PARTIAL LIST 6-16-06

CHANGED
ADDED
REMOVED

ACTIVE HARDWARE
Linksys Routers (Two WRT54G's in WDS Mode)
-Sveasoft Alchemy-V1.0 v3.37.6.8sv Firmware
-Firewall Protection Enabled
-Block Anonymous Internet Requests Enabled
-WEB 128-Bit Key Encryption Enabled
-Wireless MAC Filter Enabled
-Configured with Look'n'Stop for P2P

ACTIVE SOFTWARE
Online Armor AV+ Beta (1.1.1.788 )
-Mail, Spam and Web Shield (Enabled)
-Program Guard (Enabled)
-Antivirus Engine (Enabled)
Look'n'Stop Beta (2.05p3)
-Phantom Ruleset
-Beta Features Enabled
-Configured with Routers for P2P
Socketshield XPL (1.0.0)
-Enabled
-Automatic Updates
Ghost Security Suite (1.010)
-RegDefend Active (TonyJL's File)
RegRun Suite Gold 4.5
-Ultra High Level

The Following are found on post #416

HARDEING

BROWSERS

ON DEMAND

Winpatrol Plus Sneak-Peek (10.0.0.2)

 

dja2k, so how did u like regdefend? good, bad, inbetween?

 

Latest "additions" in bold as of 6/18/06:

Resident:

DefensePlus
DefenseWall HIPS
Look'n'Stop 2.05p3(+Phant0m's latest r/s)
Netgear RP614 v2 Router w/NAT & SPI
NOD32
RegRun Platinum 4.6
SocketShield


On-Demand:

A-Squared(free)
Digital Patrol
Ewido(free)
Sentinel
Spy Sweeper
SUPERAntiSpyware Pro

System Hardening:

Applied manual system hardening tweaks
Disabled most WinXP SP2 services
Harden-It
Removed Netmeeting
Removed Windows Messenger
Samurai
Windows Worms Door Cleaner


Peace & Love,

CogitoErgoSum

 

Oh WSFuser, I have always used regdefend since the start and IMO its the best registry protection you can get especially using tony klein and tonyjl's ghst files. I have used appdefend too. I have paid version of both as well cause I hated the nag screen and well the price is great for lifetime updates. I will be testing the new appdefend beta when it comes out as well. You know me, I am always changing programs, but since I am running regrun gold, I think its registry protection is okay and I don't need to run regdefend. Though as I said previously in another post, you can freeze the registry by not running the gui of regdefend, maybe all prompts to defualt, which is pretty nice.

dja2k

 

Sygate PFP
Webroot Spy Sweeper
NOD32

That's all !!

 

in Realtime​

Nod32
SSM
GSS
Nvidia ActiveArmor
Boclean

On Demand​

Ewido Plus
SpySweeper
KAV6

 

Update 6/21/2006:

Realtime:
F-Prot Antivirus beta
Outpost Firewall Pro beta w/ router
A-Squared Anti-Malware
Online Armor beta
SUPERAnti-Spyware Pro beta
SpywareBlaster

On-Demand:
ViruScape 2006 (just for now..reason; testing f-prot)
Ewido Anti-Spyware

 

Resident---
antivir 7 personal classic
jetico
MJ registry watcher 1.2.4.6
Hostman (mvps+hphosts)
script defender
spywareblaster
spybot SD(immunize the system)

On-demand---
Ewido
ad-ware
spybot SD

Others---
opera
ccleaner
hijackthis
icesword
process explorer
read/write email using plain txt
install all windows updates

 

update:

added
changed
removed

Resident:

HOSTS Secure (MVPS Hosts stays)
Look 'n' Stop
Nod32
Online Armor
Proxomitron
Regrun Gold
UnHackMe


On-Demand:

ewido online scan
SuperAntiSpyware

Other Security / System Hardening:

nLite'd Windows XP (with service tweaking based on TweakHound's guide)
RyanVM's Windows XP Post-SP2 Update Pack
BugOff
Harden-it
Samurai HIPS
SocketLock
Windows Worms Doors Cleaner
xp-antispy
Process Explorer
Firefox extensions: javascript options, noscript, permit cookies, and spoofstick

 

Hey WSFuser, may I ask why you removed samurai HIPS? Did it conflict with something?

dja2k

 

im not entirely sure; but when my internet starts acting up, hardening tools are teh first suspect.

on the next format, if i install samurai and theres no conflict then i know it was something else.

 

update:

added
changed
removed

Resident:

Look 'n' Stop
Nod32
Online Armor
Proxomitron
SnoopFree
UnHackMe

On-Demand:

ewido online scan
SuperAntiSpyware

Other Security / System Hardening:

see post 463

 

"UPDATED FROM PREVIOUS POST 455"

FULL LIST 7-03-06

CHANGED
ADDED
REMOVED

ACTIVE HARDWARE
Linksys Routers (Two WRT54G's in WDS Mode)
-Sveasoft Alchemy-V1.0 v3.37.6.8sv Firmware
-Firewall Protection Enabled
-Block Anonymous Internet Requests Enabled
-WEB 128-Bit Key Encryption Enabled
-Wireless MAC Filter Enabled
-Configured with Look'n'Stop for P2P

ACTIVE SOFTWARE
Online Armor AV+ (1.1.1.804)
-Mail, Spam and Web Shield (Enabled)
-Program Guard (Enabled)
-Antivirus Engine (Enabled)
Ewido Anti-Malware (4.0.0.172a)
-Resident Shield Active
-Automatic Updates Active
Look'n'Stop Beta (2.05p3)
-Phantom Ruleset
-Beta Features Enabled
-Configured with Routers for P2P
Socketshield XPL (1.0.1)
-Block Exploits Enabled
-Block Sites Enabled
-Automatic Updates Enabled
RegRun Suite Gold 4.6
-Ultra High Level
-RegGuard Enabled\Disabled Manually
Prevx1 PRO (1.2.0.52)
-Pro Mode

Following were changed from post #416

HARDEING
Harden-It 1.2 (Defualt Settings)
Samurai 2.6 (Customized)
Bugoff 1.10 (All Disabled)
Windows Worm Door Cleaner (All Closed)
XP-Antispy 3.96-2 (Customized)
Advanced Windows Care V2 Beta 2 (Customized)
Spyware Blaster 1.5.1 (Immunized)
Spybot 1.4 (Immunized)
IE-Spyads (May 22 '06)
Spyware Guide's Blocklist (Last One Available)
Hosts Secure (MVPS Host File)
Autopatcher (Full + Updates to June 06)

BROWSERS
Firefox 1.5.0.4 (NoScript, SiteAdvisor, NetCraft ToolBar, Adblock\Updater)
Opera 9.01 (Built 8509)
Maxthon 1.5.6 (Built 42)
IE 7 Beta 3 (7.0.5450.4)

ON DEMAND
Nod32 (2.51.26)
Antivir PersonalEdition Classic 7 (6.35.00.128 )
SuperAntispyware (3.2.1026)
Ad-Aware SE (1.06r1)
A-Squared Free (1.6.5)
Spybot (1.4)
CCleaner (1.30.310)
Winpatrol Plus 10 (10.0.1.0)
Process Explorer (10.11)

 

Zone Alarm Pro 6
NOD 32
Spyware Doctor 3.8
Ewido 4.0
Ad-aware sePRO 1.06
Spyware Blaster

 

Can you specify which are active in realtime and which are on demand? Or are you running all at once?

dja2k

 

Latest---

Add System Safety Monitor 2.0 Free Edition to real-time protection
Disable jetico's process attack table.

Other setup could be found on post 462.

All of them are free.

 

update:

added
changed
removed

Resident:

Kaspersky Anti-Virus
Look 'n' Stop
Prevx1
Nod32
Proxomitron
SnoopFree
UnHackMe

On-Demand:

ewido online scan
SuperAntiSpyware

Other Security / System Hardening:


nLite'd Windows XP (with service tweaking based on TweakHound's guide)
RyanVM's Windows XP Post-SP2 Update Pack
BugOff
Harden-it
SocketLock
Windows Worms Doors Cleaner
xp-antispy
Process Explorer
Firefox extensions: adblock plus + adblock filterset.g updater, javascript options, permit cookies, and spoofstick

 

Currently i use the following apps realtime. All running together nicely.

Firewall - Zone Alarm Free
HIPS - Online Armor
Antivirus - KAV 6
Antispyware - SuperAntispyware Pro
AntiTrojan - Boclean
Ad Blocking - SuperAdBlocker
Cookie monitoring - Cookiewall
Security Suite - Regrun Platinum(includes UnHackme rootkit detection)

muf

 

NOD32
Kerio 2.1.5
System Safety Monitor
BOClean
Spy Sweeper & Ewido (on demand)

 

Primary:
- GeSwall (inbound + sandbox/virtualization = great ap, on high = silent)
- Antivir (don't forget to insert a new update job, daily at 00.01 with option repeat job if time has expired ON, and remove old update job in scheduler, also select protect configuration)
- MsDefender (delete high, recommended actions for medium
- Spybot Helper (silently surpress bad sites)
- Used Spybot to protect host file/start page
- Use SpywareBlaster for Active X protection

Secondary (scanner only)
- Bitdefender
- Adaware
- Ewido
- Trend Micro House call on-line scanner

Hardened XP

 

Where is this option in Antivir?