What is your security setup these days?

yes he went to the store and call my cell phone and ask me which one to buy

 

1. Automatic Updates
2. Windows Firewall
3. Avira Antivir Free
4. Limited User Account
5. Software Restriction Policy
6. Uninstalled-File & Printer Sharing,Client for Microsoft Networks, and QOS Packet Scheduling.
7. Windows Media Player Options-Unchecked all under Privacy and Security.
8. Firefoxes built in antimalware/phishing filter + NoScript
9. On Demand-MalwareBytes & SuperAntiSpyware
10. Disabled Windows Media Player Network Sharing Service and WMPNSCFG.
11. Disabled Remote Registry Service,TCP/IP NetBios Helper Service, and Telnet Service.
12. Secure Logon(ctrl+alt+del)

 

Avast is really awesome.. I dont know I might end up buying the pro..

 

Windows 7 PRO 32-bit
in my comodo time machine snapshot for gaming and family use i have:

modified lots of GPO settings.
Avast Free (file, behavior, web shield on / only invoked scan on execution via GPO)
GesWall Free
EMET 2
SRWare Iron
Spyshelter Free

 

for now removed winpatrol plus,i tested yestarday and was not impress and yes is giving mesome problems for now

 

trying out prevx free also trying out Safe Returner

 

This is a relative's system security I'm setting. Some aren't deployed, yet. On-going task.

Taking as a principle that this relative of mine is sort of a dangerous one , and recently got Windows XP under admin. account severely infected, I've decided for the following:

Operating System: Windows 7 Ultimate 32-bit;

Firewall: Windows 7 Firewall with Advanced Security. All inbound and outbound traffic forbidden, unless explicitly allowed;

User accounts: One administrator account for installing apps (known apps, like upgrades for versions that are installed in the system); 4 standard user accounts (1 for normal tasks like Office, watch videos, listen to music; 1 for e-mail; 1 for home banking; 1 for Internet facing apps, including Live Messenger);

UAC; DEP; SEHOP; EMETv2;

Browsers: Internet Explorer 8 for accessing only bank account, hardened through Group Policy. Chromium with 3 different profiles: Youtube (only access to Youtube is allowed); Restricted (javascript, plugins, etc blocked; daily browsing); Normal (for accessing websites that are known/deemed to be safe); All Chromium profiles running with an explicit low integrity level.

Antimalware/antivirus: Microsoft Security Essentials
URL Scanner/URL Blocker: AVG LinkScanner + WOT + avast! 5 web shield + ClearCloud DNS (I want to block most possible outside the "perimeter", due to the reason I mentioned at the very beginning.)

Some unneeded and dangerous services are disabled.

Edit: The way Chromium is set, if my relative was careful, it would suffice, but that's not the case unfortunately, so blocking/preventing most of what comes from the browser, even downloaded by my relative was the best approach I could think of, without compromising security and usability.

This is an Acer Aspire 1640 I'm talking about with only 60GB. System boots really fast and runs very light. (I have tested most of it in a virtual machine previously.)

 

OS: Windows 7 64 bit
Primary defense: Standard Account

Firewall: W7 firewall, behind router with WPA2 (changed password to router)

Browser: Firefox with addons

Secondary Defense: MS Family Safety (allow only safe sites)

Others: DEP, UAC at highest level, Foxit Reader, no Java, keep up on MS updates, using Windows Defender.

Banking: Live CD (Linux)

 

Using open Dns with max filters
Behind Firefox with following addons: Adblock-Wot-NoScript
Sandboxie: All webbrowsers sandboxed. Temp files sandboxed.
Avert: On demand (you should all check out this tool)
Defensewall
MalwareDefender-Set to kill any app outside my whitelist zone. No temp files can ever execute, all apps are running with minimal rights.

I know defensewall and malwaredefender is overkill, but to be honest, I've had no problems with it, and i feel safer this way.

 

just adding SpyWare Blaster Free

 

October 28, 2010 - Updated , Added , Removed

Windows 7 Professional x64 (UAC: OFF, WD: OFF, FW: OFF, DEP: ON, SEHOP: ON, EMET: MAX)

Network

• Two Linksys Routers (DD-WRT Firmware) in WDS Mode
• WPA2-PSK AES Encryption
• SPI Firewall Enabled
• OpenDNS Configuration

Resident

• Online Armor ++ 4.5.1.431 (Paid)
• Sandboxie 3.50 (Paid)
• Mamutu 3.0.0.19 (Paid)
• Malwarebytes' Anti-Malware 1.46 (Paid)

On-Demand

• Shadow Defender 1.1.0.326 (Paid)
• Active@ Disk Image 4.0.4 (Paid)
• VMWare Workstation 7.1.2 (Paid)
• Emsisoft Emergency Kit 1.0.0.12

Browser, Immunization, Tweaks

• Minefield 4.0b8pre (Ad-Block Plus, Ghostery, Domain Details, WOT)
• Internet Explorer 9.0 Beta
• KeyScrambler Professional 2.7.0.0
• LastPass 1.70.1 (IE & FF)
• Bluetack Safepeer SPLists (via OA for P2P Only)
• Spybot Search & Destroy 1.6.2 (Full Immunization w/o Global Hooks)
• Spyware Blaster 4.4 (All Protection Enabled + Customblocking.txt)
• BlackViper's Services Registry Files (Safe W7 Pro 64 Start)
• Ultimate Windows Tweaker 2.1 (Customized)
• SpeedGuide.net Vista TcpIp Patch 1.5

dja2k

 

Windows 7 x64

EMETv2 (Max), UAC (Highest Level)
EAM5 - Real Time
MBAM - Real Time
Privatefirewall7 - Real Time
Google Chrome

This setup seems to work great for me on my laptop. I been lurking on the forums for a few months reading and finally decided to register I went thru a few security setups and finally settled on this one for now hehe. Will see how it goes.

 

System -
Windows x64 Ultimate
UAC -disabled
Dep SEHOp and all other short form crap on default

Real Time -
Panda Cloud Pro [ cnet giveaway license ]
Online armor free
Winpatrol free

On Demand -
Hitman pro
Mbam free
Emsisoft emergency kit

Browsers -
Mozilla [Safe run from oa , adblock , wot , ghostery ]
srware iron [ safe run from oa + adblock ]

Backup -
Macrium reflect free
Comodo time machine [ just in case ] { removed }

Other stuff -
Ccleaner
Filehippo update checker

 

Considering adding Panda Cloud Antivirus Pro

 

Adding it to your current setup? Wouldn't you think it might be waaaay too overkill?

 

Why? You have the best protection there is when it comes to prevention and detection in EAM. Panda is a joke. My 2-year license I bought a few months back was a big waste of money. Panda is glitchy, slow and does not provide even a 10% detection rate against 0-day threats (yes, I've tested it against aprox 150 0-day threats).

 

I tested this and found it to perform slowly. I tested it with three different security setup to make sure and it was definitely Panda causing the issue. A noticable lag started when I installed Panda. After I removed it my laptop (which is about 3-4 months old) the lag was gone. Even with the free pro license, I think I will pass on this software.

 

OS
Windows 7 Enterprise x64

Browser
Primarily I use Google Chrome: FlashBlock, AdBlock, WOT
Firefox: TACO, NoScript

Resident
Prevx SafeOnline
KAV 2010
Windows Firewall

On-Demand
Malwarebytes
VirusTotal Uploader

Other
EMET 2: Flash, Chrome, IE, Firefox, Java, VLC, Windows Media Player, Acrobat/Reader
ClearCloud DNS
Router set up to only let specific MAC addresses access Wifi

Thinking about adding some encryption... Would also like to hear what else people are doing with EMET. (Found some posts using search, but felt far from complete).

 

Personally I would just set EMET to max.

 

Shared Network:
Actiontec Modem with SPI Firewall
DyDNS Free (Ads and Pop-ups, Conficker Worm, Phishing, Spyware)

Real-time Protection:
Comodo Internet Security Premium (Full) [Password Protected]
Windows Defender Advanced SpyNet Membership [UAC Protected]

System (Windows 7 Pro 64-bit):
Enabled DEP, SEHOP, Default-Deny SRP, Silent UAC
Disabled Windows Firewall, System Restore, Internet Explorer, Autorun/Autoplay
Enhanced Mitigation Experience Toolkit
Spybot - Search & Destroy (Immunize)

Firefox 3.6.12:
Adblock Plus (Malware Domains subscription)
HTTPS Everywhere
LastPass
LinkExtend
SandBoxie Free (+ DropRights & Internet Access Restrictions)

On-demand Scanning:
ArcaVir MicroScan
AVZ Antiviral Toolkit
BugBopper
eScan AntiVirus Toolkit Utility
Hitman Pro
Norton Power Eraser
Malwarebytes' Anti-Malware
SUPERAntiSpyware Free
Trend Micro HouseCall

Analyzers:
http://camas.comodo.com/
FreeFixer
http://www.urlvoid.com/
VirusTotalUploader

Updates:
Freeware Files RSS
KC Softwares SUMo

Backup:
Paragon Backup & Recovery Home Special Edition


Ubuntu Lucid Netbook:
Chromium --safe-plugins, AdThwart, LastPass, WOT
Regularly updated. Sudo only, no root

 

Switched from Dr Web AV v6 to the latest version of Panda Cloud AV Pro.

 

THAAAAANKS for the feedback, this is what i wanted

It's good to know other experiences x3
I think i'll skip it this time then
I did feel it was going to be kinda lame to have 2 scanners, but i was like HMMM got a free license

 

NooB you are just fine man

 

Just added MBAM ondemand..and hey Noob Howz u and MD working along? You need some aspirin or u fully loaded

 

too much pop ups man couldnt handle i like hips but MD is way very chatty
man it talks more than papa