What is your security setup these days?

Yeah just allow it to install under free mode. No updates or realtime modules.

 

After some thought, I've decided to go sans AV. AppLocker is configured, EMET is running, any suspicious exe files will be tested in Sandboxie (Run As UAC Administrator makes it very handy when using AppLocker) and weekly scans with MBAM Free should see me right. Plus, I've got Norton DNS and Ad Muncher for the web side of things.

 

No automatic updates?

 

A real on demand, will do everything on demand.
With EAM u can choose their Emegency Kit, to have the same on demand scan without installation.

 

Trying Emisoft AM free. Seems to have automatic updates and scan, but is not possible to change the schedule.

 

some changes to my setup:

Removed Chromium and switched back to Opera.
Installed Avast Free (Web, Network and Script shields only)

 

New setup (win7 x64)

Browser protection (IE9): Sandboxie+Keyscrambler
Fanboy TPL lists, 3rd part cookies denied.

System hardening: SUA+SRP[whitelist via parental controls]+UAC[MAX.]
Also disabled some services, remote assistance, auto-run

AV: Avast[file and behaviour shields]+Hitman Pro
Scheduled Avast to perform a full scan once every month, and Hitman to daily full scans.

System Restore: Keriver 1 Click Restore

Windows firewall

 

hitman pro rocks

 

Trying NIS on XP Pro, rest see my sig (updated)

 

Real-Time/Resident/On-Access

• DefenseWall Personal Firewall + HIPS v3.13
• WinPatrol Cloud Edition Plus 20.5.2011

On-Demand

• Avira AntiVir Rescue System
• Malwarebytes' Anti-Malware Free 1.50.1100.1
• SUPERAntiSpyware Free Edition 5.0.1086
• Norton Power Eraser
• Emsisoft Emergency Kit
• Hitman Pro Paid 3.5.8 Build 121

Network/Browser

• TP-Link TL-WR340G 54M Wireless G Router (SPI Firewall)
• GFI ClearCloud DNS
• Mozilla Firefox 4 (Sandboxed by DefenseWall, ABP, NoScript)
• Google Chrome 13 (Sandboxed by DefenseWall, ABP)

System Hardening

• Autorun/Autoplay: Disabled
• Windows Firewall: Disabled
• Windows Defender: Disabled
• Windows System Restore: Disabled
• Administrator Account
• User Account Control: Default
• Enhanced Mitigation Experience Toolkit 2.1: Maximum settings
  All Internet-facing applications + Microsoft Office 2010
• Unsigned Drivers: Block
• Detect Application Installations: Off

Instant Recovery

• Rollback Rx

Acer Aspire Netbook (Windows XP SP3):

• Sandboxie Paid 3.54 (Drop Rights, Auto-delete sandbox contents)

 

Windows 7 Professional 32-bit (Modem-Router NAT: enabled)

separate partitions for:

• SYSTEM
• DATA

Setup:

• Standard User Account w/ Parental Controls (Only allow whitelisted apps to run)
• Disabled Windows System Restore and Windows Defender
• User Account Control set to Highest
• Microsoft Security Compliance Manager (MSCM) for downloading Baseline Security Templates from Microsoft that will harden Group Policy settings.
• LocalGPO (included in MSCM) this tool is used to apply Security Templates.
  
  • Templates used: Merged copy of Win7SSLFComputer, Win7SSLFUser and IE8SSLFComputer, IE8SSLFUser
    • Do not allow registry editing
  • Modified GPO thru 'gpedit.msc' also added some Safe-Admin tweaks
    • allowed Administrators to debug programs (Compatibility for EMET. see below)
    • Allowed Legacy Apps to Run (compatibility for startup programs)
    • 1806 trick
• Enhanced Mitigation Experience Toolkit (EMET) to apply the ff. and more:
  • Data Execution Prevention (DEP): Opt-out
  • Structured Exception Handling Overwrite Protection (SEHOP): Opt-out
  • Address Space Layout Randomization (ASLR): Opt-in
• Privoxy
• Avast FREE Antivirus
  1. File Shield - Unchecked Scan Documents when opening, Unchecked Scan Files when writing.
  2. Web Shield - Set to scan Privoxy traffic.
  3. Network Shield
  4. Script Shield
  5. Behavior Shield
• Peerblock
• ClearCloud DNS
• Hitman Pro (for fast scans)
• MVPSHOST

Opera Browser (Protected Mode via icacls + EMET + Privoxy + UAC Virtualised )

1. Clearcloud DNS
2. plugins only on-demand.
3. disk cache off.
4. never check cached documents and images
5. Disabled Geolocation and mouse gestures.
6. Fanboy's Adblock list for Opera urlfilter + stylesheet
7. Privoxy settings:
   • change-x-forwarded-for{block}
   • client-header-tagger{image-requests}
   • client-header-tagger{css-requests}
   • crunch-if-none-match
   • filter{html-annoyances}
   • filter{content-cookies}
   • filter{refresh-tags}
   • filter{img-reorder}
   • filter{banners-by-size}
   • filter{banners-by-link}
   • filter{webbugs}
   • filter{jumping-windows}
   • filter{frameset-borders}
   • hide-from-header{block}
   • hide-if-modified-since{-60}
   • hide-referrer{conditional-block}
   • limit-connect{,}
   • overwrite-last-modified{randomize}
   • session-cookies-only
   • set-image-blocker{pattern}
8. On-demand use of JanusVM + Enable Opera Turbo during Anonymous/Private session.

Looking forward to the next Spyshelter release and Superantispyware 5 Final.

[For Windows 7 Only] here's a tutorial how to apply Microsoft Baseline Security template (tools included)
http://www.mediafire.com/?a6oqyg7tvtyikva

 

ESET NOD32 Antivirus 5 beta

 

New setup below in my sig.

 

testing ESET NOD32 Antivirus 5 with HIPS and it is very nice idea to have hips/antivirus combo like

 

A quick´n ´free (most are giveaways) setup for computer not much to be used ´till september-october :

- F-Secure Internet Security 2011 (DeepGuard on,and "strict" firewall profile)
- HitmanPro free
- Emsisoft Emergency Kit
- Zemana AntiLogger
- Mamutu
- MBAM free
- AVZ Antiviral Toolkit
- Shardana USB-stick (with GData´s,Avira´s...rescue CD´s)
- Sandboxie free

...I´m still learning...

 

How's NOD32 j?

 

DefenseWall 3.13 + Shadow Defender 1.1.0.325

 

Can't go wrong with that combo wolf. Nice and light but strong

 

Francis93 Nod32 Antivirus Beta is super light and the hips is what i like the most alitle chatty in interactive mode but it's ok

 

Suppose to be chatty in interactive mode, thats a part of what that means J

 

After testing without liking the product I always come back to either Norton or PCAV, depending on if I need a free solution or not.

 

I uninstalled ESET Smart Security 5 Beta and decided to give my other all time favourite antivirus company's product a try: Kaspersky Internet Security 2012 Beta.

My opinion about KIS 2012 Beta (in comparison to KIS 2011):

• greatly reduced the performance impact on my pc, which was my biggest complaint about KIS 2011;
• I really love the new interface, it is the best I have ever seen for a security application. Way better than BitDefender's new interface in the 2012 version, which I absolutely dislike, but others like it somehow;
• improved general user experience (for example faster installing, faster initial signature update).
• However, full scans are still desperately slow for some reason (just like I experienced with KIS 2011);
• a patheticly slow Internet Explorer 9 extension: IEVkbdBHO;
• Kaspersky seriously should reintroduce the custom installation so can opt from bloat (Virtual Keyboard, Anti-Banner, Parental Control).

EDIT: I guess this won't survive long, stuck for minutes at scanning notepad.exe, stuck for minutes at scanning regedit.exe; 9 hours scanning time remaining. Just like I experienced with KIS 2011. A shame for a release which is great apart from this.

 

Great setup IMO.

Interesting to notice that some of the real top security programs are "one man show"!

- Sandboxie: Tzuk
- DefenseWall: Ilya Rabinovich
- Shadow Defender: Tony

 

Avast Internet Security (AIS)
Counterspy (CS)
Spywareblaster
Spywareterminator
ClearCloudDNS

 

1. Windows 7 Ultimate 64bit
   • User Account Control (UAC): max settings & standard account
   • Applocker
   • Enhanced Mitigation Experience Toolkit (EMET) 2.1.0: Maximum Security Settings
     
     Data Execution Prevention (Opt Out);
     Structured Exception Handling Overwrite Protection (Opt Out);
     Address Space Layout Randomization (Opt In);
     ​
2. F-Secure Internet Security 2011
3. Sandboxie 3.55.08 64bit
4. Secunia Personal Software Inspector (PSI)
5. Sandboxed Firefox 4: WOT, Adblock Plus (Pop-up Addon, Fanboy´s List, Malware Domains), LastPass.
6. Norton DNS