What is your setup?

Are you better now, did you get good medicine from you doctor?

 

Avast! and Windows Firewall.
Not infected since...

 

My Setup:

- IE 6.0 Sp1
- Nod32
- ClamAV(backup)
- Oupost Firewall Pro
- SpySweeper
- SpywareBlaster
- SpywareGuard
- Ad-Aware SE Personal
- SpyBot S&D
- A-squared Personal
- Process Explorer
- WormGuard
- Bazooka
- Startup Inspector
- CCleaner
- Registry Mechanic
- RegSeeker
- Registry Compressor
- IE SPYAD
- BlueTracks HOST file

Regards,

snowboard

 

firewall> look n stop
av> kav lite from cyberscrub
email av> benign

 

Currently:
Windows XP Home SP2 (Use both IE6 and Firefox as browsers)
Linksys Router (Hardware firewall)
ZoneAlarm Pro
KAV Personal (Extended Database enabled)
TrojanHunter
ProcessGuard
WormGuard
RegDefend (with custom Ghost files)
WinPatrol
SpyBot S&D (immunize enabled)
SpywareBlaster (with custom blocking list)
MVPS Hosts File (Hosts File Manager & HostsMan 1.2)
IE-SPYAD
On Demand Scanners: Ad-Aware, Kephyr Bazooka, CWShredder, F-Secure Blacklight, HijackThis, DllCompare
Online Scanners: CounterSpy, Jotti, McAfee AV, X-Clean, Trend Micro (AV & Intemute AS), Webroot Spy Audit
FraudEliminator (for IE6) and Spoofstick (for Firefox)
C/Cleaner & MRU-Blaster

 

Currently on my old and slow machine:

AV/AT: AntiVir
AS: MS AntiSpyware
IPS: Process Guard (Free)
Firewall: GoldTach

System Hardening: Samurai - SafeXP - DropMyRights - ScriptSentry - RegProt
System Monitoring (manual): Process Explorer - Pserv.cpl - AutoRuns - RootkitRevealer

----------------------------------------------------------------
Plans for my new machine:

AV/AT: Kaspersky AV 2006
AS: MS AntiSpyware
IPS: Process Guard (+ maybe another IPS)
Firewall: ZoneAlarm Pro

System Hardening: PreEmpt - SafeXP - DropMyRights - ScriptSentry (+ perhaps SetSAFER)
System Monitoring (manual): Process Explorer - Pserv.cpl - AutoRuns - RootkitRevealer

 

Running Windows 2000 Pro/SUSE Linux:

For Windows 2000:

Disabled services
Disabled NetBios, File Sharing
RestrictAnonymous set to (2)
Running as a Restricted User
C Drive is ONLY set to FULL Control ONLY to Admin/System.
D drive only to save files with only user Full Control.
Using a Linksys Firewall SPI ONLY
Running Firefox with Java/Javascript turned off.
NOT opening attachments AT ALL!!!!! IM MEAN AT ALL.....
Email is only read in PlainText...HTML disabled.

For LINUX:

Disabled NFS, Samba, Telnet, Portmap, Sendmail, RSH.
Using a Blowfish encryption password login
File permissions are set to SECURE.
ENABLED PermitNoLogin for ROOT from a Console
Host Deny is set to ALL:ALL
Still NO ATTACHMENTS are opened just in case...
Encrypted the SWAP Partition
Built-in Suse-Firewall (Only when on Dial-up) but for DSL: Linksys Firewall SPI

 

Counterspy
Spy Sweeper
Ewido security suite v3.5 (trial)
BitDefender 8 Professional Plus
Zonealarm security suite
The Cleaner 4.1 Professional
TrojanHunter 4.2
Trendmicro antispyware
XoftSpy
FireFox
Service pack 2

 

Too many softwares (protection softwares) can sometimes slows down the pc. Especially if they are real-time scanning protection running together at the same time. But it really depend on what you need and experience and how do you felt with your pc.

My set-up:
NetVeda firewall, Avast home editon, SpywareGuard, SpywareBlaster, Ad-Aware SE Personal, SpyBot S&D, A-Squared, Ewido, WinPatrol, ProcessGuard, SSM, CWShredder, Spyware Doctor, Microsoft AntiSpyware Beta, Kill2Me, Firefox browser w firetune, Morpheus internet accelerator, MBM, Cacheman, FreeRam XP Pro, Diskeeper lite, pagedefrag, NTREGOPT, CM DiskCleaner, RegSscrub XP, etc... I forgot some.

Also my pc is Windows XP Pro SP2, 2.40 Ghz w 533 FSB and 256MB RAM.

 

@ sweater : I know but not all the programs I mentioned are running realtime.

 

at the moment im running

1 kav pro 5.0 0383 + nod beta +mcafee
2 outpost pro 2.7
3 portexplorer
4 ewido
5 keen sense
6 spyware doctor
7 regdefend
8 asviewer
9 rootkit reveler
10 hijack this
11 spybot
12 real time file mon
13 netstat pro

not all at once ofcourse that would be silly lol

 

Antivirus: Nod32
Firewall: Hardware firewall, Filseclab Firewall Personal Pro
Spyware: Spyware Doctor, Spyware Eliminator
Malware/Other: A-sqaured, Ewido

.. seems to keep my computer well protected.

 

I consider this the main sources of infection

1) Via driveby downloads when browsing
2) Via email
3) Thru trojans/spyware bundled in software I download
4) Worms via windows exploits of listening services

1)Risk of infection via browser is low because

a) I use firefox/opera, and update religiously
b) Javascript/Java is off plus other tweaks
c) I use content blocking via hosts file + proxy filtering of ads that reduces the possibilty of malware sneaking in through a hacked adserver.

Conceviably, I could be hit by a zero day exploit but the risk of that I consider low. Execution monitoring by whitelisting known processes could cover this area, but I must balance this against the cost due to 3)

2)Risk of infection via email

This is even lower for reasons similar to above. Zero day exploits affecting email clients is even less likely than browsers. Most in the wild worms are quickly picked up by most AVs anyway. So I don't additional protection beyond AV/AT necessary.

3) Risk via trojans,spyware bundled in software i install myself.

I enjoy testing new software. Whenever, someone posts a link to some new security software, I love to try it. I love to play with freeware to.

I consider the threat of spyware/trojans being bundled has HIGH. Because such malware are not actively spread, there are many unknown malwares out there.

4) This one is a non-starter, unnecessary services are closed, a router and a personal firewall shields the machine.

Given this self assessed level of threats, I have decided on a setup heavy on scanners.

AV : Bitdefender 9 + Dr Web +Escan
AT : Ewido security suite + Boclean
AS : Sunbelt Counterspy + Spyware doctor + Ad-aware
Firewall : --------

I have played with "HIPS" like PG,Regdefend, Prevx, Online Armor, antihook etc, but I don't consider them really necessary because they don't really shore up my defense against trojans.

I keep PG because it doesn't hurt, and solely for some anti-termination protection, Regdefend for registry control and Online Armor for misc protection just in case.

Execution protection is sometimes on, sometimes off depending on my mood.

This is just for me of course, but I think many Wilders members are in similar straits.

 

ShadowUser 2.5
NOD32
Outpost Pro 2.7
ProcessGuard full
MS AntiSpyware
SpywareBlaster
Firefox/Opera

 

My current configuration:

O.S. - WIN XP PRO SP1, (SP2 caused MANY headaches with other software
and was thus removed.)



PERTINENT HARDWARE:

MOTHERBOARD - FIC AZ11E
CPU - AMD Duron XP 1133 MHz
RAM - 512 MB, (SDRAM)
HARD DRIVES - SEAGATE ST360015A 60GB X 2
VIDEO ADAPTER - NVIDIA RIVA TNT2 M64
AUDIO ADAPTER - CREATIVE LABS SB LIVE VALUE



SECURITY SOFTWARE:

ANTI VIRUS - AVG FREEWARE VERSION, current.
FIREWALL - Sygate personal, Current.


ANTI - ADWARE, SPYWARE, Etc.:

ADAWARE SE PERSONAL - current.
SPYBOT S&D - Current.
SPYWARE BLASTER - Current.
Prevx Home - Current.
CCLEANER - current.
MS REGCLEAN.
REGCLEANER.
REGSEEKER.


I was just recently able to access the "EMISOFT" website so I could
"ACTIVATE" "A-Squared". I downloaded the program itself about a month
ago but then their website went dead. WTF?

Anyway, I was finally able to run "A-2" last night and it found
five pieces of filth in my system and removed them. COOL!

I just downloaded "EWIDO TRIAL VERSION" but haven't installed it yet,
(It may find even more extreme nastiness, Yes? LOL!)


I really like this website! I've learned about all kinds of computer
related stuff here and NOT just strictly security related either.

I'm serious, I've solved MANY computer related ulcer inducing
nightmares just from reading the info available here.

"CONTINUE TO MARCH!, HARCH! HUT,2,3,4...."

Keep up the good fight guys!

 

I think that's what ropes a lot of us in.. it certainly was for me. Better watch out, next thing you know you'll be a beta junkie!

 

-- System Hardening

-- SpywareBlaster

-- hpHOSTS file

-- Windows Firewall