Critique my no realtime AV setup. ^^

Discussion in 'other security issues & news' started by Konata Izumi, May 2, 2010.

Thread Status:
Not open for further replies.
  1. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    Windows XP Pro SP3 [Administrator Account]
    (DEP/ACL)

    Realtime:

    On-Demand:

    Browsers: (ACL Protection)
    • Google Chrome (--safe-plugins -incognito) [GesWall]
    • Internet Explorer 8 (All security levels set to high) [GesWall]


    Source: http://www.cfos.de/speed/documentation/options_e.htm#link_firewall


    Screenshot:
     

    Attached Files:

    Last edited: May 5, 2010
  2. EscapeVelocity

    EscapeVelocity Registered Member

    Joined:
    Apr 1, 2010
    Posts:
    368
    Seems like you are doing better than me. However, no doubt my security will be improved in the end, and pretty good overall. Though not as sophisticated as many gurus here.
     
  3. adik1337

    adik1337 Registered Member

    Joined:
    Mar 21, 2010
    Posts:
    199
    depending on your internet habit ... your current setup maybe rock solid.
     
  4. bman412

    bman412 Registered Member

    Joined:
    Mar 4, 2008
    Posts:
    261
    I think MBRGuard would be redundant since you're running under LUA. I assume you only run trusted apps as admin via SuRun.
     
  5. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    Thanks, I'll still keep MBRGuard since it doesnt consume much resources.
     
  6. pajenn

    pajenn Registered Member

    Joined:
    Oct 26, 2009
    Posts:
    930
    I have a somewhat similar setup; Online Armor Free + PrevX Free, however, I consider the latter to be a real-time scanner.

    PeerBlock looks interesting - I just installed it after reading your post.

    MBRGuard is overkill imo. I use MBRFix instead, which is a small, free command line tool for backing up and restoring MBRs. I used it to copy the MBR of each of my computers, external hard drives, certain flash drives (e.g. mp3 player), and it's on my BartPE rescue disk together with those backup images. That way I don't need realtime mbr protection, although that might be safer.

    I was tempted to install USB Guardian, but decided against it because PrevX should notice most intruders, plus I rarely plug unknown USB drives into my computer, so no need for another realtime protector. However, I occasionally run Rising PC Doctor, which includes a USB scanner/immunization (although it removes the autorun.inf files I use to associate USB devices with custom icons)...

    I recently switched from ShadowDefender to Rollback Rx, but as far as lite virtualizers go, Deep Freeze looks even better than SD. (I only found out about it recently).

    What about backup/restore software? I think everyone needs it regardless of how safe their setup is because sometimes it's all those anti-malware/firewall programs that conflict with each other and wreck the system.
     
  7. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    I forgot to write that in the post, but I have Macrium Reflect written in my signature. :D
    MBRGuard doesnt have running processes.
     
    Last edited: May 3, 2010
  8. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    I tried infecting myself with some latest malwares from MDL.

    PrevX detects 1 of 2 during download completion.
    After/During install PrevX notify me of 19 infections in my system.

    Mamutu does not notify me about anything. It sits there like there's nothing happening, while I am bombarded with popups....
    Q: Is it because the malware isnt actually changing anything from my real system and everything is happening in the sandbox?


    I emptied the sandbox, re-scan with prevX and everything is clean.
    I also rebooted my pc to revert everything with Deepfreeze just in case.
     

    Attached Files:

    Last edited: May 3, 2010
  9. I have no experience with Mamutu... All I can say is that between LUA, Sandboxie, and DeepFreeze, it sounds like you have all bases covered.
     
  10. pajenn

    pajenn Registered Member

    Joined:
    Oct 26, 2009
    Posts:
    930
    Have you tried Panda Cloud Antivirus? (it's free - I'm testing it myself on a virtual machine...)
     
  11. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    I still can't trust most cloud based technology... I'm worried on what gets sent into the cloud.
    and I cant understand their EULA. o_O
     
  12. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    2,825
    But you use Google Chrome for your web browser?
     
  13. Chuck57

    Chuck57 Registered Member

    Joined:
    Sep 2, 2002
    Posts:
    1,422
    Location:
    New Mexico, USA
    I just have Defensewall 3 and Sandboxie, along with a backup on an external drive and a pair of snapshots that, when things get too cluttered I revert to, and start cluttering all over again.
     
  14. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    If there's something in this world who knows alot about me... that would be GOOGLE.

    I've been using google since I was a kid.
    Google is already a part of my life... Why would I not trust it?
    Just not being able to access Google feels like not being able to access internet.
    That's just me...

    changing browsers does not change a thing, I'll be using gmail as my email, google search as my homepage, watch videos on youtube.


    I won't trust something like SRWare Iron/Chromeplus just because it said that it does not send any data to google...
    who are the developers anyway? they're complete strangers to me.
     
    Last edited: May 3, 2010
  15. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    2,825
    But there are known privacy issues with Google's stuff, especially Chrome. I just thought it was funny you mentioned cloud technology, you have your system locked down, yet you use Chrome. Not knocking your choice, to each h/h own. I would not use that browser if you paid me.
     
  16. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    Then give me alternative to some Google's stuff that does not have a single privacy issue.

    Yahoo Search? Bing? Whatever it is, all have privacy issues.
    It's matter of which you are going to trust.

    -Konata Izumi
     
  17. Mem

    Mem Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    292
  18. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    I re-create the whole setup from the scratch.
    Now running Windows XP SP3 Pro using Administrator Account

    still without realtime antivirus
     
  19. LockBox

    LockBox Registered Member

    Joined:
    Nov 20, 2004
    Posts:
    2,275
    Location:
    Here, There and Everywhere
    If you know you're clean when you setup with Deep Freeze, I think you're good to go.
     
Loading...
Thread Status:
Not open for further replies.