Help creating new security setup

Discussion in 'other anti-malware software' started by Cvette, Apr 22, 2010.

Thread Status:
Not open for further replies.
  1. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    Hi folks. I'm dusting off my ol' HP computer since my new Laptop has taken a dive. And would really like some sort of light/secure balance of security software that would interfere as little as possible. But being a security paranoid... this'll be a bit of a change for me :)

    -
    Windows Vista x64
    Intel Dual-Core @ 2.60Ghz
    Western Digital 600GB HDD
    6GB RAM
    -


    There is no rush whatsoever, this'll be a good long project that I don't plan to finish any time soon so, anything you can muster up is greatly appreciated :)
     
  2. lordraiden

    lordraiden Registered Member

    Joined:
    Jan 30, 2006
    Posts:
    3,085
    @Matthijs5nl: malwarebytes anti malware is only free on demand, you have to pay for the real time scanner.

    Comodo Firewall (No av, No defense+, No sandbox)
    Avast 5 Free / Panda Cloud
    Keyscrambler Free
    Immunet (optional)

    If are not a "noob"
    Comodo Firewall, defense+, sandbox (No av)
    Avast 5 Free / Panda Cloud
    Keyscrambler Free
    Immunet (optional)

    Total 0$
     
    Last edited: Apr 22, 2010
  3. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    This is the setup of my son's Vista x64 gaming rig


    1A) Use Windows FW filtering engine
    Download freebie Windows 7 FW control, http://www.sphinx-soft.com/Vista/order.html

    Install W7FWC allow all the programs you want

    1B) Use Windows FW 2-Way (additional option)

    After having completed your installation (until step 9) and want to go leaner, write down the program (including paths) of all the applications you allowed. Remove/uninstall W7FWC and manually set the Windows FW yourself for outbound, see Stem's excellent post
    https://www.wilderssecurity.com/showthread.php?t=239750

    2) Run Full UAC and remember choices with Norton UAC Tool
    http://www.symantec.com/norton/theme.jsp?themeid=labs_uac_beta&header=0&depthpath=0

    3) Install Avast with file shield only

    4) Install Windows Defender
    Disable daily scanning, go to real time proptection agents
    and disable services and drivers (6th option) and Execution program guard (7th option). This will reduce CPU and I/O and provides malware filtering of registry changes. You do not need to be informed (UAC will warn you), so it is completely lean silent true x64 bits registry protection

    5) Use latest Chrome as your primary browser (use the build in cookie and javascript protection when you like, remember to allways deny third party cookies and remove them after browser closes). WOT and SiteAdvisor free are great extentions (as are adsweep, flashblock, IEtab, new tab behaviour)

    6) Use this deny execute trick https://www.wilderssecurity.com/showpost.php?p=1603237&postcount=1
    Forget about IE, implement from step 3 and onwards. It is ACL protection

    7) Run all your internet facing appls (except chrome and Internet Explorer) with Limited User Rights WITHOUT asking for consent (rights elavtion through UAC pop-up, so you never make mistakes), see halfway this post to use icacls.exe settting medium right level integrity http://theinvisiblethings.blogspot.com/2007_02_01_archive.html

    8 ) PrevX safe online Facebook freebie for x64 or Trusteer Rapport Free

    9) Add Sandboxie free for x64 for optional quatrople protection when surfing the dark side of the web
    (UAC + ACL + Sandbox Chrome + Virtualisation Sandbox SBIE, so for a real paranoid 4 times covered, off which the first three policy mechanismens are included with no additional overhead). But I think it is not nessecary with all the protection allready in place (https://www.wilderssecurity.com/showthread.php?t=268634)

    10) Add the reg file short cuts of 6 to the menu start for easy swirching on and off of the ACL deny execute protection (see pic)
     

    Attached Files:

    • MENU.jpg
      MENU.jpg
      File size:
      21.6 KB
      Views:
      424
    Last edited: Apr 22, 2010
  4. lubieplacki

    lubieplacki Registered Member

    Joined:
    Mar 24, 2010
    Posts:
    151
    Location:
    Poland
    Do you wanna spend any cash to protect your computer?

    If not you can make a good security for free. Better situation is when you wanna spend cash, we can make better security setup for you.

    What sites do you use? Do you visit any porn/malware/crack etc. sites?

    You can use antivirus like MSE/Avast/Avira/PCA/Immunet. You can use a wirtualization programs like Returnil or Wondershare Time Freeze or use Comodo Time Machine to make snapshots. Or Sandboxie. To this setup you need a good firewall like Windows Firewall/Outpost/Online Armor/Pc Tools or other better software from matousec tests. You can add a Flash Disinfector or Panda USB Vaccine to prevent by infections by pendrive or CD's/DVD's. Of course you will need a on-demand scanner like Malwarebytes' Anti-Malware. If you wanna you can use more scanners like that. This is better free configuraton of average protection.

    If you wanna cash and your computer is risked you can spend money on HIPS like DefenseWall or pay for Shadow Defender ( SD is good when you make a lot of test with malware samples.). On my machine Im using only PrevX 3.0 and DefenseWall and I think this is a better paid protecion. Of course if you are advanced user.

    In free and paid protection you can enable DEP and UAC. The protection will be better with this settings on.


    I think its only 1/2 what you can know about good security setup. The configurations are lot lot more. Better and worse. You need to try to yourself.
     
  5. Matthijs5nl

    Matthijs5nl Guest

    I did mean Malwarebytes' Anti-Malware as on demand only: I don't like the realtime part, it uses a lot of resources here.

    EDIT: Didn't notice your OS first. But now I see you are using Windows Vista, my personal opinion is that Windows Vista/7 offers really good security options out of the box (especially Windows 7, 7 for example doesn't do Autorun for USB-stick etc.) and a good firewall.

    I suggest: UAC: always ask, DEP: on all programs and services, Windows Firewall: on, Windows Defender: on.
    And next to the Windows options: avast! 5 Free + Trusteer Rapport (free of charge) + Malwarebytes' Anti-Malware (free: on-demand, second opinion). If you are worried about Autorun you can add Panda USB Vaccine (free).
     
    Last edited by a moderator: Apr 22, 2010
  6. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    As little cost as possible, but I would prefer free.

    Mainly Facebook, Google, Yahoo News, YouTube, and most of the sites I design for.
    -
    That one has been on my to-try list for a while :)

    That one I had for a while, really had a good feeling about it. But I got so fed up with all the problems I was having with UAC. But I'm willing to give it another shot.

    I read in a post of yours, that that is pretty light. Will try.

    Soon as I can sort out the SafeOnline-Chrome issue I'm having, I think I'll be an ex-Firefoxer :D

    =============================

    Currently I'm trying out:

    A trimmed down Norton IS (PC was pre-loaded with it)
    Prevx SafeOnline
    Comodo D+

    Will try out everyone's suggestions in the coming week. Thanks a bunch! You folks are great! :argh:
     
  7. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    Welp, Norton Internet Security is a no-go. Takes a good 4 minutes for my wireless to connect after installing it :( Oh well, off to try Kees Avast idea!
     
  8. whitedragon551

    whitedragon551 Registered Member

    Joined:
    Sep 30, 2008
    Posts:
    3,189
    Location:
    USA
    Sandboxie, Avira or Avast free, MBAM free or paid as on demand once a week, built in Vista FW should be efficient. Very light and almost idiot proof.
     
  9. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    I would recommend a third party firewall for ease of use because the windows firewall can get kinda messy reading all those guides.

    Use a free HIPS or BB such as Comodo, PCTools, Outpost, Online Armor or others.
    Get a free AV like Avira or Avast and Sandboxie Free.
    And use a 2 opinion on demand scanner like Hitman Pro, PrevX or MBAM :D
     
  10. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    Currently trying out Avira 10/Comodo/Prevx/SafeOnline combo. Really feel safe with this, pretty light too. I liked Norton 2010 a lot actually, but I dislike the way you have to add exclusions, and the way it messes with my wireless card.

    I'm dying to try the new Kaspersky, I have always been a fan, and will most likely switch when it is released. As well as the new Immunet.

    I'm thinking about Prevx/Mbam both realtime next... does anyone know if there could be some sort of conflict? Of course I know of the basic rule of only one RT at a time.
     
  11. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    i used to run both at same time but i had to disable the ip blocking from mbam cause it slowed down my xp machine alot:)
     
  12. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    Hmm... Prevx seems a bit heavy at the moment for me. So I'll put that idea on hold until the next release.

    I'm thinking right now, Avira + Avira's Firewall, I only need some sort of HIPS then. Any input on that idea? :)
     
  13. whitedragon551

    whitedragon551 Registered Member

    Joined:
    Sep 30, 2008
    Posts:
    3,189
    Location:
    USA
    Threatfire, Mamutu (Not free), Malware Defender
     
  14. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    All of those but ThreatFire are x32 from what I see :(
     
  15. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    Ah.. this is lovely :oops:
     
  16. Cvette

    Cvette Registered Member

    Joined:
    Apr 16, 2010
    Posts:
    373
    Location:
    South Carolina, USA
    Wow this thread has gotten big :eek: Here is what I have decided on after reading everyones recommendations, and a good long while of testing various apps.

    RT:
    Kaspersky Internet Security 2010 (soon to be 2011) Mainly because I've always been a fan, has a good firewall, good HIPS.

    OD:
    A-Squared (for right click scanning)
    MalwareBytes
    Hitman Pro

    OTHER:
    Google Chrome (thanks Kees for turning me on to that!)
    Norton UAC (again thanks Kees)
    Sandboxie

    Hard to let go of COMODO, but the unworldly lightness with Kaspersky is awesome! :D. Sadly I couldn't get SRP or things of the like to work on my PC.

    My last toss up is: Prevx-SafeOnline... or Immunet. Such a hard choice :ouch:
     
Loading...
Thread Status:
Not open for further replies.