Question about my current security setup

Discussion in 'other anti-malware software' started by makios, Sep 6, 2008.

Thread Status:
Not open for further replies.
  1. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Hi everybody on Wilders,

    After a search- and testing period of different security setups I decided that OA free + Nod32 v3 are the FW + AV/AS I most like to use. I trust Nod32 very much.
    My question: are they (OA + Nod) enough as resident security setup? Do you think Norton Antibot, Keyscrambler and/or Drivesentry add(s) (a) necessary layer(s)?
    (PS: also tried noscript for firefox, but didn't like it very much).


    Now I'm running:

    Resident:
    Router with firewall
    Nod32 v3
    OA free with HIPS enabled
    Norton Antibot
    Keyscrambler free (testing)
    DriveSentry (testing)


    On-Demand:
    SUPERAntiSpyware Free
    Malwarebytes Anti Malware free
    MBSA 2.1
    RootkitBuster
    F-Secure Blacklight
    Filehippo Update checker

    Also using:
    True Image
    Spyware Blaster
    Firefox with cookiesafe, adblock plus, siteadvisor, WOT, Finjan

    Makios
     
  2. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Mmm...If I were you I'd remove AntiBot and use DriveSentry.
    All the other seems alright. You could also use SAS PRO with real time protection if you agree to spend some money. Otherwise no problem, your setup seems fine.
     
  3. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    I'd probably drop 1 or 2 out of siteadvisor, WOT, Finjan. Three extensions for rating sites is probably excessive as most of the time they are pretty consistent. NOD also has a http scanner so you should be good in terms of browser protection.
     
  4. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    Drop Norton Antibot.
    With an antivirus and a HIPS, you don't need a behavior blocker
     
  5. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    What I would do to shorten your list.

    Resident:
    Router with firewall
    Sandboxie
    Returnil

    Also using:
    True Image or similar is a must have.
    Firefox with adblock plus and noscript run through Sandboxie
     
    Last edited: Sep 6, 2008
  6. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    @Franklin
    That's almost my exact setup. I add a few on demand scanners and scan once a month, but they never find anything.

    I'm also trying something new: no Image Backup, only data backup with Karen's Replicator. Only thing I could loose in a disaster scenario is a few giveawayoftheday licenses.
     
  7. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Yep, it's a very secure and light setup without the need for blacklist updates.

    I'm not suggesting that blacklist scanners shouldn't be used, it's just that I don't use them on my own setups but I certainly use some of them in my cleanup routine on other machines.

    SAS, MBAM and Dr Web's Cureit are excellent.
     
  8. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Hi,

    Uninstalled AntiBot for now and kept DriveSentry.
    Why do you prefer DriveSentry over AntiBot. Just asking, because I just started testing drivesentry (didn't know it before) on my system. It seems to run ok next to nod32 3 and OA. But does it really add any protection to my setup?
    Is Nod32 3 + OA with hips not enough?

    Makios

    PS: also dropped Finjan (I ran all 3, because I did'n't know which one to choose :p so I chose one to uninstall).
     
  9. virtumonde

    virtumonde Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    501
    I think you are ok with OA +Nod32.It's a nice combo.Don't see why you should complicate with another behaviour blocker or HIPS.
    I guess on demand scanners don't bother anybody,but personally i don't see why i should waste 3-5 minutes of my life scanning for nothing.Besides you have Acronis.Restorring an image of your C/drive would probably take less than an on demand scan.And if malware would get past OA and Nod (which would be quite hard IMO)than probably an image restore would be more appropiate.
    Just annlayse your pc habbits and think what part would be expose.I would reconsider dropping NoScript.All other addons that you are using for firefox are useless IMO,none(except Finjan) offer realtimeprotection.None of them can compare to NoScript.
    If you still dislike NoScript i think you can take advantage of OA Runsafer Feature .
     
  10. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Ok then, reconsidering that maybe you won't really need Drivesentry(OA should cover them all) you can drop it. I recommended it before because of a powerful HIPS and a good blacklist.

    Also, have you tried Opera?
     
  11. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    I would agree with that. Anything else just adds needless bloat. I would however change
    to be any presto or gecko based browser, and any other internet-enable application, run through Sandboxie.

    As is always the case, imaging software in your best ally.
     
  12. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Yes, I used Opera in the past. I'd probably been using it still if I didn't use Roboform.
     
  13. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Thanks for your reactions,

    Changed some things in my security-config now:

    Resident:
    Router with firewall
    Nod32 v3
    OA free with HIPS enabled
    Keyscrambler free (testing)

    On-Demand:
    SUPERAntiSpyware Free
    Malwarebytes Anti Malware free
    MBSA 2.1
    RootkitBuster
    F-Secure Blacklight
    Filehippo Update checker

    Also using:
    True Image
    Spyware Blaster
    Firefox with
    - cookiesafe
    - adblock plus
    - siteadvisor
    - WOT
    - NoScript ( :) giving it a new try, because most people seem to think this is the most important add-on for firefox)
    - runsafer option OA enabled
    - flashblock

    And I forgot to mention Ccleaner and other cleaning tools of course.
    I hope this will cover it.

    Grtz, Makios
     
  14. Creer

    Creer Registered Member

    Joined:
    Jun 29, 2008
    Posts:
    1,345
    I had the same problem, finally i have been using KeePass v.2.05 Alpha and it works like a charm with my Opera.

    Also you can read more details about my tests with Passwords Manager in this post: https://www.wilderssecurity.com/showpost.php?p=1311290&postcount=75
     
  15. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    2,433
    Location:
    Europe
    Sorry, I quote Returnil and SandBoxie adding, I also wish to use an indipendent HIPS instead of OA's features, and as antirootkit scanners I say GMER and RootRepeal.
     
  16. MitchE323

    MitchE323 Registered Member

    Joined:
    Nov 22, 2007
    Posts:
    156
    I echo Franklins setup here. :D I actually consider the security from Returnil to be sort of 'extra'. I like Returnil just for the time savings on defragging and cleanup. I have it set to always on, and I guess Sandboxie is now my outbound firewall.
     
  17. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Using Keepass with Opera and it's great:thumb:
    BTW is it possible to request for both a master password and a key file?
     
  18. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Makios,

    When you run your browsers, chat, mail, P2P, etc (all internet bound programs) as run safer (of OA) you are fine with NOD.

    regards kees
     
  19. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    Yes I've done it.
     
  20. NTxLS

    NTxLS Registered Member

    Joined:
    Jun 1, 2008
    Posts:
    19
    Location:
    Texas, USofA
    I have seen on this Forum some that recommend GMER, I have Vista and installed that and my system went black and rebooted. Now I cannot remove GMER from my system. What is that good for if it just causes your system to reboot and cannot remove it?
     
  21. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Thanks for the advice,

    What do you think about Norton Antibot, Keyscrambler and the three linkscanners (Finjan, Siteadvisor, WOT)?

    Thanks, Makios
     
  22. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    I don't think Flashblock is really necessary when you use NoScript? It just seems like you would be clicking twice before you could view a flash video.
     
  23. makios

    makios Registered Member

    Joined:
    Apr 18, 2008
    Posts:
    126
    Thanks, you're right, I removed it.
     
Loading...
Thread Status:
Not open for further replies.