What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Last edited by a moderator: Oct 23, 2013
  2. tomazyk

    tomazyk Guest

    Thank you for this info. Didn't know about that. It' always nice to have additional hardening in place :thumb:
     
  3. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Afternoon! Introducing the Dome Of Death...Mark2...Outpost Pro...Avira S.S.2014...and WSA Security Plus...I unclicked the default for the Windows Firewall while installing Avira! Biff...Bang...Sonic Boom...Lol! Sincerely...Securon
     
  4. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    i want to try comodo firewall this time not the antivirus that make my pc slowed:)
     
  5. wolfrun

    wolfrun Registered Member

    Joined:
    Jul 26, 2009
    Posts:
    686
    Location:
    Canada

    Setup is according to signature below.
     
  6. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    9,644
    Location:
    Lloegyr
    Same as it ever was ... MSE, MBAM (on-demand), SpywareBlaster & browser hardening. Except now I have a spanking new BT router.
     
  7. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
    Where did you disable the flash protected mode? Hopefully that will fix the issue that I'm having.
     
  8. roger_m

    roger_m Registered Member

    Joined:
    Jan 25, 2009
    Posts:
    8,072
    I've just ditched Ashampoo Antivirus, and I think I may go back to Baidu.

    I didn't like the high CPU use when launching programs with Ashampoo installed. But to be fair, I did not try out the latest update which was released a few days ago - I uninstalled it rather than rebooting so that the new version could complete installing.

    Even though I've moved on, Ashampoo is definitely worth trying in my opinion.
     
  9. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    5,995
    Location:
    Nicaragua
  10. Rompin Raider

    Rompin Raider Registered Member

    Joined:
    May 6, 2010
    Posts:
    1,253
    Location:
    North Texas
    I need to sit down...feeling faint Securon!:doubt:
     
  11. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
  12. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    5,995
    Location:
    Nicaragua
    You are welcome. You ll notice the difference, I do disable PM, that makes my Flash work better sandboxed under V4.

    Go Sox:)

    Bo
     
  13. Rompin Raider

    Rompin Raider Registered Member

    Joined:
    May 6, 2010
    Posts:
    1,253
    Location:
    North Texas
    Geaux Saints!:D
     
  14. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Care to share that info?
     
  15. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
  16. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,974
    Location:
    Parallel Universe
    Ah I see. How do you like AA and WSA? Is AA heavy on your system?
     
  17. tomazyk

    tomazyk Guest

    I have added Chrome template and disable extension installation. I also enabled click to play option for plugins. Thnx @Windows_Security for this tip.
     
  18. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,777
    Location:
    U.S.A. (South)
    Forever devoted as i am to the Power of HIPS on windows, i think i can safely settle on old ver. Comodo FW 5.12 w/D+.

    It's Computer Security Policy settings which serve as it's HIPS guidance system is opened up some very useful possibilities almost as precise as the old EQSysecure which was reasonably formidable on my XP units.

    The problem i have to sort out first though is that Comodo 5.12 for x64 installs beautifully on my Windows 8.0 but on reboot my Windows GUI is blank. You can open Task Manager and view processes as well as enter explorer folders from it, but the normal screen is just blank.

    I hope it's not a windows 8 conflict because 5.12's HIPS and settings are precisely what i been after. I'll have to systematically uninstall the other security apps in an attempt to find and eliminate the mismatch causing the issue.

    If not, at least Comodo FW 5.12 for 64 bit works perfectly when put inside Shadow Defender for testing malwares and their behavior.

    Anyone running 5.12 on a standard Windows 8.0 setup? Did you encounter anything similar?
     
  19. Pain of Salvation

    Pain of Salvation Registered Member

    Joined:
    Apr 21, 2005
    Posts:
    399
    Eset Smart Security 7
    HitmanPro
     
  20. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,736
    Location:
    USA
    Any particular reason why CFW D+ v6.3 won't work for you, EASTER?
     
  21. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,777
    Location:
    U.S.A. (South)
    Well for my personal preferences and with some experience now with 5.12's Computer Security Policy, i find the settings for user-defined rules more effective and easier to access and configure in the early model Comodo FW then even in the recent 6.3. Not to mention the Alert box in the newer versions isn't as responsive. There again a personal preference to it's control panel alert layout. 5.12 is more acceptable on this end.

    Looks like the work is still cut out yet to pinpoint the mystery blank screen with 5.12 but if resolved, this one's a keeper. I burned a lot of tests on 5.12 and am reasonably satisfied with the results so far.
     
  22. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,736
    Location:
    USA
    Without a doubt I get 'personal preferences'. They can take precedent over lots of otherwise valid concerns.
    I had been running CFW 5.12 for a long time, until about two weeks ago. The internal updater wasn't being fed the newer releases and it kept telling me I had the most current version. I finally realized how far behind I was and went with an upgrade installer that worked over top and gave perfect results on three machines.

    Anyway, you might be interested in a compilation of the FW changelogs, found here.

    I have put together a much briefer list showing some of the critical security fixes in the firewall since v5.12. You may find them persuasive, as I did.

    What's new in Comodo Firewall 6.3.294583.2937:
    September 25th, 2013
    FIXED: Malware bypasses HIPS and Sandbox while creating autorun entries

    What's new in Comodo Firewall 6.2.285401.2860:
    July 12th, 2013
    IMPROVED! HIPS menu item in system tray icon menu (advanced view mode only)
    Note: Okay, not critical, but cool. :cool:

    What's new in Comodo Firewall 6.1.275152.2801:
    June 20th, 2013
    There are over 200 bug fixes in this release. Below are the selected few:
    FIXED! Malware can load drivers under certain circumstances bypassing the protection

    What's new in Comodo Firewall 6.0.260739.2674:
    January 31st, 2013
    FIXED! HIPS does NOT stop screen capturing/keylogging when unknown apps run outside the sandbox

    What's new in Comodo Firewall 5.8.16726.2131:
    October 21st, 2011
    FIXED! Various race conditions exploited by malware to evade Defense+

    What's new in Comodo Firewall 5.4.188930.1353:
    May 5th, 2011
    FIXED! HIPS doesn't block some actions that can be used by malware
    FIXED! HIPS doesn't block modifications to the protected files under certain conditions
    FIXED! Firewall does not detect MAC Spoofing although "Protect the ARP Cache" option is selected


    Again, that's just a hand-picked few of the changes.
    Hope you get your mystery blank screen worked out.
     
    Last edited: Oct 25, 2013
  23. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,777
    Location:
    U.S.A. (South)
    Really appreciate the reviews. Looks like someone does their homework on this program.

    The one change which has no effect on this end is the potential driver loading correction. On Windows 8 PATCHGUARD all but prevents malware loading any drivers. That particular entry point is been pinched

    Thanks again for.posting the comparisons and changes in version. Definitely worth saving to important notes.

    Regards Easter
     
  24. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,736
    Location:
    USA
    Not to argue, but to simply add to your comments, Wikipedia states the following:

    "Because of the design of the Windows kernel, Kernel Patch Protection cannot completely prevent kernel patching. This has led to additional criticism that since KPP is an imperfect defense, the problems caused to antivirus makers outweigh the benefits because authors of malicious software will simply find ways around its defenses."
    ~snip~
    "It should be noted that Kernel Patch Protection only defends against device drivers modifying the kernel. It does not offer any protection against one device driver patching another."

    I must confess to having very little personal knowledge of PatchGuard. I have not researched it as much as you have, I am sure, and I do note that you remarked that PatchGuard, "all but prevents malware loading any drivers", which I take to mean, it has holes.

    Perhaps that is what CFW addressed back in June with the 6.1 release?

    (FIXED! Malware can load drivers under certain circumstances bypassing the protection)

    Regards Page
     
  25. That is the beauty of a program being under constant development. According to the laws of software engineering it will allways have flaws.

    KLOC * (pii - age in years) * 4 sigma = number of errors in code base

    Yes, you read correctly it does not mention six sigma (I am old school), age in years is of major release version. Develop managers will deny this formula while being interrogated by share holders and marketing. Over a beer and amongst fellow professionals they will say sure: everyone who knowns, knows this, old news, if you don't, you don't and we are certainly not going to tell you, simple as that.
     
    Last edited by a moderator: Oct 25, 2013
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.