What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Sordid

    Sordid Registered Member

    Joined:
    Oct 25, 2011
    Posts:
    235
    Welcome back!
     
  2. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,113
    Location:
    South Texas, USA
    Aug. 26, 2015 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls Enabled
    • OpenDNS Configuration
    Computers
    • Desktop - Windows 10 Pro x64
    • Laptop - Windows 10 Home x64
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • EMET 5.2: MAXIMUM SECURITY SETTINGS
    • WINDOWS SMART SCREEN: ENABLED
    • WINDOWS DEFENDER: DISABLED
    • WINDOWS FIREWALL: DISABLED
    Resident
    • Emsisoft Internet Security 10.0.0.5641 (Paid)
    • Sandboxie 5.01.11 Beta (Paid) - Sandboxie Container Folder on RAMDisk
    • Adguard Premium 6 Alpha (Paid)
    • KeyScrambler 3.8
    • DNSCrypt 0.0.6- HTTPS Enabled
    On-Demand
    • PeerBlock 1.2 (P2P Blocking List)
    • Macrium Reflect Home Edition 6.0 Built 753* (Paid)
    • VMWare Workstation 11.1.2 build-2780323** (Paid)
    Browser, Immunization, Tweaks
    • Chrome 44.0.2403.155 x64 (HTTPS-Everywhere, Gmelius Premium, Lastpass Premium) - Chrome Profile Folder on RAMDisk and Sandboxed
    • Homepage and Search Providers set to Startpage (Chrome)
    • Cleaner Professional Edition 5.06.5219 (Paid)
    • Spyware Blaster 5.2 (All Protection Enabled + Customblocking.txt)
    • CryptoPrevent Premiium Edition 7.4.20 (Paid)
    *Macrium Reflect Home Edition installed in both Desktop & Laptop - Backup Template: Grandfather, Father, Son
    **VMware Workstation only installed on Desktop


    dja2k
     
    Last edited: Aug 26, 2015
  3. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,974
    Location:
    Parallel Universe
    I'm using Webroot SecureAnywhere AV and Hitman Pro only.
     
  4. Hadron

    Hadron Registered Member

    Joined:
    Apr 1, 2014
    Posts:
    1,769
    What is a light weight antivirus that enables me to turn real time protection off indefinitely at my choosing and allows me to choose (select) which type of malware it detects?
     
  5. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    Added EMET 5.2 to both my Win7 Ultimate x86 & x64 setups on my Dell Precision M6800 Mobile Workstation. Figure since .NET FW is forced on me anyhow I may as well update it to the max and utilize it. The specs on this box are good enough to take it in stride without noticing anyhow.
     
  6. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    Sweet setup... especially your hardware/network, which many neglect to address, or at least talk about in here. But it's so important, being a physical barrier between the outside world/baddies and your puter.

    I used to use a paid version of Keyscrambler. But figured a restricted sandbox along with HIPS blocking keyboard & screen capture that and other software of it's sorts wasn't needed anymore. Also used to use Spyware Blaster. Now that I think about it I think the FF addon Ghostery was the main reason I dropped it, but I no longer use it. Do you think S.B. would offer me additional protection that I don't get with Adblock Edge with the lists: EasyList, EasyPrivacy, Fanboy's Annoyance List, & Malware Domains. Request Policy. CS Lite. NoScript. ? I'd consider using it again.

    Macrium Reflect a must have for me too. Used to use the "Standard" version, but when it came time to get another license they told me I had to upgrade to v5. I told them I'd even pay more to just renew my subscription for v4.2, but they wouldn't budge. So I just stick with the Free version which suits my needs fine. I didn't like v5.

    Emsisoft definitely the right choice, though I only use the AM. I whittled my list down from about a dozen and it was the last man standing based on my criteria. It's got an old school feel to it, from back before AV's became bloated with a bunch of modules that aren't really the job of an AV and you're better off getting from other products. How is their firewall though? And what other features are in the full suite that aren't in the AM? I have no plans on leaving Comodo but may put it on other boxes I work on.
     
  7. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    I will be trying out user Windows_Security's new Safe Admin setup. I was leery about using both EMET & MBAE together on the same box, but it sounds like others are pulling it off, and that some gain can be had by the combination. Here I thought it'd just be a compatibility/glitchy nightmare waiting to happen.

    The setup looks very promising, along with my Sandboxie, Comodo FW/D+ 5.10, and Shadow Defender.
     
  8. Nevis

    Nevis Registered Member

    Joined:
    Aug 28, 2010
    Posts:
    812
    Location:
    255.255.255.255
    Trying out F-Secure Safe IS. Seems light on my PC.
    Simple with no distraction GUI. Definitely recommended as install and forget type. Worth installing on parents PC.

    Nothing else.
     
  9. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,386
    Location:
    Slovenia
    SRP, UAC, uBlock Origin, Macrium Reflect

    EDIT: added Sandboxie
     
    Last edited: Sep 2, 2015
  10. Sxperm

    Sxperm Registered Member

    Joined:
    Sep 14, 2005
    Posts:
    42
    I'm currently using Kaspersky Internet Security 2016 and wondering if I should add another anti-keylogger such as Keyscrambler or Zemana as addition protection layer? Is it necessary? Does anti-keylogger feature in KIS 2016 alone is enough?
     
  11. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    9,569
    Location:
    Lloegyr
    Win 7x64

    Avast! Free (custom install)
    MBAM (on demand)
    SUPERAntiSpyware (on demand)
    SpywareBlaster
    Macrium Reflect
    Various Browser Hardening (WOT, uBlock Origin, NoScript)

    Ubuntu 14.04 LTS

    Various Browser Hardening (WOT, uBlock Origin, NoScript)

    Android 5.1.1

    None at present
     
  12. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    2,104
    Location:
    Italy
    OS W.XP Home
    Trick POS READY 2009
    Windows Firewall
    Black Viper's List
    Norton DNS
    PsExec
    SBIE
    MBAE Premium
    No Java,No Silverlight,No Flash on I.E.8, No NET Framework installed.


    Firefox - Noscript,HTTPS Everywhere,uBlock Origin,Toggle Referer.
     
  13. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    733
    Location:
    U.S. Citizen
    @JLD,Post: # 37027 Just wondering if Sandboxie work on your Browser?

    Having Trend Micro Internet Security 2016 + Webroot SecureAnywhere Antivirus
    install ?
    Looking to use the above combination with Sandboxie!

    Kind regards,
     
  14. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    On Win7 Ult. x86

    Emsisoft Anti-Malware - current build
    Sandboxie Paid - current build
    Windows FW
    Comodo FW/D+ - v5.10
    Shadow Defender - v1.1.0.325
    Malwarebytes Anti-Exploit Paid - current build
    EMET 5.2

    On demand scanners

    VT Hash Check
    Malwarebytes Free
    Hitman Pro
    TDSS Killer
    GMER

    "Safe Admin" setup

    All behind pair of Netgear r6300v2 routers

    ... I feel pretty good about where I have this OS now. Like my XPosReady Pro setup I could probably keep this forever and never be compromised.
     
  15. Sxperm

    Sxperm Registered Member

    Joined:
    Sep 14, 2005
    Posts:
    42
    After my previous questions whether Kaspersky Internet Security 2016 alone is enough or not for privacy protection. I ran a test through testing softwares from SpyShelter, Zemana and Comodo Leak Test. Here is my results

    - SpyShelter - one and only thing that KIS could protect was registry modification while the rest was a miserable failure. KIS cannot protect anything including keylogging, webcam monitoring, clipboard monitoring and even sound recording.

    - Zemana - everything leaked without a single warning.

    - Comodo Leak Test - This time I came with Spyshelter premium combination. I found only Spyshelter gave me alerts while KIS did nothing in the test. I got 300 / 340 in that test with the help from Spyshelter. I cannot imagine without them and only KIS standalone how the score could be.

    I'm not sure if my current setting for KIS might not fit enough. However with its "optimum" setting it should at least gave me one alert through that test from Comodo. If anyone could recommend me the best setting for KIS it would be much appreciate.
     
  16. JLD

    JLD Guest

    Just wondering if Sandboxie work on your Browser?

    Having Trend Micro Internet Security 2016 + Webroot SecureAnywhere Antivirus
    install ?
    Looking to use the above combination with Sandboxie!

    Kind regards,
    [/QUOTE]


    Yes, Sandboxie works with this combination, for me at least, with my Sandboxie configuration.
     
  17. Windows 10 Pro hardening (32 bits)
    - Disabled all risk-ware and windows-apps and filter outbound (WFW)
    - Block unsigned executables to elevate, allow them to run (UAC)
    - Disallow execution in all user folders, except admin (SRP)
    - BLock all user and USB autorun/startup entries (GPO)

    SmartObjectBlocker (Behavioral Mode)
    -
    Block Office and WMP to start/load vb/j/ps1/cmd-scripts
    - Block chrome, outlook and WMP to start other processes
    - Allow chrome to load DLL's from specific folders/signees

    Secure Folders (run as LUA trick)
    -
    Set windows explorer/accessoires and office as trusted
    - Run office as limited alternate user (set no-execution)
    - Set all user folders and data partitions as read-only
     
    Last edited by a moderator: Sep 3, 2015
  18. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Now I'm playing with Shadow Defender. My setup is overvirtualized now: Eaz-Fix time machine (RX 9.1 clone)+SBIE (for browsers) + SD (all partitions in Shadow Mode).
     
  19. kerykeion

    kerykeion Registered Member

    Joined:
    Jun 30, 2010
    Posts:
    281
    Location:
    Philippines
    Microsoft Windows 10 SL x64
    - Standard User Account - User Account Control set to max
    - SmartScreen Filter: enabled, get administrator approval
    - Internet Explorer: Enhanced Protected Mode
    - Windows Defender: disabled
    - Windows Firewall: enabled

    Mozilla Firefox 40.0.3
    - Master Password enabled
    - µBlock Origin
    - DownThemAll!
    - No Java, Flash only enabled on a couple specific sites

    Panda Antivirus Free
    - Enabled PUP detection
    - Scheduled weekly scans

    Zemana AntiMalware
    - Scheduled daily scans

    Malwarebytes Anti-Exploit
    - Security defaults
    - Added MPC-HC x64 inside Media Players shield template

    SyncBackFree
    - Back-up every three hours
    - Mirror important documents and media to separate storage
     
    Last edited by a moderator: Sep 5, 2015
  20. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    733
    Location:
    U.S. Citizen
    @Windows_Security,

    Love your setup!
    > For Windows 10 Pro hardening (32 bits),
    > SmartObjectBlocker (Behavioral Mode)
    > Secure Folders (run as LUA trick):

    Could this be used on windows 10 hardening (64 Bits) with the same information below:?
    The only different that I would like to set-up with Sandboxie, and Malwarebtye and Hitman Pro Alert.
    And what back-up software do you use?

    Could I use the below link like tutorial?

    > Software Restriction Policy is real easy to setupSoftware Restriction Policy is real easy to setup: Post # 4

    https://www.wilderssecurity.com/threads/how-to-harden-windows.379098/#post-2518952

    > For example, SmartObjectBlocker(Behavorial Mode) Post # 161 For Cybefox

    https://www.wilderssecurity.com/threads/smart-object-blocker-block-exe-dll-drivers.378369/page-7

    Secure Folders (run as LUA trick):
    www.wilderssecurity.com/threads/secure-folders-to-protect-folders-and-use-as-anti-executable.369503/

    Kind regards,
     
    Last edited: Sep 5, 2015
  21. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,574
    Kaspersky Internet Security (KIS) 2016 is all I'm currently using. Is there anything else I should add to my security arsenal?
    OS: Windows 10. Thanks for your help and suggestions in advance.
     
  22. ropchain

    ropchain Registered Member

    Joined:
    Mar 26, 2015
    Posts:
    335
    How much effort to you want to put in to hardening your current set-up? That's the main question which first has to be answered.
     
  23. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,574
    How much effort is needed to harden my current setup? I mean, I'm just wondering whether I need to do or install anything else besides KIS 2016.
     
  24. ropchain

    ropchain Registered Member

    Joined:
    Mar 26, 2015
    Posts:
    335
    It depends. Win10 + KIS should be enough if you don't run any random executable. Otherwise you can always look at: anti-exploit, anti-executable or sandboxing software.
     
  25. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,574
    Thanks again for your reply. No, I don't run any random executables, so using KIS on my Win10 machine should be enough, shouldn't it?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.