What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Nocturnalizer

    Nocturnalizer Registered Member

    Joined:
    Oct 4, 2015
    Posts:
    42
    Location:
    London, UK
    Thanks Minimalist and harsha_mic! I'll definitely disconnect as part of the new config then, and I'll just remember to plug it back in for the incremental backup every week.
     
  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    I also use 2 separate drives, so there is always one storage that is offline (even during backups). Since I do backup only once a week and trigger it manually I don't see a need to have one disk connected all the time.
     
  3. Nocturnalizer

    Nocturnalizer Registered Member

    Joined:
    Oct 4, 2015
    Posts:
    42
    Location:
    London, UK
    Oh interesting. I don't have two drives at the moment, but that's really good advice for the future. I might invest in another external in the near future and do this method.
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Added Sandboxie to redirect all Chrome write operations to RamDisk and delete all data upon closing it. It also prevents browser to access personal data.
     
  5. I saw a creative and el cheapo backup up solution at a friend of mine using an old 2.5" laptop harddisk. He had opened a slot on the back of his PC, pulled both sata and power cable out and had sticked the 2.5" drive with duck tape to the back of his PC casing. He has it connected al the time and protected with Secure Folders (only allowing Syncback Free write access to the disk). In case of emergency he can rip the duck tape away and take the disk with him.
     
  6. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    554
    Location:
    Croatia
    Will Secure Folders work if Petya ransomware get on PC?
    I know that MBR will be screw but will the files be protected (on second drive, eg. D drive, and what happens with protected files after re-install Windows?
     
  7. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
    I'm doing some research in applying Software Restriction Policy to my setup, but before I make these rules active, I would like your honest opinion on these rules. Any advice will be greatly appreciated.

    Security Level set to Basic User

    Software Restriction Policies

    Additional Rules > New Path Rule

    C:\Program Files Unrestricted
    C:\Program Files\WindowsApps Unrestricted
    C:\Program Files (x86) Unrestricted
    C:\Windows Unrestricted
    D:\ Unrestricted
    C:\Downloads Unrestricted
    %AppData%\*.exe Disallowed
    %AppData%\*\*.exe Disallowed
    %UserProfile%\Local Settings\Temp\Rar*\*.exe Disallowed
    %UserProfile%\Local Settings\Temp\7z*\*.exe Disallowed
    %UserProfile%\Local Settings\Temp\wz*\*.exe Disallowed
    %UserProfile%\Local Settings\Temp\*.zip\*.exe Disallowed

    Enforcements:

    Change

    "All software"

    "All users except local administrators"

    Designated File Types:

    Remove: LNK, URL
    Add: JSE, JAR, PS1, VBS, JS, SCT, VBE, WS, WSF, WSH



    Anything I should exclude? Anything that I should add?

    Please let me know,

    Thanks
     
  8. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Personally I never tried setting SRP at Basic user level. I always use it as execution control mechanism so I enable Disallowed level. I can't give you much advice about that config.
    I would only suggest that you check your whitelisted locations for possible paths that need to be disallowed. You can check it here under step 6: http://mechbgon.com/srp/
     
  9. vrt1o

    vrt1o Registered Member

    Joined:
    Apr 29, 2016
    Posts:
    3
    For the last several years I've been using linux as my only OS. Due to grad school, I need to use windows. The security landscape has changed immensely from the last time I used windows. The last time I fully used windows ewido anti-spyware was amongst the best and malwarebytes was just starting. I've never even heard of many of the programs mentioned nowadays: voodooshield, Rehips, Zemana etc. I am getting a new computer and will be loading the following piece of software in it:

    Eset security suite or just Nod32
    MBAM as an on demand scanner
    Firefox with ublock
    Sandboxie if I ever feel the need to run anything in a sandbox

    I'm trying to keep the system light with adequate security. I'm trying to maximize battery life on the laptop as I'll need it through out the entire day and I don't want too many programs eating up CPU cycles.

    For those with far more knowledge than myself, is there anything else you'd suggest to my eventual set up?

    Thanks
     
  10. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,152
    Location:
    Canada
    Back to the titillating triumverate of Appguard, MBAE and EAM, solid as the great wall of china.
     
  11. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,152
    Location:
    Canada

    Moose, have you seen the kids movie about the dog Benji? Thats exactly what my baby looks like.
     
  12. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    @vrt1o
    I would only add something to backup your system and data to your eventual setup. Maybe Macrium Reflect to create system images and external HDD to backup those images and other data.
    And also raise UAC slider to max and be careful what you approve.
     
  13. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,334
    Location:
    Italy
    W.10 Home x64 (pc of my daughter)
    Windows Firewall
    Google DNS/Open DNS
    SUA
    UAC Always Notify
    Windows Smartscreen enabled
    I.E.11 Off
    Disable Flash in Edge
    WMP Off
    Windows Defender Off
    Validate Admin Code Signatures set to 1
    Block Untrusted Fonts on

    Chrome x64 -Ublock Origin + HTTPS Everywhere

    Appcontainer Rights 10-Apps Shields list of MABE Premium


    *** Added 2 rules a Windows Firewall for block Regsvr32.exe's access to the network ***
     
  14. Nocturnalizer

    Nocturnalizer Registered Member

    Joined:
    Oct 4, 2015
    Posts:
    42
    Location:
    London, UK
    I didn't feel 100% safe with no resident AV, so I've returned to using Emsisoft Anti-Malware 11 for realtime protection. I'm also using Zemana AntiMalware Premium for weekly on-demand scans. Very simple, light protection. I may add VoodooShield in again soon for an additional layer, but I'm not sure if I need it currently with Emsisoft's BB in action.
     
  15. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    Eset Smart Security 9.0.375
    AppGuard 4.3.14.5
    Shadow Defender 1.4.0.168
    KeyScrambler Premium 3.9.0.3
     
  16. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
    Nice setup, very strong :thumb:
     
  17. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
    Well, I normally don't like using AV, but I went ahead and decided to give Webroot SecureAnywhere a go.

    So far I like it, it's probably one of the lightest AVs out there.
     
  18. Grumlo

    Grumlo Registered Member

    Joined:
    Nov 14, 2015
    Posts:
    176
    do You know where can I get now Webroot from promotion ?
     
  19. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
  20. Chuck57

    Chuck57 Registered Member

    Joined:
    Sep 2, 2002
    Posts:
    1,770
    Location:
    New Mexico, USA
    Current setup on HP 355G2 laptop, 8G RAM with Win 10 Pro 64 bit

    Voodooshield 3.16, Firefox in Sandboxie and Sophos Home free.
     
  21. Grumlo

    Grumlo Registered Member

    Joined:
    Nov 14, 2015
    Posts:
    176
    Thanks for link :)
    Maybe I will wait when price drop down total :) and stay with WD :) or without this :)
     
  22. Behold Eck

    Behold Eck Registered Member

    Joined:
    Aug 23, 2013
    Posts:
    574
    Location:
    The Outer Limits
    Same here.:thumb:

    Regards Eck:)
     
  23. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Same setup only changed Zemana Antimalware for Panda Cloud free.

    Now setup doesn't feel light when PC starts.
     
  24. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    What I like in Panda free is that it has behavioral analyses and behavioral blocking - it's a kind of a zero-day protection. It also has detection of PUP.
    Panda free has a decent process monitor with processes classified by their security status. You can block a process from this monitor.
    Capture.PNG Capture2.PNG
     
  25. Influenza

    Influenza Registered Member

    Joined:
    May 7, 2016
    Posts:
    60
    Kaixo,

    My previous setup on all my PC:
    Avira Internet Security
    MBAM Premium
    MBAE Premium

    Now I'm testing:
    • PC1 Windows 10 pro: Emsisoft Internet Security (test) + MBAM Premium + MBAE Premium + Zemana AntiMalware premium (test) + Zemana AntiLogger premium (test)
    • PC2 Windows 10 pro: ESET Smart Security (test) + MBAM Premium + MBAE Premium + Zemana AntiMalware premium (test) + Zemana AntiLogger premium (test)

    Both configurations are smooth and run well, but I don't know which is the safest and what softwares are useless ?
    Can someone help me to choose my new security setup ?

    Eskerrik asko.
     
    Last edited: May 7, 2016
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.