What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    I am well aware that even AG or VS alone is plenty, but I do love testing as you do and it's been quite awhile since using EAM. It is pretty light most of the time on my system, my only question is if excluding VS and AG is necessary? I see both VS and AG are trusted in the BB section so should I still exclude them somewhere in EAM?
     
  2. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Much appreciated :thumb:
     
  3. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Added:

    NVT ERP last free beta

    Zemana AntiLogger with Pandora ON

    My PC is the same lite.
     
  4. Deckard

    Deckard Registered Member

    Joined:
    Dec 13, 2016
    Posts:
    46
    Location:
    France
    Hello,

    A new setup after a compromised computer under NOD32 / W10Firewall Plus :

    1/ DrWeb Security Space (just 3 modules)
    - on demand scanner
    - Proactive protection
    - Firewall (interactive mode)

    2/ VoodoShield

    Very light, under 110Mo; without real time antivirus scanner. The firewall from DrWeb is what I was looking for (unfortunately no equivalent to the excellence "Little Snitch" on Mac)

    Added MBAM 3 Premium trail but desactivated all the real times protections; a scheduled scan every x hours
    I am wondering if I should use the MBAM's realtime Web protection because VoodooShield present.

    W.Defender OFF, Cortana eradicated, Spybot A.Beacon, etc. Macrium Reflect Home Edition, scheduled each day.
     
  5. The Count

    The Count Registered Member

    Joined:
    Jun 13, 2016
    Posts:
    176
    Location:
    France
    Why the decision to dispose of NoScript?
     
  6. janocheats

    janocheats Registered Member

    Joined:
    Nov 8, 2015
    Posts:
    7
    Location:
    Czech republik (Jirkov)
    Sandboxie (lifetime) , windows 10 firewall control ,UAC max ,openDNS , HW firewall (cisco) , ublocker original, + disposable scanners zemana,malwarebites,emsisoft,noorton,kaspersky antirotkit ,killswitch.process explorer
     
  7. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,273
    Location:
    USA
    Happy 11th anniversary to this thread.

    Windows 7 Pro SP1 x64

    Firewall & Anti-Virus:
    Router NAT/SPI (Password Protected)
    Emsisoft Internet Security 12.1.1.7014 (with hpHosts file)

    Blocking/Hardening:
    AppGuard 4.4.6.1
    HitmanPro.Alert 3.6.1 Build 574
    Norton ConnectSafe DNS (Malware, Phishing)
     
  8. Desktop (Windows 10 Pro) and Asus Transfromer (Windows 8.1 Home) build-in security:
    1. WFW is set 2-way and (remote, shared and legacy applications) riskware is disabled
    2. Smartscreen blocks not whitelisted and UAC blocks elevation of unsigned programs
    3. Deny execute in all user folders with ACL (except Temp) and SRP (except Admin)
    4. Run all internet facing software in AppContainer sandbox (Integrity Level)
    5. Enabled Return Flow Guard on Desktop, added Memprotect on Transformer

    Added Avast mail shield because I changed from hosting provider and received some word based ransomware.
     
    Last edited by a moderator: Dec 22, 2016
  9. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    280
    Hi Windows_Security,

    How do you do that? I like trying to maximize security using Window's built in features.
     
    Last edited: Dec 19, 2016
  10. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    Still sticking with the ol' XP SP3 with the POSready tweak, hardened as "H" and stripped bare bones with Comodo FW/D+ with tight Paranoid HIPS, restricted sandboxes for all internet facing apps. MBAE. And 2 trusted VPN's in hidden containers I gave no personal info. to acquire. Use hops with countries that don't comply with US or EU regulations and aren't friendly with them, and "claim" not to keep logs anyway though who would know. Scan new files with VT Hash Check or MBAM before moving them from dedicated, sandboxed partition but rarely download anything anymore. I have everything I need. I'm not doing anything shady to need a VPN(s) I just feel I'm entitled to my privacy.

    Been using this setup for years with no problems and won't change until at least POSready is no longer supported in 2021.
     
  11. Paul R

    Paul R Registered Member

    Joined:
    Aug 5, 2014
    Posts:
    59
    Location:
    Bury, Lancashire
    HMPA, KIS, Zemana anti malware, Secunia, CryptoPrevent & Cyberghost
     
  12. NonGeek

    NonGeek Registered Member

    Joined:
    Dec 28, 2015
    Posts:
    41
    Not sure if this is the right place to ask, but recently, my Windows Defender on Windows 8.1 Pro takes a long time to update (several hours). When I run the Quick Scan or Full Scan, it finds nothing. MBAM and Emsisoft Emergency Kit also find nothing. Any sage advice? Anyone else here experiencing long updates of their Windows Defender?
     
  13. roger_m

    roger_m Registered Member

    Joined:
    Jan 25, 2009
    Posts:
    8,031
    I've now replaced Tencent PC Manager with Avast.
     
  14. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    883
    Location:
    USA
    I have used NoScript for years, primarily because my main browser has been Firefox, with Chrome as my secondary. NoScript won't run in Chrome because of the difference in plugin architecture.

    Firefox is moving to a similar type of plugin architecture that Chrome currently employs.

    NoScript and many other Firefox only plugins will have to be re-developed to run on future versions of Firefox, but the good news is that this will eventually make cross-browser plugin compatibility a possibility.

    When I learned about this, I started looking around to see what script blocking options existed today for both Chrome and Firefox.

    What I found is uMatrix and uBlock Origin, by the same developer. I use both, but there can be some overlap depending on how you configure. I see uMatrix more as a drop in script control replacement for NoScript, with uBlock as a more wide-spectrum blocker, which includes ad-blocking, although uBlock has an advanced mode that lets you have a matrix type approach as well. Either can be used individually, or you can craft the specific control that you need working with them together. Both provide for a number of 3rd party advertiser and known malware blacklists, including those provided with Adblock Plus.

    The thing that has always bugged me about NoScipt is that I had to constantly adjust the whitelist to not break the websites I visit regularly. It takes a bit of trial and error to decide what scripts to allow or block, especially the media plugins.

    The true beauty of uMatrix is that by default, it allow all first party scripts to run, plus all of the CSS (style sheets) and images for that site, and blocks everything else. So the home page generally renders in a viewable form. If you trust the site, with one click you can allow everything on that site to run. Or else you can view a matrix showing the third party scripts and plugins, etc, on a domain by domain basis, which you can then adjust to taste. The settings are saved on a 1st party site-by-site basis. For example, if you allow a 3rd party domain to run a plugin, it is just in the "local" scope of that 1st party site. That 3rd party domain rule does not become "global" for all websites, such as with NoScript.

    uBlock could be put on a basic users computer with a set it and forget it config :)

    https://addons.mozilla.org/en-US/firefox/addon/umatrix/
    https://github.com/gorhill/uMatrix

    https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/
    https://github.com/gorhill/uBlock
     
  15. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,142
    McAfee Total Protection
    ZAM pro
     
  16. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    883
    Location:
    USA
    I have it set up with both and it works well for me. I use the uMatrix for the script tricks as a replacement for NoScript, and uBlock in basic mode as a replacement for Adblock Plus, with a few more blacklists.
     
  17. eugene91

    eugene91 Registered Member

    Joined:
    Jun 18, 2010
    Posts:
    192
    What do you all think of my setup?

    OS:•Windows 10 Home X64 1607•
    Protected By: Real-Time: Avast Free Antivirus•ZAM Premium On-Demand: MBAM•EEK
    Firewall:•Windows Firewall•ASUS DSL-N12E Wireless Modem Router•DNS:•Google DNS•
    Browser: Chrome (HTTPS Everywhere•uBlock Origin)
     
  18. snerd

    snerd Registered Member

    Joined:
    Dec 8, 2007
    Posts:
    117
    Location:
    U.S.A.
    I imaged my desktop, wiped it, and installed Qubes 3.2. Wow! A totally different way to run a computer! Lots to learn, but I'm liking it so far. Everything runs in its own VM, and Whonix was included and set up already! Yeah, I'm a distro-hopper lol!!
     
  19. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    Hi

    I'm interested in your setup. Any guidelines to follow like

    1) Do you need a Windows OS or you wiped clean and install Qubes/Whonix? Or do you install them in a separate partition on a Win OS machine?
    2) What hardware requirements do you require like minimum amount of RAM (understand Qubes need minimum 32GB of space on a USB stick? Not sure of Whonix)?
    3) Does your PC needs to be Qubes-certified like the Purism's Librem 13/15?
    4) Can Qubes/Whonix be installed in an UEFI machine or a machine with BIOS or BIOS/UEFI setup only? I intend to install it on a laptop and some new laptop nowadays have no BIOS setup but only UEFI setup.

    Thanks
     
    Last edited: Dec 23, 2016
  20. The Count

    The Count Registered Member

    Joined:
    Jun 13, 2016
    Posts:
    176
    Location:
    France
    Any idea when?
     
  21. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,113
    Location:
    South Texas, USA
    Dec. 23, 2016 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls Enabled
    • OpenDNS Configuration
    Computers
    • Desktop (Custom Built) - Windows 10 Pro x64 Ver. 1607 Built 14393
    • Tablet (Surface Pro 4) - Windows 10 Pro x64 Ver. 1607 Built 14393
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS SMART SCREEN: ENABLED
    • WINDOWS DEFENDER: DISABLED
    • WINDOWS FIREWALL: DISABLED
    Resident
    • Emsisoft Internet Security 12.2.0.7035 Beta (Paid)
    • Sandboxie 5.16 (Paid) - Sandboxie Container Folder on RAMDisk
    • Adguard Premium 6.1.298.1564 Beta (Paid)
    • KeyScrambler 3.10
    • Simple DnsCrypt 0.3.7 - Enabled
    • DNSCrypt 0.0.6 - HTTPS Enabled
    On-Demand
    • PeerBlock 1.2 (P2P Blocking List)
    • Macrium Reflect Home Edition 6.1.1665* (Paid)
    • VMWare Workstation 12.5.2 build-4638234** (Paid)
    Browser, Immunization, Tweaks
    • Chrome 55.0.2883.87m x64 (HTTPS-Everywhere, Gmelius Premium, Lastpass Premium) - Chrome Profile Folder on RAMDisk and Sandboxed
    • Homepage and Search Providers set to Startpage (Chrome)
    • Cleaner Professional Edition 5.25.5902 (Paid)
    • Spyware Blaster 5.5 (All Protection Enabled + Customblocking.txt)
    • CryptoPrevent Premiium Edition 8.0.1.11 - Default (Paid)
    *Macrium Reflect Home Edition installed in both Desktop & Tablet - Backup Template: Deferential Backup Set
    **VMware Workstation only installed on Desktop


    dja2k
     
  22. Avast is a solid top tier AV when you use its advanced features like
    a) reputation services enabled
    b) cyber capture on block
    c) hardened mode on moderate

    Consider to make it a bit harder for big data collectors like Google and Facebook by using Norton DNS or Open DNS in stead of Google DNS. When you should decide to use OpenDns, creat an account and select badware and phising filter also.

    Url blocking is a numbers game, with Google and Microsoft leading the pack, followed by the members of the cyber threat alliance (Norton is a Symantec company) and the free AV with the most users Avast/AVG.

    With Avast online security extension you don't need uBlock origin unless your hobby is micro managing a scriptblocker. Try a few websites with Avast blocking trackers by default with uBlock0. You will notice the difference is minimal.
     
    Last edited by a moderator: Dec 23, 2016
  23. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,403
    Location:
    Slovenia
    I would only add something to backup your system and data.
     
  24. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    883
    Location:
    USA
    Old news:
    http://arstechnica.com/information-...refox-add-ons-move-to-chrome-like-extensions/

    https://blog.mozilla.org/addons/2015/08/21/the-future-of-developing-firefox-add-ons/comment-page-1/

    NoScript dev's blog:
    https://hackademix.net/2016/03/09/webrequest-where-were-where-were-going/
    "NoScript for Firefox is and will be my top priority, if nothing else because I am a Mozilla hacker and if I need some specific unsupported feature it's much easier for me to obtain it on this platform. An hypothetical Chrome version would be just a (much convenient) side effect. XUL NoScript, though, is gonna be left behind as soon as the WebExtension version reaches feature parity, because maintaining a version for obsolete platforms only would be unsustainable for me. Forks, of course, would be welcome though."

    https://wiki.mozilla.org/WebExtensions/FAQ
     
    Last edited: Dec 23, 2016
  25. Chrome/Opera users have uBlock as a replacement for both Adblock and Noscript, who cares about noscript?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.