What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    554
    Location:
    Croatia
    What is blocking in Chrome?
    Free version is fine no need for paid version ;)
     
  2. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    It looks like UDP packets trying to connect to my Chromecast. It's local on my LAN so not a big deal.

    Ok about the free version. Looks as if this has some kind of av built into it? Assume this is ok since I run Windows Defender?
     
  3. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    On Windows 10, a small list of programs secure the computer:

    Windows Defender for anti-virus and anti-malware protection.
    NVT ERP as an anti-executable
    SSRP as a set and forget it software restriction policy with shipped default settings locked.
    MBAE for anti-exploit protection
    Kaspersky Anti-Ransomware Tool for anti-ransomware protection.

    Its locked down and any malware seeking to install itself would have to bypass a layered system. Free and light on resources.
     
  4. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Sandboxie and Nod32.
     
  5. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    What is SSRP?
     
  6. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Simple Software Restriction Policy. Its an open source SRP that comes configured to set software restriction policy by simply clicking the lock button. If you need to install software, click the unlock button. Nice freeware and its foolproof.
     
  7. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    I will look into it. Thank you!

    EDIT: Is this it? https://iwrconsultancy.co.uk/softwarepolicy
     
  8. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Yes that's it! It comes with an ini file and you can add custom entries but I've left the default well enough alone because I don't want to brick Windows. Its good protection when you install it.

    Unlike AppLocker, its set and forget it which I like.
     
  9. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    Ok doing a quick read on it right now. So basically install it, reboot, lock and you are done? If so, nice!
     
  10. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    You don't even have to reboot. Just click the lock button and the SRP takes immediate effect.

    You know it works when you to try to run a software installer and you're informed by a popup to the effect the administrator has denied permission to execute the program.

    You get reminded you have to turn SRP off by clicking the unlock button to proceed with an installation!
     
  11. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    Awesome thanks! I like the price as well. :)
     
  12. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    Another question. NVT ERP has not been updated in quite some time. Is it even compatible with Windows 10? (I've never tried the software to be honest). How does the Kasperksy Anti-Ransomware tool work? Thought it was geared towards business? I am currently running Norton Security so don't want any conflicts. If so, I have a backup anyway.
     
  13. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    41,779
    A new version is in preparation. But it will take some time
     
  14. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    71,469
    Location:
    U.S.A.
  15. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    It works on Windows 10, It doesn't need any real updates because its not signature-based, NVT ERP really isn't that "old."

    KAR can be used by both businesses and home users. Its kind of an anti-malware with a behavior blocker. That's how it stops ransomware in its tracks. Its compatible with your current AV and there should be no conflict. KAR provides an additional layer of protection to that of your current AV.
     
  16. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    @mood thank you for the heads up. I have never tried this program but it has always been on my "need to check out" list.

    @JRViejo, Thanks for the link!

    @NormanF Good to know. I know it is not ancient but after looking at their website I did not notice it being stated that it was compatible with Windows 10. Good to know.

    Also thank you for the info regarding KAR. I may add it just to see what is up. If if is not a resource hog I will keep it around. Starting to think that i may ned even need NVT with the others I have. Thoughts?
     
  17. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Avoid overlap. If you have an AV, anti-ransomware will boost the AV's ability to thwart a malware threat, an anti-executable will make it difficult for malware to run, SRP will keep it from running in the first place and an anti-exploit will fend off fileless malware or exploits that seek to inject themselves into legitimate Windows processes.

    Each covers a specific area of vulnerability and put together a layered system makes its very difficult for malware to inflict real damage. Of course, there's also the importance of keeping Windows and applications up to date and patched and following common sense and best practices online so you never face a malware attack.
     
  18. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    Agreed. I do not want to have overlap at all. Currently software wise I have Norton Security, the SRP program and now KAR. I also have some other things in Windows disabled via GPO or Regstry edits. My machine and all apps are always kept up to date, not a problem for me there.

    I notice with KAR it has an icon in the systray just spinning around. I assume that is to show to the average joe that it is working or monitoring their system? So again, at this point, do I even bother with NVT?
     
  19. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    KAR silently watches the system and when an attack occurs, it will block it. Only reason you still have NVT is that backup layer.
    If KAR doesn't stop it, NVT or your AV should kick in.
     
  20. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    71,469
    Location:
    U.S.A.
    Trooper, you're welcome! Take care.
     
  21. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    NVT is not free though correct?
     
  22. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    NVT is donationware so its free. You can contribute to its development if you wish.
     
  23. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
  24. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Yup. Same thing.
     
  25. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,932
    So you can use trial mode past 30 days?

    Any recommendations on setup? I'm in alert mode still haha
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.