What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    6,500
    Location:
    U.S.A. (South)
    100% Spot 0n you are.

    My backup support plan used Macrium Reflect + Drive Snapshot as insurance.
     
  2. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,433
    Location:
    Location Unknown
    I used to love Drive Snapshot. I like how powerful it is for being so small. Sadly once I started dual-booting Windows and Linux I had to stop using it because it cannot image multiple partitions inside the same .sna file.

    Also, when using the new Creators updated for Windows 10, I experienced an issue between SBIE 5.2 and Win10 CU; everything run inside the sandbox would run dreadfully slow. SBIE 5.21 beta fixes that issue.
     
    Last edited: Oct 10, 2017
  3. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    Oct. 10, 2017 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls Enabled
    • OpenDNS Configuration
    Computers
    • Desktop (Custom Built) - Windows 10 Pro x64 Ver. 1703 Built 15063
    • Tablet (Surface Pro 4) - Windows 10 Pro x64 Ver. 1703 Built 15063
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS SMART SCREEN: ENABLED
    • WINDOWS DEFENDER: ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Windows Firewall Control 5.0.0.2 (Paid)
    • Emsisoft Internet Security 2017.7.0.7838 (Paid)
    • Sandboxie 5.21.4 Beta (Paid) - Container Folder on RAMDisk
    • Adguard Premium 6.2.379.1984 Beta (Paid)
    • KeyScrambler 3.11.0.3
    • Simple DnsCrypt 0.4.2 - Enabled
    On-Demand
    • PeerBlock 1.2 (P2P Blocking List)
    • Emsisoft Emergency Kit 2017.8.0.7904
    • Macrium Reflect Home Edition 7.1.2638* (Paid)
    • VMWare Workstation 14.0.0-6661328** (Paid)
    Browser, Immunization, Tweaks
    • Chrome 61.0.3163.100 x64 (HTTPS-Everywhere, Lastpass Premium) - Chrome Profile Folder on RAMDisk and Sandboxed
    • Homepage and Search Providers set to Startpage (Chrome)
    • CCleaner Professional Edition 5.35.6210 (Paid)
    • Spyware Blaster 5.5 (All Protection Enabled + Customblocking.txt)
    • CryptoPrevent Premiium Edition 8.0.4.2 - Default (Paid)
    *Macrium Reflect Home Edition installed in both Desktop & Tablet - Backup Template: Grandfather, Father, Son.
    **VMware Workstation only installed on Desktop


    dja2k
     
    Last edited: Oct 11, 2017
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    7,208
    @dja2k
    With Cleaner Professional Edition 5.35.6210 (Paid) you probably mean CCleaner?
     
  5. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,278

    CCleaner Pro it is.
    ;) :thumb:
     
  6. assersegsten

    assersegsten Registered Member

    Joined:
    Sep 13, 2016
    Posts:
    33
    Location:
    denmark
    Hello, everyone, My security setup is: Bitdefender Total Security, Zemana Anti-Malware, HitmanPro, HitmanPro Alert, Voodoo-Shield Pro, and adware cleaner.
    I also protect my privacy with a VPN(SurfEasy Ultra, Windscribe Pro, PIA and ProtonVPN Plus), I almost always use a VPN when I am Browsing.:)
     
  7. illumination

    illumination Registered Member

    Joined:
    Oct 10, 2017
    Posts:
    7
    Location:
    US
    -Eset Internet Security "custom settings"
    -Appguard Annual "custom settings"

    Everything is backed up externally, nothing stored on system, accessed from external when needed. Only a couple applications that are needed, keeping attack surface as small as possible.
     
  8. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    Yeah that's it, thanks!
     
  9. Stephen2

    Stephen2 Registered Member

    Joined:
    Feb 11, 2007
    Posts:
    12
    Haven't run any resident security software for 6 odd years. SandboxIE somtimes, to run a dodgy tool or something...

    I used to be like you, playing with all the different tools... As long as you guys know it's just a hobby, and not really a necessary part of owning a computer - right?
     
  10. Eru

    Eru Registered Member

    Joined:
    Mar 23, 2010
    Posts:
    97
    Location:
    Poland - Sosnowiec
  11. robboman

    robboman Registered Member

    Joined:
    May 6, 2013
    Posts:
    57
    Location:
    holland
    For the last year it has been:

    Win10
    Avira free + MBAE
    Ublock

    It's been great :thumb:
     
  12. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,089
    Location:
    North Carolina USA
    Kaspersky Free AV, a really nice product
     
  13. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    362
    Current security setup

    • Real-time protection: Bitdefender Total Security 2018 (30-day test version; I'm very pleased so far.)
      Removed Malwarebytes Premium and disabled Windows Defender.
    • Firefox hardening: uBlock Origin (same as before minus Avira Safe Browsing)
    • On-demand scanners: HitManPro, adwCleaner, VTUploader (same as before)
    • Backup: Iperius (same as before)
    That's it. I hope my new security setup is complete.
     
  14. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    XP Pro SP3 w/POS Ready tweak setup:

    Netgear AC1750 r6300v2 router - dd/wrt Giga firmware (x2)

    Hardening - The strength of XP - everything you can imagine

    Windows Firewall - Hardened from termination via Group Policy
    Comodo FW/D+ v5.10 - FW: Custom Policy Mode, Very High alerts, All Advanced settings ticked. D+: Paranoid Mode, Untrusted, "Protect All Files" tweak, vendor.n file deleted, Trusted Publishers certs deleted, Sandbox disabled
    Sandboxie v3.76 - All internet facing apps w/custom boxes. Dedicated partition sandboxed for all new files introduced to PC and removable drives
    Malwarebytes Anti-Exploit
    VT Hash Check - Scan all new files in aforementioned, dedicated sandbox with it first
    Virtualbox
    TrueCrypt - OS partition encrypted, blank PW screen, hidden partitions (inner & outer), sensitive files in inner part.
    Macrium Reflect Free imaging
    iVPN + Mullvad

    On demand scanners:
    VT Hash Check
    Hitman Pro
    Malwarebytes Antimalware
    TDSS Killer

    Firefox v27.0.1 - Addons: Calomel SSL Validation, CS Lite Mod, HTTPS-Everywhere, NoScript, Private Tab, Request Policy, uBlock Origin. Disabled - Adblock Plus, Element Hiding Helper for Adblock Plus (used when I find new elements to block & rules added to uBlock

    Windows 7 Ultimate x86 box: Standard User Account

    Emsisoft AV
    Windows FW - default rules deleted, rules created to block IP In and ICMP In/Out
    Comodo FW/D+ v5.10 - Same settings as for XP
    Sandboxie v4.x - Same settings as XP
    Malwarebytes Anti-Exploit
    Virtualbox
    Native Imaging
    iVPN + Mullvad

    On demand scanners: Same as for XP

    Same browser setup/addons. Also have a hardened Chrome for Trezor (works best with Chrome extensions for Trezor)
     
    Last edited: Oct 15, 2017 at 10:32 AM
  15. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    749
    Location:
    Italy

    What version?

    https://www.wilderssecurity.com/threads/malwarebytes-anti-exploit.354641/page-146#post-2705310

    https://forums.malwarebytes.com/topic/212278-something-amiss-with-anti-exploit-beta-110141/
     
  16. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    Oct. 17, 2017 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk AC1900 (R7000) Routers (Kong's DD-WRT)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls - Enabled
    • OpenDNS Configuration
    • DNSCrypt - Adguard DNS 1
    Computers
    • DESKTOP (Custom Built) - Windows 10 Pro x64 Ver. 1709 Built 16299.15
    • TABLET (Surface Pro 4) - Windows 10 Pro x64 Ver. 1709 Built 16299.15
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS SMART SCREEN: ENABLED
    • WINDOWS DEFENDER:ENABLED
    • EXPLOIT PROTECTION: ENABLED
    • FOLDER PROTECTION: ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Windows Firewall Control 5.0.0.2 (Paid)
    • Sandboxie 5.21.4 Beta (Paid) - Container Folder on RAMDisk
    • Adguard Premium 6.2.424.2123 Beta (Paid)
    • KeyScrambler 3.11.0.3
    • Simple DnsCrypt 0.4.2 - Enabled
    On-Demand
    • PeerBlock 1.2 (P2P Blocking List)
    • Emsisoft Emergency Kit 2017.8.0.7904
    • Macrium Reflect Home Edition 7.1.2646* (Paid)
    • VMWare Workstation 14.0.0-6661328** (Paid)
    Browser, Immunization, Tweaks
    • Chrome 61.0.3163.100 x64 (HTTPS-Everywhere, Lastpass Premium) - Chrome Profile Folder on RAMDisk and Sandboxed
    • Homepage and Search Providers set to Startpage (Chrome)
    • CCleaner Professional Edition 5.35.6210 (Paid)
    • Spyware Blaster 5.5 (All Protection Enabled + Customblocking.txt)
    • CryptoPrevent Premiium Edition 8.0.4.2 - Default (Paid)
    *Macrium Reflect Home Edition installed in both Desktop & Tablet - Backup Template: Grandfather, Father, Son.
    **VMware Workstation only installed on Desktop


    dja2k
     
    Last edited: Oct 18, 2017 at 3:23 PM
  17. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    513
    Location:
    Croatia
    @dja2k
    ...other Built-In Security (Exploit Protection, Folder Protection...)?
     
  18. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,555
    Location:
    Among the gum trees
  19. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    513
    Location:
    Croatia
    I see that he update to Fall Creators but he didn't say anything about that and by default Folder Protection is not turn On (if I'm not wrong?) and Exploit Protection have some settings to set (or not?).
     
  20. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    It was late last night when I did the Fall Creators update, so yes some things weren't posted. Ok just enabled folder protection and the built-in Exploit Protection is "On" by default which only shows some system files and I haven't added any myself yet.
     
    Last edited: Oct 17, 2017 at 12:26 PM
  21. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    513
    Location:
    Croatia
    This is default Exploit settings (screenshot), one settings is OFF is that OK or is better to turn it ON?

    1.png
     
  22. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    This is basically what EMET (Enhanced Mitigation Experience Toolkit) used to be and if I remember correctly ASLR was always turned off for most applications. I don't know if that one was one of those if you enable, some apps would give errors when launched.
     
  23. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    513
    Location:
    Croatia
    Folder Protection is enabled and when start to install Chrome got this message (picture):

    1.png
     
  24. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,050
    Location:
    South Texas, USA
    Yes "Folder Protection" will make these pop-ups come up once in a while. I don'w know why setup.exe is trying to launch when you run Chrome, investigate that odd behavior.
     
  25. WildByDesign

    WildByDesign Registered Member

    Joined:
    Sep 24, 2013
    Posts:
    2,096
    Location:
    Toronto, Canada
    The Mandatory ASLR system wide has the potential to be problematic with some systems. I've had it on before and had no issues except with any PortableApps software which did not like it. The bigger issue in the past was when it affected some kernel drivers which in turn would cause BSOD. So you need to proceed with caution since that is system wide. Windows 10 64-bit enforces ASLR (and other mitigations) anyway on all 64-bit processes. Therefore, always good to use 64-bit OS and 64-bit apps.
     
Loading...