What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Smiggy

    Smiggy Registered Member

    Joined:
    May 2, 2007
    Posts:
    230
    Location:
    The Angel Isle
    Wow, to say abject paranoia is alive and well in this thread is an understatement!
    Some of you must REALLY STRAY from the path in t'interweb land!!
     
  2. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,177
    Location:
    Adelaide
    Started using Quad9 for my DNS queries.
     
  3. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,882
    Location:
    Among the gum trees
    I have been too, but I'm routed through California so it's not the quickest DNS service. I've been in contact with Quad9 and they have determined they need to work out a bug with my ISP (Telstra).
     
  4. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,177
    Location:
    Adelaide
    How did you determine this?
     
  5. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,882
    Location:
    Among the gum trees
    I noticed how slow Quad9 was compared to others using Steve Gibson's DNS Benchmark, so I contacted them and they said to do this.

    Admin Command Prompt > press Enter after each
    • nslookup
    • server 9.9.9.9
    • set class=chaos
    • set type=txt
    • id.server
    After all of that you will get something like (in my case) "res300.bur.rrdns.pch.net", which turns out to be Burbank, CA, US.
     
  6. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,177
    Location:
    Adelaide
    Ah, very interesting. Mine seems to be based in Sydney, which is good as I'm in Adelaide (not with Telstra though).

    Code:
    res300.syd.rrnds.pch.net
     
  7. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,882
    Location:
    Among the gum trees
    Lucky bugger! :D

    Things really grind to a halt when I use my VPN.
     
  8. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    1,447
    Location:
    Hollow Earth - Telos
    I seem to get resolving host message a lot with Quad9 and Chrome.
     
  9. JasonUK

    JasonUK Registered Member

    Joined:
    Nov 24, 2017
    Posts:
    3
    Location:
    UK
    My current security setup on a Win10 desktop... not sure if its overkill but as I've had no real performance issues have let them all happily coexist :)

    - Real time ~ Avast (Free), Malwarebytes (Full), Zemana Antimalware (Full) & VoodooShield (Free)
    - On demand ~ Emsisoft Emergency Kit, ADWCleaner & Windows Defender
    - Backups ~ Macrium Reflect (Full) & AOMEI Backupper (Full)
    - Browser ~ Opera (built-in Ad-Blocker) & Firefox (uBlock Origin)
    - Other ~ Sandboxie, ProtonMail & ProtonVPN
     
  10. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,296
    Welcome to the Wilders...:D
     
  11. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    528
    Location:
    Canada
    I tried Window Defender since the fall update, however, I am back to EAM now, product and customer service is best in the industry in my opinion. So I am now using EAM, MB3 and Sandboxie. Nothing against WD I just think EAM has better protection and the price is right seeing I've used it for years and got the loyalty discount.
     
  12. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    764
    How do you determine where
    After you do all of this, how do you determine where it's out of? Mine is res300.pao.rrdns.pch.net.
     
  13. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,882
    Location:
    Among the gum trees
    Where ever a city or location that Pao stands for. Could it be Palo Alto?

    I'm not expert so I culdn't say for sure.
     
  14. plat1098

    plat1098 Registered Member

    Joined:
    Jan 18, 2016
    Posts:
    1,113
    Location:
    Da mean streets of Brooklyn
    Hahaha, lol. :)

    No software hassles with the machines, please. So this setup is fine as I don't scamper around online much.

    Security: Basic Windows Defender with PUA detections enabled. Sandboxie. HitmanPro Alert.
    Browsers: uBOScope/uBlock Origin in Chrome. Adblock Plus in Internet Explorer. Adguard in Edge.
    On demand: Emisosft Emergency Kit. HitmanPro.

    That's all, folks.
     
  15. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    764
    Yes, that's what I was thinking too. I'm about an hour or so away from there.
     
  16. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    2,855
    Location:
    Slovakia
    After 2 years, I have decided to use Windows Firewall. Hard to imagine, but it actually works pretty well, very well indeed. CCleaner "helped". I do not believe in trusted software anymore.

    My signature is actual. Still no realtime or ondemand AV, it is too bothersome. My current rules, I have tried to be as restrictive as possible:

    Code:
    netsh advfirewall set allprofiles state on
    netsh advfirewall set DomainProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall set PrivateProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall set PublicProfile firewallpolicy blockinboundalways,blockoutbound
    netsh advfirewall firewall delete rule name=all
    netsh advfirewall firewall add rule name="COD MW2 DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW2 TCP" dir=out action=allow protocol=TCP remoteport=27015 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW2 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 TCP" dir=out action=allow protocol=TCP remoteport=3074 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="COD MW3 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
    netsh advfirewall firewall add rule name="DriverEasy DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
    netsh advfirewall firewall add rule name="DriverEasy TCP" dir=out action=allow protocol=TCP remoteip=169.53.0.193,172.217.11.14 remoteport=80,443 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
    netsh advfirewall firewall add rule name="POP Peeper DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
    netsh advfirewall firewall add rule name="POP Peeper IMAP" dir=out action=allow protocol=TCP remoteip=94.100.176.0-94.100.183.255,217.69.136.0-217.69.141.255 remoteport=143,587 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
    netsh advfirewall firewall add rule name="PortableApps DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="F:\PortableApps\PortableApps.com\PortableAppsUpdater.exe"
    netsh advfirewall firewall add rule name="PortableApps TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="F:\PortableApps\PortableApps.com\PortableAppsUpdater.exe"
    netsh advfirewall firewall add rule name="RadioSure DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%LocalAppData%\RadioSure\RadioSure.exe"
    netsh advfirewall firewall add rule name="RadioSure TCP" dir=out action=allow protocol=TCP remoteport=80,1025-65535 program="%LocalAppData%\RadioSure\RadioSure.exe"
    netsh advfirewall firewall add rule name="Steam DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam TCP" dir=out action=allow protocol=TCP remoteport=80,443,27015-27030,27050 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="E:\Steam\Steam.exe"
    netsh advfirewall firewall add rule name="Steam Web TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="E:\Steam\bin\cef\cef.win7\steamwebhelper.exe"
    netsh advfirewall firewall add rule name="Steam Web DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Steam\bin\cef\cef.win7\steamwebhelper.exe"
    netsh advfirewall firewall add rule name="TeamViewer DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="TeamViewer UDP" dir=out action=allow protocol=UDP remoteport=5938 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="TeamViewer TCP" dir=out action=allow protocol=TCP remoteport=80,443,5938 program="%ProgramFiles(x86)%\TeamViewer\TeamViewer.exe"
    netsh advfirewall firewall add rule name="Update Time DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
    netsh advfirewall firewall add rule name="Update Time UDP" dir=out action=allow protocol=UDP remoteip=85.236.36.0-85.236.36.127 remoteport=123 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
    netsh advfirewall firewall add rule name="WRT DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
    netsh advfirewall firewall add rule name="WRT TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="E:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
    netsh advfirewall firewall add rule name="WU DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%WinDir%\System32\svchost.exe"
    netsh advfirewall firewall add rule name="WU TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%WinDir%\System32\svchost.exe"
    netsh advfirewall firewall add rule name="Yandex DNS" dir=out action=allow protocol=UDP remoteip=84.200.70.40,84.200.69.80 remoteport=53 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex DNSS" dir=out action=allow protocol=UDP remoteip=208.67.220.123,208.67.222.123 remoteport=443 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex Sync" dir=out action=allow protocol=TCP remoteip=213.180.193.0-213.180.193.255 remoteport=443,5222 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
    netsh advfirewall firewall add rule name="Yandex TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%LocalAppData%\Yandex\YandexBrowser\Application\browser.exe"
     
  17. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,205
    Location:
    USA
    Welcome back to EAM d. c.
     
  18. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,205
    Location:
    USA
    Windows 7 Pro SP1 x64

    Firewall & Anti-Virus:
    Router NAT/SPI (Password Protected)
    Windows Firewall
    Emsisoft Anti-Malware 2017.10.2.8188 (with MVPS & hpHosts files)

    Blocking/Hardening:
    AppGuard 4.4.6.1
    HitmanPro.Alert 3.7.1 Build 723
    Norton ConnectSafe DNS (Malware, Phishing)
     
  19. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    528
    Location:
    Canada
    Thanks G111.
     
    Last edited: Nov 26, 2017
  20. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    1,447
    Location:
    Hollow Earth - Telos
    The only way i could get Quad9 to work was to put opendns as the backup server.
     
  21. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    7,563
    Location:
    Slovenia
    Windows 7 x64
    • Standard User Account used
    • User Account Control set to max
    • Windows Firewall monitoring inbound and outbound network traffic
    • various OS tweaks and modifications
    Macrium Reflect using grandfather - father - son backup scheme

    Emsisoft Anti-Malware installed and configured

    Sandboxie for Firefox with uBlock Origin

    OpenVPN
    and Mullvad as service provider

    Avira PC Cleaner, KVRT and HitmanPro for on demand scans.
     
  22. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    764
    Dual Boot

    W7
    AppGuard 5.2.9.1
    Comodo FW 5.12 D+ & SB Disabled

    Linux Mint
     
Loading...