What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,974
    No problem, I've never thought for a moment you were picking on me...
     
    Last edited: Mar 16, 2020
  2. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    1,623
    Location:
    Italy
    Windows XP Home
    Windows Firewall
    AdGuard DNS - CloudFlare DNS
    PsExec
    DEP Always ON
    Trick POSReady 2009 + KB4500331
    Black Viper's List
    No NET Installed
    SMB Protocol Disabled
    MBAE Premium
    OSArmor
    WMP off -
    OE off
    I.E.8 No Flash + Trick 1803 - Block the downloadable executable files + Disable script (F12 - on/off) + OSA Rule block

    New Moon (Pale Moon fork for XP) - Custom Setting About:Config
    Home page = DuckDuckGO - Custom settings saved via URL no cookies
    Default Search Engine = DuckDuckGO

    UBO
    NoScript
    Decentraleyes
    No Resource URI Leak
    Super Start

    Changelog since the last configuration:

    • Added some custom rules in OSA for Mimikatz Dump Lsass.exe mitigation.
    • Added "sc" command rule block in OSA.
    • Added rule to block execution of I.E.8 in OSA.
    • Added rule to block msbuild.exe in OSA and the same rule on the Registry Key.
    • Blocking rule in host file for CCleaner v.5.64.7577.
     
  3. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    1,623
    Location:
    Italy
    Windows XP Home
    Windows Firewall
    1°- AdGuard DNS 2°- CloudFlare DNS (Malware Protection)
    PsExec
    DEP Always ON
    Trick POSReady 2009 + KB4500331
    Black Viper's List
    No NET Installed
    SMB Protocol Disabled
    MBAE Premium
    OSArmor
    WMP off
    OE off
    I.E.8 No Flash + Trick 1803 - Block the downloadable executable files + Disable script (F12 - on/off) + OSA Rule block

    New Moon (Pale Moon fork for XP) - Custom Setting About:Config
    Home page = DuckDuckGO - Custom settings saved via URL no cookies
    Default Search Engine = DuckDuckGO

    UBO
    NoScript
    Decentraleyes
    No Resource URI Leak
    Super Start

    Changelog since the last configuration:

    • Added some custom rules in OSA for Mimikatz Dump Lsass.exe mitigation.
    • Added "sc" command rule block in OSA.
    • Added rule to block execution of I.E.8 in OSA.
    • Added rule to block msbuild.exe in OSA and the same rule on the Registry Key.
    • Change default opening for PFM and PFB file types.
    • Third party remote character block added to ublock Origin.
    • Entered the DNS Cloudflare Malware Protection.
     
    Last edited: Apr 3, 2020
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    13,203
    Location:
    Here
    OS: Windows 10

    Backup: Macrium Reflect
    Updates: SUMo and Windows update
    Antimalware: Kaspersky Internet Security
    On demand scanners: Emsisoft Emergency Kit, Avira PC-Cleaner
    Adblocker: uBlock Origin in Firefox
    Passwords: KeePass
    Encryption: VeraCrypt
    VPN: Mullvad (OpenVPN native client and Wireguard)
    Testing: VirtualBox
     
  5. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    702
    Location:
    Canada
    Slight change, now WD with Configure Defender and Syshardener, UBO and Malwarebytes Browser Guard.

    Extremely light and secure, no 3rd party drivers installed or programs hooking into every nook and cranny.
     
  6. ankupan

    ankupan Registered Member

    Joined:
    Oct 4, 2004
    Posts:
    481
    Avira Prime + Malwarebytes.

    (just worry that it should not make system slow)
     
  7. imuade

    imuade Registered Member

    Joined:
    Aug 4, 2016
    Posts:
    731
    Location:
    Italy
    Operating system
    Win10 Home 64bit ( version 1909, build 18363.752 )

    Firewall

    Windows Defender Firewall

    Antivirus

    FortiClient 6.0.9.0277

    On demand
    AdwCleaner, HitmanPro

    Others

    NoVirusThanks SysHardener

    Privacy

    Windows Privacy Dashboard, O&O ShutUp10

    DNS

    CleanBrowsing DNS - Security Filter

    Browser

    Google Chrome with the following extensions:
    • Close & Clean
    • Dark New Tab
    • Join windows
    • uBlock origin
    • WebRTC Control
    • WebRTC Protect
     
  8. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,090
    F-Secure Total
    NVT OsArmor
     
  9. Crystal_Lake_Camper

    Crystal_Lake_Camper Registered Member

    Joined:
    Mar 20, 2016
    Posts:
    104
    Windows 10 Pro x64 ( debloated with script , edge removed , Ie disabled , defender turned off )
    privacy hardened with : modzero fix privacy , O&O shutup 10 , wpd , simple dnscrypt
    system hardened with NVT syshardener
    realtime protection : Qihoo 360 total security ( all engines enabled , tweaked and built in glasswire firewall enabled ) Voodooshield free ( always on mode )
    browsers : chrome and brave ( both hardened with various flags ) , both : https everywhere , netcraft , 360 internet protection , decentral eyes , privacy possum , trace , fluffbusting , lastpass
    adguard desktop + adguard DNS
    windscribe vpn pro
     
    Last edited: Apr 7, 2020
  10. JasonUK

    JasonUK Registered Member

    Joined:
    Nov 24, 2017
    Posts:
    45
    Location:
    UK
    WD + MBAM Premium. System hardened with ConfigureDefender 'Hard' & NVT SysHardener 'Suggested' settings. Full Macrium backups imaged regularly.

    Also got a range of on-demand virus/malware checkers including: Avira, EEK, ESET Online Scanner, Kaspersky, AdwCleaner available should I ever need them!
     
  11. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,685
    Location:
    Location Unknown
    I am thinking about a very similar setup; Windows Defender, MBAM, Sandboxie and Macrium Reflect Home. Do WD and MBAM play well together? Which one has on-access scanning?
     
  12. Hadron

    Hadron Registered Member

    Joined:
    Apr 1, 2014
    Posts:
    1,585
    Regular scheduled backups.
     
  13. JasonUK

    JasonUK Registered Member

    Joined:
    Nov 24, 2017
    Posts:
    45
    Location:
    UK
    WD & MBAM Premium play nicely, both offering real time protection and you can run additional manual scans whenever you want.. just got to remember to ensure MBAM doesn't register itself in Windows Security by deselecting in MBAM Settings > Security > Windows Security Center otherwise WD will disable itself. Might also be worthwhile, again in MBAM Setting adding the Windows Defender directories in Program Files & Program Files (x86) to your Allow List.
     
  14. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,974
    That's it folks, I have switched three machines to Windows Defender(Avira and Kaspersky have been replaced by WD, see what happens).

    Connection
    : Cable Ethernet Public Network connection + covered up screen camera on laptop.

    OS: Windows 10 home (64 bit) version 1909 build 18363.752 + UAC Max + Windows defender SmartScreen set to 'warn', User account: administrator.

    DNS: Quad9, Remote assistance disabled.

    AV: Windows Defender (with 'controlled folder access' on)

    Browser: Google Chrome v. 81.0.4044.92 + uBlock Origin

    Virtualizer: Shadow Defender version 1.4.0.680 (default configuration) Always on.

    Backup: Macrium Reflect home edition (64 bit) version 7.2.4808 [UEFI], (highly recommended).

    Macrium Image Guardian turned on

    Important data:
    kept outside on unplugged USB hard drives
     
    Last edited: Apr 9, 2020
  15. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    994
    Been running Comodo Firewall for over a year now. Hips disabled. No problems at all.
    I switched to Edge Chromium - Nano AdB & Nano Defender
    UAC - Disabled
    Windows Updates - Manual
    W7 Pro.
    Cloudfare DNS
     
  16. 93036

    93036 Registered Member

    Joined:
    Sep 22, 2011
    Posts:
    105
    W10 Home & Pro
    DNS: Quad9, DNSSEC on EDNS 9.9.9.11, 149.112.112.11, 2620:fe::11, 2620:fe::fe:11
    AV: Windows Defender (with 'controlled folder access' on) https://github.com/AndyFul/ConfigureDefender
    Browser: Firefox v. 74..0.1 + uBlock Origin and Google Canary v. 84.0.4110.0
     
  17. The Dragonfly

    The Dragonfly Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    39
    Windows 10 Pro, some services disabled.
    Updater - Windows Update Mini Tool

    Pushing the envelope setup 5 days, no problems yet.
    Comodo Firewall
    Kaspersky Security Cloud Free
    NVT EXE Radar Pro
    NVT OSArmor

    Other Whatchamacallit
    Not the candy bar.
    Quad 9 - Everyone else is run it so I am too.
    Browsers - Firefox and Comodo Dragon with privacy add-ons
    Scanners - Hitman Pro and Emsisoft emergency kit.
    Cleaner - Wise Disk Cleaner
     
  18. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,104
    Location:
    South Texas, USA
    "HOPE YOU ARE ALL SAFE MY FRIENDS"

    DESKTOP & NOTEBOOK

    April 17, 2020 - Updated, Added, Removed

    Network
    • Netgear Orbi AC2200 Tri-Band Mesh Wi-Fi System (3-pack)
    • Netgear Armor (Bitdefender) - Enabled
    • WiFi WPA2-PSK AES Encryption - Enabled
    • SPI & NAT Firewalls Built-In
    • Cloudflare DNS Configured
    Computers
    • LOCAL ACCOUNTS - Administrator Password Protected
    • WINDOWS INSIDER PROGRAM - Slow Ring Enabled
    • DESKTOP (Custom Built Desktop) - Windows 10 Pro x64 Ver. 2004 Built 19041.207
    • NOTEBOOK (Samsung Note Flash) - Windows 10 Pro x64 Ver. 2004 Built 19041.207
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS DEFENDER SECURITY CENTER: ALL ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Malwarebytes WFC v6.1.0.0 - Medium Filtering, Display Notifications, Outbound)
    • NVT OSAmor 1.4.3 - Default + Custom Advanced Settings
    • Adguard Premium 7.4 beta 2 (Paid) - Custom Settings + Additional Filters Enabled
    • Keyscrambler 3.12.0.2 Beta - Anti-Profiling Enabled
    On-Demand
    • VMware Workstation Pro 15.5.2 build-15785246¹ (Paid) - All Sensitive Browsing
      - PIA VPN Client v 2.0.1 (Paid) - Automatically Enabled
      - Chromium Edge v81.0.416.53 (Official build) (64-bit) (Lastpass & HTTPS Everywhere)
      - Homepage and Search Providers set to Startpage
      - ConfigureDefender 2.0.0.0 - Defender High Settings
      - O&O ShutUp10 1.6.1402 - All Settings Enabled Excluding Windows Defender Settings
      - Windows Privacy Dashboard 1.3.1164 - Privacy: All Disabled / Blocker: Spy & Extra Enabled
      - Windows 10 Privacy Guide from fdossena.com - Selectively Debotnetted!
    • Reflect Home Edition 7.2.4808 (Paid) - Backup Template: Incremental Forever
    • Emergency Toolkit 2020.4.0.10065
    Browsers, Immunization, Tweaks
    • Chromium Edge v81.0.416.53 (Official build) (64-bit) (Lastpass & HTTPS Everywhere)
    • Homepage and Search Providers set to Bing (Chromium Edge)
    • ConfigureDefender 2.0.0.0 - Defender High Settings
    • Windows 10 Hardening Tips from hardenwindows10forsecurity.com - Selectively Applied
    • Windows 10 Services "Tweaked" for DESKTOP by Black Viper | blackviper.com - Selectively Applied¹
    • Windows 10 Services "Safe" for LAPTOP by Black Viper | blackviper.com - Selectively Applied²
    • Windows and User Temp Folders set to RAMDisk - Cleared on Reboot
    • Documents on External Drives - BitLocker Enabled
    • CCleaner Free Edition 5.62.7538 + CCEnhancer 4.5.4
    ¹Only Applied on Desktop
    ²Only Applied on Notebook
     
    Last edited: Apr 19, 2020
  19. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    1,623
    Location:
    Italy
    Windows XP Home
    Windows Firewall
    1°- AdGuard DNS 2°- CloudFlare DNS (Malware Protection)
    PsExec
    DEP Always ON
    Trick POSReady 2009 + KB4500331
    Black Viper's List
    No NET Installed
    SMB Protocol Disabled
    MBAE Premium
    OSArmor
    WMP off
    OE off
    I.E.8 No Flash + Trick 1803 - Block the downloadable executable files + Disable script (F12 - on/off) + OSA Rule block

    New Moon (Pale Moon fork for XP) - Custom Setting About:Config
    Home page = DuckDuckGO - Custom settings saved via URL no cookies
    Default Search Engine = DuckDuckGO

    UBO
    NoScript
    Decentraleyes
    No Resource URI Leak
    Super Start

    Changelog since the last configuration:

    • Added some custom rules in OSA for Mimikatz Dump Lsass.exe mitigation.
    • Added "sc" command rule block in OSA.
    • Added rule to block execution of I.E.8 in OSA.
    • Added rule to block msbuild.exe in OSA and the same rule on the Registry Key.
    • Entered the DNS Cloudflare Malware Protection.
    • Added CCleaner portable v.5.61.7392 - Removed CCleaner v.5.64.7577.
    • Mitigations for CVE-2020-0674.
    • Mitigations for CVE-2020-0938 and CVE-2020-1020.
     
  20. Crystal_Lake_Camper

    Crystal_Lake_Camper Registered Member

    Joined:
    Mar 20, 2016
    Posts:
    104
    Windows 10 Pro x64

    debloated with scipt , privacy hardened with modzero fix privacy , o&o shutup 10 , wpd.
    system hardened with andy ful hard configurator ( recomended settings )
    realtime windows defender ( hardened with andy ful configure defender high settings ) - simplewall
    adguard desktop - windscribe vpn
    browsers : edge chromium and brave both with : windows defender browser protection - netcraft - https everywhere - decentraleyes - privacy possum - trace - facebook purity - popupblocker ( strict ) and lastpass
     
  21. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,090
    gdata internet security OSArmor
     
  22. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,104
    Location:
    South Texas, USA
    DESKTOP & NOTEBOOK

    April 22, 2020 - Updated, Added, Removed

    Network
    • Netgear Orbi AC2200 Tri-Band Mesh Wi-Fi System (3-pack)
    • Netgear Armor (Bitdefender) - Enabled
    • WiFi WPA2-PSK AES Encryption - Enabled
    • SPI & NAT Firewalls Built-In
    • Cloudflare DNS Configured
    Computers
    • LOCAL ACCOUNTS - Administrator Password Protected
    • WINDOWS INSIDER PROGRAM - Slow Ring Enabled
    • DESKTOP (Custom Built Desktop) - Windows 10 Pro x64 Ver. 2004 Built 19041.208
    • NOTEBOOK (Samsung Note Flash) - Windows 10 Pro x64 Ver. 2004 Built 19041.208
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • WINDOWS DEFENDER SECURITY CENTER: ALL ENABLED
    • WINDOWS FIREWALL: ENABLED
    Resident
    • Malwarebytes WFC v6.1.0.0 - Medium Filtering, Display Notifications: Outbound
    • NVT OSAmor 1.4.3 - Default + Custom Advanced Settings
    • Adguard Premium 7.4 beta 2 (Paid) - Custom Settings + Additional Filters Enabled
    On-Demand
    • VMware Workstation Pro 15.5.2 build-15785246¹ (Paid) - All Sensitive Browsing
      - PIA VPN Client v 2.0.1 (Paid) - Automatically Enabled
      - Chromium Edge v81.0.416.53 (Official build) (64-bit) (Lastpass & HTTPS Everywhere)
      - Homepage and Search Providers set to Startpage
      - ConfigureDefender 2.0.0.0 - Defender High Settings
      - Additional Group Policy Defender Settings - Manually Applied
      - O&O ShutUp10 1.6.1402 - All Settings Enabled Excluding Windows Defender Settings
      - Windows Privacy Dashboard 1.3.1164 - Privacy: All Disabled / Blocker: Spy & Extra Enabled
      - Windows 10 Privacy Guide from fdossena.com - Selectively Debotnetted!
    • Reflect Home Edition 7.2.4808 (Paid) - Backup Template: Incremental Forever
    • Emergency Toolkit 2020.4.0.10065
    Browsers, Immunization, Tweaks
    • Chromium Edge v81.0.416.62 (Official build) (64-bit) (Lastpass & HTTPS Everywhere)
    • Homepage and Search Providers set to Bing (Chromium Edge)
    • ConfigureDefender 2.0.0.0 - Defender High Settings
    • Additional Group Policy Defender Settings - Manually Applied
    • Windows and User Temp Folders set to RAMDisk - Cleared on Reboot
    • Documents on External Drives - BitLocker Enabled
    ¹Only Applied on Desktop
    ²Only Applied on Notebook
     
  23. Spartan

    Spartan Registered Member

    Joined:
    Jun 21, 2016
    Posts:
    619
    Location:
    Dubai
    Wow!! Very impressive! Thanks for the detailed list!
     
  24. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,104
    Location:
    South Texas, USA
    No Problem :thumb:
     
  25. The Dragonfly

    The Dragonfly Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    39
    Windows 10 Pro 64
    Windows Update Minitool with auto updates set to disabled
    Non-sense disabled with O&O Shutup 10
    Some services disabled.

    Quad9 DNS

    Comodo Firewall
    Set to proactive security
    Firewall alert frequency level is medium with custom ruleset.
    Filter IPv6 Traffic enabled
    Filter loop back traffic enabled
    Do protocol analysis enabled
    HIPS set to paranoid mode
    HIPS adaptive mode
    Containment/Sandbox enabled
    Everything else is default

    Other programs
    Kaspersky Security Cloud free - Some custom settings
    NVT OSArmor - Some custom settings
    NVT EXE Radar Pro - Some custom settings

    On demand scanners
    Hitman Pro
    Emsisoft Emergency Kit

    Firefox 64 Bit with extensions
    NoScript, uBlock Origin, LastPass, HTTPS Everywhere,
    Privacy Badger, Ghostery, Cookie AutoDelete, Decentaleyes
     
    Last edited: Apr 23, 2020
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.