What is your security setup these days?

Because I have set up the scan to operate non-interactive (without the user replying on every prompt). A False Positive in an untattended scan is not what you want, therefore heuristics low.

The guard on the other hand is always interactive and will (most likely) trigger with new arrivals (downloaded files) first, because you save a file before you install it (normally). So a FP positive on a new arrival (more likely with heuristics high), does not screw up your system (because the risk is less, you can afford a more secure setting).

Regards Kees

 

ops sorry i missed that

 

Ehh new Avira Proative beta a little bit to much beta for me [BSOD's]

Basic security level (application level security is futile when you have not taken precautions on network and data level)
- external off line harddisk image backup/recover with Paragon Free, data backup/recovery with Syncback Free
- router
a) partitioned LAN (no traffic between clients - we have a gamer in da house, which is not allowed to access other PC's)
b) Wireless longest key WPA2 AES,
c) SSID hidden, new WL clients need a PIN to connect also, changed (ADMIN/USER passwords, IP address of router, name of network)
d) MAC Address control
e) DHCP reservation (clients get same IP addres based on Mac Addres)
f) Network filter on used clients, other IP addresses are dropped
g) Inbound filter on our own IP addresses (so internal IP addresses from WAN side blocked)
h) ARP Spoof checking, DDOS/flood attack protection, no respond to Ping from Wan side enabled, UPnP disabled, SPI enabled (limited DPI with Network filter)
i) Added OpenDNS primary and secondary servers in router (enabled phising protection in OpenDNS, disabled it in IE8 )
j) Wireless clients the SSID and Router MAC address is preset in wireless card adaptor (this to assures adaptor only binds with Router)

Realtime E5200@3,06Ghz, 2GB RAM, XP Pro SP3 NL
- Windows FW
- DefenseWall 2.56 Dutch
- Windows Defender Dutch (Scheduled scan and on-execution disabled for performance reasons)
- Avast Free Dutch (Only standard shield, check to write plus on execute check for all except Win32 aps and dll's)
- Keyscrambler free for IE8

Banking/Shopping with IE8, Daily browsing with Chromium


On demand
- OSAM
- Panda Anti-rootkit
- Process Hacker

 

as of today i am trying a fast and secure set up in my xp2 laptop:
it is very simple
1)AppGuard/guarding my user-space
2)Comodo D+/just using D+ proactive defense active process list as an analizer to check if some thing has bypass AppGuard
it will be super nice to get like an active process list withing AppGuard to check active procesess and be able to block them in real time by the way AppGuard is doing it's job very well good job blueridge

 

Persistent:

That good old reliable wired SPI router. There are no nits in its NAT!

Software Firewall:

Outpost Free. Host protection set to advanced, firewall policy at block most. Doing just what I want it to do!

Active/on access anti-malware:

A2 Anti-Malware. Really liking this version. A lot.

Prevx 3. False positives?! OK, a few. Nothing to pitch a fit at.

HIPS/Sandbox:

DefenseWall HIPS 2.55. Ilya sure has an impressive program. Wish that I began using it earlier.

On Demand & System Hardening:

Norton Security Scan & Clean. It scans, it cleans, it's free. Nice second (or third) opinion.

MBAM and SAS. Varying opinions (especially with MBAM) on these, they've both been effective for me on more than one occasion. Everyone should have these two on their rigs.

SpywareBlaster. Running it out of habit. Why not.

Seconconfig XP and SafeXP. Everyone (on XP) should be running these also.

Remarks:

All programs latest available versions as of this post. Running Win XP Pro SP3 on a hyperthreaded 3.0 GHZ P4 w/ 4 GBS RAM.

I'm really going to miss this machine when the time comes to take it out back and shoot it.

 

Maybe I could try Rising Firewall free with AntiVir. Sounds like you don't really need a HIPS on Vista 64-bit.

 

I might have found the problem with outpost - I turned off "alert about all new or changed executables."

Unless I still have a problem, my setup is:

AntiVir Premium 9
Outpost Free
Prevx Edge

 

My config:

Linksys
DefenseWall HIPS 2.55
Windows 7 Firewall
Opera

 

You lean mean fighting machine. Do you throw-in an on-demand scan once in awhile (eg. a-squared free/Dr Web CureIt)?

DefenseWall
a-squared free
Hitman Pro

 

Yes indeed this is very light and strong setup for me.
I use once per month or once per 2 months Dr. Web CureIt to scan my system and remove (if there will be) inactive pieces of malware.
Since detections rate is not really important for me i use this scaner for one reason - I don't have to install Dr. Web CureIt in my system, just download latest .exe file from Dr.Web official website (if i need it) and run this executable file to scan my system. Thats all

 

# AVG 8.5 (with IDP)
# KeyScrambler
# Router
# CCleaner

I used a lot of antispyware tools but I think there is no need for them nowadays. Anyhow, they messed up the registry

 

Removed Returnil.

I don't really have any use for this program, since I already have EAZ-Fix.

 

My current setup:

Prevx 3.0 (Paid)
Sandboxie 3.38 (Paid)
Shadow Defender (Paid)

 

Avira and Prevx in different combos on different computers. Really are the the 2 best products out there.

 

Added some on-demand scanners, namely SAS and a-Squared.

 

Realtime/Active
A-Squared ~ DefenseWall

On-Demand
Prevx ~ MBAM

 

Here we go:

Pretty Good Security 1101 beta (aka PGS - a wonderful Wilders inspired SRP tool)
http://mrwoojoo.com/PGS/PGS_index.htm

BTW, a non realtime tool for realtime protection which can be used under any windows version except windows 7.

A big thanks to Sul!

 

Currently, I'm running only Sandboxie on XP Home with IE 7 which is configured to reject third party cookies.

WinPatrol 2.16.0.2009.2 for basic HIPS.

MBAM (free) for an on-demand scanner.

I ran the exact same setup last week and after four days, downloaded/installed Avira free, Superantispyware free , and A-Squared free.
Scanned with all three plus MBAM;
no detected malware.

No pagefile, emptied DLL Cache, deleted backup driver cabinet, deleted "downloads" in "software distribution" (system 32), plus a few other redundant files.

Total size of the current install is 1.32 GB.
Loads fast, runs fast.

Just playing around.

 

i am just testing the new EqSecure 4.2 it has a sandbox it is very simple hips dont know how it works it is lite and fast

 

Now I'm trying:

AntiVir Premium Security Suite
WinPatrol Free
Prevx Edge

I'll see if I like this or my previous setup more.

 

Added:
EAZ-Fix (I am testing it on Win 7 right now)

 

Removed
Added Outpost free

 

Vista x32 (FW On, WD Off, UAC On)
NAT/SPI Router
SandboxIE (main security)
A-Squared Anti-Malware Free (on-demand)
ATI True Image 2009 Home

 

Simple setup

Nat Router
Windows Firewall
Prevx 3.0
Defensewall 2.55
Acronis

An Demand:
SAS Pro

 

Simple setup

NAT Router
ZoneAlarmPro
GeSWall Pro
Prevx Edge 3.0
avast!