What is your security setup these days?

i think it is very good actually especially the behabiour blocker

 

its just like threat fire i think

 

Minor Update for even lighter setup

XP Pro with group policy hardening

LUA with SRP no execute on P2P directory and TEMP partition (where chrome download dir is etc) only
Starting Paragon backup, Disk cleaner and Windows Create Restore point with encrypted credentials from LUA through Steel Run As freeware (was Run As)

ACL no execute registry tweak for downloaded executables (softened up SRP because this tweaks works so well, also with Chrome)

ACL taken away add value, create subkey and delete rights of vulnarable user space keys of LUA user, taken away write access to menu program start and tasks

Chrome with SiteAdvisor for Chrome, new tab behaviour, IE tab, Adsweep, Flashblock and Click & Clean
Note I have set the session ID to zero and made the 'local state' file in the Google/Chrome/User Data folder as read only. Chrome is launched with --safer-plugins switch

Avast file shield Although Avast is the lightest (when I use File and Behavioral Shield) in terms of CPU and I/O (better than other freebies like Panda, AVG Avira, Rising), I could not resist trying CLAMAV-IMMUNET I have set for check on program start also, but since Clam AV offers to exclude files and folders I have disabled protection on Windows and Program FIles.

Trusteer Rapport (settings eee https://www.wilderssecurity.com/showpost.php?p=1640208&postcount=7161)

Hitman Pro on demand Because Immnunet-Clam does not have a right-click context scanner I have added A2 Free for on demand (A2 is updated through A2CMD /U in autostarts of all users). Reason to prefere A2 over Hitman is the update command line option.

Both Avast and Hitman are great, just trying something else.

That's all

 

HMP now has command-line options. Have you checked if these includes something similar to what you seek?

 

NIS2010 - antiwhatever/firewall
Comodo Time Machine - rollback
SandboxIE - browser protection
Mailwasher Pro - email filtering
Keepass - passwords
Macrium Reflect Free - imaging
Peerblock - IP blocking

Firefox with the usual Adblock, Ghostery, CSlite, Keyscrambler, etc, etc

All on Windows 7 Home Premium.

 

Raven thanks,

Yes Hitman Pro has a command line option, but I run LUA and use Steel Run AS for admin programs. Steel Run as encrypts admin password and checks the CRC hash of the program. Because HMP needs admin rights and it changes the executable when updating (so CRC hash changes) I am not able to run it from LUA.

Regards

 

DefenseWall v3 RC
ShadowDefender 1.1.0.325

Various Scanners

OpenDNS
Opera 10.51

 

Thanks. Saves me from editing my signature.

 

LoneWolf, I am about to set up something similar because I have too many security apps running in real time.

Shadow Defender 1.1.0.278
Defense Wall v2.56
Online Armor
Sandboxie
Zemana AntiLogger

I think such a setup would pretty much cover all security and privacy attack vectors.

What scanners do you use and do you run them on demand only?

 

The only currently installed app I have right now is MBAM, been on here sense the early MBAM beta days. Which I currently only run as on demand.

I am always in Shadowmode so if I feel like running a scan with another scanner, I simply download whichever scanner I wish, run a scan, when nothing is found, which is almost always the case, except for the occasional false positive, a simple reboot and the app is gone. At least that is the way things are for now.

 

Thank you.

So those scanners that you download while in shadow mode don't recquire restart to complete the installation?

 

No, they seem to work just fine.
Trojan Hunter - http://www.misec.net/
HitMan Pro - http://www.surfright.nl/en/hitmanpro
Avast - http://www.avast.com/free-antivirus-download
Prevx - http://www.prevx.com/
Asquared - http://www.emsisoft.com/en/software/free/
SAS - http://www.superantispyware.com/download.html
If something says it needs to reboot to finish the install I do not and just run a scan which has always worked so far.
Also I'll use Virus Total and Jotti to scan new files.

 

Firewall:
Linksys Router
DefenseWall Personal Firewall 3.00 RC1 (with Windows XP firewall)

Anti-Virus:
Kaspersky Anti-Virus 9.0.0.736 (a.b)
Malwarebytes Anti-Malware 1.45 Beta

HIPS/IDS:
Malware Defender 2.6.0
SpywareBlaster 4.2 (with Ad-Aware custom blocking)

On Demand:
Mischel TrojanHunter 5.3 (994)
Hitman Pro 3.5.4 Build 92
Panda Anti-Rootkit 1.08.00
WinPatrol Plus 17.0.2010.0

 

I have to removed WinPatrol from my system - high and often cpu spikes.

So now my config is:

Realtime:
Look 'n' Stop v2.07,
DefenseWall Personal Firewall v3 (RC)
WinPatrol PLUS

On-demand:
Shadow Defender,
Shadow Protect Desktop

On-demand scanners (scan once per few months):
Dr.Web CureIt!
MBAM

 

Creer - Are using just the HIPS part of DW or firewall also?

 

I use only HIPS part of DWPF. I explained it here.

 

Thanks Creer. I am using DW 3 RC1 (HIPS & firewall) with Windows XP firewall. Ilya advised in his forum that Windows firewall can be enabled with DW firewall. Also behind router. Fast, easy and peace of mind. I was thinking of LnS when I had compatibility problems with another firewall, but glad DW added the firewall.

 

Vipre Premium, DefenseWall 3 RC 1, Zemana Antilogger and Malwarebytes Anti'Malware on demand.

Not bad set i think

 

DWPF is a good choice, if you like peace of mind
Also with top notch support provided by Ilya you can't go wrong

 

Family’s laptop (old xp sp3 - Wi-Fi) :

Dr.Web antivirus
Online Armor premium
Win Patrol plus
PrevX Safe Online


daughter 1 (old desktop xp sp3 - Wi-Fi) :

Dr.Web antivirus
Online Armor premium
Win Patrol plus
PrevX Safe Online


family's old desktop (xp sp3 - Wi-Fi) (on reserve if necessary)

Rising AntiVirus
PrevX Safe online
Online Armor free
Win Patrol plus


daughter 2 recent laptop (seven - Wi-Fi) :

KIS 2010
Win Patrol plus
PrevX Safe Online


Main family recent desktop - powerful (core quad ... vista sp2 - internet cable 30 mb/sec)

KIS 2010
Win Patrol plus
PrevX Safe online


daughter's 3 very old laptop (wi-fi)

Ubuntu 9.10


daughter 3 recent laptop (vista sp2 - wi-fi) :

KIS 2010
Win Patrol plus








All fully patched + spywareblaster enable and malwarebyte's on demand.
All together on home network.

Why Rising ? : middle light, reactive and cheap.
Why Online Armor ? : light without HIPS, acceptable with, and powerful.
Why KIS ? : heavy on old computers but very powerful with recent ones … the best !!!
Why WinPatrol plus ? : Incredibly light and very easy to use.
Why Prevx 3 Safe Online ? : Incredibly light and reactive … but … in the clouds, it could be a problem with laptop off line and USB flash drive..
Why Dr.Web ?: light, discret, strong and “oldy”..
Why Ubuntu ? light on old computers, a lot of possibility with free softwares, pleasant.

Every month "Acronis true image" full backup on each computer - all the hard disks are build with two partitions and the desktops have got two hard disks for redundant backups.

I hope the daughter's use of internet isn’t too dangerous, but I think the family's computers are well protected.

Hardware router Linksys with firewall on.
Browser = firefox - email filtering: poptray with lot of rules.


That's all folks.

Best regards from France, Vonvon

 

Working on one of my daughter's laptop, I noticed:

realtime:
Avast 5 free
MBAM Pro
Windows firewall

That's it.

Gerard

 

i have DefenseWall and Prevx in all my computers
also i have to remove WinPatrol Plus and Mbam pro cause they both slow down my systems alot and mbam also over heat them,so i only stay with DefenseWall and prevx 3

 

solid setup

 

vipre and defensewall very solid set up

 

NIS2010 - antiwhatever/firewall
Shadow Defender - virtual protection
SandboxIE - browser protection
Mailwasher Pro - email filtering
Keepass - passwords
Macrium Reflect Free - imaging
Peerblock - IP blocking

Firefox with the usual Adblock, Ghostery, CSlite, Keyscrambler, etc, etc

All on Windows 7 Home Premium.

Removed Comodo Time Machine after mysteriously losing a couple of locked snapshots. Didn't feel reliable enough for me.