What is your security setup these days?

Ah, ok, I understand it now. It´s not that Deep Freeze is useless, it´s just most of the security tools.

Thanks for the explanation!

 

I guess HIPS would also be useless?
OMG! This setup is so light then. XD

Please give me one realtime app to use~ I'm not used to this so uber light setup, I need something to bloat it up a little. XD

How do I know if I got in contact with malware?

 

Yes.

Yes. And it is free. What you can do is buy the full version of sbie. It is a one time fee, and you have updates for ever.

Choose the one you want!
- A scanner? Ok PrevX free, avira, avast, *** the one you want to try
- A sandbox like defensewall or sbie, a snapshot, a *** the one you want to try.
But one at a time.

Basically, you don't know you got in contact with a malware. If you wanna know, get a scanner.

 

My setup:

Laptop dual-boot:
- win7 ultimate
LUA+AppLocker
UAC at max
- Linux Ubuntu Lucid Lynx
AppArmor for internet facing applications

Old laptop:
- Win XP SP3
LUA+SRP

Wife's laptop:
Win 7
LUA+SRP
UAC at max

Mom's computer:
- Win XP SP3
LUA+SRP

Dad's laptop:
- Win Vista
LUA+SRP
UAC at max

For all, win firewall, windows auto-update and a backup software (when they come back from holidays with millions of pictures, or for their account history, and bank stuff).

Excellent setup for people who know little to none in computer technology (and don't wanna know).

No maintenance. If they really need to install a new application, they have a list of websites where they can go to look for them, and a procedure to install.

 

Lucy, do you use SuRun with LUA and SRP? Also I have used your registry settings for SRP in Vista 32. Will the same reg file work for Vista 64 & Win 7?

 

IMO, everyone have their own preferences so happy testing

 

I thought there were issues when running DefenseWall under LUA?

 

AvinashR nice avatar

 

Oh Thanks Jmonge...

 

no problem hey man how is NIS 2010 againts zero day-malware?

 

Honestly speaking i haven't tested it ever...I know that SONAR 2 will take care of everything...

BTW i don't rely to much on Anti-Virus products, i only rely on AppLocker, SEHOP and LUA. If a Virus cannot execute it cannot infect.

 

That's why i want to add a HIPS but i just can't with my brother annoying me

 

it's true

 

Have you tried NIS 2010?

 

i am going to very soon

 

The amount malware continued to grow at a record pace throughout 2009, primarily targeting naive computer users . On an average about 35,000 samples of malware are identified everyday the number itself is quite astonishing and it may not be possible that traditional Antivirus database would be able to detect the malware. This are termed as Zero-day threats it is very much difficult for AV to detect these Zero-day threats as their signatures are not updated to identify the malware. Malware has increased in an exponential manner, and the absolutely most persistent threat have been trojans, malicious software designed for stealing sensitive data, installing backdoors, deleting or encrypting files and downloading other malware from the internet. Hence the user's sensitive information is compromised.

 

Yeah i agree with you. Today's AV programs detection rate is very much low due to the overwhelming amount of malware that is released into ITW each day...So one cannot rely very much on AV suites now.

 

proactive is the way to go plus imaging/system restore

 

May 9, 2010 - Updated , Added , Removed

Windows 7 Professional x64 (UAC:OFF, WD: OFF, FW: OFF, DEP: ON)

Network

• Two Linksys Routers (DD-WRT Firmware) in WDS Mode
• WEP 128-Bit Encryption
• Wireless MAC Filtering Enabled
• SPI Firewall Enabled

Resident

• Online Armor ++ 4.0.0.47 Beta (Paid)
• Sandboxie 3.45.10 Beta (Paid)
• Malwarebytes' Anti-Malware 1.46 (Paid)

On-Demand

• Shadow Defender 1.1.0.325 (Paid)
• VirusTotal Uploader 2.0
• Active@ Disk Image 4.0.2 (Paid)
• VMWare Workstation 7.0.1 (Paid)

Browser, Immunization, Tweaks

• Firefox 3.6.3 (Ad-Block Plus, Better Privacy, TACO, WOT, ShowIP, TrackMeNot, Ghostery)
• KeyScrambler Personal 2.6.0.0 (IE & FF)
• RoboForm Pro 6.9.99 (IE & FF)
• Malware Patrol's Block List (via Hosts File)
• Bluetack Blocklists (Level 1,2,3 for P2P)
• Spybot Search & Destroy 1.6.2 (Full Immunization w/o Global Hooks)
• Spyware Blaster 4.3 (All Protection Enabled + Customblocking.txt)
• Vista Services Optimizer 1.2 Build 108 (Manual Tuneup)
• Ultimate Windows Tweaker 2.1 (Customized)
• SpeedGuide.net Vista TcpIp Patch 1.5
• Panda Research USB Vacine 1.0.1.4 (Computer Vaccinated)

dja2k

 

Comodo Time Machine

BufferZone free 2.10-37 version for Opera with adopted XML file settings
- sandboxes ("Bufferzone") Chrome instead of Opera (ClientdEFS.XML)
- automatically tags files & new programs as untrusted when downloaded by
trusted programs (amclient.xml)
- set polict to bufferzone USB sticks (amclient.xml)
- enabled firewall, both for trusted as buffezone(d) programs (amclient.xml)

Running admin with IE8, Outlook, OE, 7zip, Foxit, Office running basic user (LUA) trusted, default deny SRP on data partitions (leaving open Temp partition).

Using IE8 wiith AVG Linkscanner and keyscramlbler for normal browsing (like wilders)

Using chrome for dodgy browsing (e.g. malware domain list url's), with plug-ins new tab behavior, adsweep, WOT and siteadvisor for Chrome.

On XP Pro SP3

On demand Hitman Pro, no other AV

Regards Kees

 

hi kees how is BuFerZone?i have long time i dont use it

 

DJ,

You have nice set of paid applications....

Your setup is really Heavily Armored against intruders...

 

my set up is very simple i missed prevx

 

Don't worry. You have Hitman Pro which includes Prevx too.

 

the heck that is true indeed