What is your security setup these days?

Actually i really consider Hitman a great option as paid (It's cheap, fast and effective!).
Although it doesn't has any real time protection, it's On Demand is very good for infections and peace of mind
I might get some licenses in the near future

 

Hi everyone awesome forums btw!

My Setup Windows 7:

FireFox - NoScript AdBlock Plus Ghostery AmIAdmin RequestPolicy (no redirect) TACO BrowserProtect WOT SSLGaurd and CookieMonster

Chrome - Sandboxed w/ Sandboxie

Real-Time:
-Avast Free 6 Beta
-Zemana Anti-keylogger (Got it free from tipradar )
-Prevx SO
-WinPatrol Free
-Comodo firewall and Defense + (set to high on both)
-Geswall - isolates all internet facing apps
-Predator (Remove USB and locks computer)

On-Demand:
-MBAM
- Spyware Blaster
- Windows Defender

Clean Up:
-CCleaner
-MRUBlaster
-Glary's Utilities FREE
-Defragler
Encryption:
-FDE w/ TrueCrypt + Super long password
-KeyPass using keyfiles, account, and super long password
-Lastpass for firefox
-GPG for win

Other:
-EMET - Internet Facing apps and office/outlook
-Macrium Reflect Free
-Virtual Box
-Router w/NAT and Firewall
-Alpha Shield Hard ware Firewall (NSA Approved )
This may seem like a lot but I barely notice any lag besides Avast and Comodo. Start up takes 30 seconds from login and this is on a netbook Anything I should add on/change?

 

Do you actually need 2 anti-keyloggers when you have Sandboxie, Avast, Defence+, and Geswall?

Why 2 password managers as well?

 

Two anti-keyloggers? The only one I have is zemana. SO scans for malware and prevents phishing scams etc. Its only catches keyloggers in the anti-spyware sense. Its not a true anti-keylogger.

Keypass is for a backup so I don't lose my passwords if something goes wrong with lastpass I rarely use it. and last pass Works on any browser anywhere. It also nicely autofills and IMO much better than Keypass.

 

I can't blame him.
when I first come to this forum, I'm so exited to read so many new thing
that I use 3 anti-keylogger

Btw welcome to the forum, u have nice set up. And J_L gave u a good advice

 

Comodo D+ and Zemana are both HIPS programs. They notify you if some program is trying to launch or modify other programs or system files, or if a program is about to install itself, etc. Zemana by default only allows verified programs but you can set Zemana to always ask for verified and suspicious programs. Comodo D+ by default asks if you want to Allow or Disallow this action and automatically places suspicious programs/files in the sandbox and partially limits them. Both are very good IME and running them real-time on your PC sounds like overkill. Choose only one. If I were you, I would choose Comodo because it has a firewall and sandbox. (I have read a thread that contains a link to a keylogger that can beat Comodo D+ and Zemana, but IT'S NOT TRUE, BOTH Comodo and Zemana were able to detect the keylogger)

 

lol 3? That's alot! Thanks for the welcome. The setup I have is a combination of what I like and what others have posted here. I realize J_L gave good advice but I don't see where the 2nd Atin-Keylogger is? SO Isn't a true Anti-keylogger. Is he referring to something else? or am I missing something? I only have it because of the Facebook Promotion anyways.

 

Just saw this after I posted again. That makes more sense now. They way J_L wrote it I thought he meant SO was the anti-keylogger along with Zemana. In this case I agree D+ Could be classified as a anti-keylogger. Both are HIPS so is WinPatrol (HIDS). In this case D+ does far more than Zemana though. As it is not only for Keyloggers. I use both as Zemana was free for a year and hasn't caused any problems thus far.

 

WinPatrol is not a HIPS. It's a system monitor. It takes a snapshot of your current environment (startup programs, ActiveX files, IE Helpers, services, etc.) and notifies you if something is about to be added.

By the way, welcome!

 

Ohhh? Isn't it considered a HIDS? I thought it was. Just downloaded it though haven't used it all to much. =)

 

Mamutu + CIS v5.3, soon to add SRP and Hitman Pro probably

 

WINDOWS XP SP2

Realtime:
Sandboxie ( Forced browsers , messengers , Removables)
LookNStop
Norton DNS

Ondemand:
MBAM
Hitman Pro
Dr.web Cureit
Mal-Aware

SoftwareUpdater:
SUMo

Instant Recovery:
Rollback RX

 

The SafeOnline component of Prevx works as an Anti-Keylogger.

 

Thompson Router firewall enabled
set up dns with open dns in the router

Real-time Protection:
norton internet security
sandboxie
key scrambler premium

System (Windows 7 Pro 64-bit) Tweaks:
Policy Management (UAC) set to max
Enhanced Mitigation Enable DEP for all programs added SEHOP by running micorsoft's Fix
heapspray protection to your browser using EMET
Optional drive by protection in user space
set google chrome to block all cookies

Google Chrome:
Adblock
LastPass
WOT - Safe Browsing Tool
Xmarks

Updates:
KC Softwares SUMo

can anyone suggest me a good imaging snapshot program? im planning to do snapshots in my computer so in case of computer failure i can just restore to that clean state before the problem occured and also supports restoring in case the computer cannot boot to desktop
__________________

 

On my "testing" laptop now in realtime:
MBAM
Vipre
Mamutu
Forticlient (firewall only)
With the right settings of those four I do not notice any slowdowns.

Gerard

 

VIPRE Premium, don't use any second opinion at this moment.

 

In general: Host-based Intrusion Prevention System, Host-based Intrusion Detection System, system monitor and behavioral-based protection are really vague concepts. Which in theory might differ, but in real they could in the end work in the exactly same way.
For example, two products could both claim to be an HIPS, but in theory they might differ a lot (Outpost products versus SpyShelter's HIPS module). Another example, avast!'s Behavioral Shield claims to be behavior based protection and so does Mamutu, but they differ as night and day.

In the whole industry you should not look at what a product claims to be, or how you would type the method of protection. But you should look at how a product actually protects you.

The same also applies for other concepts like: sandboxing and Cloud computing and a lot more.

 

CIS 5 complete.

 

OS:
-Windows XP Pro SP3 x86

Real-Time Protection:
-ESET NOD32 (Password Protected)

Firewall:
-Windows XP SP3 Firewall
-Zyxel Unified Security Gateway (Password Protected)

On-Demand Protection:
-Malwarebytes Anti-Malware
-SuperAntiSpyware Free
-Emsisoft Emergency Kit
-DrWeb Cureit (Occasional Use)
-Antivirus Rescue CD’s (Occasional Use)(AVIRA, Kaspersky)
-VirusTotal for downloaded files

Complementary Protection:
-Panda USB Vaccine, Autorun disabled

Browsing Configurations/Immunizations:
-Firefox (Adblock Plus, Subscriptions: EasyList+EasyPrivacy+Malware Domains)
-IE7/IE8 occasionally
-Sandboxie Paid (Automatically delete Sandbox, Web Browsers forced to Sandbox, Internet Restrictions, Start/Run Restrictions, Access Restrictions, Drop Rights, Forced Folders, Blocked Access)
-AVG Linkscanner
-McAfee SiteAdvisor
-Spybot Search & Destroy (Immunization for Firefox Only)
-SpywareBlaster (Protection for Firefox Only)
-ClearCloud DNS (Configured on Zyxel Unified Security Gateway)

Backup:
-Image for Windows/Image for DOS/Image for Linux (System Partition: Monthly Full Image to internal/external hard drive & DVD-DL, Weekly Differential Image)
-Network RAID1 Server
-Syncback Free

 

ill copy your clear cloud dns setup if you dont mind.

currently im using opendns. i think its time to try another. cause i tried comodo dns it blocks some of the website i like to visit

 

SRP enabled now

 

Hello Forum,
I've used DR.Web AV 99% of the time since 2003 + Outpost FW, nerver had a virus.Now I use Dr Web Security Space.IMO This is the dogs bollicks.
Badcompany.

 

RealTime
Look'n'Stop
Sandboxie
Winpatrol
Shadow Defender

OnDemand
CureIt
EEK


OpenDNS / Opera

 

like 2 weeks with appguard and happy still

 

- removed: Windows 7 Firewall Control

- added: PC Tools Firewall Plus with the HIPS deactivated (E.S.P. to Low).

with the HIPS deactivated it's easier to use than W7FC because you don't have to restart the application when it first want to connect to the Internet.
PC Tools just pauses it while you create the basic deny/allow rule.

PC Tools FP installed without a restart which is always good in my book.
that usually means the app is light with very few, if any, kernel hoggers.