What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. xnevermore

    xnevermore Registered Member

    Joined:
    Feb 16, 2010
    Posts:
    143

    nice setup :thumb: ill copy it again and just change a few things :)
     
  2. xnevermore

    xnevermore Registered Member

    Joined:
    Feb 16, 2010
    Posts:
    143
    • CDR king wireless router (SPI Firewall)
      • Windows 7 Ultimate 64 Bits:
        • Windows Firewall: Disabled
        • Windows Defender: Disabled
        • Windows System Restore: Disabled
        • Administrator Account
        • Data Execution Prevention all programs and services except i select
        • User Account Control:
          • Default Level
        • Structured Exception Handling Overwrite Protection
        • Enhanced Mitigation Experience Toolkit 2.0.3:
          • All Internet Facing Softwares
          • All MS Office Program
          • Maximum Settings
        • USB and DVD Drives Autorun: Disabled
        • Open DNS
        • Mozilla Firefox 4.0:
          • Drive-by Protection via 1806 Trick
          • NoScript (Only my Whitelist)
          • Adblock Plus (Easylist)

    • Real-Time:
      • Norton 360 v5.0.0.125:
        • Boot-Time: Intensive
        • Heuristic: Intensive
        • Sonar: Intensive
        • Password Protect

    • Backup & Restore:
      • Acronis True Image Home:
        • Original System Snapshot (W7 + Drivers)
        • Snapshots Weekly
        • Automatic Deletion of Old Snapshots
        • Snapshots Saved in Internal HD
     
  3. Essentials

    Essentials Registered Member

    Joined:
    Mar 21, 2011
    Posts:
    49
    Ok, I have changed it. My settings right now are:

    Windows 7 Ultimate 64bit
    Windows Firewall: On
    Microsoft Security Essentials 2.0
    Malwarebytes Pro (Active)
    Sandboxie 3.54 64bit
    User Account Control (UAC): max settings & standard account
    Enhanced Mitigation Experience Toolkit (EMET) 2.0.0.3: Maximum Security Settings
    Data Execution Prevention (Opt Out);
    Structured Exception Handling Overwrite Protection (Opt Out);
    Address Space Layout Randomization (Opt In);
    Secunia Personal Software Inspector (PSI)
    Sandboxed Firefox 4: WOT, Adblock Plus (Pop-up Addon, Fanboy´s List, Malware Domains), NoScript, LastPass, Search Engine Security
    Norton DNS

    Imaging planning: not yet.

    Changes:
    *Added Secunia PSI
    *Added Sandboxie 3.54 64bit
    *Changed Chrome for Firefox 4


    1. I have read about the problem sandboxie has with windows 7 64bit. Is it worth using it then? Do we have an alternative that works 100% with 64bit systems?
    2. I am using Secunia PSI to keep my programs up to date, Do you recommend another program or Secunia is the best?
     
    Last edited: Apr 2, 2011
  4. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    Sandboxie with experimental protection for 64 bits in the new Beta 3.55:
    https://www.wilderssecurity.com/showthread.php?t=296284
     
  5. x942

    x942 Guest

    Changed one thing:
    UAC now prompts for secure desktop to avoid key loggers and Trojans (well the weaker ones at least) so now to run a new application I have to:
    1) move it to the allowed folder (app locker)
    2) right click properties unblock
    3) right click run as admin
    4) ctrl-alt-del to switch to secure desktop
    5) enter password and hit yes

    Overkill? Yes lol oh and only chrome can download executables because of the 1806 trick!
     
  6. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,545
    back to Geswall FREE and Sandboxie FREE

    Outpost Security Suite Free
    Opera browser
     
    Last edited: Apr 1, 2011
  7. crapbag

    crapbag Registered Member

    Joined:
    Mar 14, 2011
    Posts:
    145
    XP Firewall behind a router.
    Sandboxie (Restricted/DropMyRights)
    FFox 4 w/NoScript/AdBlockPlus as main browser.
    Windows critical updates.
    ShadowDefender.
    MBAM/SAS/BugBopper/Tizer Secure on demand.
    Use System Mechanic Pro to delete history and stuff.
    Virtualisation or imaging software slot still up for grabs.

    The lighter the better.
    Will do the job for me until my machine blows up.
     
  8. ExtremeGamerBR

    ExtremeGamerBR Registered Member

    Joined:
    Aug 3, 2010
    Posts:
    1,351
  9. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
    Sandboxie is still very secure, because it includes drop rights by default on 64-bit systems. Add internet or start/run restrictions, and it will stay bulletproof.

    Secunia is good for security updates, but doesn't notify you of any other kinds of updates on your software. I recommend SUMo, which can be harder to use and not automatic, but supports many software and all updates.
     
  10. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
    Ah I haven't seen that one before. Downloading SUMo now. Seems good so far. I didn't like the automated feel of secunia.
     
  11. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    @Francis93:

    seems like a good and light setup.

    you may want to consider running under a standard account and putting UAC at maximum.
     
  12. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Added Sandboxie Experimental.
     
  13. Francis93

    Francis93 Registered Member

    Joined:
    Feb 1, 2011
    Posts:
    311
    Thanks moon, I deleted the post by the way since you can see it in the previous page. I disabled SRP for now since I find it somehow annoying/tricky and I have DefenseWall and 1806 Trick anyway.

    Standard account? Tell me how! :D I have all my files and programs here and I want to migrate to a more secure SUA/LUA.

     
    Last edited: Apr 3, 2011
  14. ocsi

    ocsi Registered Member

    Joined:
    Feb 8, 2011
    Posts:
    95
    I have changed PC Security. Please tell me if it's a OK:
    Avast Free 6.0.1000 + ZoneAlarm Free 9.2.106.000 + WinPatrol Plus 20.0.2011.2.
    Yours,
    Ocsi
     
  15. Matthijs5nl

    Matthijs5nl Guest

    That's really good, don't listen to people who say you have to add this or that.
     
  16. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,545
    Finally bought Sandboxie lifetime license.
    I hope I did the right choice :)

    Windows 7 Professional 32-bit

    Setup:
    1. Disabled Windows System Restore and Windows Defender
    2. User Account Control set to Highest
    3. Software Restriction Policy Disallowed by default
    4. Microsoft Security Compliance Manager (MSCM) for downloading Baseline Security Templates from Microsoft that will harden Group Policy settings.
    5. LocalGPO (included in MSCM) this tool is used to apply Security Templates.
      • Templates used: Merged copy of Win7SSLFComputer, Win7SSLFUser and IE8SSLFComputer, IE8SSLFUser
      • Modified GPO thru 'gpedit.msc' to allow Legacy Apps to run and allow Administrators to debug programs for compatibility purposes also added some Safe-Admin tweaks
    6. Enhanced Mitigation Experience Toolkit (EMET) to apply the ff. and more:
      • Data Execution Prevention (DEP): Opt-out
      • Structured Exception Handling Overwrite Protection (SEHOP): Opt-out
      • Address Space Layout Randomization (ASLR): Opt-in
    7. Sandboxie Paid (@#A&*@#Y@& / hard to explain setup)
    8. Privoxy (Advanced settings for default-actions)
    9. Spyshelter FREE (Allow Microsoft)
    10. ClearCloud DNS
    11. Browsers: Internet Explorer 9 and Google Chrome

     
    Last edited: Apr 3, 2011
  17. Spruce

    Spruce Registered Member

    Joined:
    Dec 18, 2010
    Posts:
    297
    ESET Smart Security, Secunia PSI, Ad Muncher, O&O Disk Image :)
     
  18. Essentials

    Essentials Registered Member

    Joined:
    Mar 21, 2011
    Posts:
    49
    Thanks for your comments.
    • I have checked the internet and start/run restrictions. Basically I have to choose manually which programs can access the internet or start/run in the sandbox right? Which ones should I choose? just firefox.exe and plugin-container.exe for the internet? what are your restrictions?
    • I will check SUMo, but it is very important for me that it has to be automatic, i dont want to be checking everytime.
     
    Last edited: Apr 2, 2011
  19. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,560
    firefox.exe
    java.exe (If you have java installed and need it to run in the sandbox.)
    xxxxx.exe (Your pdf reader's exe name, if you want to be able to open pdf's.)
    plugin-container.exe (Needed for Firefox to open/run.)
    wmplayer.exe (Windows Media Player)
    jqsnotify.exe (Sun java updater. I 'allowed' jqsnotify.exe to get rid of the Sandboxie messages about it attempting to run.)
     
  20. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,688
    I believe you did. :thumb:
     
  21. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,560
    :thumb: :thumb: :)
     
  22. Hugger

    Hugger Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    1,003
    Location:
    Hackensack, USA
    Francis93,
    "Adblock Plus (EasyList+EasyPrivacy+Malware Domains)"?
    I went to the Malware Domains site and they do say it comes in Adblock plus format but I can not find it.
    Where is it hidden and how do I get it to my Chrome 12?
    Thanks.
    Hugger
     
  23. malexous

    malexous Registered Member

    Joined:
    Jun 18, 2010
    Posts:
    830
    Location:
    Ireland
  24. Hugger

    Hugger Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    1,003
    Location:
    Hackensack, USA
    malexous,
    Got it.
    Thanks.
     
  25. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    so i am keeping appguard and hitman pro free just to doble check my system is clean;)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.