Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.
nice setup ill copy it again and just change a few things
CDR king wireless router (SPI Firewall)
Windows 7 Ultimate 64 Bits:
Windows Firewall: Disabled
Windows Defender: Disabled
Windows System Restore: Disabled
Data Execution Prevention all programs and services except i select
User Account Control:
Structured Exception Handling Overwrite Protection
Enhanced Mitigation Experience Toolkit 2.0.3:
All Internet Facing Softwares
All MS Office Program
USB and DVD Drives Autorun: Disabled
Mozilla Firefox 4.0:
Drive-by Protection via 1806 Trick
NoScript (Only my Whitelist)
Adblock Plus (Easylist)
Norton 360 v22.214.171.124:
Backup & Restore:
Acronis True Image Home:
Original System Snapshot (W7 + Drivers)
Automatic Deletion of Old Snapshots
Snapshots Saved in Internal HD
Ok, I have changed it. My settings right now are:
Windows 7 Ultimate 64bit
Windows Firewall: On
Microsoft Security Essentials 2.0
Malwarebytes Pro (Active)
Sandboxie 3.54 64bit
User Account Control (UAC): max settings & standard account
Enhanced Mitigation Experience Toolkit (EMET) 126.96.36.199: Maximum Security Settings
Data Execution Prevention (Opt Out);
Structured Exception Handling Overwrite Protection (Opt Out);
Address Space Layout Randomization (Opt In);
Secunia Personal Software Inspector (PSI)
Sandboxed Firefox 4: WOT, Adblock Plus (Pop-up Addon, Fanboy´s List, Malware Domains), NoScript, LastPass, Search Engine Security
Imaging planning: not yet.
*Added Secunia PSI
*Added Sandboxie 3.54 64bit
*Changed Chrome for Firefox 4
I have read about the problem sandboxie has with windows 7 64bit. Is it worth using it then? Do we have an alternative that works 100% with 64bit systems?
I am using Secunia PSI to keep my programs up to date, Do you recommend another program or Secunia is the best?
Sandboxie with experimental protection for 64 bits in the new Beta 3.55:
Changed one thing:
UAC now prompts for secure desktop to avoid key loggers and Trojans (well the weaker ones at least) so now to run a new application I have to:
1) move it to the allowed folder (app locker)
2) right click properties unblock
3) right click run as admin
4) ctrl-alt-del to switch to secure desktop
5) enter password and hit yes
Overkill? Yes lol oh and only chrome can download executables because of the 1806 trick!
back to Geswall FREE and Sandboxie FREE
Outpost Security Suite Free
XP Firewall behind a router.
FFox 4 w/NoScript/AdBlockPlus as main browser.
Windows critical updates.
MBAM/SAS/BugBopper/Tizer Secure on demand.
Use System Mechanic Pro to delete history and stuff.
Virtualisation or imaging software slot still up for grabs.
The lighter the better.
Will do the job for me until my machine blows up.
Waiting for the final version, to finally be able to purchase it!
Sandboxie is still very secure, because it includes drop rights by default on 64-bit systems. Add internet or start/run restrictions, and it will stay bulletproof.
Secunia is good for security updates, but doesn't notify you of any other kinds of updates on your software. I recommend SUMo, which can be harder to use and not automatic, but supports many software and all updates.
Ah I haven't seen that one before. Downloading SUMo now. Seems good so far. I didn't like the automated feel of secunia.
seems like a good and light setup.
you may want to consider running under a standard account and putting UAC at maximum.
Added Sandboxie Experimental.
Thanks moon, I deleted the post by the way since you can see it in the previous page. I disabled SRP for now since I find it somehow annoying/tricky and I have DefenseWall and 1806 Trick anyway.
Standard account? Tell me how! I have all my files and programs here and I want to migrate to a more secure SUA/LUA.
I have changed PC Security. Please tell me if it's a OK:
Avast Free 6.0.1000 + ZoneAlarm Free 9.2.106.000 + WinPatrol Plus 20.0.2011.2.
That's really good, don't listen to people who say you have to add this or that.
Finally bought Sandboxie lifetime license.
I hope I did the right choice
Windows 7 Professional 32-bit
Disabled Windows System Restore and Windows Defender
User Account Control set to Highest
Software Restriction Policy Disallowed by default
Microsoft Security Compliance Manager (MSCM) for downloading Baseline Security Templates from Microsoft that will harden Group Policy settings.
LocalGPO (included in MSCM) this tool is used to apply Security Templates.
Templates used: Merged copy of Win7SSLFComputer, Win7SSLFUser and IE8SSLFComputer, IE8SSLFUser
Modified GPO thru 'gpedit.msc' to allow Legacy Apps to run and allow Administrators to debug programs for compatibility purposes also added some Safe-Admin tweaks
Enhanced Mitigation Experience Toolkit (EMET) to apply the ff. and more:
Data Execution Prevention (DEP): Opt-out
Structured Exception Handling Overwrite Protection (SEHOP): Opt-out
Address Space Layout Randomization (ASLR): Opt-in
Sandboxie Paid (@#A&*@#Y@& / hard to explain setup)
Privoxy (Advanced settings for default-actions)
Spyshelter FREE (Allow Microsoft)
Browsers: Internet Explorer 9 and Google Chrome
ESET Smart Security, Secunia PSI, Ad Muncher, O&O Disk Image
Thanks for your comments.
I have checked the internet and start/run restrictions. Basically I have to choose manually which programs can access the internet or start/run in the sandbox right? Which ones should I choose? just firefox.exe and plugin-container.exe for the internet? what are your restrictions?
I will check SUMo, but it is very important for me that it has to be automatic, i dont want to be checking everytime.
java.exe (If you have java installed and need it to run in the sandbox.)
xxxxx.exe (Your pdf reader's exe name, if you want to be able to open pdf's.)
plugin-container.exe (Needed for Firefox to open/run.)
wmplayer.exe (Windows Media Player)
jqsnotify.exe (Sun java updater. I 'allowed' jqsnotify.exe to get rid of the Sandboxie messages about it attempting to run.)
I believe you did.
"Adblock Plus (EasyList+EasyPrivacy+Malware Domains)"?
I went to the Malware Domains site and they do say it comes in Adblock plus format but I can not find it.
Where is it hidden and how do I get it to my Chrome 12?
Hugger, scroll to the bottom: https://adblockplus.org/en/subscriptions
so i am keeping appguard and hitman pro free just to doble check my system is clean
Separate names with a comma.