What is your security setup these days?

so i basically trimmed down my setup to almost nothing.
i'm the only one using my machine so there's only one user to worry about.

"Real-time":
- UAC + LUA (standard account)
- Chrome
- Norton DNS
- Windows 7 Firewall Control: to inform if an app is trying to install a Ask toolbar or somesuch.

Backup and Imaging:
- Windows 7
- Shadow Defender; to test apps that don't need a reboot to install.

On demand:
- Hitman Pro
- MBAM

 

wel you know what day says simpler is better

 

Windows 7 Home Premium SP1 x64

Resident:

• Avast! Internet Security 6.0.1044
  • Password Protect
  • Sumatra PDF, WMP, MPC-HC, MSN = Sandboxed
  • All shields activated with heuristics in maximum mode and PUP activated on all shields
  • Automatic Quick Scans Daily

System Hardening:

• Windows Firewall: Disabled
• Windows Defender: Disabled
• Windows System Restore: Disabled
• Administrator Account
• User Account Control:
  • Default Level
• Enhanced Mitigation Experience Toolkit (EMET) 2.0.3:
  • All Internet Facing Softwares
  • All LibreOffice 3.3.2 Suite
  • Maximum Settings
• USB and DVD Drives Autorun: Disabled
• Keepass Password Safe 2.14 Portable

Network and Browser:

• TP-Link TL-WR941ND (SPI Firewall)
• Norton DNS (Block Malicious Websites)
• Mozilla Firefox 4.0:
  • Drive-by Protection via 1806 Trick
  • NoScript (Only my Whitelist)
  • Adblock Plus (Easylist)
  • Sandboxed via Avast!
  • Webrep Plugin

Backup & Restore:

• Microsoft SyncToy 2.1:
  • Daily Synchronization
  • Data Saved in External HD

• Keriver 1-Click Restore Pro 2.2:
  • Original System Snapshot (W7 + Drivers)
  • Snapshots Weekly
  • Automatic Deletion of Old Snapshots
  • Snapshots Saved in Internal HD

 

I give this setup a .

 

Thanks!

 

i am still running appguard alone as a real time shield

 

trying out Spyware Terminator

 

Hi everyone, I have just won a free KIS 2011 license, What would you guys do if you had my security set up? Would you maintain my setup and not install KIS 2011 or install it? What would be better? What would you change to be able to add KIS 2011. I know I should disable MSE 2 and the firewall, but what else? Thanks.

Windows 7 Ultimate 64bit
Windows Firewall: On
Microsoft Security Essentials 2.0
Malwarebytes Pro (Active)
Sandboxie 3.54 64bit
User Account Control (UAC): max settings & standard account
Enhanced Mitigation Experience Toolkit (EMET) 2.0.0.3: Maximum Security Settings
Data Execution Prevention (Opt Out);
Structured Exception Handling Overwrite Protection (Opt Out);
Address Space Layout Randomization (Opt In);
Secunia Personal Software Inspector (PSI)
Sandboxed Firefox 4: WOT, Adblock Plus (Pop-up Addon, Fanboy´s List, Malware Domains), NoScript, LastPass, Search Engine Security
Norton DNS

 

Kaspersky's an elephant as they say. If you think your specs can handle KIS then go for it, otherwise if possible, consider selling your license and buy better software (e.g. third party PAID firewall, PAID backup software, etc.) to harden your setup. My two cents.

 

stay with what you have as kaspersky is bit heavy than MSE

overall kaspersky is better but u have to pay more resources

 

Ikarus
Online Armor 5
PeerBlock

 

New setup:

Added:

Chrome v11 (with AdBlock extension)

MBAM Real-time


Kept:

ASLR

DEP

UAC full

Standard account (Win 7 x64)

Router

Avast 6 Free


Removed:

IE 9

Firefox 4

Sandboxie

 

You removed what?

 

Well, technically I didn't remove it. I paid for the thing, and lost my emailed key, so getting rid of it would be outright stupid. I'm not using it for browsing however. I'm simply using Chrome as is, javascript and all. There are a couple of reasons for this, though. I didn't just decide sandboxie sucks, lol. For one thing, it seems with all of the new versions of browsers, surfing has taken a sizable performance hit. At least it has on my system, which is the only system that matters to me and affects me. Another thing is, with Chrome having its own sandbox in place, and, on Win 7 at least, plugins either being sandboxed as well, or at least less affected by exploits, I don't feel such a great need for Sandboxie.

It's been said many times that attacks only affect 1. Vulnerable software. 2. Vulnerable operating systems. 3. Stupid and/or inattentive users (social attacks would fall under this). I'll review my setup after a month, but for the time being, I'd rather be the primary security app myself.

 

You're explanation makes good sense, dw.
Keep us posted.

 

Gave up on Chrome, went back to FF4 and staying put, NoScript, Sandboxie and all. My testing days are done, tyvm. If it ain't broke, leave it the hell alone.

 

Windows 7 Professional 32-bit (TrueCrypt Encrypted)

Setup:

1. Encrypted System Drive with TrueCrypt
2. Disabled Windows System Restore and Windows Defender
3. User Account Control set to Highest
4. Software Restriction Policy Disallowed by default
5. Microsoft Security Compliance Manager (MSCM) for downloading Baseline Security Templates from Microsoft that will harden Group Policy settings.
6. LocalGPO (included in MSCM) this tool is used to apply Security Templates.
   • Templates used: Merged copy of Win7SSLFComputer, Win7SSLFUser and IE8SSLFComputer, IE8SSLFUser
   • Modified GPO thru 'gpedit.msc' to allow Legacy Apps to run and allow Administrators to debug programs for compatibility purposes also added some Safe-Admin tweaks
7. Enhanced Mitigation Experience Toolkit (EMET) to apply the ff. and more:
   • Data Execution Prevention (DEP): Opt-out
   • Structured Exception Handling Overwrite Protection (SEHOP): Opt-out
   • Address Space Layout Randomization (ASLR): Opt-in
8. Outpost Security Suite FREE
9. Trusteer Rapport
10. Privoxy (Medium settings for default-actions)
11. ClearCloud DNS
12. Browsers: Internet Explorer 9 and Google Chrome

STATUS: is waiting for Bufferzone Pro 4 Beta.
currently no backup in place because I don't know how to backup an encrypted drive yet.

 

AVG Antivirus 2011 (paid)
Windows Firewall (XP)
MBAM pro, SAS free
Ocster Back up Pro
WinPatrol Pro

XP professional edition
( just thinking if i would need another firewall at all)

 

Real-time/Resident/On-Access:
- DefenseWall Personal Firewall v3.11
- WinPatrol Plus Cloud Edition 20.0.2011.2 (with Registry Monitoring List)

On-demand:
- Malwarebytes Anti-Malware 1.50.1.1100 Free
- SUPERAntiSpyware Free
- Hitman Pro 3.5.8 Build 118 Free
- Norton Power Eraser
- Dr.Web CureIt!
- Emsisoft Emergency Kit
- Avira AntiVir Rescue System

System Tweaks/Hardening:
- Windows Firewall: Disabled
- Windows Defender: Disabled
- Windows System Restore: Disabled
- Administrator Account
- User Account Control: Default Level
- EMET 2.0.3: All Internet-facing Applications + Microsoft Office
- Autorun/Autoplay: Disabled
- Unsigned Drivers: Block
- Detect Application Installations: Off

Network/Browser:
- Home Environment
- TP-Link TL-WR340G 54M Wireless G Router (SPI Firewall)
- Mozilla Firefox 4.0: AdBlock Plus, NoScript
- Google Chrome 12.0.725.0: AdBlock Plus, Safe Plugins switch, Block third party cookies
- Internet Explorer 9: Tracking Protection Lists, ActiveX Protection, Protected Mode ON, SmartScreen Filtering
- Norton DNS

Backup/Imaging/Snapshot:
- Acronis True Image Home 2011
- HorizonDataSys Rollback Rx v9.1

 

Back to Comodo! Staying with the tried and true for now. Also adding an Untangle box that will basically act as a firewall and real time AV scanning packets before they can reach my router or computer(s). Also looking in to implementing an WIDS/IDS as someone keeps trying to breach my network.

 

Is there something wrong with NOD32?

Don't see anyone using it...

My setup:

Win7 64-bit
NOD32
ZA Free
Windows Firewall Off

Just removed Comodo free firewall - it was giving off too many false alarms. However, conversely, ZA free is totally useless - indicator doesn't show streaming activity up/down as the paid Internet Security did...

 

Eset is very good, so dont go by this thread. They all will miss things and when they do, all heck breaks loose. It would be nice to see more comment on what their products actually caught, instead of the negative side of things. Eset has caught things for me numerous times, Avira, Prevx, Avast all have to. So take postings here sometimes with a grain of salt.

 

So, ya wanna know my security setup do ya? Don't have one! I had so many paid/realtime security apps on my old pc, simply too many to list. One day i sat down to use it, got a bsod, a msg. popped up accusing ME of being MALWARE! So i unplugged it took it out in the woods, shot it full of holes! Bought a new pc, no anti-virus, no security programs whatsoever! NONE. I surf the net freely, porn sites, anything goes. Trojans, malware, bots, bring it on, cause i have nothing to steal. The malware is feeding off of each other, stealing info from each other, pretty soon, they will kill each other off. PROBLEM SOLVED!

 

How many did you have? Multiple AVs running in realtime? That provides less protection, btw, and might have been the cause of your little incident.

If you have nothing on your PC, does that mean you don't shop/bank online? Use social networks, check your email, or anything? Because malware can record that, including your login password. Is your firewall disabled too? Because using it would mean you have a very basic security setup. Malware can crash your PC and make it completely unbootable. At least try sandboxie?

 

Poor machine, if things go on this way it'll be used for target practice, too.

frmarine, look at it as a battle, which it is. You wouldn't leave company command vulnerable to any bad guy who happens by. The good thing about the malware wars is you can set up an efficient and light-weight layered defense on your computer that you would hardly notice. Lots of people here can help.