What is your security setup these days?

Play well together? Actually tested this with some of those tests (Spyshelter or whatever?)

 

April 10, 2011 - Updated , Added , Removed

Windows 7 Professional SP1 x64 (UAC: OFF, WD: OFF, FW: OFF, DEP: ON, SEHOP: ON, EMET: MAX)

Network

• Three Linksys Routers (DD-WRT Firmware) in WDS Mode
• WPA2-PSK AES Encryption
• SPI Firewall Enabled
• OpenDNS Configuration

Resident

• Online Armor ++ 5.0.0.1100 (Paid)
• Sandboxie 3.55.02 (Paid)
• Mamutu 3.0.0.19 (Paid)

On-Demand

• Shadow Defender 1.1.0.326 (Paid)
• Active@ Disk Image 4.2.4 (Paid)
• VMWare Workstation 7.1.3 Build 324285 (Paid)
• Emsisoft Emergency Kit 1.0.0.25

Browser, Immunization, Tweaks

• Firefox 4.0 (Ad-Block Plus)
• Internet Explorer 9.0
• KeyScrambler Professional 2.7.1.0
• LastPass 1.70.1 (IE & FF)
• Bluetack Safepeer SPLists (via OA for P2P Only)
• Spybot Search & Destroy 1.6.2 (Full Immunization w/o Global Hooks)
• Spyware Blaster 4.4 (All Protection Enabled + Customblocking.txt)
• BlackViper's Services Registry Files (Safe W7 Pro 64 Start)
• Ultimate Windows Tweaker 2.2 (Customized)
• SpeedGuide.net Vista TcpIp Patch 1.5

dja2k

 

No conflicts.

Yes.

 

Comodo Firewall (w/o AV , D+, Sandbox)
Emsisoft AntiMalware

 

page 42 i was running comodo and then try the new online armor 5 but i have some isues with it so for now i think of going back to comodo again

 

Win 7 Home premium sp1 x64

Standard user account
Eset Smart Security 4
Hitman Pro

 

It is nice weather so I thought let's refresh my security setup a bit, basically I only made it simpler. Additional to an always up-to-date pc and common sense I am use the following setup:

Network protection

• A Linksys WRT54G2 router, which protects wireless signals with WPA2 encryption and the network is protected by the SPI firewall.

Computer protection

• Microsoft Windows 7 Home Premium 64-bit (Service Pack 1), besides the settings mentioned below everything is on default.
  • I am using an Administrator account.
  • Windows Firewall is disabled.
  • Windows Defender is disabled.
  • User Account Control is set on default - Notify me only when programs try to make changes to my computer.
  • Data Execution Prevention is turned on for all programs and services.
  • Structured Exception Handler Overwrite Protection is enabled for all applications.
  • Windows Backup & Restore has been used to create a system image and is being used for backups, also System Restore is enabled.
• ESET Smart Security 4.2

Browsing protection

• Internet Explorer 9 is set as default browser, all the settings are on default (for example settings related to the SmartScreen filter and Protected Mode), additionaly I am using the Tracking Protection, more specific I am using the EasyPrivacy and my personal Tracking Protection Lists.
• Google Chrome (beta channel) is being used as main browser, all settings are on default, however I am using the Adblock Plus for Google Chrome extension.

 

OS: Windows Home premium SP1 (64-bit)

UAC (Max) - DEP - SEHOP - EMET 2.0.3 (Max)
AutoRun/Play - Disabled
Windows Defender - Disabled
Windows 7 Firewall (InBound/OutBound blocked)
Norton DNS (Malware)​

Browsers:

Firefox 4 (AdBlock Plus, NoScript, Better Privacy, Ghostery, UAS, HTTPS Everywhere)
Internet Explorer 9​

SandBox:

Sandboxie 3.55 Free (64 bit)
Read-Only access to C:\WINDOWS
Drop rights
Automatically delete sandbox contents
Blocked access to areas with sensitive information​

On Demand:

MBAM Pro and Hitman Pro ​

Backup:

SyncToy 2.1​

Used daily.
Mainly used to quickly back up my work from my USB to my PC. ​

Drive Snapshot​

Snapshot taken once a week.​

Tools:

TuneUp utilities 2011
VMWare Workstation 7.1.4
Keepass 2.14 (Stored on a USB)
CCleaner portable​

 

Windows 7 Ultimate 64bit
COMODO Firewall 5.3 Defense+ ON
Microsoft Security Essentials 2.0
Malwarebytes Pro (Active)
Sandboxie 3.54 64bit
User Account Control (UAC): max settings & standard account
Enhanced Mitigation Experience Toolkit (EMET) 2.0.0.3: Maximum Security Settings
Data Execution Prevention (Opt Out);
Structured Exception Handling Overwrite Protection (Opt Out);
Address Space Layout Randomization (Opt In);
KeyScrambler Personal 2.7.1
Secunia Personal Software Inspector (PSI)
Sandboxed Firefox 4: WOT, Adblock Plus (Pop-up Addon, Fanboy´s List, Malware Domains), NoScript, LastPass, HTTPS Everywhere, Search Engine Security
Norton DNS

Changes:
*Added KeyScrambler Personal 2.7.1

 

You're good to go.

 

Haha, thanks.
I was thinking in adding a on-demand scanner for a "second opinion"(virus & malware), which would be the best one? Maybe Hitman Pro??

 

Hitman Pro or SUPERAntiSpyware.

 

Installed Avira Personal and Private firewall.

 

I am quite disappointed, SAS is scanning my system and it has already found a trojan! Trojan.VXGame-Variant/D
I was expecting a clean system as I did a full scan with MSE 2.0 and Malwarebytes! I thought my system was quite safe....

UPDATE:
Last week I downloaded a gadget pack for windos desktop, the trojan was an exe file inside that pack. I am sure I have not executed the exe file, I was really infected or I just had a trojan ready to act if I executed it

 

Might be a false positive or it might really be an infection. MSE's detection rates aren't that good as compared to other AV programs and Malwarebytes' and SUPERAntiSpyware's detection rates are different. Try scanning with Hitman Pro or Emsisoft Emergency Kit and see if these programs were able to detect the virus. If it's only SAS then it's a false positive. To be sure, submit the EXE to VirusTotal or Jotti's for a scan and analyze running process through Task Manager.

Even if you haven't executed the file, it can still auto-execute by itself and infect your PC silently in the background.

 

• TP-Link TL-WR941ND (SPI Firewall)
  • Windows 7 SP1 Home Premium 64 Bits:
    • Windows Firewall: Enabled
    • Windows Defender: Disabled
    • Windows System Restore: Disabled
    • Administrator Account
    • User Account Control:
      • Default Level
    • Enhanced Mitigation Experience Toolkit (EMET) 2.0.3:
      • All Internet Facing Softwares
      • All LibreOffice 3.3.2 Suite
      • Maximum Settings
    • USB and DVD Drives Autorun: Disabled
    • Keepass Password Safe 2.14 Portable
    • Norton DNS (Block Malicious Websites)
    • Google Chrome 12 (Latest Build):
      • Drive-by Protection via 1806 Trick
      • BitDefender TrafficLight (BETA)
      • Click To Play
      • Adblock (Easylist + EasyPrivacy)

• Backup & Restore:
  • Microsoft SyncToy 2.1:
    • Daily Synchronization
    • Data Saved in External HD
  • Keriver 1-Click Restore Pro 2.2:
    • Original System Snapshot (W7 + Drivers)
    • Automatic Deletion of Old Snapshots
    • Snapshots Saved in Internal HD

• On-Demand:
  • Hitman Pro 3.5.8.119:
    • Automatic Daily Scans

 

Panda Cloud Pro
Online Armor 5
PeerBlock

 

Too late, SAS deleted the exe file..... Hitman Pro did not find anything ( I was quite impressed by how quick Hitman Pro did the scan)

 

Not true anymore in general anyway.

 

Updates:

Peer Block - blocks all LAN IPS + adware list + spyware list + government IPS

Chrome is sandboxed and protected via 1806 and execute deny (trapped in LAU and cannot escalate.

Drivers cannot be installed by anyone only a white list or prior installed devices can work.

Comodo - Firewall high, D+ paranoid, and block unknown files.

Download folder has no execute rights, denied by app locker for all users, and low integrity. All downloads must be moved to installer folder and executed by "run as admin". Unsigned installers are blocked

Sandboxie - only chrome can run and access Internet, sandboxie is protected with EMET now as well, My Documents and photos are protected and not accessible, sandboxie download folder has no execute rights, drop my rights enabled.

Router firewall - blacklist on all china IPs, block p2p, Clear Cloud DNS, WLAN Partitoning (isolate devices), WPA2-CCMP (AES), MAC filtering, and no wifi broadcast after 12 am till 8am.

Untangle firewall - blacklist malware domains, scan incoming traffic for malware, content filtering, IDS, stealth ports, DDOS protection, instant "Internet off"

 

Ok. Yes, Hitman Pro is fast when it comes to scanning.

 

x942 that looks very solid protection

 

Complete set up:
KIS 12.0.0.333 ( beta 2012)
Winpatrol
Prevx

On demand:
Hitman Pro
Malwarebytes

 

Thanks! I am loving this setup. So far from testing with an old netbook 234 exploits were block when going to malicious sites And that's at the firewall (untangle) level.

Updates:
KeyScrambler pro (Via trialPay) should I get premium for 14.99? Is it worth it?
Had F-Secure but it kept crashing so back to Avast! home 6
EMET added to OpenOffice and PeerBlock
java and Flash uninstalled (only chrome's versions now)
Chrome now has Ghostery ABP and SaferChrome installed, --safe-plugins, and --incognito.
CCleaner runs once a week on schedule

Any other tools I should add/buy? Just got a $100 prepaid credit card as a gift

 

AppGuard
Hitman Pro