What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    341
    Setup for Vista HP

    1) Behind router with firewall.
    2) Vista firewall
    3) Browse with Grand Paradiso 3.0a6 (noscript, adblock)
    4) Returnil when going to unexplored territory (key)

    5) Run as protected admin.

    6) No active virus or malware scanner
    7) On demand (antivir free, windows defender)
    8 ) FirstDefense ISR
    9) Still looking for an imaging program. SP 3.0 too expensive and Acronis TI 10 too buggy.
     
  2. circlemoon

    circlemoon Registered Member

    Joined:
    May 31, 2007
    Posts:
    10
    Could you tell me more details about the elimination of virus infection under diskless condition
     
  3. ylssky

    ylssky Registered Member

    Joined:
    Sep 12, 2007
    Posts:
    9
    firewall:Look´n´Stop
    av sw:kaspersky60021
    hips:ssm(beta)
     
  4. showtime33

    showtime33 Registered Member

    Joined:
    Jun 23, 2006
    Posts:
    29
    circlemoon.....I think he was talking about storing the data in ram...then when the power goes...everything goes...but wouldnt you still have a virus until you rebooted?
     
  5. showtime33

    showtime33 Registered Member

    Joined:
    Jun 23, 2006
    Posts:
    29
    opps sorry everyone...here we go..

    HW firewall: linksys wireless router with firewall
    Gdata AVK (having recent troubles with http scanning)
    firefox no script
    a-squared (emsi)


    I frequently try new products.....just using these currently...:)
     
  6. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country

    No -if the virus is in RAM how would it survive the loss of power ?
     
  7. july

    july Registered Member

    Joined:
    Sep 5, 2007
    Posts:
    2
    the virus can survive in ram ? I think this is not possible.
    so ,If we have the technology which can take Microsoft Windows to run totally in RAM,the danger of virus infection is completely eliminated.
     
  8. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,113
    Location:
    South Texas, USA
    I've settled on this setup in my sig. Latest builds of Online Armor, Pro Security, and SandboxIE (all full registered versions) will be updated regularly with never versions, beta or final.

    Transfered KIS 2007 & Anti-Bot to Family PC, these 2 were quiet enough. Thats enough for those sites mom, dad, and guests visit.

    Time to save money for new hardware (new computer) not more software. :p

    dja2k
     
    Last edited: Sep 16, 2007
  9. The_1337

    The_1337 Registered Member

    Joined:
    Aug 10, 2007
    Posts:
    112
    i changed a bit of stuff.

    im going try kav out to compare with nod32.

    real time
    comodo firewall 3 beta
    defensewall
    spyware blaster
    admuncher

    on-demand
    sas
    avg as
    spyware terminator
    counterspy
    spysweeper

    i do pretty dangerous surfing, but that's enough right?
     
  10. Birdman

    Birdman Registered Member

    Joined:
    Nov 24, 2003
    Posts:
    571
    Realtime:

    KIS 7.0.0.125
    WinPatrol Plus
    Ad Muncher


    Browser:

    K-Meleon


    On-demand:

    Counterspy 2
    CCleaner
    FD-ISR (backup snapshots)

    *also manually tweaked/configured XP services

    I'vbe had this set-up for almost 3 years now and NOT a single spyware or virus in that time span (adult sites and all). Also no need to re-format w/ FD-ISR.
     
  11. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country
    Just curious - do you mean not a single spyware or virus has gotten thru or that
    your programs have not reported anything ? if you have not been attacked the result of not a single spyware or virus would be the same in both cases.
     
  12. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    That's the crude reality of blacklist scanners.
    1- If they report "Nothing was found". How are you sure that your system is really clean (without using other tools)? What are you going to do? Scan with more scanners? It's a neverending dilemma.
    2- On the other hand, if they report "xxx was found and deleted. You're safe". How are you sure that the entire malware was removed? Did the AV find the downloader/dropper and all the payload (executables, BHOs, registry keys/values, etc)? Did it leave open holes (firewall disabled, open ports, host file modified, IE policies changed) leading to future infections?

    Solution to 1: Use other tools (Hijackthis, Autoruns, RunScanners, event logs, integrity checkers, rootkit scanners, etc) to ensure system integrity. Build a tripwire of integrity.
    Solution to 2: Don't trust the AV to clean the mess caused by malware. Restore a (known) clean image of your system and data.
     
  13. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,843
    Location:
    The Netherlands
    OS: Windows XP Pro SP2 (Fully Patched) - Running as Admin

    Realtime:

    System Safety Monitor Pro | Neoava Guard (Beta) | ZoneAlarm Pro

    ----------------------------------------------------------------------------------------------------------
    System hardening:

    BugOff | SafeXP | Security & Privacy | SocketLock | DropMyRights (Software Restriction Policies)*

    ----------------------------------------------------------------------------------------------------------
    Other tools:

    Process Explorer | Pserv | DriverView | File Change Alarm | All Seeing Eye

    ----------------------------------------------------------------------------------------------------------
    Software testing:

    VMware Workstation | Sandboxie

    ----------------------------------------------------------------------------------------------------------
    Online services:

    VirusTotal

    ----------------------------------------------------------------------------------------------------------
    * Running browsers, media players, picture viewers, MS Office, PDF & ZIP tools in non-admin mode. They are also restricted by Neoava.
    * .BAT, COM, PIF, SCR, REG, SHB, SHS, MSP and CRT files are not allowed to run.
     
    Last edited: Sep 17, 2007
  14. CogitoErgoSum

    CogitoErgoSum Registered Member

    Joined:
    Aug 22, 2005
    Posts:
    641
    Location:
    Cerritos, California
    Latest "changes" in bold as of 9/25/07:

    Resident:

    DefenseWall HIPS v2.05
    DriveSentry v3.0.0.64 Beta[Installed]
    LinkScanner Pro v2.6.6
    Look'n'Stop 2.06[+Phant0m's latest r/s]
    Netgear RP614 v2 Router w/NAT & SPI
    Primary Response SafeConnect v2.2.0.1187[Uninstalled]

    On-Demand:

    A-Squared(free)
    Autoruns
    avast v4.7 Home Ed.(free)[Installed]
    Avira AntiVir PersonalEdition Premium[Uninstalled]
    AVZ Antiviral Toolkit
    CounterSpy v2.5
    GMER
    IceSword
    Process Explorer
    RootKit Hook Analyzer
    Rootkit Unhooker
    Runscanner
    Sentinel
    SUPERAntiSpyware Pro
    Windows Malicious Software Removal Tool

    System Hardening:

    Applied manual system hardening tweaks
    Disabled most WinXP SP2 services
    Harden-It
    Removed Netmeeting
    Removed Windows Messenger
    Samurai
    Windows Worms Door Cleaner

    Miscellaneous:

    Primary Web Browser - Opera Weekly Build(w/UserJS scripts)
    Email - PocoMail


    Peace & Love,

    CogitoErgoSum
     
  15. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    8,005
    Just running the Avira Suite here with Firefox at the moment... Seems good...
     
  16. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,113
    Location:
    South Texas, USA
    So you uninstalled Primary Response to try out DriveSentry or is that completely gone? How is DriveSentry's new beta running?

    dja2k
     
  17. CogitoErgoSum

    CogitoErgoSum Registered Member

    Joined:
    Aug 22, 2005
    Posts:
    641
    Location:
    Cerritos, California
    Hello dja2k,

    For the time being, the reason that I uninstalled Primary Response SafeConnect is because I recently had a falling out with both Sana Security's CTO and customer support. It has nothing to do with PRSC's effectiveness. As for the DriveSentry beta, the following link below best echoes my impressions. Keep in mind that Drivesentry has improved since the comment in the link was made a month or so ago.

    https://www.wilderssecurity.com/showpost.php?p=1061368&postcount=8

    FYI, DS v3 final release is tentatively scheduled to go public on 10/1/07.


    Peace & Love,

    CogitoErgoSum
     
  18. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,378
    Location:
    Milan and Seoul
    ShadowUser Pro
    Anti-Executable
    Look'n'Stop
    RegDefend
    AdMuncher
    Opera

    First time running without an AntiVirus, my computer is definitely faster.

    Memory usage at this very moment with everything running = 266 MB
     
    Last edited: Sep 26, 2007
  19. StevieE9

    StevieE9 Registered Member

    Joined:
    Jan 16, 2007
    Posts:
    139
    WinXP2 fully updated
    Safecom Router (Hardware FW) Comodo Pro (Software FW)
    AVG Free 7.5 AV on guard auto-updated
    Comodo BO Clean on guard auto-updated
    SpyBot S&D 1.5 with Resident/Tea Timer
    Ad Aware 2007 on demand
    CWShredder 2.19 on demand
    XP-Antispy 3.96 configuration
    WinPatrol
    SpywareBlaster (auto-updated)
    Prevx 2 Build 112 (currently not functioning - awaiting support answer)
    Mozilla Firefox (rv:1.8.1.8pre) with NoScript/AdBlock
     
  20. TVH

    TVH Registered Member

    Joined:
    Aug 9, 2007
    Posts:
    227
    Nothing has gotten past this setup so far and nothing ever will:

    Antivirus: NOD32 (real-time), Kaspersky 7 (On-Demand)
    Firewall: Netgear Router (hardware), Outpost Pro (software)
    Antispyware: Superantispyware (real-time), a squared anti-malware (on demand), spybot S&D 1.5 (on demand)
    System Hardening: SpywareBlaster, PeerGuardian 2, Various registry tweaks

    When surfing dangerously i also use Online Armour or SandboxIE

    Backup: Acronis True Image 11
    Encryption: TrueCrypt
    Data Destruction: Cyberscrub Privacy Suite, DBAN
     
    Last edited: Sep 26, 2007
  21. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country
    Netgear Firewall Router and nothing else as security- Nothing has gotten past this set up so far - not so sure about the never will bit :'(
     
  22. CogitoErgoSum

    CogitoErgoSum Registered Member

    Joined:
    Aug 22, 2005
    Posts:
    641
    Location:
    Cerritos, California
    Latest "changes" in bold as of 9/26/07:

    Resident:

    DefenseWall HIPS v2.05
    DriveSentry v3.0.0.64 Beta[Uninstalled]
    LinkScanner Pro v2.6.6[Uninstalled]
    Look'n'Stop 2.06[+Phant0m's latest r/s]
    Netgear RP614 v2 Router w/NAT & SPI
    Primary Response SafeConnect v2.2.0.1187[Installed]

    On-Demand:

    A-Squared(free)[Uninstalled]
    Autoruns
    avast v4.7 Home Ed.(free)[Uninstalled]
    AVZ Antiviral Toolkit
    CounterSpy v2.5
    Digital Patrol[Installed]
    GMER
    IceSword
    Malwarebytes' Anti-Malware Beta[Installed]
    Process Explorer
    RootKit Hook Analyzer
    Rootkit Unhooker
    Runscanner
    Sentinel
    SUPERAntiSpyware Pro v3.9
    TrojanHunter 5[Installed]
    Windows Malicious Software Removal Tool

    System Hardening:

    Applied manual system hardening tweaks
    Disabled most WinXP SP2 services
    Harden-It
    Removed Netmeeting
    Removed Windows Messenger
    Samurai
    Windows Worms Door Cleaner

    Miscellaneous:

    Primary Web Browser - Opera 9.50 Weekly Build(w/UserJS scripts)
    Email - PocoMail


    Peace & Love,

    CogitoErgoSum
     
  23. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country
    jepensedoncjesuis do you ever run programs on your machine or just test security software :D
     
  24. CogitoErgoSum

    CogitoErgoSum Registered Member

    Joined:
    Aug 22, 2005
    Posts:
    641
    Location:
    Cerritos, California
    Latest "changes" in bold as of 9/28/07:

    Resident:

    DefenseWall HIPS v2.05
    Look'n'Stop 2.06[+Phant0m's latest r/s]
    Netgear RP614 v2 Router w/NAT & SPI
    Primary Response SafeConnect v2.2.0.1187

    On-Demand:

    Autoruns
    AVZ Antiviral Toolkit
    CounterSpy v2.5
    Digital Patrol[Uninstalled]
    GMER
    IceSword
    Malwarebytes' Anti-Malware Beta
    Process Explorer
    RootKit Hook Analyzer
    Rootkit Unhooker
    Runscanner
    Sentinel
    SUPERAntiSpyware Pro v3.9
    TrojanHunter 5
    Windows Malicious Software Removal Tool

    System Hardening:

    Applied manual system hardening tweaks
    Disabled most WinXP SP2 services
    Harden-It
    Removed Netmeeting
    Removed Windows Messenger
    Samurai
    Windows Worms Door Cleaner

    Miscellaneous:

    Primary Web Browser - Opera 9.50 Alpha Weekly Build(w/UserJS scripts)
    Email - PocoMail


    Peace & Love,

    CogitoErgoSum
     
    Last edited: Oct 2, 2007
  25. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,113
    Location:
    South Texas, USA
    My current setup is listed in my sig. Nothing has changed really. Been updating Online Armor to the newest beta build. I've been playing around with Returnil, but its not always enabled. Also, I had to go old school using an OS Selector to change between partitions since I had problems with FD-ISR.

    dja2k
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.