What is your security setup these days?

What about it J?

 

OA++ really is more then enough. I used to do a weekly scan with Malwarebytes just for a 2nd opinion...

 

1chaoticadult nobdy talks about it anymore

 

Well you should know why

 

mongol i think i am doing a good decision as OA++ has file and registry protection and runsafer in real time

 

removed mbam for now

 

Network
DDWRT Router running recommended build
DDWRT firewall turned on
MVPS Host File stored on router for network wide adblocking
Google DNS

Realtime Protection
Mamutu Behavioral Blocker
Beta updates
Allow program if 92% of community members allowed it.
Deny program if 88% of community members allowed it.

Comodo Firewall and Defense+ 5.8 Beta
(Password Protected)

Comodo Firewall: Safe Mode, Alert Settings Low
-- Ports Stealthed
-- Create Rules for safe applications
-- Enable IPv6 filtering
-- Protect ARP Cache
-- Block Fragmented IP datagrams
-- No protocol analysis, no monitoring NDIS protocols other than TCP/IP

Comodo Defense+: Safe Mode
-- Autosandbox as Limited
-- Force Java and Digsby into Limited sandbox
-- Force Vaio Event Service/ Battery Manager and IE9 into Partially Limited sandbox

System Hardening -- Windows 7 64bit Ultimate
UAC on Max
EMET: DEP Opt Out, SEHOP Opt Out, ASLR Opt In. All internet facing applications forced to run with EMET.dll and a few others as well.
Downloads folder and all contents forced at Low Integrity
Secunia PSI and NiNite for updating
Disabled some services
As few programs installed as possible. Only what I need and when I'm done with something it gets uninstalled and I make sure that everything is gone.
Digsby and MiPony's .exe's set to LowIL.

Browser -- Chrome Beta and Canary
Javascript on a whitelist
Built in malware protection/ download scans
Default PDF reader -- no adobe necessary

Backup Browser -- IE9
Max security settings via IE9's default options

Portable On Demand Scanners/ Tools -- USB Drive
TDSS Killer
JavaRa
RKILL.com
AVZ4
Dr Web Cureit
SuperAntiSpyware Portable
Hitman Pro
Emsisoft Emergency

 

DEP Always On with EMET seems to break Java updates. Started using Secunia and Ninite. Enabled Chrome's error reports when I crash.

 

tried ESET AV 5 RC , but it conflicted with rollback rx. it delayed snapshot taking procedure.. I think it should be HIPS part..
Back to Eset v4.2

added zemana and Filehippo update checker to my setup. Removed SUMo..

 

Hungry Man asked about Sandboxie so I'll ask why you removed Panda Cloud Free as I'm considering it for my netbook?

 

That's why I chose Opt-Out, unless you want to use the extracted .msi installer.

 

Thanks J_L I'll keep that in mind. I think Opt Out is fine considering that I'm still forcing multiple programs to use DEP regardless. I personally don't feel like moving to Opt Out will hurt my overall security scheme significantly.

 

OA Firewall has a lot going for it and with OA++ you are covered in all areas. I just couldn't get used to not having a guard running at all times so I drifted back into the AV world with Avira, and then to Prevx and now to Panda Cloud. OA++ gets 3 from me though...

 

I can't go back to antiviruses. Such a terrible security method for me personally.

 

I agree that AV's aren't the best thing going in todays world but most computer users tend to only know about antivirus programs and many are set and forget and do their job most of the time. When I finally move into a new "puter later this year I hope to go with Defensewall or OA++. May even look into Webroot Cloud AV (formerly known largely as Prevx). I'll keep Panda Cloud on my older laptop though - it really has impressed me so far...

 

Updating my sig to reflect the new Comodo 5.8 Beta

 

DUALBOOT No Realtime AV and FREE Security Setup​

1. Windows 7 Profesional SP1 32-bit (Used mainly for Gaming and family use)
   
   
   • System Partition (Returnil Virtualized), Data Partition (storage), Apps Partition (Sandbox Directory)
   • Microsoft Baseline Security Templates, Software Restriction Policy (SRP), UAC set to highest, EMET and 1806 trick (3)
   • deny Everyone from executing on data partition and download directory, userpace including desktop
   • disabled unnecesary services (ie. print spooler, windows search, windows defender)
   • Windows Backup and Restore (system image backup)
     
     
     • OpenDNS / OpenDNS FamilyShield
       
     • MVPSHOST
       
       
     • Trusteer Rapport
       
       
     • Returnil System Safe FREE (3.2.12918.5857-REL14)
       • Enabled Password Protection
       • Trust Programs from real disk only
       • Virus Guard: Disabled.
       • Virtual Mode: Always ON.
       
       
     • Google Chrome --safe-plugins (no extensions)
       • Modified about:flags settings:
         • Enabled click-to-play plugins
         • Enabled Disable HTML5 Form Validation
         • Enabled Block all third party cookies
       • Do not allow any site to track my physical location
       
       
     • Sandboxie FREE (3.57.02)
       • Relocated sandbox directory into Apps Partition.
         1. This will allow me to install apps even when Returnil Virtual Mode and Anti-executable is ON.
         2. Programs installed in the sandbox can run properly because its will be running on a virtualized environment created by sandboxie
            and is on real disk thus not affected by Returnil's anti-executable.
         
         
       • Excluded/Unrestricted Sandbox Directory from SRP.
       
       
     • Hitman PRO (on-demand scanning)
       
   
   
   
   
2. OpenSUSE 11.4 KDE (32-bit) (used mainly for pr0ns / P2P downloading lol)
   
   
   • ---
     
     
     • Firefox with Noscript and Adblock Plus

Comments and Suggestions are welcome.
-Konata Izumi​

 

I disabled VIPRE active protection and turned on MBAM's protection module.
MBAM is just too good to only have it running daily scheduled scans.

 

I'm liking your setup of: Sandboxie ♦ OA Firewall ♦ MBAM Pro...

(Birds of a feather and all that... )

 

My only concern is that MBAM itself says that the program is intended as a complement to an AV. I have yet to see them say it is capable as a standalone application. I have seen users say so, but not the developers.

 

I think MBAM's method of scanning just allows it to be used simultaneously with other standard AV's but it's not necessarily supposed to be a second opinion AV and can therefor run on its own.

 

I understand that concern but I feel that it is mitigated to a large extent by the use of Sandboxie, whch imho prevents most any malware from ever getting on to my real system unless I introduce it myself via download and recovery...

...And if you have the downloads directed to a folder protected by Sandboxie then you can scan the downloads locally (or upload to Jotti/VirusTotal) and be about as safe as possible (within reason).

 

Emsisoft Emergency Kit.

Zemana antilogger

Malwarebytes' Anti-Malware

ClamWin

Hitman PRO

 

Konata,
How are you liking returnil? I haven't used it in a year or so. I liked the idea but the exection had a lot be desired. Also, how is it working with sandboxie? I heard it has a Anti-exec now. Just wondering how you like it. Thanks.

 

can not live without Mbam Pro