What is your security setup these days?

My XP Setup Updated:

 

I´ve reinstalled Vista and I´m continuing my experiment in scailing down unnessecary security software.
Changed to:
Limited User Account hardened by a couple of entries in Software Policy restriction and Look´n´stop firewall (enhanced ruleset)

 

had to uninstall comodo firewall again because i wasn't very happy with it so im going to be sticking with windows firewall and my router at the moment hoping that the next version of online armor will be sorted (according to the forums that will be very soon)...just got to wait and see
why it's very hard to find a good software firewall these days? i mean one that does exactly what u tell him to do without sacrificing security?

 

If I can. LOL. I plan on sticking with Avast Home and Spyware Terminator. Free. Fast boot ups and no PC slowdowns or problems. It should be more than enough security since I'm behind a Linksys SPI wireless router firewall and Windows XP Firewall. Now if only I can stay out of the forum where I get the urge to try other security programs, this plan should work. LOL. Good bye everyone.

 

If you are leaving, thanks for all input you've given throughout this forum. I've read many of them and appreciate all the help. I went a couple months without any 'Wilders' before needing an update on security apps/info.
Good luck

 

Vista 32 set-up "changes" in bold as of 12/29/07(work-in-progress):

Resident:

DefenseWall HIPS v2.10
Netgear RP614 v2 Router w/NAT & SPI
Primary Response SafeConnect v3.0.0.1443
Vista Firewall

Other "Paid" Security Applications at My Disposal(Not currently using):

DriveSentry Full
LinkScanner Pro
Look'n'Stop
RegRun Platinum

On-Demand:

Autoruns
AVZ Antiviral Toolkit
BitDefender v10(Free)
GMER
IceSword[Uninstalled]
Prevx CSI+[Installed]
Process Explorer
RootKit Hook Analyzer
Rootkit Unhooker
Runscanner
ShadowDefender[Installed]
SUPERAntiSpyware Free

System Hardening:

Applied manual system hardening tweaks
Disabled non-essential Vista services
Enabled Software DEP for all programs and services
Disabled UAC
Disabled Windows Defender
Windows Worms Door Cleaner

Miscellaneous:

Primary Web Browser - Opera 9.50 Beta Weekly Build(w/UserJS scripts; Java disabled, JavaScript enabled, but with options disabled, Iframes disabled and plug-ins disabled)
Email - The Bat! Home


Peace & Gratitude,

CogitoErgoSum

 

Well I'm trying to use the natural components of Vista and a few extras such as:

1. standard user account
2. real time protection (Windows Defender)
3. protected mode (IE 7)
4. definitely leaving on UAC
5. DEP all programs
6. Router with FW
7. Decided to use key scrambler for sensitive actions (works good)

8. Vista's firewall


Enjoying a speedy Vista experience. Did decide to not use Aero and a few small tweaks to speed Vista along. Kind of a trade off for using Windows Defender and key scrambler.

 

I'm keeping the same security setup: hardened OS base (soon trying LUA), periodic integrity checking (RunScanner, RkU, Tiny Watcher, etc), on-demand scanning of new files (preferably at Virustotal and Threat Expert), whitelisted web content (Adblock Plus, NoScript, CS Lite, etc), policy-based sandbox (GW free) and firewall (Jetico free).
Clean images, sensitive data encrypted and data backups round the protection.

 

I had been trying to install a memory card reader in my 3 1/2 bay for a while now. After I installed it I kept getting weird problems like the USB mouse and the Bluetooth dongle not working. It really had me scratching my head for the past few weeks. Then the other night just for just the hell of it I uninstalled NIS '08 and reinstalled the card reader. To my surprise it works fine now. When I reinstalled NIS on every boot Vista had reload the drivers for the reader. Apparently NIS causes some USB driver problems I hadn't noticed before. So I uninstalled NIS and started looking for another solution.

In looking around this forum looking at other people's setups CogitoErgoSum's Vista setup caught my eye--No AV, DefenseWall, PRSC, Vista Firewall. I had never tried a HIPS product (particularly a sandbox type). So I downloaded DefenseWall and am now evaluating it. I then installed AntiBot which I had a license for. But on the firewall I decided to also install OneCare (also licensed) because I like the firewall better than Vista's. Since OneCare runs so light I can have a AV too, if anything just to use for right click scans.

So now I am trying an AV/Sandbox-HIPS/Behavioral solution. So far everything runs good without any slowdowns.

EDIT: Had problem with DW and Creative X-Fi driver. When playing a game I noticed the sound had distortion in it. I reinstall the X-Fi driver and rebooted in which DefenseWall crashed. So I uninstalled it and trying out GeSWall now.

 

Greetings

D-Link Dir 635 Router
McAfee Total Protection
SpySweeper
Spybot

enough? so far i think so

 

I'm having some fun this week... I installed old Win2k and then loaded up (for me anyway) and put Avira Premium on with Comodo 2.4 and Threatfire. I'll play with this setup till year-end and then probably install Ubuntu 7.10 for good on Jan 1, 2008...

 

added
changed
removed


XP setup 1 & 2

Resident:

Comodo Firewall
Dr.Web
NOD32
Online Armor

Other Security / System Hardening:

nLite'd Windows XP SP2 (with service tweaking based on TweakHound's guide)
Xable's Windows XP Post-SP2 Update Pack
Seconfig XP
xp-AntiSpy
Process Explorer
Firefox extensions: AdBlock Plus, Permit Cookies, RefControl, and Secure Login

 

6. Sandboxie(added)

I also perform scans and analysis with Regrun Platinum, Winpatrol Plus, Superantispyware and Security Task Manager. Just for additonal opinion's!!!

muf

 

Hey Muf, are you using RegRun actively and is it the latest version? Do you see slowdown of programs when they execute?

dja2k

 

Resident
NOD32 V3
BOClean 4.25
Comodo Firewall V3 with D+ enabled

On Demand
SAS
Prevx CSI
Dr Web Cureit
KAV online scanner

Other
Sandboxie
Firefox with Noscript
Secunia Personal Software Inspector

 

I don't use the Watchdog feature, I only use the runguard feature for realtime. With using KAV and Browser Sentinel I find no need to run Watchdog. Having said that, when it is running it does not slow down my pc. Never has tbh in the 3 years i've used it. Very light app in real time. Are you using it and having issue's? btw, my pc spec is dual core AMD with 3 gb ram. I've always valued Regrun's suite of useful tools more than the realtime. It really allows you to get into the 'bones' of your pc. And yes, it's the latest version that came out about two weeks ago.

muf

 

Looks like I am in the security musical chairs mode again, lol. I didn't like the sandbox-type apps as at first things are OK but when surfing for extended periods my net speed slowed.

After some deliberation, I decided to go full circle and go back to my first AV, AVG. I choose the AntiMalware edition and for the firewall, Comodo Pro w/Defense+ (loved this FW when I was on XP).

After installing them I did have to disable Vista's FW and WinDefender as these programs did not turn them off.

So far I am liking things as they are. I hope no problems crop up as it has been going lately.

 

Vista 32 set-up "changes" in bold as of 12/30/07(work-in-progress):

Resident:

DefenseWall HIPS v2.10
DriveSentry Full v3.0.1.8[Installed]*
Netgear RP614 v2 Router w/NAT & SPI
Primary Response SafeConnect v3.0.0.1443
Vista Firewall

Other "Paid" Security Applications at My Disposal(Not currently using):

LinkScanner Pro
Look'n'Stop
RegRun Platinum

On-Demand:

Autoruns
AVZ Antiviral Toolkit
BitDefender v10(Free)
GMER
Prevx CSI+
Process Explorer
RootKit Hook Analyzer
Rootkit Unhooker
Runscanner
ShadowDefender(For testing purposes)
SUPERAntiSpyware Free

System Hardening:

Applied manual system hardening tweaks
Disabled non-essential Vista services
Enabled Software DEP for all programs and services
Disabled UAC
Disabled Windows Defender
Windows Worms Door Cleaner

Miscellaneous:

Primary Web Browser - Opera 9.50 Beta Weekly Build(w/UserJS scripts; Java disabled, JavaScript enabled, but with options disabled, Iframes disabled and plug-ins disabled)
Email - The Bat! Home

*Note: Although, the behavioral heuristics of both DriveSentry(DS) and Primary Response SafeConnect(PRSC) overlap, the differences lie in its implementation and the role that it plays in the detection scheme of things. The former employs it as a last line of defense behind whitelisting, blacklisting(signatures) and community feedback while the latter employs it as a first and primary line of defense. I have been testing DS since 11/27/07 with the intent of replacing PRSC. It remains to be seen if this will be the case when the smoke clears. In the meantime, I have yet to experience any functional conflicts between DS and PRSC. On the other hand, running both DS and PRSC simultaneously has resulted in a substantial increase in memory resources.


Peace & Gratitude,

CogitoErgoSum

 

My XP Setup Updated:

 

Resident:
Avira AntiVir Premium 7
Comodo Firewall Pro 3 & Defence+
Comodo BoClean

On-Demand:
AVG Anti-Spyware
SuperAntiSpyware
Secunia Software Inspector

Other:
SpywareBlaster
MVPS Hosts
KeyScrambler
FireFox
NAT Router

 

my vista setup is as follows.
kis7.0 for realtime
superantispyware for on demand

 

I thought to try something new for the new year.

I hadn't tried Returnil before, because the "memory caching" sounded too much RAM hungry to me. But it's not...

So, currently:

-AVG Free
-Returnil 1.7 Free
-AShampoo Firewall Free.

For a light and quick setup.

Happy New Year people!

 

Added
Removed

Resident

ShadowDefender (trial)
Defensewall HIPs
SandboxIE
Online Armor
Comodo v3 with defense+ disabled - trying out while waiting for next OA release
McAfee AV
SnoopFree
Hostsman
Spyware Blaster

On Demand

Spybot 1.4
AVG Antispyware
A-squared
SUPERAntiSpyware (Paid)

Backup

Acronis TI 10
FD-ISR

Other

Firefox with NoScript,AdBlock+,Scrapbook,Site Advisor,RefControl,CookieSafe,Filterset.G,Tab Mix Plus
CCleaner
Easy Cleaner
Filemap by BB
FingerPrint
WhatsRunning
RegShot
Tiny Watcher
MJRegistryWatcher
FileChangeAlarm

 

ACTIVE:

Router
Online-Armor AV+ v. 2 with Firewall (Latest Beta)
DefenseWall v. 2.10
Threatfire Pro
Winpatrol Plus (Keeping eye on things)
Hostsman

ON DEMAND

SUPERAntispyware Pro (Pre-Release 4.0)

BROWSER:

Firefox with No-scripts, Adblock plus, Cookiesafe, Roboform toolbar, Flashblock, Show IP.

OTHERS:

Spywareblaster
ProcessExplorer
Autoruns
Runscanner
CCleaner
ATF-Cleaner

BACK UP:

FDISR 3.21 build 205
ShadowProtect 3.1.0.3

 

Firewall
Linksys Router RT31P2
Outpost Firewall Pro 6.0.2225.232.465.287
Harden-It 1.2
Windows Worms Doors Cleaner 1.4.1

AV/AT
Kaspersky Anti-Virus Personal 7.0.0.125
Comodo BOClean 4.25.1

HIPS
DiamondCS ProcessGuard 3.410
DiamondCS WormGuard 3
RegDefend 2.001 (with revised custom Ghost Group from Tony Klein 5/29/06)
WinPatrol Plus 12.2.2007.0

Block Lists
MVPS Hosts File (12/10/07)(with HostsXpert 4.2)

Resident On Demand Scanners
SUPERAntispyware 3.9.1008
Malwarebytes Anti-Malware 0.85 Beta
Kephyr Bazooka 1.13.03
Dr. Web CureIt Anti-Virus 4.44.1
Mischel TrojanHunter 5.0 (962)
A-squared scanner 3.1.0.9
Ewido (AVG) Micro 4.0
UnHackMe 4.6
AVG Anti-Rootkit 1.1.0.42
F-Secure BlackLight 2.2.1067
Sysinternals RootkitRevealer 1.71
Gmer 1.0.14.13998 Beta
Resplendence RootKit Hook Analyzer 3.02
TrendMicro HijackThis 2.0.2

Online Scanners
HijackThis log file analysis & Networktechs HJT log analysis (HijackThis Log Analyzers)
VirusTotal
Jotti's malware scan
McAfee Freescan