What is your security setup these days?

OS Windows 8 RP x64

Bitdefender Antivirus Plus 2013
Outpost FW Pro 7.5.3 (web control disabled / anti-spyware enabled, check files on execution)
Sticky Password Manager (previously had kaspersky PM, like sticky more)
Ad Muncher

I think I'm gonna stick with this setup for a looooong time.. I really love it!

 

thats because you are connected to them.

 

I removed RT AV and added DropMyRights.

My whole setup now looks like:

Operating System:
Windows 7 Ultimate 32 bit
Administrator user account
UAC set to default
Unnecessary services disabled

Network security:
Router with firewall to block inbound connections.
Wireless access secured with strong password. WPA2-PSK EAS encryption is used.
Access from WAN disabled. UPnP disabled.
Windows 7 firewall blocking inbound connections from LAN. Outbound connections not monitored.
Malware Defender monitors outbound connections.

System and applications security:
Malware Defender (MD) monitors applications executions, system modifications and other process activities. No execution allowed from download location and removable media. Script engines and Powershell exes are also not allowed to run.
Sandboxie: all browsers sandboxed in separate sandboxes. Browsers are run with dropped rights and have no access to personal data.
EMET: system configured to default, apps to maximum with all mitigations enabled. All apps that have internet access and all apps that open files are subject to EMET mitigations.
DropMyRights: All internet facing apps, that are not under Sandboxie protection, are run with limited rights.

Data security:
Malware Defender monitors access to all important data.
Browsers have no access to personal/sensitive data. Access blocked by Sandboxie and Malware Defender.
Acronis True Image: backup of system image to another HDD.
Cobian Backup: backup of Outlook PST file and other personal data.
Manual backup of all important data to external disk.
Using Keepass for storing passwords (unique password for each login). App and database are under MD's protection.
Truecrypt: store sensitive data in encrypted container. Access to container is monitored by MD.
Recuva: undelete accidentaly deleted files.
HD Tune: check disk's S.M.A.R.T status and scan them for errors.

Internet security and privacy:
Adblock Plus plugin for Firefox and Chrome makes my internet experience clean.
Ghostery plugin for Firefox and Chrome to prevent tracking.
Using Chrome for most of my on-line activities.
No third party cookies allowed. Flash doesn't use local storage.
Sandboxes are automatically deleted when closing browser.
OpenDNS for domain name resolutions.
CCleaner to clean other junk files and MRUs on demand.

Online banking security:
Internet Explorer can connect only to my bank's site (MD rules).
Identification with personal certificate (access to certificate is password protected).
My own personal message on login screen (anti-phishing feature).
Strong login password. SMS received each time my certificate is used to login.
When transfer to non-saved account is attempted, 2 random letters from additional password must be entered. Letters are selected through onscreen keyboard.
Only payments through Paypal for online purchases.

On-demand scanning:
Daily scan with HitmanPro.
Weekly scan with Eset Online Scanner.
Monthly scan with BitDefender Rescue CD.
Monthly scan with Gmer for possible rootkits.
Virustotal Uploader to scan individual files online.
Before installing anything, installer is checked by Virustotal and HitmanPro. Installing only from trusted sources.

Updating:
Windows Update: updating system and other MS's software.
Secunia PSI: check for security updates of my software and system.

Other security related tools:
Virtualbox: used for testing purposes.
Autoruns: used to check all startup entries.
Process Hacker: used to check what's going on under the hood.

Did I leave any security threat gate open?

 

Good to know we are cool here.

 

Maybe a Cloud Backup solution and a VPN service?

 

Right now I backup my data to external HDD. Will look into cloud services and see if I like it.
VPN is on my long term to-do list. I still wait what legislation, affecting online privacy, will our government enact.

Thank you for your suggestions

 

The free Skydrive(7GB), Google Drive(5gb) and SugarSync(5gb) are my recommendations.

You're welcome.

 

Yes I will probably use Google Drive, so I don't have to create new account. I will also have to encrypt all data as I don't trust Google too much...

 

Great.

 

No, I know...I was experimenting a little to see if I could get the two working well together. It doesn't hurt, since it was just a test. The best way to run Comodo with Online Armor is to disable the defense + function and run AV only. But if I have to do that, I would be loosing some of it's other functions...might as well use another AV with better features. No, I understand mixing hips with hips is like mixing av with av....Not a good plan.

I had to try though. It's kind of the same idea, some users said they could run Sandboxie with RunSafer, but I never could. I heard someone on the net say they could get Defense + to work well with Online Armor and since both are my favorite companies, I had to experiment a little to see if their story was valid or not.

 

Oh okay then.

 

Surprisingly,i'm still with
Avast free
SpyShelter free
WinPatrol Plus
Sandboxie
Comodo FW (no D+)
Smooth,fast,very light.

 

Very nice setup

 

Thanks I will take a cold one please and yes we wouldn't have gotten this far without all of you !

dja2k

 

Thank you.I wish to use more of CIS (D+) or even the full suite like you,but the cfp.exe CPU hogging made me to stay away. Lucky you!

 

It runs pretty light on my systems.

When was the last time you ran CIS?

 

This is what I recommend. It's faster and lighter.

 

About two weeks ago.

Thank you,but believe me,i need HIPS and none of the software installed is redundant.Every program has its purpose in my book.
Oh,and OA doesn't play nice with SBIE on my system.

 

And OA has HIPS.

OA serves the purpose of both Spyshelter and WinPatrol.

They work perfectly fine in my systems. And I've not seen people complaining about the two not playing nice, at least none that I can remember.

 

I know,this is what i was telling you not long ago,remember?(at least about WinPatrol)

I know that since TallEmu was the owner.

Well,on my system with OA installed,when i start Chrome sandboxed the screen freezes and i have to force reboot.So it's a no go.

 

Ah yes. LOL. From then on I've not used WinPatrol when I'm using OA. Thx again for the that small talk we had here in the forum. I try to go for a simple setup from then on.

And yet you are standing the need of Hips as one of the reasons of not using OA. It's like you know you'll fall in the pit and yet you are marching forward.

I've had sandboxed Chrome in presence of OA many times in my system. It does not freeze apart from the tiny usual slowdown of a sandboxed browser that is typical of sbie.

 

I've had issues with OA and sandboxie as well. Slow downs during browsing and opening browsers. Of course I haven't tried the combo within the last year or so.

 

This issue happens every time on a clean CTM snapshot,that means i install OA on my system only with SBIE as security.Not a single another AV or FW touched my laptop,so i really don't understand what's happening...

 

Oh I see. Maybe it's indeed a compatibility issue. And like many other compatibility issue it may occur in some systems with particular configurations and not in others as is confirmed by our situations. I think you should just try OA one more time now. And if the conflict persists you should report it over at the Emsisoft forum. Fabian Wosar is sure to fix the prob if he succeeds on reproducing the prob.

Take a look here as Fabian solves a problem I had reported sometime ago. He is very quick I tell you.

 

Trying a new setup
Shadow Defender, Sandboxie, and Malwarebytes