I'm looking for a safe, quick, free and easy-to-mantain security configuration.
Actually I'm using CIS, it seems a good balance between easy-to-use and all-in-one product, even if I find it very different from what I remember (version 5 or so).
Whitelisting and sandboxing make hips, imho the main suite power, almost useless:
if an app is trusted, can do almost everything -> no alert
if an app is untrusted, it is sandboxed -> no alert
Open to any suggestion or alternative configuration
I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.
I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.
You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)
I would consider some type of system/data backup solution.
Both Macrium Reflect & AOMEI backupper offer good free solutions.
Consider an additional on demand scanner(s).
You might consider enabling Smartscreen.
Other than the lack of a backup solution your config looks good.
Thanks for sharing it with us
My current box:
HP netbook Atom N450, 2GB RAM, 1 TB HD.
Running a customized Windows NT 5.1 (XPSP3) patched with POSReady updates until EOL in mai 2019.
I only run my OS in stateless ramdisk mode for performance, security and privacy reasons.
Just started using security and antimalware software.
I used an unpatched XP with NO Firewall and NO antivirus for several months and I never got infected as far as I know. (The C drive gets flushed after reboot so it's hard to tell)
For a long time I exclusively used brain + ramdisk to stay out of trouble and I has worked like a charm.
At the moment I am busy hardening my OS to stay safe in the future.
Using my "obsolete" Windows XP daily for online payments and banking without any fear...
Best config I have seen in a long time = anti-executable + light virtualization + outbound network notifications ... I would not change a thing.
How do you have your RAM Disk configured ? Net cache only or have you added apps to RAM Disk image ?
This is my security config. At current time I am operating with one core so tHE PERFORMANCE IS POOR
Maybe you could use a anti-executable like NVT exeRadarPro , it uses low resources and then complement it with an On-Demand scanner like Hitman Pro ; so you will be protected without having a real-time AV eating up your resource usage.
This is my security config I just improved cuz i had an infection recently. Damn Usb flash drives.
If you have a particular issue with USB malware, consider MCSHIELD. Have you considered installing Windows 10? If not, why? Thanks for sharing your config.
I keep a casual security config. I don't keep a bullet proof security setup because it is cumbersome.
Also my device is slow and weak which further discourages anything elaborate.
After reading other configs, I decided to get a strong AV ie Kaspersky, changed my dns to Norton, maxed my Adguard settings and do monthly scans.
If you have a slow device than kaspersky should not be your security program of choice. It runs heavy! Especially if you have a laptop ; it sucks the lifeblood out of your battery. You would be better of with win defender , emsisoft anti malware or eset. Ad kb ssl enforcer to your browser as an extra security meassure. Also think about getting a backup program like aomei backupper standard , better safe than sorry Thanks for sharing your config!
Thanks for taking a look!
Thanks for taking a look!Click to expand...
Very good config.
A few notes and additions:
You might want to add a firewall application, since Avast Free Antivirus does not include any network firewall or HIPS (behavior blocker) components. These components are an essential extra layer of security.
For these tasks, I would personally recommend COMODO Firewall (free) which contains three powerful security modules:
1. Network Firewall (allows you to control connections coming in or going out of your computer).
2. HIPS ("Host Intrusion Prevention System" checks any file for suspicious behavior and allows you to create rules for how that file should run and what it can do on your computer).
3. Sandbox (virtual environment for isolating unrecognized or potentially malicious applications, so that they cannot harm your actual system or files).
COMODO Firewall is an extremely powerful application, and with a little bit of configuration it can become a very effective security layer. In case you run into any trouble configuring COMODO Firewall, there are many COMODO users here on MalwareTips who are all eager to help.
If you see that you do not like COMODO Firewall, you may use Sandboxie as a virtual sandbox application for isolating suspicious files and running applications (e.g. browsers) securely in an isolated and protected environment, without having to worry that any malicious files may harm your computer. (note that Sandboxie ... Read more
Inacio Security Config
Please enable UAC and Smart screen.
Replace IOBIT with Malwarebytes Anti-Malware and an Antivirus like Avast. Iobit has been accused of stealing many software databases and isn't really trustworthy.
I would suggest:
Enable UAC to at least the default setting
Enable Windows Smartscreen, there's absolutely no reason not to
You should add to your chrome installation some extensions: https everywhere (maybe metadefender or script blocker as well)
You should use some sort of system image backups (at least); Macrium Reflect (free) is an awesome candidate
Thank you for sharing
Kaspersky Total SecurityClick to expand...
Seems a bit too much to me even if they works together, the resources consumption is high. EAM is not so necessary when you have KIS and MBAM;
On O&O ShutUp I activated all out of:
- App notifications disabled
- SmartScreen-Filter disabled
- Deferring of Upgrades
- Automatic Windows Updates (1 of 2 and 2 of 2)
- Windows Updates for other products
This functions are still at original.
When I download a file which I don't know or trust, I scan it with HitmanPro, Malwarebytes and Kaspersky.
If it is a big file or software I run it on VirtualBox at first for testing what it does.
If it is a small file I upload and analyse it on virustotal.
Generally I run and test unknown/untrusted files or programs on VirtualBox before running on my "real" system.
I run a full system scan sporadically but minimum once at week. Sometimes daily.
For a full system scan regularly I use HitmanPro, Kaspersky, Malwarebytes, AdwCleaner and JRT by Malwarebytes. Sometimes I download Emsisoft Emergency Kit and let it also scan.
As Router I'm using the ASUS RT-AC87U. It has nice features like VPN-Client, AiProtection by Trend Micro (phishing-website detection & block), Exploit-detection and blocking infected systems in Network. According to ASUS it got a new Firewall Hardware with greatest performance at this moment. It all works very fine. I decided for HideMyAss as VPN-Provider. They got nice & fast servers.
You can remove TuneUP if it ain?t a paid version. Modern OS needs little or no tweaking at all to keep peak performance all day. Why would anyone disable toast notification on w10? Consider doing a backup or atleast backup imp. files to prevent losing in an event of disk failure. I guess you're using multiple HDDs and SSDs in RAID? Am i correct?
I regularly run Tronscript, which is a brilliant integration of so many clean up tools, automated to handle an extensive set cleaning programs easily.
Sorry but totally wrong config:
Why firewall and OS file reputation disabled and Windows update on manual?
Real time protection Spybot SD?
Do you test malware on your host PC and no backup plan?
I am surprised no recent malware attacks!
I use ESET NOD32 antivirus for about a year, the subscription'd be over soon. Previously I have used Emsisoft Internet Security, was good also. I am thinking I'll use F-secure SAFE now.
I uninstalled Online Armour Firewall since it's now obsolete and non-supported.
I also have Bitdefender Trafficlight browser extension enabled. Take care.
I would like to suggest for your backup solution Macrium Reflect or Aomei Backupper both have a good free and reliable version.
Also you could add Emsisoft Emergency Kit as a extra on demand scanner.
**WARNING: Emulate this config with caution. If you practice unsafe or risky browsing or click habits this config may not suit your needs.
Consider using MBAM Premium as an on demand scanner only BTS is enough for real time protection.
You could also add an additional on demand scanner such as ESET Online Scanner
CCleaner or Privazer if not already installed
Some type of backup solution
If only for testing and you have another machine then you probably don't need all the above
I am not advance user but if you guys suggest me I will be glad
As Windows 7 RTM is no longer supported, I strongly suggest to install Service Pack 1 for Windows 7. (Service Pack and Update Center - Microsoft Windows)
A shared PC is more likely to get infected (different people, intentions of use and levels of knowledge). I recommend that the main / primary Administrator account is password-protected, and the remaining accounts are limited to Standard user accounts.
Malwarebytes Anti-Malware Free can be used on-demand to scan the regularly, weekly or monthly to check for any signs of unwanted software on the PC. (Free Anti-Malware Detection & Removal Software)
uBlock Origin for Google Chrome, a fast and efficient ad blocker for browsing the web. (uBlock Origin)
CCleaner (Slim build) is a quick and easy tool to delete junk files, temporary files and much more. (CCleaner - Builds)
You can also Learn [MUST READ] How to update your security config without creating a new thread! - Remember to fill in all required fields.
I'm looking for opinions, I don't like using main AV for conflict reason, during past I was using ESET with WinAntiRansom, but from a lot of time I'm not able to make them cohesist, after few reboots the system stop rebooting or shutdown. I tested Kaspersky 2017 but I'm not able to make it work with SimpleDNSCrypt. Windows Defender I don't like the system impact and notification about scan. I tested also WebRoot but I don't like the password manager things. So I'm open to new frontiers.
I have always had a problem with malware, as I am always on the Internet. I am wondering, what antivirus software should I use and how many? The one thing I know nothing about in computers is malware, so my defense is probably lacking.
Not best, but better is AVG or Avast.
Add more scanner for on-demand scanner. Zemana AntiMalware, Hitman Pro and Malwarebytes antimalware.
Hitman pro is free for scan system but you need to buy the product if you try to remove viruses too.
Zemana AntiMalware and Malwarebytes antimalware is free for scanning system and remove malwares.
Try CCleaner for Privacy and Optimisation.
thats it from me.. and welcome to MalwareTips
This is my security config but will change soon as I will add new things to it
1: rule of Security config; Don't talk about security config...
Okay, okay, Backup,Backup, Like macrium. Consider change abp => ublock origin or Adquard. Also, HTTPS- Everywhere is must addon. I presume you have chrome/cromium based browser, so Scriptsafe give some ++ .
Iolo? Yeah i use it many, many years ago dunno, how it works nowadays, but usually ccleaner is enough. Maybe zemana or NPE in second opinion scanner.
Thank you for sharing!
After a long time of abstinence. Here it is my new config
Nothing special but a few tunings are made.
I use ProcessLasso cuz Windows 10 CPU managedment is hmmmmmm...
Everything which want internet connection is handled by Windows Firewall and Glasswire.
Emsisoft Anti-Malware is in use because of a really low system impact and a blazing high detection ration. Everything inside EAM is configurated to maxium notification.
Windows Spy-Hosts since Windows 7 are blocked within Sophos UTM and just used Ports are opened for outgoing connections and a few for incoming. Used are Port-Rules, Application-Rules and IPS-Rules.
Primary DNS OpenDNS
Secondary DNS GoogleDNS
-- KEEP IN MIND --
Nothing is save nothing is stealth against anything
good picks :
1- Win10 Ent , do you use Applocker?
2- Sophos UTM, how you feel it?
I thank you all for the Giveaways
Thanks for sharing your config, but you have an anti-all pc, well is not a good idea, if i were you i would use malwarebytes into passive mode /free mode/ uninstall comodo firewall and xvirus as bitdefender total security cover what those programs does. And i would recommend you to uninstall and leave only the necessary extensions, due to the fact that they consume a lot of ram and make the browser more unstable and some time they may crash. in resume just use what you need. is not true the fact that with many antimalware soft you will be protected, it is the opposite.
Comodo and bitdefender are not good friends... having them on at the same time will cause a hole in your firewall... because none of them will be able to work correctly
What do you suggest for "Real-time Malware Protection"?
I could not find a decent one, Spybot and MalwareBytes both are on demand. Is ESET Smart Security good enough?
Eset smart security is good enough. I would remove Spybot Search and destroy and would replace with emsisoft emergency kit and zemana anti malware free as on demand scanners because they are better options!
Addons, Extensions and Plugins :-
Zenmate, Session Manager, AnonymoX, FlashGot, Internet Download Manager extension for Firefox
Zenmate, Internet Download Manager extension for Chrome
No Addon, Extension for Internet Explorer
Other Software :-
Adobe Acrobat DC
VLC Media Player
FilmOn TV Player
Cyberghost VPN 6
thanks for sharing your config!
- Enable UAC at least to default settings
- Download 1 or 2 on demand scanners like (Zemana Anti-Malware, Malwarebytes, Emsisoft Emergency Kit, ...)
- Replace Ad Blocker with Ublock Origin
- Install HTTPS Everywhere (chrome extension)
* Think about getting a password manager
Comodo Internet Security v6.3
Change AntiVirus to FREE AVAST antivirus as comodo anti virus didnt catch FloxLib-A / win32.pioneer virus
I have replace windows default task manager with Sysinternal Process Explorer
Disable unnecessary windows services
Disable autorun and autoplay of drive
For Rootkit detection, I am using PC Hunter and Power Tool for searching kernel hook, hidden process and driver.
Ollydbg v1.0 for disassembling purpose, also have tried some crack me for learning purpose.
PE Studio for analyzing exe file header.
WinHex for direct sector writing, hex editing, memory hunting etc.
Sysinternal Process Monitor for real time monitoring of file and registry.
AVZ antiviral toolkit
Security Task Manager
Some tools for finding datastream
VirtualBox 5.1.4 for trojan, malware which use kernel driver/system service.
Sandboxie v5 for testing software and other stuff.
All my private, personal and important data are saved in BestCrypt container.
Previously on window 7 32bit, I was using Mikko File Protector (abadoneware) for restricting whole C and D for write protected for *.exe, *.dll, *.sys, *.drv etc and its work fine. Unfortunately its kernel driver is not supporting 64bit and not working now.
I found another alternate Secure Folder (abadonware) , which has same features as Mikko File Protector. Somehow I found setup from net, install it, added *.exe as read only. Secure Folder is not prohibiting creation of exe file but when file copied or cr... Read more
I have a few suggestions:
1/ add zemana portable to your ondemand scanner as it has one of the best detection rate. AVZ is quite outdated although it is made by kaspersky
2/ add bitdefender trafficlight or avira browser safety to your firefox so you will have more web protection. Avast is not really good in this field I believe
3/ Enable smartscreen as it is now extremely effective
4/ you may add unchecky to prevent PUPs, but this is optional
5/ tweak avast settings follow the guide here - you can set all or most settings if they suit you
Still debating if I should get premium zemana. I also use sandboxie when I know I might come across some fishy sites.
Very nice setup, looks good.
In regards to what you said here...
Still debating if I should get premium zemana. I also use sandboxie when I know I might come across some fishy sites.Click to expand...
If you already have Kaspersky, VoodooShield, HitmanPro.alert and as a bonus Sandboxie, then I would recommend saving your money and not buying a Zemana license, unless of course you wouldn't mind buying a license for a different machine.
To me, what you have seems to be plenty...
Of course, this is my opinion.
Hi, although I tried various antiviruses and I'm considering myself as a fan of this stuff, lately I'm somehow bored and I stay with Windows 10 and its default antivirus, firewall...
Thinking about change for a few weeks already but did not decided yet. Hope I get some inspiration here ;-)
Why SmartScreen disabled? It is absolutely recommended to enable it to avoid infections. Windows Defender is improved with the latest version, but I recommend to add also ZAM Free and MalwareBytes.
Add HTTPS Everywhere, add at least CCleaner Free for System Utilities.
Add Macrium Reflect Free or AOMEI Backupper.
Thanks for sharing.
Rudimentary Computer Information
Dell XPS 15 9550
Intel HD Integrated Graphics / Nvidia
A pretty standard security setup. LTSB is preferred since it takes out all the junk like Cortana, etc. without the need to hack into the ISO with things like Winreducer. Windows has been heavily modified after installation to remove telemetry and other possible attack vectors, such as networking.
Avast takes care of things at the executable level (while also acting as a firewall, software updater, and web filter), Malwarebytes Anti-Exploit takes care of things at the network level, and SpyShelter deals with spyware and acts as a HIPS and sandbox as a final layer.
At the browser level, uBlock Origin blocks the majority of advertising and tracking that lead to malware, Privacy Badger acts as a heuristic blocker, Popup Blocker Pro blocks popups on poorly designed websites, and HTTPS Everywhere defaults to SSL/TLS for website security.
CCleaner (enhanced with CCEnhancer) is used to clean system traces and Bitlocker is used to encrypt the entire OS overall. Recovery keys are stored on a Sandisk Extreme USB drive encrypted in a 7z archive.
I do not have an actual backup system nor an imaging system in place as I mostly rely on System Restore and File History built into the Windows OS, and I have had bad experiences working with Acronis True Image, etc. in the past. The most rudimentary system I have is Synctrayzor synchronizing important folders with an alw... Read more
Nice config, thank you for sharing
It's a pretty light and simple setup. No annoying pop-ups
you can ad emet or malwarebytes anti exploit for system hardening https everywhere as extra browser extension. the rest looks ok to me ( not a mcafee fan ) since download malware samples I do suggest the use a virtual machine for that ( vm ware ) , or shadow defender or rollback rx ( disaster recovery )
? I have made modifications to various Windows 10 objects in order to disable most functionality related to Microsoft's atrocious data mining policy. (e.g. blocked the Vortex hostnames globally on my machine using COMODO Internet Security's Network Firewall component)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The setup I have on both my main desktop and my laptop.
Just the necessities, of course.
First thread in MalwareTips too. Didn't even check out the Introductions forum. D:
Suggestions and feedback is welcome!
First thread on MalwareTips hype!
[Captain Haddock from The Adventures of Tintin: The Secret of the Unicorn - hilarious guy]
> What about on demand scanner as a backup? Just encase?
> Any bugs with Comodo?
> Are you using Comodo Sandbox? On your browsers? Any problems?
> Start-up time? Your thoughts?
> Are you using cruelsister setup on Comodo?
This is my first security config posted in MalwareTips. I guess it's quite good because it's for a very old PC (10 y/o) and I needed to find very light security.
Both Zemana AL and HitmanPro.Alert are incredibly light. I have disabled Keystroke Encryption in HMP.A because ZAL already has it.
Additionally I installed Unchecky - my family members sometimes don't look what they click during installing Firefox is protected with great uBlock and very light BitDefender TrafficLight.
I do have on-demand scanners on the disk, but to be honest, I make scans not so often - I have to say that the PC hasn't been highly infected for a long time (few years). Current old PC will be replaced by the new one in next year, so I will propably provide quite deeper protection. But I have to remember that protection should be pretty automatic, for my family.
Right now, if ZAL and HMP.A won't conflict each other, I won't probably change anything, I'm pretty sure that this protection is good.
Thats a very lite config, if you practice safe surfing, and click habits then
that will serve you well. I love lite configs in the right hands.
Awesome share !
EDIT: I read further and noticed it's a family access PC ?
If so then you may want to add VoodooShield free to the config ? Just a suggestion
Here is my config information. Comments are welcome, but ... .
Thanks for sharing your config, I would look into an second opinion scanner like Xvirus or Crystal Security, throw in Zam as its on giveaway here at MT, and of course you know its coming, a password manager =)