Is this a good security setup?


Recommended Posts

Operating System and any Service Packs: Windows 7-SP1 (Tweaked)

Architecture: 64-bit

User Account Type: Administrator

Real-time protection: Avast!

Second-Opinion scanners: Hitman Pro

VirusTotal Uploader

MalwareBytes Anti-Malware

Kaspersky TDSSKiller

Primary Web Browser: Google Chrome

Add-ons & Extensions: AdBlock Plus

DNT+

WOT

Ghostery

Hardening: EMET 3.5

Firewall: Comodo Firewall w/ Defense+

Backup: Nothing for now.

Rollback: Rollback RX

Virtualization/Sandbox: Shadow Defender

Sandboxie (Free)

Misc: CCleaner

Speccy

CPU-Z

Revo Uninstaller

EaseUS Partition Manager Home Edition

Auslogics Registry Defrag

Auslogics Disk Defrag Professional

Startup Delayer

FileHippo Update Checker

CNET TechTracker

Link to comment
Share on other sites

Hello,

You might want to consider adding the EFF's HTTPS Everywhere addon to your web browser. Also, have you considered Opera Web Browser as a secondary browser?

Regards,

Aryeh Goretsky

Link to comment
Share on other sites

I see you have installed a lot of ''un-nedeed applications''. You have Shadow Defender, EMET and Sandboxie installed (VERY SMART) but in the same you have the CNET crap ''TechTracker''. And Auslogics Registry Defrag - WHat and Why someone should defrag the registry ???

  • Like 2
Link to comment
Share on other sites

Emsisoft Emergency Kit is also a great addition for a second opion manual scanner. They have just moved to their own and the Bitdefender engine as opposed to the Ikarus one so fp`s should be fewer.

Get some backup/imaging software just in case. There are some excellent free ones available such as Paragon, Macrium Reflect or ToDo backup.

Link to comment
Share on other sites

No HIPS/NIPS .

All you need is endpoint security with its firewall in implicit deny enabled

%windir%\system32\secpol.msc /s is your friend

Link to comment
Share on other sites

No HIPS/NIPS .

All you need is endpoint security with its firewall in implicit deny enabled

%windir%\system32\secpol.msc /s is your friend

Comodo Defence+ is a HIPS and the firewall does packet inspection (IPv6 included) and has the option to do protocol analysis among others. Not sure if the OP can use secpol as he/she doesn`t state OS version :)

Link to comment
Share on other sites

Want to be even more secure? Don't make yourself an Admin. :D Create a separate account and use your Admin account only when you need to.

Link to comment
Share on other sites

Want to be even more secure? Don't make yourself an Admin. :D Create a separate account and use your Admin account only when you need to.

Technically, the safest thing he can do is not turn on his computer at ALL ... then when and if he does, simply not connect it to the internet.... :rofl:

Link to comment
Share on other sites

Technically, the safest thing he can do is not turn on his computer at ALL ... then when and if he does, simply not connect it to the internet.... :rofl:

:woot: :rofl: Totally true. Be more secure? Don't plug it in. :shiftyninja:

Link to comment
Share on other sites

:woot: :rofl: Totally true. Be more secure? Don't plug it in. :shiftyninja:

But it may still be prune to static-discharges :|

Just to play it safe, DON'T walk, or engage on any other type of physical activity that may result on "friction" :shifty:

Link to comment
Share on other sites

Real-time protection: Avast!

Second-Opinion scanners: Hitman Pro

VirusTotal Uploader

MalwareBytes Anti-Malware

Kaspersky TDSSKiller

Firewall: Comodo Firewall w/ Defense+

Keep only 1 Antivirus or Internet Security Software.

Link to comment
Share on other sites

Another solution to the above ones :

Common Sense.

I never got any of those anti-virus/virus-scanner/firewall/etc programs and also never caught a virus.

Just get your apps up-to-date and think twice before installing certain programs from suspicious web-sites.

And as someone above stated, don't make yourself Admin, even if you think you "need" it.

Link to comment
Share on other sites

Operating System and any Service Packs: Windows 7-SP1 (Tweaked)

Architecture: 64-bit

64 bit is good, prevent some rootkit infections

User Account Type: Administrator

worst thing ever, its better use no antivirus at all and a standard user account than administrator account loaded with heavy antimalware solutions

Real-time protection: Avast!

Second-Opinion scanners: Hitman Pro

VirusTotal Uploader

MalwareBytes Anti-Malware

Kaspersky TDSSKiller

all good tools but do you need all of this? malwarebytes alone deal with anything avast wouldn't catch.

Primary Web Browser: Google Chrome

Add-ons & Extensions: AdBlock Plus

DNT+

WOT

Ghostery

Hardening: EMET 3.5

Firewall: Comodo Firewall w/ Defense+

Backup: Nothing for now.

Rollback: Rollback RX

Virtualization/Sandbox: Shadow Defender

Sandboxie (Free)

Misc: CCleaner

Speccy

CPU-Z

Revo Uninstaller

EaseUS Partition Manager Home Edition

Auslogics Registry Defrag

Auslogics Disk Defrag Professional

Startup Delayer

FileHippo Update Checker

CNET TechTracker

emet is good, comodo as firewall too, but if you have a router all you need is something that control inbound/outbound connections, hips slow computer usage in every aspects

so, yeah, it is a 'good' security setup, but way too bloated, i would use avast as realtime, malwabytes as second opinion, comodo as firewall only, would keep sandboxie to browse and emet to hardening 0-days exploits.

Link to comment
Share on other sites

Kind of defeats the purpose of "Tweaking " to then load up on overkill . Security Essentials , Windows Firewall , Revo , CCleaner (used carefully) and your good . Put MalewareBytes and Super AntiSpyware on a usb and get jiggy with it .

Link to comment
Share on other sites

Hello,

You might want to consider adding the EFF's HTTPS Everywhere addon to your web browser. Also, have you considered Opera Web Browser as a secondary browser?

Regards,

Aryeh Goretsky

Yep, added that just after I posted this. Heh, thanks.

I see you have installed a lot of ''un-nedeed applications''. You have Shadow Defender, EMET and Sandboxie installed (VERY SMART) but in the same you have the CNET crap ''TechTracker''. And Auslogics Registry Defrag - WHat and Why someone should defrag the registry ???

Thanks, I'll uninstall Regidtry Defrag. I like TechTracker for the simple reason that it tells me if my software is outdated. I haven't kept it at boot. Use it only when I need it.

Emsisoft Emergency Kit is also a great addition for a second opion manual scanner. They have just moved to their own and the Bitdefender engine as opposed to the Ikarus one so fp`s should be fewer.

Get some backup/imaging software just in case. There are some excellent free ones available such as Paragon, Macrium Reflect or ToDo backup.

I'll check those out. EEK is cool, I have it on a USB. Thanks.

No HIPS/NIPS .

All you need is endpoint security with its firewall in implicit deny enabled

%windir%\system32\secpol.msc /s is your friend

Yeah, I rather not mess with secpol. I have no idea what that is. Comodo D+ is a good HIPS. Thanks.

Comodo Defence+ is a HIPS and the firewall does packet inspection (IPv6 included) and has the option to do protocol analysis among others. Not sure if the OP can use secpol as he/she doesn`t state OS version :)

Using Windows 7 SP1 x64.

Keep only 1 Antivirus or Internet Security Software.

I am using only one real-time AV. Everything else is on-demand. Thanks.

so, yeah, it is a 'good' security setup, but way too bloated, i would use avast as realtime, malwabytes as second opinion, comodo as firewall only, would keep sandboxie to browse and emet to hardening 0-days exploits.

Thanks, I'll try that. Although my PC does run pretty smooth. I was always a fan of minimalism till I read about all these apps on some forum. Couldn't resist, heh. I haven't gotten a virus for ages even without all these apps. These are just extra, I know.

All the security in the world won't stop you from clicking on a bad link, entering you password into a bad site, or running something seemingly sent from a co-worker. :)

Yep, I do use a lot of common sense. Haven't been infected ever since I have moved to Windows 7.

Kind of defeats the purpose of "Tweaking " to then load up on overkill . Security Essentials , Windows Firewall , Revo , CCleaner (used carefully) and your good . Put MalewareBytes and Super AntiSpyware on a usb and get jiggy with it .

The latest AV-Comparatives report that Avast performs (in terms of CPU, RAM usage, etc.) better than MSE. Hence. Thanks!

Thank you everyone, yes, I am trying to streamline this further!

  • Like 2
Link to comment
Share on other sites

What is this for? Your daily gaming fix? Flying space shuttles? I'm assuming that a computer literate gamer is using this system (rather than someone more computer illiterate)

Here is my $0.02.

This is what I would run.

Win7 No Tweaks. UAC. Firefox (with NoScript if you're paranoid). MSE. Windows Firewall. Windows Backup. That is ALL i use/you need for security/recovery. (hehe i sense flame for saying im so 'vulnerable' =P)

The rest you listed: some is good, some is needless - I like adblock plus and CPU-Z. I like a leaner system - the rest is going to fill it up, and poke around with windows.

Edit: An AV won't stop viruses - don't fool yourself. UAC will do much, much more on that front. Id take UAC and no AV over every AV in the world any day.

  • Like 2
Link to comment
Share on other sites

Alright, so I updated my stuff. Nah, not paranoid. I just got... carried away.

PC Background: Private

Computer literacy skills: Intermediate

PC security risk to infections: High

How often do you get infections: Never

Do you test Antivirus software: No

Operating System and any Service Packs: Windows 7-SP1 (Tweaked)

Architecture: 64-bit

User Account Type: Administrator

Real-time protection: Avast! Free

Second-Opinion scanners: VirusTotal Uploader

MalwareBytes Anti-Malware

Primary Web Browser: Google Chrome

Add-ons & Extensions: AdBlock Plus

Ghostery

VTchromizer

Firewall: Comodo Firewall w/ Defense+

Backup: Windows Backup

Sandbox: Sandboxie (Free)

Misc: CCleaner

Speccy

CPU-Z

Iobit Uninstaller

EaseUS Partition Manager Home Edition

Startup Delayer

FileHippo Update Checker

Link to comment
Share on other sites

I bet Ft. Knox has less "security"

All I ever use is MSE, Windows firewall, AdBlock plus, Chrome and sense

Last time I got anything was back when I used Win95

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.