Forget "The Best" Here is the Perfect Solution

Hi Everyone. This is my first time posting on this thread, so forgive me if there is any redundancy, as I am sure there will be. However I have come up with what I believe is the most secure software setup in Vista, that sacrifices not a shred of performance, is 100% stable, and was mostly free.

Quick background to establish credibility. Started building computers at 14 yr old, about the same time I started racing watercraft. Two machines that have a common end; they must be efficient. Despite a busy social and work life, I have maintained the highest interest in keeping my laptop fast, stable, and secure. I have acquired a massive amount of knowledge in the process, supplemented by employment at Intel Americas, Inc. during undergrad. In addition to being a law student, I currently build; fix; update and upgrade computers on the side.

Ok, nonsense aside, l ets up a high performing desktop that is ultimately secure. Most of you have browsed the endless websites and forms out there that cover this topic, usually by giving you list upon list of software to sift through, so you probably understand that achieving this goal is a daunting task. Rest assured though, I have done my research over the past 3 years (for vista software), and have finally come to a solution that satisfies even me. You need look no further than this guide. The final solution:

Proactive Software to Prevent Intrusion and Malware

An amazing 3-some that your significant other... Computer... is cool with:

1. DriveSentry. This program is recently released for free from a very reputable company. It will provide excellent proactive protection against anything that tries to write to you hard drive. That includes malware, viruses, Trojans, you name it. This program is literally like a guard at the door, and was the missing piece to my security for a long time. Best of all, it never bothers you, or rarely at least. It is NOT Comodo’s “Defense+” which I find to be terribly annoying. Additionally, this program is so light you don’t know it is running, and it is easy as can be to set up because of the way it protects your computer.

2. COMODO Firewall... I know I just bashed their Defense+ program, but their firewall is one of the best around. When you install COMODO there is an option to install the firewall only. They say that option is for the “enterprise” user. Ignore this absolute nonsense, and select that option. It will install just their firewall, just without the BS - AKA Defense+. Since you have installed DriveSentry, which is a far superior solution, you don’t need Defense+ at all.

3. SandBoxie. This is a very light program that protects your system to the point of...overkill. Many people use it to browse the internet. I don’t. What you NEED to use it for is to perform a security function called “Dropmyright.” The program has an option in it that reduces the “rights” applications running on your computer have. Take your web browser for example. Now picture Area 51. Inside there are 5 levels, level 5 is the most secure, and it is where your main windows files are stored. Right now, your web browser is holding a key card with level 5 access, when really he only should have level 2 access. Kick that bum out of your Area 51 conference room, and put him where he belongs - On level 2 – with this program.

4. Did I say 3-some? OK well you may have your hands full, but really, this isn’t that bad. At this point, you have locked down your computers internet from outside intrusion/attacks with COMODO. Nothing is getting in, but in case you download a bad file/open an infected email, DriveSentry will stop any malware in its tracks, and Sandboxie is not even letting anyone on level 5. So what else do you need? Unfortunately, with the proliferation of malware and hackers who have nothing better to do than mess up your day, you need more. Enter [A program you have to pay for] Symantec Antivirus. Well worth the price. Light program, never intrusive, and provides excellent email and general antivirus protection. Although DriveSentry is providing this anti-virus protection already, Symantec’s auto updates and strong scanning/active protection technology are very valuable tools.

Well, now that the 4-way is over, we may want to talk about some clean up...

Passive Protection

1 . Spyware Blaster. This program is not so passive. In fact, it should be under the proactive category above... but 5? So it’s here, deal with it. Download, install, and update every now and then. Done. It blocks known adware/spyware.

2. On demand scanning programs – Programs you run only to click the “scan” button.

a. Super Anti-Spyware
b. a-squared free
c. Malware-Bytes Anti-malware

Why three? Because each one is exceedingly good at detecting and terminating different types of “intruders” on your system. Update and run each one once a week. Also, DriveSentry has a scanning feature in it, run that once a week as well.

Optional

1. PeerGuardian2 Rc1 for vista (with launcher). It is good for protection if you use peer-to-peer programs.

2. Along these same lines, if you want to remain “invisible” to the world as you surf the web, get OpraTor. Fastest and lightest web browser that is all ready to go.

General Discussion

Some of you are lost, some of you need nothing further, and still others are offended by my sexual innuendos. If you don’t know what to do, ask. But at least get started on some downloads. As a general point, you should uninstall the programs that you currently use for the above task before installing these. In that vein, you should also download and run a program called CCleaner. It will clean up computer files that are wasting space and your registry as well (be sure to backup registry first). This will also function to slightly speed up your computer.

Performance and Conclusion

As I mentioned, the performance of my computer has not been impacted at all. How? Disk Optimization, that’s how. I’m running Vista 32 with SP1 on 2 Ghz core2duo processor, and 3gig ddr3 ram. That is worthless if I don’t optimize my HDD. The BEST disk defragmenter (don’t get me wrong, it is way more than a simple defragmenter) out there is UltimateDefrag. As the name implies, I have seen boot times cut in half, and performance increase 10X using this program. I ran the virus scans, ran CCleaner, deleted unused files off my hard drive, and then ran this program. When used correctly , Ultimate Defrag organizes you hard drive so that everything is in perfect order. It feels like my computer just came out of the box, yet it is locked cocked and ready to rock. The perfect solution.

Enjoy.

"Losers whine about their best, winners go home and f... the prom queen."
- Sean Connery, The Rock

 

Great and informative post, I personally use nothing

I find the greatest power of protection is just smart computer behavior, dont go to a site you dont know, dont open an email you dont know, etc.

I have yet to get a virus in like 5 years, the only thing that has ever messed up my computer is windows update

that said I dont mind checking some of these out, as long as they dont mess with my normal operation like other protection programs have done in the past there is no harm in having them around.

seriously in the past though virus protection software and firewalls have caused me WAY more problems than any virus would have. Games not connecting to a server, site no loading, false virus detections, on and on the list goes.

 

second that.. although i use some of the above ..but for sure would give try to some others..

cheers

 

Roy, have you tried Avira? Would be interested in your opinion on the security suite. I second the Comodo firewall.

 

Thanks you for this great post and your time. I however am like you, started building computers since I was 14, and have never come across a virus / problem / hacker.

I use very simple tools bro:

1) NOD32 v4 FTW
2) SuperAntiSpware Blaster
3) Windows Built-in firewall.

kthxbye

 

Id be more interested in some p2p stuff, like those protectors that hid your mac or ip or what ever they use to track you with.

There are some torrent protection services that you have to pay for but there should be a way to do it yourself.

 

That's an awesome set of security programs!
(although a bit heavy on the AV with DS blacklisting and Symantec AV and A-squared Ikarus )
Question if I may,have you have had (any) BSOD('s) with DS and SBie when browsing or afterwards when exiting SBie?
Cheers.

 

I use only:
Avast Free edition for anti-virus protection. I've tried McAffee (corporate version), Antivir, AVG and once Norton (*shudder*). I find Avast to have the best balance of security and resource usage for my needs.

Malwarebytes Anti-malware. Run it once a week or so. Works well.

Windows Firewall + router + Opera 9.63. I've tried Comodo, Kerio (are they still around?) and Zonealarm..they were overkill for my browsing habits.

Diskeeper 2009 Professional The best defragger for me. Install and forget- run it in the transparent automatic mode and never have to defrag again. Has a smart file sequencing feature built in that considers frequency of file usage.

These work for my needs.

 

I do plan on going into more detail about these topics, especially Peer-to-peer, in the near future. I would like to get a guide (and links!) up here to help people set up these programs and optimize there system correctly.

I do agree that with a little diligence, this level of protection is probably not necessary. This, however, furthers my point. Until recently, I was not using DriveSentry ("DS"), Comodo, or sandboxie. The reason I was not using said programs is because I didn't want to slow down or destabilize my system for a perhaps unnecessary level of protection.

Through some research, I realized that DS and Comodo work perfectly together. Up until this point, I was avoiding Comodo because of its awful Defense+ feature that causes problem, and did not know of DriveSentry (free). I loaded up DS and Comodo, and found them to work well together. However, it was not until i discovered UltimateDefrag that determined that I would keep the programs. By keeping my registry clean, and hard drive optimized, the additional weight of these programs is not at all noticeable. Not even at boot up, which is blazing fast for me. Additionally, there are no other adverse side effects of these products. (no pop ups every 2 mins, no conflicts, etc). If one of these programs blocks an item you wish to use, simply unblock them or disable the programs for the time being. Takes 2 seconds.

These programs together afford a level of protection that is probably not necessary most of the time**, however, they have no negative side effects on the system. Therefore, the prefect solution that I refer to - Protection that you don't know is there. Thus, the reason I use this set up is because it works, not because it is absolutely necessary**. While many of us rely on our computers everyday, what is the downside of having protection that works?

** I know that many people are aware of websites like "Shields Up!" http://www.grc.com/intro.htm
My security concern is not so much my own actions. It is more focused on the actions of others, whether malicious hacker, government/corporate snoop, or ISP/third party "internet police." (ISP's now police downloads instead of Feds, posting to come). Using these programs can block such snoops; detect snooping and malicious software; and prevent "them" from gaining access to any of your files for whatever purpose they may have.

 

Hi Baserk, no I have not seen a BSOD with this set up. The only "error" I have noticed is that Windows reports my anti-malware (DS) as disabled for a few mins after a fresh boot. Not sure why this happens.

I have a question. In your (very impressive) post you mention Geswall. This is a program I considered at some length before opting for SBie. I went with SBie because GesWall seemed to encumber my system. What are your thoughts on Geswall as compared to SBie in terms of protection? Specifically, do you know if SBie's "droprights" feature is a sufficient trade off for GesWall?

 

UGH, no I have not tired Avira at length. After installing it, and tweaking some options it was still causing major conflicts with my daily computing use. It additionally impacted the performance of ATI Control center and halted my "switchable graphics" technology. An uninstall did not remedy the changes it made in my system. I ended up re-imaging to fix the damage caused. I hate that red umbrella.

Speaking of drive imaging, I'm looking for a better program. I currently use Lenovo's one key recover, that came with the system. Any thoughts?

 

Acronis. No doubt on that one.

 

I think most of this is overkill. I use smart computing practices, EIS, and Malwarebytes. Of course, Im using XP, so that helps too.

 

well, i wonder how XP helps here.. thought vista s far better secure than our good'old XP.. just had this "autorun.inf" screwing my XP,while it did nothing on vista..

 

Unfortunately SandBoxie wont work on 64 bit.
Is Drivesentry of any use if user is running in user mode (not admin) ?

 

Drive Sentry was a good harddrive firewall. But its support has gone down a lot these days, upto the point of non-existent.

 

I use and will simple use until otherwise:

. Avast (or MSE - currently running on 2 comps)
. SpywareBlaster
. Windows Firewall and Defenders (where applied)

No best, no perfection, but satisfying all my security needs.

cheers ...

 

My Normal Combo:
Avira Antivir Personal 9 Microsoft Security Essentials
Windows Firewall Windows Firewall
Windows Defender SpywareBlaster
SpywareBlaster

Special Combo:
Avira Antivir Personal 9 Microsoft Security Essentials
Windows Firewall Windows Firewall
Windows Defender SpywareBlaster
SpywareBlaster MBAM
MBAM SAS
SAS

Basic Maintenance Tools:
CCleaner
Defraggler
TuneUp Utilities(Not Vital)

Internet Browser:
Google Chrome(used to be FF) as my MAIN.
IE is secondary.

 

They most important thing IMO for all Windows users is first to lock down the OS by switching off potentially dangerous services you don't need and setting up a UAC.

The list looks good, except I gave up long ago with Tor-related stuff because every Tor or proxy type app just seems to make browsing too slow and fraught with issues.

Personally I use Avast, Prevx and Outpost Pro (with antispyware enabled), plus the occasional on-demand scan from one or another online options.

 

I simply use the Windows imaging utility because no-one can tell me what it lacks in terms of taking a basic volume image that Acronis might offer. I still have Acronis but have yet to install it on my Windows 7 drive (and have not installed the Lenovo utility, either).

 

Windows Firewall
Microsft Security Essentials
SuperAntiSpyware
MalwareBytes

All I use.

 

Virtual Box and an online file scanner is all I need here.

I got a VM that I use for all my sensitive browsing.