Advanced Plus Security Rockstarrocks: Security Config 2019

[brambedkar59]

Just bought an ESET IS license, it's super light along with OSArmor.

 

[Deleted member 178]

Just bought an ESET IS license, it's super light along with OSArmor.

Learn how to use the HIPS in interactive mode, then you won't need OSA

 

[brambedkar59]

Learn how to use the HIPS in interactive mode, then you won't need OSA

Interactive mode is ON for HIPS. So OSA is not really needed?

 

[Deleted member 178]

Interactive generates lot of prompts, after a while, when all your necessary rules are made, you can remove OSA. HIPS are supposed to cover more stuff than anti-exe.

Just practice with it in the meantime.

 

[brambedkar59]

Interactive generates lot of prompts, after a while, when all your necessary rules are made, you can remove OSA. HIPS are supposed to cover more stuff than anti-exe.

Just practice with it in the meantime.

Yeah prompts are a bit too much for my liking, I am thinking of switching hips to "smart mode" and keeping OSA.

 

[oldschool]

Yeah prompts are a bit too much for my liking, I am thinking of switching hips to "smart mode" and keeping OSA.

Either follow @Umbra's suggestion until you have necessary rules compiled unless you don't have the patience.

 

[brambedkar59]

Either follow @Umbra's suggestion until you have necessary rules compiled unless you don't have the patience.

Not much patience left

 

[Deleted member 178]

If you are sure your system is clean:

1- learning mode
2- reboot, wait all processes are launched when loading the desktop.
3- execute every programs
4- back to interactive

 

[Nightwalker]

Perfect configuration in my eyes, but I recommend to tone down ESET HIPS to "Smart Mode".

There is no conflict between ESET and OSArmor, so why bother with a loud HIPS? OSArmor is much more user friendly than ESET HIPS at Interactive Mode.

Considering that you use your computer to many tasks, a classical HIPS will annoy you a lot, so if you arent careless (you seem to be an advanced, knowledgeable user) a HIPS or default deny isnt necessary.

Your setup is what I consider the ideal for the home user; powerful, ease of use, non intrusive and light

 

[Wraith]

If you are sure your system is clean:

1- learning mode
2- reboot, wait all processes are launched when loading the desktop.
3- execute every programs
4- back to interactive

This
Plus make sure the DNA/Smart Signatures are ENABLED.
You don't need adwcleaner if you have Malwarebytes.
Instead of OSA you can use Syshardener to apply a one time permanent tweaks to your OS.

 

[JM Safe]

Good config here.

Thanks for sharing.

 

[bribon77]

Thanks for sharing.

 

[tonibalas]

You should follow Umbra's advice for HIPS.
That's the exact same advice i took when i installed ESET on my system.
After a while alerts from HIPS in interactive where minimal.

 

[brambedkar59]

This
Plus make sure the DNA/Smart Signatures are ENABLED.

Both are enabled.

You don't need adwcleaner if you have Malwarebytes.

Are you sure about that? cause a thread on Malwarebytes says this..

While both ADWCleaner and Malwarebytes both target PUPs (Potentially Unwanted Programs) as well as some of the same PUMs (Potentially Unwanted Modifications) (i.e. changes to system settings which are possibly made by malware), each program does still detect some things that the other does not. While the last I heard they do still plan to eventually integrate all of the detections/signatures used by ADWCleaner into Malwarebytes, that has not happened yet so ADWCleaner does still detect some items that Malwarebytes does not, though not nearly as many as it once did as Malwarebytes has adopted a more aggressive policy with regards to classifying and detecting items as PUP in recent years, so if you download unknown software/installers etc. frequently which may contain PUPs then it is still a good idea to scan with ADWCleaner occasionally to make sure you didn't accidentally install any PUPs that Malwarebytes may have missed.

It's not very recent (sept 2018) so I don't have any current info about this too.

Instead of OSA you can use Syshardener to apply a one time permanent tweaks to your OS.

Thanks for the suggestion, anything I should be wary of before switching?

 

[brambedkar59]

Perfect configuration in my eyes, but I recommend to tone down ESET HIPS to "Smart Mode".

There is no conflict between ESET and OSArmor, so why bother with a loud HIPS? OSArmor is much more user friendly than ESET HIPS at Interactive Mode.

Considering that you use your computer to many tasks, a classical HIPS will annoy you a lot, so if you arent careless (you seem to be an advanced, knowledgeable user) a HIPS or default deny isnt necessary.

Your setup is what I consider the ideal for the home user; powerful, ease of use, non intrusive and light

Yup I am switching to smart mode. Thanks for the suggestions and kind words.

 

[brambedkar59]

Removed- ESET IS (having some issues after waking from sleep), CCleaner (not really needed)
Enabled- Defender for the time being.

 

[brambedkar59]

Back to Win 10 v1803, I thought v1809 was causing some issues but turns out it was the generic IRST driver (even the win 10 sata driver was causing issues) giving issues like slow boot and sometimes system stuck with 100% disk usage with no actual i/o operations going on, like less than 1MB/s. So back to 1803 with sata drivers from Asus website, no issues for past few days. Will return to ESET if nothing goes wrong.

 

[brambedkar59]

Upgraded to Win10 v1903 Build 18362.1 (3 days since upgrade)
+Emsisoft Anti-malware (Thanks MT )
+SysHardener
Replaced UBlock Origin with Adguard on both browsers.

 

[LDogg]

Great setup again! Liking the new addition of EAM!

~LDogg

 

[brambedkar59]

Win 10 v1903 build 18362.30 (KB4497464) --- No Bugs so far.
Driver for Intel HD 620 graphics updated to 26.20.100.6603