This is the guide I’ll be using for the rest for ‘09 for heavy internet users that need to stay malware free while on the internet. All software list below is what I’m currently using. This could change in the future.
For Windows XP 32 bit and Vista 32 bit users here’s a list of things you should be doing if your PC is connected to the internet:
1. Make sure you have a good signature based virus scanner. The one I like to use right now is
- Kaspersky Internet Security (09 or 2010 ver) – easy to use interface, signatures download multiple times a day, automatically setup to deal with malicious files, built-in HIPS, firewall and lot’s of other stuff you can read about here. I mainly use KIS for clients that have children and thus demand more protection.
- You could sub out KIS for Norton Internet Security since I’m loving both these days.
2. Browse the Internet with Sandboxie! Make sure you configure the default sandbox to automatically delete contents when you close your browser. If you use Sandboxie every time you access the internet your chances of getting infected are slim to none. The only thing you need to worry about at this point are USB drives (thumb drives) and P2P clients (if you use one).
3. Make sure you have a router. All routers have a built-in hardware firewall with NAT. This protects you from port scans on the internet (which check to see if your PC is a weak target suitable for malware installs).
4. Install ALL of your Windows Updates! This is SOOOOOO important. Open Internet Explorer, go to http://windowsupdate.microsoft.com and check your PC for any missing patches. Windows updates are typically released every Tuesday.
For Vista 64 bit users you can follow the list above but ignore Sandboxie since it does not work with the 64 bit OS. ZoneAlarm ForceField would be the only application that I know of that Sandboxes your browser (either IE or Firefox) on a 64 bit OS (and yes, it works with your currently installed AV).
If you have something else that you do to stay safe on the internet be please leave a comment!
{ 20 comments… read them below or add one }
You can also add a good on demand virus scanner such as MalwareBytes or Super Antispyware.And can also have a S/W firewall like COMODO or Online Armour if you don’t have a security suite that Matt mentioned and/or don’t have a hardware firewall.
Why pay for Sandboxie when Geswall is free and is rock-solid?
@Bill
Sandboxie can be used freely, paid version only adds some small capabilities which you can do without.
@Matt
You suggested KIS 2010 but didn’t mention about its firewall.
Oopsies, I said
@Matt
You suggested KIS 2010 but didn’t mention about its firewall.
it should be “sandbox” not firewall.
Just thought it should be mentioned that Norton Internet Security puts an intrusion protection mechanism in your browser which kind of does the same thing as Sandboxie. I use firefox and Norton IPS is one of the addons listed.
yes that sounds good prasad
I love avira Microsoft security essentials. Both really good detection rates and free i think i might like avast 5.0 to but will see how it dose with matts vid of it.
Am I missing something? Since when has Sandboxie been free? I thought that after 30 days it displays nag screens to purchase the product.
I know Geswall has both a free and pay for version, but I’ve not seen that with Sandboxie.
Any thoughts from anyone who’s used it with clients or personally? Matt maybe?
sandboxie is isnt real free, but after 30 days it asks you to buy it. but you can still use it
1.Educate users. There is no remedy for stupidity.
2.Use standard accounts. Of course, XP is pretty useless these days unless security policies are pushed upon clients through GPO policies in an AD.
The OP should NEVER EVER compare XP and Vista/W7. They are completly different animals.
3.In Vista/W7 : the first user should be a standard account. MS didn’t dare to emply this.
4. Vista/W7 : never ever disable UAC unless you are expert. Change defaults W7 settings to high.
5. Try to avoid AVG, Antivir unless you are expert. They are useless because of the false positves.
6. Sandboxie, HIPs , Bidirectional FIrewalls are useless unless you are expert. Noscript – the FF addon – falls in the same category.
7. Chrome and IE8 are sandboxed in Vista/W7. Use these browsers. If you are a moron, use Safari. FF falls in between but now marketshare is up…FF is going to fall down to the scammers and Russian Maffia…FF is not sandboxed…anywhere…
6. Disconnect from the internet and have a real life.
After the 30 days those using the free sandboxie version will wait a little longer, but that’s hardly a hardship.
I’ve been using a 3 user license of Kaspersky internet Security 2010 on my machines. It is such a good application.
jvans I can see avg not being that great but leave avira out of this! it dose not take a scientist to run avira lol.
@jvans
Educate users? That’ll never happen. Expecting that to happen is a pipe dream.
Also, Chrome and IE8 aren’t sandboxed. Foregoing a real sandbox… (like Sandboxie, or something similar, like Geswall)..is asking for trouble. Neither are difficult for new users to learn. I’ve used Geswall with clients who are brainless…with resounding success.
I just started using Sandboxie, the free version.
It only protects your default browser. So if you use another, it is not in the “Sandbox”.
There must be a reason Matt prefers it. Maybe because it will delete what’s in the Sandbox every time you close it, if you check that option.
@ JJ: there’s no such thing as Sanboxie “FREE”. It has never been free and never will.
It is NAGWARE like WinZip, or Avira Antivir is which annoys you every signature update trying to force you to upgrade to the Premium version.
Sanboxie does exactly the same thing once the trial period has expired. So don’t get tricked on thinking it’s freeware because it is not.
I consider freeware products those that don’t trick you on thinking they are. Examples: Mozilla Firefox, Foxit reader, Open Office, etc.
@ Matt Rizos: Matt, a while ago, you were recommending Avira Antivir free as one very important tool in the Internet surfer arsenal and you described it as the finest AV at that time.
Now, I see you ditched it for KIS 2009/2010. May I ask why?
Were you using Avira’s “Early Load” feature, Heuristics set High, all categories ticked and scan within archives as well?
I know that one layer of protection is not enough nowadays but many people install AVs with default settings and forget the rest thinking that those settings will be enough to protect them.
Best regards,
Carlos
P.S: I hope this post doesn’t take too long to be officially posted here.
Correction to your OP. Microsoft releases security updates on the second Tuesday of each month. When MS updates show on other days those are known as “out of cycle” updates and are often in response to zero day exploit(s).
-Avira Antivir is which annoys you every signature update trying to force you to upgrade to the Premium version.
it’s easy to fix that!
Thanks Carlos!
We’ll see how the Sandboxie thing goes. I will not get indepth right now, but GesWall was not exactly what I wanted. Trouble printing from isolation and, recently, trouble downloading a file in Firefox 3.52.
I ditched Sandboxie on the kids computer because the NetNanny time control does not work well with Sandboxie.
So I’m trying, and paying, for Forcefield.
BTW, I still use Avira. I kinda like the nag screen. It lets me know it’s updating. Not really obnoxious to me.
Cheers.
Forcefield does not work with NetNanny time controls. It’s back to GesWall for me.
First let me say I respect you and your work but how can you recommend NIS? How does it stand up to malware test? From what I have both seen and heard it’s less than impressive.