Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Best protection against malware?

03 Feb 2015   #11
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
HimanPro Alert 3

Okay thanks for the info. I'll try reinstalling HMPA 3 again later this week and see how it goes. Really I was trying to test it without removing EMET. I've got an idea that if I disable all mitigations in EMET without actually uninstalling it then it maybe won't interfere with HMPA 3.


My System SpecsSystem Spec
.
03 Feb 2015   #12
Berkey

Microsoft Windows 7 Professional 64-bit SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Okay thanks for the info. I'll try reinstalling HMPA 3 again later this week and see how it goes. Really I was trying to test it without removing EMET. I've got an idea that if I disable all mitigations in EMET without actually uninstalling it then it maybe won't interfere with HMPA 3.
No problem, I still think the latest builds should work with EMET and even MBAE running side by side, as I read HMPA likes to test with similar software running. Anyhow keep me posted
My System SpecsSystem Spec
03 Feb 2015   #13
Tookeri

Windows 7 Pro 32
 
 

Here's a post from yesterday by one of the authors of HMPA answering the question:

Quote:
- Maybe I missed it in the change log, but is the newest RC compatible with EMET 5 and is it "Ok" to run them side by side from a security aspect?

erikloman: They should be compatible but it makes no sense to run both EMET and Alert with Exploit Mitigations.
HitmanPro.Alert Support and Discussion Thread | Page 154 | Wilders Security Forums
My System SpecsSystem Spec
.

03 Feb 2015   #14
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
HMPA RC 3 vs EMET

Okay so I reinstalled HMPA RC alongside EMET - just to test HMPA. I don't wish to remove EMET just yet. This time it actually works. Last time I installed it no browsers would launch nor Thunderbird or VLC.

Still had a problem with VLC:

Best protection against malware?-vlc.jpg

Solved by disabling the following:

Best protection against malware?-vlc-2.jpg

Browsers all protected and launching okay:

Best protection against malware?-browsers.jpg

Added EM Editor and a few other apps - all okay.

Best protection against malware?-apps.jpg

I'm fairly impressed with HMPA 3 but I'm not sure if there's any additional protection worth paying for over and above running EMET (free), VoodooShield (Pro) , HitmanPro Alert 2.6.5 (free) and SecureAPlus (free). In particular if any new process is spawned through an exploit, VS will kill it.


My System SpecsSystem Spec
03 Feb 2015   #15
Berkey

Microsoft Windows 7 Professional 64-bit SP1
 
 

I would say if you like EMET, then yes, the free version is the way to go. Its a nice little browser add on.
My System SpecsSystem Spec
03 Feb 2015   #16
Tookeri

Windows 7 Pro 32
 
 

I'm fine with EMET too along the free version of HMPA 3 (eventually). But only because I have several other great security layers in place. But I'm very impressed with HMPA 3 including the exploit mitigations!

Here a quick summary of HMPA 3 free/paid if anyone's interested:

Quote:
HitmanPro.Alert requires a license for Exploit Mitigations and Active Vaccination. All other features are free.
HitmanPro.Alert Support and Discussion Thread | Page 154 | Wilders Security Forums

Quote:
HITMANPRO.ALERT 3 FEATURE OVERVIEW
  • Install-and-Forget Signature-less protection suitable for Home Users, Power Users and IT Professionals
  • Exploit Mitigations (Anti-Exploit) Aims to stop attackers from exploiting software vulnerabilities
  • Fine-grained Exploit Mitigation Settings Allows experienced computer users to change individual mitigations, per application
  • On-demand Malware Detection and Remediation Integrated Anti-Malware scanner
  • BadUSB Protection Blocks malicious USB devices that pose as a keyboard
  • Safe Browsing (Man-in-the-Browser Detection) Warns when malware manipulates the browser; behavior-based
  • Active Vaccination Makes sandbox-aware malware self-terminate
  • CryptoGuard Protects your data against CryptoLocker, CryptoWall, TorrentLocker, OphionLocker, CoinVault and variants; behavior-based
  • Webcam Notifier Blocks the webcam when it is (secretly) accessed
  • Keystroke Encryption Protects credentials against keyloggers in the browser
  • Hollow Process Protection Protects the main executable of a process against unmapping
  • Network Lockdown Helps to stop attacks that connect back to command-and-control
  • Full 64-bit Support Offers 64-bit applications same protection as 32-bit applications
  • Software Radar Automatically protects new browsers, plug-ins, media and office applications
  • Easy-to-Use High DPI User Interface Suitable for Home Users, Power Users and IT Pros
  • Advanced Exploit Reporting Logs advanced technical data for forensic threat analysis
  • Multilingual User Interface English, Chinese (Simplified), Chinese (Traditional), Dutch, French, German, Italian, Brazilian Portuguese, Russian, Spanish
  • Antivirus Compatible Runs alongside third-party antivirus or internet security software
ANTI-EXPLOIT // CODE MITIGATIONS
  • SEHOP Stops abuse of the structured exception handler
  • Stack Pivot Stops abuse of the stack pointer
  • Stack Exec Stops attacker's code on the stack
  • Software Stack-based Anti-ROP Stops return-oriented programming (ROP) attacks (part of Control-Flow Integrity)
  • Hardware-assisted Branch-based Anti-ROP Programs microprocessor to stop ROP attacks (part of Control-Flow Integrity)
  • Import Address Table Filtering (IAF) Prevents attackers from snooping function addresses (part of Control-Flow Integrity)
  • Caller Check Stops processes called from attacker-controlled memory (part of Control-Flow Integrity)
  • Load Library Stops modules that load from insecure network paths
  • Application Lockdown Prevents abuse of logic flaws and stops attacks that bypass mitigations (incl. Office macros)
ANTI-EXPLOIT // MEMORY MITIGATIONS
  • Enforce DEP Prevents abuse of buffer overflows
  • Mandatory ASLR Prevents predictable code locations
  • Pseudo ASLR for Windows XP and Windows Server 2003 Prevents predictable code locations of modules on legacy Windows (part of Mandatory ASLR)
  • Bottom Up ASLR Improves code location randomization (ASLR)
  • Null Page Stops exploits that jump via page 0
  • Heap Spray Pre-Allocation Stops attacks that start via common memory addresses on the heap (part of Dynamic Heap Spray)
  • Dynamic Heap Spray Stops exploits that start via the heap; behavior-based
HitmanPro.Alert Support and Discussion Thread | Page 128 | Wilders Security Forums
My System SpecsSystem Spec
03 Feb 2015   #17
Berkey

Microsoft Windows 7 Professional 64-bit SP1
 
 

I am very happy with the paid version of HMPA, I feel it compliments y setup very nicely and of course offers more than just one layer
My System SpecsSystem Spec
03 Feb 2015   #18
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
HMPA 3 free?

Quote   Quote: Originally Posted by Tookeri View Post
I'm fine with EMET too along the free version of HMPA 3 (eventually). But only because I have several other great security layers in place. But I'm very impressed with HMPA 3 including the exploit mitigations!

Here a quick summary of HMPA 3 free/paid if anyone's interested:
HitmanPro.Alert Support and Discussion Thread | Page 154 | Wilders Security Forums

Thanks for the info. I'd assumed that there was only a paid for version available. Free will do just fine.

On another note I heard that NVT ERP is going to be free soon. Already tried their Driver Radar Pro.

My System SpecsSystem Spec
03 Feb 2015   #19
Berkey

Microsoft Windows 7 Professional 64-bit SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Quote   Quote: Originally Posted by Tookeri View Post
I'm fine with EMET too along the free version of HMPA 3 (eventually). But only because I have several other great security layers in place. But I'm very impressed with HMPA 3 including the exploit mitigations!

Here a quick summary of HMPA 3 free/paid if anyone's interested:
HitmanPro.Alert Support and Discussion Thread | Page 154 | Wilders Security Forums

Thanks for the info. I'd assumed that there was only a paid for version available. Free will do just fine.

On another note I heard that NVT ERP is going to be free soon. Already tried their Driver Radar Pro.

It has already become freeware like radar pro. I hope it is not a sign to come for many of the past programs that went from paid, then freeware (with donations) then abadonware. I was speaking with the developer and suggested that ERP free would be just fine, but if he could somehow roll up ERP, Driver radar, Kernel mode, drivers manager,Ring 3 api hook scanner, Dll uninjector, Anti rootkit, Write Process Memory manager, Handle tracer just to name a few into one paid version, as they are all great free or separate tools. In any case, a great program just became free so don't miss out
My System SpecsSystem Spec
05 Feb 2015   #20
BlackHawk1

Windows 7 64 bit
 
 

[QUOTE=Berkey;2997375]
Quote   Quote: Originally Posted by Tookeri View Post
I've been testing Hitman Pro Alert 3 as my anti-exploit, which has been pretty light weight and seems to be getting stronger and stronger with each build release. Has a nice keystroke encryption, which can be applied to programs like Word and Notepad.

Stronger and stronger with each build? Since when have they last updated it? Not for quite some time! I personally feel more confident with Malwarebytes Anti-Exploit Premium.
My System SpecsSystem Spec
Reply

 Best protection against malware?




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Virus/Malware Protection?
Should i use AVG or Avast! i use AVG at the moment but i heard avast is pretty good :drool:
System Security
Microsoft Malware Protection
when i finish to update my windows 7 ( After Clean Install) i get this message can anyone explain me what this message ? BTW
Windows Updates & Activation
Microsoft Malware Protection Center
More - CCM - Our Threat Indices in the Security Intelligence Report - Microsoft Malware Protection Center - Site Home - TechNet Blogs
News
Microsoft Malware Protection Center
Read further - Microsoft Malware Protection Center
News
IE8 Offers Better Protection against Malware
More...
News


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 06:11.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App