need some advice

[jav]

Which is the best choice to use with McAfee Security Centre:

Prevx
IObit Security 360
ThreatFire

And I have MalwareBytes Anti-Malware just for on-demand scan, is worth buying it's real timeprotection?
Thank you

 

[Creer]

It depends what you want to reach. I mean - which protection level: detection, prevention or cure?

PrevX is a BB (Behaviour Blocker) works in cloud - you don't have an Internet connection - PrevX doesn't work then. PrevX also is a software based on blacklist mechanism (detection level) like others AV software on the market.

IObit Security 360 is an AV software, but since this affair between IObit and MBAM I'm not sure about this (IObit) vendor... Anyways IObit offers also protection based on blacklists (detection level)

ThreatFire - is very similar to PrevX, it is also BB. (detection level)

MBAM - malware scaner based on... again blacklist (detection level)

In above configuration you didn't include very important protection layer I mean prevention - it should be your first layer of defense against threats.

 

[jav]

hmm...
like Firewall? Mcafee SecurityCentre includes Antivirus, antispyware and firewall..

And I thought ThreatFire works like HIPS!? (although not sure about it)

Or would you recommend any other program for prevention. Preferable free ones.
I have tried defencewall, but it dosent look like something for me. I will wait untill version 3 and try again. But still I would prefer some free programm

 

[Creer]

hmm...
like Firewall? Mcafee SecurityCentre includes Antivirus, antispyware and firewall..

And I thought ThreatFire works like HIPS!? (although not sure about it)

Or would you recommend any other program for prevention. Preferable free ones.
I have tried defencewall, but it dosent look like something for me. I will wait untill version 3 and try again. But still I would prefer some free programm

ThreatFire is not HIPS software, it's BB. ThreatFire will alert you for behaviours, whereas a HIPS program (e.g. EQSecure) should prompt you for all system changes/new unknown processes, etc.

To prevention group belongs: HIPS softwares (e.g. WinPatrol, OnlineArmor Firewall (free) with HIPS module, EQSecure, also PC Tools Firewall which has HIPS also, etc) , Firewalls (hardware/software like OA, L'n'S, PC Tools Firewall, etc), virtualization software (e.g. ShadowDefender, Returnil, VM, Sun VirtualBox), sandbox software (SandboxIE), software based-on sandbox restriction policy ([bulid-in Windows SRP, UAC], DefenseWall, GeSWall).

You can choose from this group any configuration which will be optimal for you in your daily usage of you computer.

 

[jav]

Thank you!
I will try them.

 

[Dinesh]

Prevx is very good.

 

[gamepro127]

I would recommend this:
Hitman Pro 3 - SurfRight

It scans with:
G DATA (Which is Bitdefender and Avast! Put together!)
NOD32!
Avira AntiVir!
Prevx!
A-squared

Basically THE best!

 

[Creer]

Thank you!
I will try them.

You are welcome,

BTW. remember that the best security is security based-on three layers of protection:
1. Prevention
2. Detection
3. Cure (image and data backup software)

You don't have to pay extra money for that, just for example, you can use this config:
1. Prevention (built-in Windows mechanism like: SRP, enabled DEP for all programs and services, UAC, LUA - they are not so intrusive as classical HIPS)
2. Detection (any free available on the market AV app. if you want also can it be AS/AM)
3. Cure (e.g. Macrium Reflect Backup software and storage backups on external hard drive)
Also don't forget about common sense


HTH,

 

[hackerman1]

hi !

Creer: "1. Prevention (built-in Windows mechanism like: SRP, enabled DEP for all programs and services, UAC, LUA - they are not so intrusive as classical HIPS)
2. Detection (any free available on the market AV app. if you want also can it be AS/AM)"

a lot of mysterious abbreviations, i understand DEP + UAC, but the rest...
can you explain in plain english please ?

 

[Creer]

hi !

Creer: "1. Prevention (built-in Windows mechanism like: SRP, enabled DEP for all programs and services, UAC, LUA - they are not so intrusive as classical HIPS)
2. Detection (any free available on the market AV app. if you want also can it be AS/AM)"

a lot of mysterious abbreviations, i understand DEP + UAC, but the rest...
can you explain in plain english please ?

Hi,

sure.
SRP it's Software Restriction Policies (technet library: Using Software Restriction Policies to Protect Against Unauthorized Software )
LUA it's Limited User Account, (working not on Administrator account, but honestly since we have in Windows Vista and Windows 7 - UAC you don't have to use LUA which can be irritating every time when you want install software you have to log out and log in into account with administrator privileges)

 

[hackerman1]

thanks !
and "AS/AM" ?

 

[Jacee]

Anti-Spyware/Anti-Malware

 

[jav]

Thank you every one for help.
So far I did:
1. Enabled DEP for all programms

2. UAC is on default level

3. Installed GeSWall. It seems to that it functions the same way as Defencewall HIPS, but has free version.
What do you think about it's free version is it any good? It wasn't preconfigured so I had to put my browser, p2p, msngr and players isolate when start or isolate when tried access. So is it's free version worth having?

4. Installed Shadow Defender. As I understand it has function to put PC into virtual machine and rollback when restarted. So in theory any change I will or any virus I get do in Shadow mode should not affect after restart, is it right? I found it useful program to test other programs in shadow mode (problem only with programs which require restart) and do online scans as there is a risk that I can face some rogue AV. I have scanned my PC with Hitman Pro 3 - SurfRight and Prevx in shadow mode, not to run risk.
So am I using this program right way, and is it really safe? Or should I get normal Virtual Machines like Vmware or VirtualBox?

5. I am thinking about WinPatrol. Is it's free version good enough?

6. And only serious problem is backup. As I dont have external hard drive.
Maybe I will backup Laptop A --> Laptop B and Laptop B --> Laptop A
or is it not good idea?

Thank you everybody again!

EDIT: one more problem I encounter with GeSWall, I can label programs as trusted from drop-down menu. Like I downloaded trusted download and want installed it but it asks me to turn off UAC to label it.

 

[Creer]

Thank you every one for help.
So far I did:
1. Enabled DEP for all programms

2. UAC is on default level

3. Installed GeSWall. It seems to that it functions the same way as Defencewall HIPS, but has free version.
What do you think about it's free version is it any good? It wasn't preconfigured so I had to put my browser, p2p, msngr and players isolate when start or isolate when tried access. So is it's free version worth having?

4. Installed Shadow Defender. As I understand it has function to put PC into virtual machine and rollback when restarted. So in theory any change I will or any virus I get do in Shadow mode should not affect after restart, is it right? I found it useful program to test other programs in shadow mode (problem only with programs which require restart) and do online scans as there is a risk that I can face some rogue AV. I have scanned my PC with Hitman Pro 3 - SurfRight and Prevx in shadow mode, not to run risk.
So am I using this program right way, and is it really safe? Or should I get normal Virtual Machines like Vmware or VirtualBox?

5. I am thinking about WinPatrol. Is it's free version good enough?

6. And only serious problem is backup. As I dont have external hard drive.
Maybe I will backup Laptop A --> Laptop B and Laptop B --> Laptop A
or is it not good idea?

Thank you everybody again!

You are welcome.

Ad.3.
Have a look at this threads (differences between GW and DW):
Defensewall vs. Geswall - Gladiator Security Forum
and quite old from 2007 at Wilders:
DefenseWall / GESwall - Wilders Security Forums

Ad.4.
Yes, you are right this is how SD works.
Safe is very relative concept... you see few months ago someone found a way how to bypass SD protection but after few days, Tony (developer of SD) fixed this issue, so far it is again safe app. This is why good support is very important to keep product up to date, malware writers don't sleep, they earn big money on this business (according to article in NYT, even bigger than drugs dealers/narcotic market).

Ad.5
I can't tell you about it since I haven't tried latest Winpatrol version.

Ad.6.
The idea of external backup is simple - when your main hard disk crash - you have a backup on another drive. It is always better to have few backup/copy of your files in another drives because it is double protection in case of hard drive crash or in case of theft of your laptop.

 

[AussieGuy92]

i have used I0 bit in the past and had no problem with it did find stuff that others didn't but try them all out and see what works for you.