Jump to content

concern about anti-virus software


fadi_nzr

Recommended Posts

(disclaimer)

there is a policy here of not endorsing one particular "antimalware" (the products of this company aside) or "antivirus" .

 

not endorsing nor panning a particular product ...

1 , 3 and 4 are good to have .

i question anything "anti" from MS as they have recently "farmed out" their "anti" software to a third party .

 

as for these (or any combination of such software being "enough") ...

ask the TI guys at "Target" what is "enough" .

Link to post
Share on other sites

(disclaimer)

there is a policy here of not endorsing one particular "antimalware" (the products of this company aside) or "antivirus" .

 

not endorsing nor panning a particular product ...

1 , 3 and 4 are good to have .

i question anything "anti" from MS as they have recently "farmed out" their "anti" software to a third party .

 

as for these (or any combination of such software being "enough") ...

ask the TI guys at "Target" what is "enough" .

 

So do you think Enhanced Mitigation from MS is useless

Link to post
Share on other sites

hi fadi-nzr,

 

Deciding when you consider your computer sufficiently secured depends on quite some factors. Experience with computers and budget are just two of them. That is one of the reasons why just and about everyone is agrees on what is best or sufficient. For example, I think the security of my computer is 'good', but my family hates using my computer as they have trouble with noscript and cookie whitelisiting (and then some). So I cannot tell you exactly what is best for you. I can try to mention what I notice in your list and try to explain it as well as I can, so you can make a informed decision.

 

The Enhanced Mitigation Experience Toolkit (EMET) and Malwarebytes anti-exploit (MBAE) do (partially) overlap in fuction. Both are aimed at preventing exploits. EMET can cover more programs. EMET can actually cover just and about every proces running on you computer, but occasionally it gives a false positive (heapspray in particulart). MBAE (is still in beta and) covers less programs but, as far as I understood, protects those programs better than EMET can. EMET does require some (easy) configuring whereas MBAE runs straight out of the box.

I chose to use both, what you prefer is up to you.

 

ESET and MBAM sound good to me. Consider using the PRO version of MBAM as it provides real-time protection and allows sheduled scans and updates. 'set it and forget it' is always nice. I'm very pleased with the pro version but some argue that their Anti-virus software doesn't let through (enough) malware to make it worthwile.

 

You do realise that the support for windows XP will end soon? So after the 8th of april no know security holes in XP will be patched. Maybe you should consider buying/downloading a new OS or a whole new computer. Installing linux as a replacement for windows XP is an often mentioned solution. I'm not really at home in the linux scene but I read somewhere that linux Mint is supposed to look and feel a lot like windows. Ubuntu seems to be very popular.

 

There were some things that I missed on your list. Consider adding them to your list.

 

-backup software: Usually described as the most important thing besides breathing. This is a bit exaggerated but it illustrates its importance. Backup protect against file loss. Hardware failure can cause file loss as well and can happen on a completely 'clean' system as well. As some say 'hardware is cheap, data is expensive". Backups are the only thing between hardware failure and the pictures of you loved ones. That said, backups can be made without additional software.

(I am a big fan of creating so called 'images' of my system and someone else on this forum is a fan of HD cloning. Both are ways to use backups that can be used to solve serious computer problems.)

 

-on-demand scanners (assuming you are using the pro version of MBAM): To make sure no malware made it past my computers defenses I occasionally run some 'on-demand' anti-malware/anti-virus scanners. These do not prevent infection and are usually free. I have a couple of these laying around. Whether you need them depends on your personal preferences. How worried are you about malware running undetected (by everyting including you) on your system? How often are you going to run them? (be honest)

 

-software to help keep your other software up-to-date: Out-dated software can pose a security risk. There is software that helps keep your software up to date. (Secunia PSI is the best known for it, but far from perfect.) Some software (like firefox, windows and java) however already have auto-update functions and you can update software manually as well. I like to have a bit help with tracking what software needs to be updated though.

 

 

This article from bleepingcomputers describes how to keep you computer safe in some easy steps. You might find it usefull.

 

This was all about aplications but the biggest security hole resides between the keyboard and the chair. My advise is that you try to read about the internet security risks. (Follow the MB blog for example.) The more you know, the better you can protect your self.

 

I'd like to end with two closing notes:

First: I'm no malware expert.
Second: When it come to what level of protection I prefer, I (think I) tend to aim for the high side. Some would go even further, others think I already went overboard. What you mentioned in your list already beats what I see on the computers of most of the people around me, but it doesn't live up to the level of security I prefer.

 

 

I hope this helped you a bit further. If you have any questions, please post and ask.

 

-Durew

 

 

 

Link to post
Share on other sites

@Durew

 

Wow, this is impressive reply.

 

you answered most of my questions which I was about to ask

some people told that Nod doesn't offer a good firewall what do you think about that

and regarding on-demand scanners, I usually run these tools when I feel the computer is acting abnormally ( what are the tool u like to use )

and finally I honstally do not care about moving to new OS, because neither my laptop's specs is not capable nor I like to change the system

( I use this machine for testing stuff and other minor personal uses ), and I don't like linux for regular uses .

 

So, from the list I mentioned what combination would be good for my PC ?

 

and also I would like to tell you more about the other PCs I have

 

1- Toshiba win 7 64 bit and contains

 

Enhanced Mitigation Experience Toolkit from ( Microsoft)

MBAM Pro

Norton Inetnet Security

 

2- Toshiba win 8.1 64 bit

 

Enhanced Mitigation Experience Toolkit from ( Microsoft)

MBAM Pro

Webroot Inetnet Security

Link to post
Share on other sites

What I'm using on my windows 7 64 bit laptops(it should work for windows 8 I think) are malwarebytes,Bitdefender free anti virus and that's it cause its updated 1-2+ times a day each day) but their sphere for unlimited devices(which is Bitdefender total security 2014 but for unlimited devices with everything protected unlike other ones where it protects you in certain areas) but I found it on a site for 2 years 69.99 for all types of devices ..hope this help you out

 

I am satisfied with Nod and MBAM Pro

Link to post
Share on other sites

Hi fadi_nzr,

 

I'm glad to know it answered most of you questions.

 

In response to some of the thing you wrote:

 

You wrote: "some people told that Nod doesn't offer a good firewall what do you think about that"?.
As far as I can tell Nod32 anti-virus does not include a firewall. (ESET smart security does.) Since I only found Nod anti-virus and no other Nod programs I came to the conclusion that Nod does not offer a good firewall, as it offers no firewall at all.

 

You wrote "regarding on-demand scanners, I usually run these tools when I feel the computer is acting abnormally ( what are the tool u like to use )"

I generally use the same approach as when to scan, except that I run them during the holidays as well. I personally use as on-demand scanners: "Emsisoft emergency kit", "Comodo Cleaning essentials", "Kaspersky TDSS killer" (if it finds something you run for the malware removal part of this forum, don't even try fixing it yourself), Malwarebytes anti-rootkit (same note as with the TDSS killer) and "hitman pro" (The free version, don't activate the trail version). There is no special reason why I use these. Most of them where downloaded out of curiosity, and they sticked around because they were (in my eyes) easy to use and/or I was too lazy to remove them.

 

You wrote: "So, from the list I mentioned what combination would be good for my PC ?"

In my point of view: All of them. (And add some)

As I stressed before, this is from my preferences, you are the only one who can make the final call. People will disagree with you (and me) no matter what you choose. Just try to make an informed decision. I'd say try them all, if you don't like EMET try to reconfigure it and consider removing it.  If you dislike ESET smart security, make sure you replace it with another internet security suite. Later in this post I'll discuss MBAE.

 

You wrote that you didn't want to change from windows XP. Just be careful and remember that malware can spread via usb-drives as well. It would be a pity if your other computers would get infected. I'd strongly advise to make an 'image' of you harddrive. An 'image' of you system can help you to recover from malware fast. (It doesn't work against MBR malware as far as I know.) I would also advise to remove all sensitive files from that computer and disable/remove any webcams or microphones the machine has. The latter two because hackers can use them to spy on you and it is (generally considered) way more fun to mess with people if you can see their reactions.
Whether you do any of these is of course your decision to make.

 

Concerning you other rigs: I'm a bit surprised that you have three different internet security suites for three different computers. Most brands offer licenses for multiple computers, that's cheaper than buying individual licenses for each computer. From a security point of view this might actually be a good idea as it could reduce the chance that one piece of malware takes down all your computers but I don't know if this reduction is significant. (I'm no expert in malware)

In the lists of the other computers I don't see any back-up software, on-demands scanners or software helping to keep your computer up to date either. Consider adding those if they aren't installed yet.

 

As for MBAE beta: If you have deep hooks enabled in EMET it might give conflicts. As far as I know the cause of this is still unknown. So I'd like to ask you to enable those deephook and install MBAE. If programs that should be protected by MBAE refuse to start, disable the deep hooks and tell malwarebytes so in this sub-forum. MBAE shouldn't give you any significant troubles further than that, I haven't read about stability problems so far and I have no problem at all with deep hooks. (In this topic you can find the known issues of MBAE.)

I should also mention that beta does mean that it is still being tested and that using it is on you own risk. Errors do occasionally occur. (There was one about an expiration date, updating to the newest version fixed it.) Computer configurations vary wildly so my experiences is no guarantee. If you are not comfortable with that, don't use it. Sitting behind you computer, fearing it might crash any moment, is not good for your computing experience.

 

Again, same notes and disclaimers as before apply.

 

I hope this helped, and again, if you have any questions, please post & ask.

 

 

 

 

 

 

 

Link to post
Share on other sites

Hi fadi_nzr,

 

I'm glad to know it answered most of you questions.

 

In response to some of the thing you wrote:

 

You wrote: "some people told that Nod doesn't offer a good firewall what do you think about that"?.

As far as I can tell Nod32 anti-virus does not include a firewall. (ESET smart security does.) Since I only found Nod anti-virus and no other Nod programs I came to the conclusion that Nod does not offer a good firewall, as it offers no firewall at all.

 

I have the least version of ESET Smart Security

 

You wrote "regarding on-demand scanners, I usually run these tools when I feel the computer is acting abnormally ( what are the tool u like to use )"

I generally use the same approach as when to scan, except that I run them during the holidays as well. I personally use as on-demand scanners: "Emsisoft emergency kit", "Comodo Cleaning essentials", "Kaspersky TDSS killer" (if it finds something you run for the malware removal part of this forum, don't even try fixing it yourself), Malwarebytes anti-rootkit (same note as with the TDSS killer) and "hitman pro" (The free version, don't activate the trail version). There is no special reason why I use these. Most of them where downloaded out of curiosity, and they sticked around because they were (in my eyes) easy to use and/or I was too lazy to remove them.

 

I don't use that much of tools maybe two or three ( very rarely ), Malwarebytes anti-rootkit

 

You wrote: "So, from the list I mentioned what combination would be good for my PC ?"

In my point of view: All of them. (And add some)

As I stressed before, this is from my preferences, you are the only one who can make the final call. People will disagree with you (and me) no matter what you choose. Just try to make an informed decision. I'd say try them all, if you don't like EMET try to reconfigure it and consider removing it.  If you dislike ESET smart security, make sure you replace it with another internet security suite. Later in this post I'll discuss MBAE.

 

You wrote that you didn't want to change from windows XP. Just be careful and remember that malware can spread via usb-drives as well. It would be a pity if your other computers would get infected. I'd strongly advise to make an 'image' of you harddrive. An 'image' of you system can help you to recover from malware fast. (It doesn't work against MBR malware as far as I know.) I would also advise to remove all sensitive files from that computer and disable/remove any webcams or microphones the machine has. The latter two because hackers can use them to spy on you and it is (generally considered) way more fun to mess with people if you can see their reactions.

Whether you do any of these is of course your decision to make.

 

Why I can't use win XP even after the end of support date. If I know what I am doing, and aware of what websites to visit, in addition to the security software

 

Concerning you other rigs: I'm a bit surprised that you have three different internet security suites for three different computers. Most brands offer licenses for multiple computers, that's cheaper than buying individual licenses for each computer. From a security point of view this might actually be a good idea as it could reduce the chance that one piece of malware takes down all your computers but I don't know if this reduction is significant. (I'm no expert in malware)

In the lists of the other computers I don't see any back-up software, on-demands scanners or software helping to keep your computer up to date either. Consider adding those if they aren't installed yet.

 

sometimes I get them as gift and other time I get offers, so no wonder

I usually backup the other PCs and take care of them using on-demands tools when needed

 

As for MBAE beta: If you have deep hooks enabled in EMET it might give conflicts. As far as I know the cause of this is still unknown. So I'd like to ask you to enable those deephook and install MBAE. If programs that should be protected by MBAE refuse to start, disable the deep hooks and tell malwarebytes so in this sub-forum. MBAE shouldn't give you any significant troubles further than that, I haven't read about stability problems so far and I have no problem at all with deep hooks. (In this topic you can find the known issues of MBAE.)

I should also mention that beta does mean that it is still being tested and that using it is on you own risk. Errors do occasionally occur. (There was one about an expiration date, updating to the newest version fixed it.) Computer configurations vary wildly so my experiences is no guarantee. If you are not comfortable with that, don't use it. Sitting behind you computer, fearing it might crash any moment, is not good for your computing experience.

 

I am going to install on Win XP just to test this tool and see how it will help

 

Again, same notes and disclaimers as before apply.

 

I hope this helped, and again, if you have any questions, please post & ask.

Link to post
Share on other sites

Hi fadi_nzr,

 

In response to your remarks.

ESET smart security seems to have an OK to good firewall. The only firewall testing site I tested and rated it. The URL to the (translated to english) site below:

http://translate.google.com/translate?sl=ru&tl=en&js=n&prev=_t&hl=nl&ie=UTF-8&layout=2&eotf=1&u=antimalware.ru&act=url

The amount of secondary scanners I have is a bit excessive, three should be sufficient. As you requested what I used I figured I should mention them all. To maybe extend my collection, which ones to use find usefull?

Last thing about that: Rember to always get the latest version of MBAR as versions follow each other quickly as it is still in beta.

 

About windows XP. I tried not to state that you could not use it. Merely that it would not be safe anymore and I wouldn't do it. I tried to give some advise to minimize the impact of an infection as well.

As I'm no malware expert I'll need some time to find my sources again (firefox crashed before I could post my whole story, EMET+sandboxie was to blame) about why windows XP will not be safe anymore. I intend to post more about this subject somewhere next week.

For now just some url's about the subject:

https://blogs.technet.com/b/security/archive/2013/08/15/the-risk-of-running-windows-xp-after-support-ends.aspxhttp://www.techrepublic.com/blog/european-technology/ok-so-stick-with-windows-xp-but-how-big-a-risk-do-you-run/http://www.zdnet.com/microsoft-warns-windows-xp-users-risk-zero-day-forever-7000019503/

I'm glad to know that you backup your computers. I got a little worried when I didn't see them listed.

 

Did MBAE work out for you? I noticed in the MBAE help sub-forum that you ran into a minor issue, did you manage to resolve it? (Or live with it?)

 

 

Link to post
Share on other sites

  • Root Admin

Hello,

I am on Wind XP machine SP3 32-bit

and I want to know if these four applications enough to secure my PC

1-ESET Smart Security

2- Enhanced Mitigation Experience Toolkit from ( Microsoft)

3-Malwarebytes Anti-Malware

4-Malwarebytes Anti-Exploit Beta

 

Bottom line answer is NO.  It will certainly help by using those products though.

 

Are there ways to minimize or reduce the risk of data loss YES - Durew has provided you with some information but this is a much larger discussion and as a Security Company we cannot endorse that you should stay on Windows XP beyond the date where Microsoft will discontinue security updates.  We will continue to support XP with our products as best that we can, but again you should take other measures to ensure you do not lose data and that you're able to reinstall, rebuild Windows XP if it were to become infected beyond a point where it could not be cleaned.

 

Here are a few items that may help you in your quest to continue to use XP beyond the cut-off date for security updates from Microsoft.

 

List of well known antivirus products

Backup Software

Do I need a Windows Registry Cleaner?

The complexity of finding, preventing, and cleanup from malware

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.