I'm thinking of complementing ESS with an AntiSpyware program and have two questions:

Do you guys think doing that makes good sense? ...and if so,

Which AS program works well with ESS (effective and light on resources)?

Thanks very much.

I think ESS should be fine for realtime.

But if youre really convinced of running a realtime AS, I would choose SUPERAntiSpyware Pro.

I run CounterSpy V2.5 and find it a more complete and thorough Antispyware than SAS.

{QUOTE-> I run CounterSpy V2.5 and find it a more complete and thorough Antispyware than SAS. <-QUOTE}
CounterSpy doesn't detect in real time... it's behavior blocking only I think.

{QUOTE-> I think ESS should be fine for realtime.
But if youre really convinced of running a realtime AS, I would choose SUPERAntiSpyware Pro. <-QUOTE}
I just thought adding AS might be a good idea after reading the following in PC Magazine's review of ESS:
{QUOTE-> So-so ability to recognize spyware. Failed to block or remove many spyware samples it detected.... <-QUOTE}

But do you often encounter spyware?

Using an alternate browser (like Firefox or Opera) and have good surfing habits help reduce the risk.

{QUOTE-> But do you often encounter spyware?

Using an alternate browser (like Firefox or Opera) and have good surfing habits help reduce the risk. <-QUOTE}
Not knowingly, but then again I don't know if any has slipped by ESS and is now residing in our PCs! :-\

And not that I don't appreciate your feedback (I really do!), but I much prefer using IE7.

@Jo Ann,

I use Spy Sweeper together with ESS and while it does a good job of catching spyware & adware that slips through ESS, I must say that Spy Sweeper is not light on resources. For that very reason, I'm considering just using one of the on-demand AS scanners.

{QUOTE-> @Jo Ann,

I use Spy Sweeper together with ESS and while it does a good job of catching spyware & adware that slips through ESS, I must say that Spy Sweeper is not light on resources. For that very reason, I'm considering just using one of the on-demand AS scanners. <-QUOTE}

No offense, but my computer is a couple of years old and was at the time a bit above average (although I've increased RAM to 512 MB, the minimum for modern more-than-minimal computing), and the Spy Sweeper (without antivirus) is VERY light on my resources !

I really don't understand how people can see it as a resource hog.

{QUOTE-> CounterSpy doesn't detect in real time... it's behavior blocking only I think. <-QUOTE}

I'm not sure what you mean.

It has active protection (prevents the installation of spyware/adware, or stops it when it becomes active), and it can be very effective, especially if you set the active protection at paranoid.

And you can perform scans to see if there is any spyware on your system, and delete it if wanted.

{QUOTE-> No offense, but my computer is a couple of years old and was at the time a bit above average (although I've increased RAM to 512 MB, the minimum for modern more-than-minimal computing), and the Spy Sweeper (without antivirus) is VERY light on my resources !

I really don't understand how people can see it as a resource hog. <-QUOTE}
No offense taken... You qualified your defense of Spy Sweeper by adding "(without antivirus)", and I can accept that. But when combined with ESS (one of the lightest internet suites), it adds about 15 sec to my startup time and noticeably slows most internet operations.

I agree with appster. I tried Spy Sweeper and it slows my boot time way down also even after defragging my boot files. I only uswe on demand spyware scanners. I see no need for a realtime spyware scanner when I use Online Armor and NOD32. I use SAS amd Spybot on demand once a week. Not one infection in 5 years and I surf everything.

Jo Ann,

Quote from Counterspy V2 website regarding "real time":

Groundbreaking Technology
Now, the most menacing spyware, rootkits, and blended malware threats have no place to hide! With CounterSpy V2's revolutionary new design you get faster, more effective spyware scans and real-time protection that removes even the deepest rooted malware from your PC.

I use Conterspy with ESS and it complements very well and is very light on resources. I too share your concern using ESS alone. I posed your exact question several months ago without any good feedback. After using Counterspy w/ESS I would highly recommend it! I just don't trust ESS by itself.

Hope this helps!

{QUOTE-> I'm not sure what you mean.

It has active protection (prevents the installation of spyware/adware, or stops it when it becomes active), and it can be very effective, especially if you set the active protection at paranoid.

And you can perform scans to see if there is any spyware on your system, and delete it if wanted. <-QUOTE}
Well, last time I tried it it was only detecting things such as Internet Explorer's home page being changed, something being added to startup, etc.

{QUOTE-> I'm thinking of complementing ESS with an AntiSpyware program and have two questions:

Do you guys think doing that makes good sense? ...and if so,

Which AS program works well with ESS (effective and light on resources)?

Thanks very much. <-QUOTE}


Whatever one deciedes to use, relying on one app to keep you safe is not a good idea IMO.
A layered defense, I believe is the best way to go.
One must just search and find the right combo that works for them.

I second that!

Rather than an anti-spyware program that relies on definitions, you might consider a sandbox type program to isolate your internet facing applications.

Sandboxie (http://www.sandboxie.com/)
GeSWall (http://www.gentlesecurity.com/)
DefenseWall HIPS (http://www.softsphere.com/)
SafeSpace (http://www.artificialdynamics.com/content/products/register-personal.aspx)

{QUOTE-> No offense taken... You qualified your defense of Spy Sweeper by adding "(without antivirus)", and I can accept that. But when combined with ESS (one of the lightest internet suites), it adds about 15 sec to my startup time and noticeably slows most internet operations. <-QUOTE}

To avoid confusion: there is the traditional Spy Sweeper (anti-spyware/adware,not certain about trojans), and the version of the Spy Sweeper that includes antivirus.

I do use an antvirus, currently the resource hog known as McAfee Virusscan Plus 2008, which I plan to ditch when Counterspy adds an antivirus part (soon I hope).

McAfee is the only resource hog on my computer (and I know because there was a time when I didn't have that junk on my computer).

{QUOTE-> Well, last time I tried it it was only detecting things such as Internet Explorer's home page being changed, something being added to startup, etc. <-QUOTE}

If that happens without a good reason, it's a reason to block it and perform a scan for the presence of spyware ! And even if you can't find anything, you have at least blocked unwanted behaviour.

Hmm, I've received a lot of 'mixed signals' here, so I guess I'll just rely on ESS for all malware protection (until that's proven to be a mistake)! ;)

However, I do appreciate the suggestions.

As it turns out, for whatever reason I had completely overlooked Hotep's post:
{QUOTE-> ....I use Conterspy with ESS and it complements very well and is very light on resources. I too share your concern using ESS alone. I posed your exact question several months ago without any good feedback. After using Counterspy w/ESS I would highly recommend it! I just don't trust ESS by itself. <-QUOTE}
So I decided to try Counterspy with ESS and just as Hotep said, it is light on resources and seems to do its job quite well - upon installation it found a number of spyware/adware that apparently got by ESS!

Thanks Hotep!

{QUOTE-> As it turns out, for whatever reason I had completely overlooked Hotep's post:

So I decided to try Counterspy with ESS and just as Hotep said, it is light on resources and seems to do its job quite well - upon installation it found a number of spyware/adware that apparently got by ESS!

Thanks Hotep! <-QUOTE}
What kind of spyware? Cookies are not spyware and the last time I used Counterspy I had 20 false positives. Mainly related to Gamespy which is how I play online games sometimes and it is clearly not spyware. Make sure you check and be sure that what Counterspy found isnt trusted programs on your pc.

{QUOTE-> What kind of spyware? Cookies are not spyware and the last time I used Counterspy I had 20 false positives. Mainly related to Gamespy which is how I play online games sometimes and it is clearly not spyware. Make sure you check and be sure that what Counterspy found isnt trusted programs on your pc. <-QUOTE}Fp's happen with security programs now and then. Checking whats found is always a prudent course of action regardless of your choice of security solutions. I hope you contacted technical support at Sunbelt.

{QUOTE-> What kind of spyware? Cookies are not spyware and the last time I used Counterspy I had 20 false positives. Mainly related to Gamespy which is how I play online games sometimes and it is clearly not spyware. Make sure you check and be sure that what Counterspy found isnt trusted programs on your pc. <-QUOTE}While Counterspy did find a number of tracking cookies, it also found a trojan with the name of 'Vundo' (to the best of my recollection). But insofar as cookies not being spyware, I don't want tracking cookies on my system, do you?

{QUOTE-> But insofar as cookies not being spyware, I don't want tracking cookies on my system, do you? <-QUOTE}


I want nothing that I did not put there myself on my system.
Which is why I started using SandBoxie again. Great protection. :thumb:
Jo Ann, if CS does not work out for you may I suggest SAS. Even just on demand, SAS offers great detection and removel. Myself I keep two on demand scanners just to make me feel better that nothing is getting on my box. ;D

{QUOTE-> I want nothing that I did not put there myself on my system.
Which is why I started using SandBoxie again. Great protection. :thumb:
Jo Ann, if CS does not work out for you may I suggest SAS. Even just on demand, SAS offers great detection and removel. Myself I keep two on demand scanners just to make me feel better that nothing is getting on my box. ;D <-QUOTE}Well I am a Rollback Rx user and typically carry a snapshot history for the past 7-days. So while I can easily and quickly revert to a prior system state, the thing with spyware is that without an anti-spyware program it's usually not apparent that kind of malware is on your system!

Hi Jo Ann,

I use both CounterSpy and SAS I have not had any
false positives with SAS, and only one with CounterSpy,
and I think it is really important for you to use a program
that you understand, that works well on your computer,
and that does not cause any conflicts with other security
type software you may have installed.

I think it is also important that when any security program,
be it a Anti Virus or a Anti Spyware program throws a alert
for a possible infection that prior to taking any action that
you check the path, directory, and the file to insure that
yes a infection has occurred, or that no a false positive has
occurred and than decide on your course of action, and if
it is a FP than notify the software vendor.

I have had other security software throw up alerts on
legitimate windows system files and hosts files and
it has made me wary.

I think to that you have been given some excellent advice
in this thread, both programs are great applications along
with ESS, and as LoneWolf said on demand scanners make
a nice addition for some reassurance.

Regards,

Wake

Good advice. :thumb:

{QUOTE->

Quote from Counterspy V2 website regarding "real time":

Groundbreaking Technology
Now, the most menacing spyware, rootkits, and blended malware threats have no place to hide! With CounterSpy V2's revolutionary new design you get faster, more effective spyware scans and real-time protection that removes even the deepest rooted malware from your PC.
<-QUOTE}

Maybe being picky but realtime protection does not remove "deeply rooted malware" from a system it simply offers checkpoints to stop malware from installing in the first place.

Rubs hands with glee,time to install some genuinely deeply rooted malwares(Kernel mode RK trojans/ADS trojans from my Zoo collection) and see if CS live's up to its marketing spill of "no place to hide" :)

FWIW if folks want realtime protection CS has the edge over SAS because of the HIBS integration into the software offers a completely different level of protection.

If folks want an ondemand scanner(for detection and removal)of malwares then i would suggest the Raw disk read technology of SAS's next botkiller is up another level on CS scanning technology so SAS has the edge there:thumb:

Hi fcukdat,

I look forward to seeing your results IMHO CounterSpy
offers top notch real time protection using any web browser,
and SAS compliments it nicely for on demand scanning.

However due my web surfing habits every scan with either
of these products I get a no harmful software detected
message lol so I am curious to see your results.

Happy Testing !

Wake

does nobody like ewido?

{QUOTE->

Which AS program works well with ESS (effective and light on resources)?

<-QUOTE} SUPERAntiSpyware Pro. v4

{QUOTE-> Maybe being picky but realtime protection does not remove "deeply rooted malware" from a system it simply offers checkpoints to stop malware from installing in the first place.

Rubs hands with glee,time to install some genuinely deeply rooted malwares(Kernel mode RK trojans/ADS trojans from my Zoo collection) and see if CS live's up to its marketing spill of "no place to hide" :)

FWIW if folks want realtime protection CS has the edge over SAS because of the HIBS integration into the software offers a completely different level of protection.

If folks want an ondemand scanner(for detection and removal)of malwares then i would suggest the Raw disk read technology of SAS's next botkiller is up another level on CS scanning technology so SAS has the edge there:thumb: <-QUOTE}

I would like to see your results.

SUPERAntiSpyware and Malwarebytes' Anti-Malware are my favourites. I just tested Evidence Eliminator (http://www.evidence-eliminator.com/) and Malwarebytes' Anti-Malware finds after EE installation lots of "problems", SUPERAntiSpyware not a single. They reinforce each other :D

{QUOTE-> SUPERAntiSpyware and Malwarebytes' Anti-Malware are my favourites. I just tested Evidence Eliminator (http://www.evidence-eliminator.com/) and Malwarebytes' Anti-Malware finds after EE installation lots of "problems", SUPERAntiSpyware not a single. They reinforce each other :D <-QUOTE}
never try Malwarebytes' Anti-Malware, it's the first time i hear about it

{QUOTE-> never try Malwarebytes' Anti-Malware, it's the first time i hear about it <-QUOTE}

I use it also. Malwarebytes AntiMalware realtime and SAS on demand.
They have a free and paid version
Free being on demand scanner and paid has a resident guard.
They are working on a trial with the guard.
Malwarebytes (http://www.malwarebytes.org/mbam.php)

{QUOTE-> I use it also. Malwarebytes AntiMalware realtime and SAS on demand.
They have a free and paid version
Free being on demand scanner and paid has a resident guard.
They are working on a trial with the guard.
Malwarebytes (http://www.malwarebytes.org/mbam.php) <-QUOTE}
thanks for the info
but there is the ewido forum , is not so powerful the new version of Ewido?


but a lot of malware change and ruin the os , is there some anti malware that is able to correct the damages of the malware
almost every software can only delete the malware

{QUOTE-> Hi Jo Ann,

I use both CounterSpy and SAS I have not had any
false positives with SAS, and only one with CounterSpy,
and I think it is really important for you to use a program
that you understand, that works well on your computer,
and that does not cause any conflicts with other security
type software you may have installed.

I think it is also important that when any security program,
be it a Anti Virus or a Anti Spyware program throws a alert
for a possible infection that prior to taking any action that
you check the path, directory, and the file to insure that
yes a infection has occurred, or that no a false positive has
occurred and than decide on your course of action, and if
it is a FP than notify the software vendor.

I have had other security software throw up alerts on
legitimate windows system files and hosts files and
it has made me wary.

I think to that you have been given some excellent advice
in this thread, both programs are great applications along
with ESS, and as LoneWolf said on demand scanners make
a nice addition for some reassurance.

Regards,

Wake <-QUOTE}

if i'm not wrong ,CounterSpy has a huge database
about 180mb , need a lot of time to update
and i don't know why is so huge

{QUOTE-> is there some anti malware that is able to correct the damages of the malware <-QUOTE}
None. Every malware scanner leaves debris, even if they're harmless data files or registry entries. Formating or restoring a clean image is the only way to restore the OS to a pristine state.
{QUOTE-> and i don't know why is so huge <-QUOTE}
IIRC, CounterSpy includes a whitelist to reduce FPs in its HIPS.