-{ Quote: "Hi Brandon - AV+ is out of beta now :)" }-

I know, just stating I would always be testing OA AV+ beta's ;)

Nod32 (trial)
Online Armor
BoClean
Filseclab

Hello,

Here are my four choices:

1) Ghost Security Suite 1.110 ;D (Yes, i'm cheating a bit here!)
2) Avast Pro 4.7 (But looking at NOD32 as a possible future alternative)
3) Ewido 4.0
4) CounterSpy 1.5

Richie

v7

looknstop
nod32
online armor
regrun security suite gold

- nod32
- system safety monitor (like crc control of all process executed, program launch who, protect access to registers, someone know it? it is a good software, I like it) http://www.syssafety.com/
- ewido

do you think I need some other software?
I an searching a firewall small simple efficient (little cpu usage, little ram usate, no blue screen) (i know that now blue screen is not agree with no ittle cpu usage)

-{ Quote: "
I an searching a firewall small simple efficient (little cpu usage, little ram usate, no blue screen) (i know that now blue screen is not agree with no ittle cpu usage)" }-
Kerio 2.1.5, LooknStop, CHX-I, and Jetico all have very small footprints and don't use much CPU at all. Ewido on your list does use a lot of cpu, you might want to set ewido to on-demand scanning only and replace it with bo-clean which is much lighter.

Cheers,

Alphalutra1

-{ Quote: "- I an searching a firewall small simple efficient (little cpu usage, little ram usate, no blue screen) (i know that now blue screen is not agree with no ittle cpu usage)" }-

My suggestion for a firewall would be Look N Stop. Its small, very light on resources and hard as nails for security. Just use the enhanced rulesset provided. They have a forum right here at Wilders...8)

These would have to be my choices:
nod32
Ad-Aware
reg defend
Outpost Firewall Pro

A few posts have been removed as they were O/T and of a personal nature.

Please stay on topic

Thanks in advance

My 2nd thought,

NOD
ZAP
OA
SpySweeper

Jetico or ZA Pro
Kav
RegDefend
Online Armor

sygate firewall
avg anti-virus
process explorer (www.sysinternals.com to monitor what's running)
active ports (listed on snapfiles, a port monitor)

Familiarity with what ports are used and what services are running has helped me more than once. I caught the last trojan ( a smitfraud variant) in process explorer. The last two programs require me to monitor what's going on. I find it helps me to learn about ho the sytem works (and fails).

--G

1. Kaspersky Internet Security 6
2. Ad aware pro
3. Hijack This!
4. Spyware Blaster

That is more than enough.;)

v8

Kaspersky Anti-Virus
Look 'n' Stop
Prevx1
True Image

Currently i'd say:

Firewall - Zone Alarm Free
Antivirus - KAV 6
AntiTrojan - Boclean
Security Suite - Regrun Platinum(includes UnHackme rootkit detection)

muf

v9

NOD32
Look 'n' Stop
Prevx1
True Image

NOD32
Outpost
Ewido
Spywareblaster

I said to myself, oh well, why not post my four active.

1. F-Secure 2006 Antivirus
2. Prevx1 ABC
3. Look'n'Stop
4. Spyware Terminator (will be changed for Online Armor Standard)

dja2k

KAV
KAH
F-Secure BlackLight
Windows Defender

First off, thanks to everyone who posted in this thread. It's been very helpful, enabled me to find out about many different security applications I didn't know about, allowed me to try these applications, and learn a lot about security.

My goal with the original question was to find out what works, what is efficient (i.e., memory use and more importantly system impact), and is reasonably priced or better yet free. I figured since I orignally started this thread, I should post my picks. So if I had to pick only 4 anti-malware apps, I would choose:

Free: Avira AntiVir, Ewido, Kerio 4.x, and System Safety Monitor.

Paid: Ewido, Look 'n' Stop, NOD32, and System Safety Monitor.

Once again, thanks to everyone who contributed. :thumb:

why did you replace kerio for the paid setup? is kerio 4 only good in free mode?

-{ Quote: "why did you replace kerio for the paid setup? is kerio 4 only good in free mode?" }-

I think Kerio is good both free or paid but if I'm going to buy a firewall, I like Look 'n' Stop better (it runs more efficiently on my computers than Kerio and the other paid software takes care of all the important security areas).

Here are the top 21 results (110 applications - 655 votes):

Product - Votes
NOD32 - 59
Ewido - 50
ProcessGuard - 48
KAV - 38
Outpost Pro - 31
RegDefend - 28
Spysweeper - 21
Online Armor - 20
Zonealarm - 20
Boclean - 19
Look 'n' Stop - 19
Ad-Aware - 17
SpywareBlaster - 17
Windows Defender - 17
Spybot S&D - 13
Avast - 10
AVG - 9
Zonealarm Pro - 9
Counterspy - 8
ShadowUser - 8
System Safety Monitor - 8

I combined free with paid to determine top 21.

This is the last time I'll update the numbers. There have been enough new products introduced and updated that if this thread started again the list would probably change some.

Here is my new FREE configuration:

Jetico 1 with Stem settings
ActiveVirusShield (KAV)
SpywareBlaster
IE-Spyad

I would call it the state of the art of security:

ShadowUser - Nod32 - ProcessGuard - Look'n'Stop

NOD32, Ad-Aware, ZoneAlarm and common sense. ;D ;D

DefensePlus
DefenseWall
Look'n'Stop
NOD32

or

DefenseWall
Look'n'Stop
NOD32
RegRun Platinum 4.6


Peace & Love,

CogitoErgoSum

v10

ewido anti-spyware
Look 'n' Stop
NOD32
Prevx1

My variants:


Windows Firewall
NOD32
Ad-aware se Personal
Panda ActiveScan


;D

Either the best around or...

NOD32
Kerio Firewall
A2 Anti-Malware (paid)
GesWall

NOD32
Spyware Terminator (Realtime Shield)
SUPERAntiSpyware Free Edition
GMER

1. NOD32 - for Antivirus, NOD32 heuristics
2. AntiVirusKit - for Kaspersky & Bitdefender virus defs & heuristics
3. Ewido - for anti-malware
4. Look'n'Stop - for client side firewall, leaks, program control, etc.

+ common sense & trying to keep semi-up-to-date

What I would NOT run (although I own them):

- Outpost Pro (bloat, imho)
- ProcessGuard (doesn't work with several off my apps, including some games)

WHAT I consider running (in near future):

- Trend Micro Antispyware (has been getting good results in tests lately, as an addition to replacement to Ewido)
- Jetico 2 (once it is fully out of beta and tested for performance, as a replacement to LnS)

+ in addition the freeware/on-the-net alternatives (l.

Given option is freeware:

* NOD32 or AVG as Antivirus :thumb:
* Adaware SE or MS Windows defender as AntiSpy :dry:
* Zone Alarm/Sygate or MS Windows Firewall as Firewall :thumb:
* Hijackthis or Deep process viewer for process monitoring :thumb:

Don't for get to lock down Windows security properties - close unnecessary services and disable any third party browser extensions (BHOs & Toolbars). :)

AOL KAV + Cyberhawk + Comodo Firewall + (optional Windows Defender but honestly i don't think you need it with KAV)

I don't think there could be any better free combination out there.

-{ Quote: "AOL KAV + Cyberhawk + Comodo Firewall + (optional Windows Defender but honestly i don't think you need it with KAV)

I don't think there could be any better free combination out there." }-

In your oppinion, is Comodo free firewall better than Jetico? As I'm thinking of changing.

Thanks
Suggers

Linux

@Suggers
It's easier to use, thats for sure. Nice GUI too, memory consumption is a bit higher but it's fixed and won't go any higher. Loads of features, good tech support and fast developement. And honestly i think Comodo is also more secure. That leak test was done with very old Comodo Firewall so they don't mean anything.

PG
LNS
NOD32
GMER

-{ Quote: "@Suggers
It's easier to use, thats for sure. Nice GUI too, memory consumption is a bit higher but it's fixed and won't go any higher. Loads of features, good tech support and fast developement. And honestly i think Comodo is also more secure. That leak test was done with very old Comodo Firewall so they don't mean anything." }-

Do you use KAV6 and comodo together? It's just I could never get KAV6 to work with comodo, and one of the mods on kaspersky forum confirmed that Comodo was the only (or one of the few) firewalls that conflicted with KAV6.

Since then however a newer version of KAV6 has been released so maybe this conflict has been fixed..

Suggers

eiether
Nod32 and lookNstop with counterspy or a squared


or kaspersky and lookNstop

or the third option f-secure internet secuierty 2007 when it comes out

im currently using aol Kav lite + cyberhawk + look n stop and have to say its real nice
if i didnt have look n stop i would use comodo also.

KAV's anti-virus
Spy Sweeper
CounterSpy

Are my only packages

Tiny Firewall 2005
For best-of-breed HIPS.
NOD32
Decent AV for that occasional time I want to e-mail or send a program to an unprotected acquaintance.

That's it :p

KAV Personal
Outpost Pro
ProcessGuard (full)
RegDefend (Tony Klein's 5/29/06 rules)

Nod32
BOClean
Jetico Personal Firewall
Ewido (free on-demand)

Freeware:

Comodo PF
Avast! Home
Ewido (on-demand)
Cyberhawk

Also, Firefox with NoScript extension

Nod32 paid. gaurded
SAS paid gaurded
Ewido Paid but on demand
A2 sqaure free on demand
Spybot.

Kaspersky IE Security
Arovax Anti-Spyware
Ewido
A-Squared Free

my opintion has changed a bit.

bitdefender 10 plus because of the great antivirus and the new amazing firewall.
counterspy to replace spysweeper.

or f-secure suite and counterspy depening on resourse usaage in final 2007 version.

or nod32 and counterspy and looknstop.

v11

ewido anti-spyware
NOD32
Prevx1
Outpost Firewall Pro

Antivir (paid)
Comodo Firewall
Spyware Terminator
Win Patrol (always always have it installed, sometimes don't even mention it)

kdm do you plan on getting the antivir secuirty suite?

I would.:)

antivir secuity suite should be on my pc once it is realeased. i havent seens a product that thereis nothing I dont like about it not one thing.

The firewall is excellent, sturdy but flexible. The AV already speaks for itself. Antispam is soon to come, not that personally it is a biggy with me but, this has been the most stable and effective beta application I have tried. Made a believer out of me, for now.

Nod32, Outpost Pro, MJ Registry Watcher, sense of humour.

using antivir_rootkit beta ! seems ok ;D

It's in the sig, and works for me :)

...screamer

Online Armor AV+ & Firewall (Still in Beta)
Prevx1
XPL SocketShield
RegRun Gold 4.5

dja2k

v12

BOClean (if someone bought it for me)
NOD32
Prevx1
Outpost Firewall Pro

If I had to choose it would be this four;

NOD32
Superantispyware Pro
Prevx1
Spywareblaster

NOD32 , ZA pro , EWIDO , System Safety Monitor.:D

Kav 2006
Outpost pro 4 RC
Ewido 4.0
SpySweeper 5

Hi Wilders,

Update

NOD32
OA-FW (beta)
BoClean
SnoopFree

v13

BOClean (if someone bought it for me)
Kaspersky Anti-Virus
Prevx1
Outpost Firewall Pro

Kis
Trend Antispyware

And that is all

KIS
counterspy when version 2.0 comes out
if i can be brothered prevx1

thats only three lol

Hi, ladore! too many set ups in few weeks, too many choices!
just a joke

ye rofl

OA AV+ Firewall
RegRun Gold 4.6
SocketShield
Prevx1

dja2k

1 ProcessGuard
2 Kerio 2.1.5 firewall
3 Winpatrol
4 Microsoft shared toolkit

Antivir suite (still in beta)
prevx1
a squared free (on demand)

or
antivir suite (still in beta)
online Armour
a squared (on demand)

or
fsis2007 (depends how light it is when tested at weekend)
online Armour or prevx1
a squared free (on demand)
( I need a free on demand scanner for antispyware)


lodore

OA
Norton IS 2007
Online Armor

OD
Spyware Terminator
Advanced Spyware Remover (Evonsoft)

-{ Quote: "Antivir suite (still in beta)
prevx1
a squared free (on demand)

or
antivir suite (still in beta)
online Armour
a squared (on demand)

or
fsis2007 (depends how light it is when tested at weekend)
online Armour or prevx1
a squared free (on demand)
( I need a free on demand scanner for antispyware) " }-



lodore, you might want to rethink them one last time.::) Its tough, I know, but it will be ok.:)

Kas AV
Prevx1
SAS
XP Firewall

ye. you have changed your setup again!

with kav im worried about the bad update problem happening again.

but kav+prevx1
or kav+online Armour would be good.
but then i would need a firewall if i had online Armour wouldn't i?

that was a one time thing and could happen to any vendor. And has from what I hae read. Eset had server issues, but that doesnt take away from the high quality of their product.

Just now I'm using

AVG Anti-Spyware 7.5
BOLean 4.22.002
CounterSpy 1.5
SpywareBlaster 3.5.1

Best regards,
Firefighter!

i agree with you trjam as i have said before it could happern to any vendor. i know that sometimes f=secure updates dont install properly and fail a so called CFC check. im guessing it checks it and if its corrupt then if it is corrupt it dont install it. but dont quote me on that because im just guessing that is what the cfc check is for. if anyone know what it is please tell me

;D I have NOD32 2.51.26
AVG Anti-Spyware 7.5
Webroot Spy Sweeper 5.0
Counterspy 1.5.82
And just to bump up the security even further Comodo Firewall 2.3.6.81

-{ Quote: ";D I have NOD32 2.51.26
AVG Anti-Spyware 7.5
Webroot Spy Sweeper 5.0
Counterspy 1.5.82
And just to bump up the security even further Comodo Firewall 2.3.6.81" }-

Cheater :P , its 4 anti-malware not 5. You probably going overkill with Spy Sweeper and Counter Spy though.

dja2k

omg spysweeper and counterspy. i hope not both in real time that could make a pc of any speed slow IMO.

In front a router and a AlphaShield Hardware firewall.

OL (active)

ZA Pro
SpySweeper 5.0
BitDefender 9.0 standard
SpyBlaster
Spam Monitor (it learns)

OD (inactive)
Ad-Ware SE
Spybot S& D

surfing under limited user account

Cheaters Cheaters Cheaters :D Can't anyone read:

"You can only have 4 Anti-Malware apps: What would you run?"

dja2k

If i could only have 4.

1. Firewall
2. HIPS
3. AV
4. Backup image.

Not naming products as there are lots that fall into these categories. But i would like those categories covering.

muf

v14

Kaspersky Anti-Virus
Outpost Firewall Pro
Prevx1

-{ Quote: "Cheater :P , its 4 anti-malware not 5. You probably going overkill with Spy Sweeper and Counter Spy though.

dja2k" }-

If you haven't noticed already, everyone in this forum is going overkill! :wacko:

1. Look 'n' Stop (+ Router)
2. Prevx1
3. FirstDefense-ISR (Frozen Snapshot = Anti-Changes)
4. ... (I'm waiting for a thread with only 3 Anti-Malware apps.)

Look 'n' Stop is a bit overkill, but everybody makes mistakes. :)

Overkill!

Try 0 AV and AMW no firewall and dive in with IE (x) in default mode.

Then you would find out what overkill really means.

4 locks is better than 3.??? *puppy*

Its not overkill, its going madly insane! :o

dja2k

-{ Quote: "Overkill!

Try 0 AV and AMW no firewall and dive in with IE (x) in default mode.

Then you would find out what overkill really means.

4 locks is better than 3.??? *puppy*" }-

That would be underkill.

1) NOD32 (antivirus, anti-spyware)
2) AVG Anti-Spyware (anti-spyware, anti-trojan)
3) ZoneAlarm Pro (firewall, anti-spyware, program/application control)
4) SocketShield (socket-level protection)

1.K
2.I
3.S
4.6

you cheated thats only one product IMO.

Online Armor AV+
Comodo Firewall
BOClean
Prevx1

dja2k

v15

CHX-I Packet Filter
Ghost Security Suite
Kaspersky Anti-Virus
Prevx1

KAV6
look n stop
trend micro

what ya know thats only 3 IMO.

that could be my new setup except i might get comodo instead of look n stop because of price.

-{ Quote: "v15

CHX-I Packet Filter
Ghost Security Suite
Kaspersky Anti-Virus
Prevx1" }-

WS,

When trying all these different combinations of security software (i.e., v15), what do you do to keep your system clean, tweaked, and running well (i.e., installing and uninstalling software often leaves behind files/drivers/etc. that can cause problems with future installs)?

TIA

if its not a fresh install, i just uninstall the software i no longer want and then run ace utilities.

v16

CHX-I Packet Filter
Ghost Security Suite
NOD32
Prevx1

nod32
outpost
online armor
avg antispyware.
thats if i had the cash lol.

SpyBot S&D/AdAware
SpywareBlaster
Windows Defender
AnalogX Script Defender (http://www.analogx.com/contents/download/system/sdefend.htm)

I have:

1. TrendMicro PC-cillin 2006
2. WinPatrol
3. Spybot-Search & Destroy
4. Cyberhawk

v17

Ad Muncher
CHX-I Packet Filter
NOD32
Prevx1

1) KERIO FIREWALL 2.15
2) SYSTEM SAFETY MONITOR!
3) AVIRA-AV
4SHADOW-SURFER

update.
KIS6.0
online armor
a squared free
lodore

Kerio Personal Firewall
AVG Antivirus FREE
DriveSentry
CyberHawk

NOD32 2.7
Zone Alarm Pro
ProSecurity 1.22.1 paid
Vmware Server "Free"

its a nice ballence i feel + vmware give option to do destructive testing and such with no risk to your pc

Can i,too,play this game?:


1-Avast
2-BOClean
3-ProSecurity 1.22.1 paid
4-ShadowUser

-{ Quote: "
1-Avast
2-BOClean
3-ProSecurity 1.22.1 paid
4-ShadowUser" }-


are any of these a firewall ?

Sorry if i missed something TECHWEG,as i did not read all the posts,but i read the first, which asks about 4 'anti-malware' applications to be chosen and not firewalls.

Is a firewall by definition an 'anti-malware'? I got my doubts about it.

If the question had been 'choose 4 security applications' i'd have surely
included a personal firewall.

I think the 4 i mentioned can more aptly be defined as 'anti-malware'.

I haven't done this in a while, I think ;D (this is not my setup, just what I believe would be ideal)

CHX-I
SSM full with User interface disconnected
avira antivirus for on-demand only (could be replaced by KAV online scan)

C'est tout!

Alphalutra1

-{ Quote: "Sorry if i missed something TECHWEG,as i did not read all the posts,but i read the first, which asks about 4 'anti-malware' applications to be chosen and not firewalls.

Is a firewall by definition an 'anti-malware'? I got my doubts about it.

If the question had been 'choose 4 security applications' i'd have surely
included a personal firewall.

I think the 4 i mentioned can more aptly be defined as 'anti-malware'." }-


Tell me . First thing what do you think ZAP has with it? OS firewall with control of system functions. Secondly what about mentioning about other people who listed Kerio firewall or even CHX-i ? Why did you decide to pick my name out of a croud? Maybe you are paying attention to the wrong threads

TECHWEG, i hope by tomorrow morning you'll feel better.....

At 7.35 i posted my 4 antimalwares:

-{ Quote: "Can i,too,play this game?:


1-Avast
2-BOClean
3-ProSecurity 1.22.1 paid
4-ShadowUser" }-

At 8.13 YOU 'picked me' quoting my choice and then asking:

-{ Quote: "are any of these a firewall ?
" }-


At 8.27 i REPLIED to your picking saying :

-{ Quote: "Sorry if i missed something TECHWEG,as i did not read all the posts,but i read the first, which asks about 4 'anti-malware' applications to be chosen and not firewalls.

Is a firewall by definition an 'anti-malware'? I got my doubts about it.

If the question had been 'choose 4 security applications' i'd have surely
included a personal firewall.

I think the 4 i mentioned can more aptly be defined as 'anti-malware'." }-

Now, at 9.35 you wrote:

-{ Quote: "Tell me . First thing what do you think ZAP has with it? OS firewall with control of system functions. Secondly what about mentioning about other people who listed Kerio firewall or even CHX-i ? Why did you decide to pick my name out of a croud? Maybe you are paying attention to the wrong threads" }-

I wont comment on your remarks as i hope you'll come to your senses tomorrow and realise of what you said.
Regards, poirot

This thread has survived for over a year with folks simply listing their 4 Anti-Malware apps with brief comments sometimes. I'll ask that any further individual chit chat that needs to go on be confined to Wilders PM system and place a quote below from another thread that mirrors to a certain degree what needs to happen in this thread.

-{ Quote: "Let's make the message above the "last" post here that talks about any other member's, (and/or vendor for that matter), view of any product, be it a competitor or otherwise. As usual, focus on the product and the technical discussion and not the people posting about it. So, let's move on now." }-

for me is

1) Nod32 (blackspear setting's) : fast and secure antivirus
2) Jetico v1 (free) : free, not so easy to use (at first glance) but very very secure.
3) Spyware terminator (free): good AT, but better as it monitorize start up folder/bho/system folder...
4) A2 squared (free): used on demand. as additional security layer

and ... fully patched win xp, browsing with opera and proxomitron, peerguardian,and thunderbird

BHH

Prevx1
Zone Alarm Pro
AVG Anti-Spyware (paid)
SpywareBlaster (paid for auto-update)

Kaspersky AV
System Safety Monitor Pro
ZoneAlarm Pro
Neoava Guard
----------------------------------------------------

I believe that these realtime security tools will offer the best protection, and they are IMO easy to use/understand, plus the GUI is not bad either. I have to admit that I have not tested KAV in this setup yet, but the other three can run together without any conflicts. If KAV is not compatible, I would probably choose Antivir Classic/Premium. ;)

Since antivirus and a firewall don't quite fit the definition of being an anti-malware, I am using

Spyware Blaster
Ad-Adware
Spybot S & D
SuperAntiSpyware

KIS6
BOClean
HostsMan
PeerGuardian2

After investigating some of the programs mentioned in this thread, I have
Prevx1
NOD32
AVG Anti-Spyware
SpywareBlaster

Still have ZAP, but I believe that it does not answer the question. NOD32 is difficult, said by some, to configure; you just have to read manual, and slowly and carefully follow the instructions. NOD32 may be the best AV around now, because Kaspersky too buggy, conflicts with too many other apps. NOD32 runs quietly and lightly on my system. It plays nice with the others. Each of these four seem to overlap in what they prevent and/or clean, but in differing, non-conflicting way. I have just recently added NOD32 but I am impressed with its operation. I assumed before that with Prevx1 that I didn't need an AV with real-time protection, rather than considering that somewhat traditional AV approach, in the case of NOD32 an added dimension of rootkit and anti-spyware protection, with the Prevx approach of not relying as much on signatures. Prevx folk claim, rightly so, that it can function as a standalone "antivirus," "anti-spyware," and "anti-et_cetera-malware"; it is a consensus opinion that a layered approach to security is the best practice. router, with firewall, software firewall on the desktop, online community database HIPS(Host Intrusion Prevention System), real-time antivirus, real-time anti-spyware, on-demand rootkit detector, and on-demand anti-spyware. So in a sense, yea, even more, you have two non-conflicting antiviruses, three anti-rootkits, and four anti-spyware. I believe that I am correct in this formulation; please correct me if I am wrong. Of course even these may be undone if I have a stupid, careless brain.

NOD32
BOClean
SuperAntiSpyware
PrevX1

Avira Antivir
Spyware Doctor 4.0
PrevX
SandBoxie


Maybe If I knew juts how strong trend Micro is I would have chosen it. I am not fond of anti-trojan apps since most antiviruses alreadyave many sigs for trojans. So AVG antispyware was a former anti-trojan so I didnt choose that.
Webroot Spysweeper si too heavy. Avira is jsut continually improving and very powerful.

v18

Ad Muncher
Comodo Firewall Pro
Kaspersky Anti-Virus
Prevx1

In case i missed this one.

KERIO 2.15 (Thanks herbalist)
System Safety Monitor
SuperAnti-Spyware
ShadowSurfer (Major Protector)

Kis6.0
superantispyware
A Squared
spyware blaster

lodore

Hi everybody,

NOD32 2.7
OAFW 2 beta
BoClean
Linkscanner Pro

-{ Quote: "Kis6.0
superantispyware
A Squared
spyware blaster
lodore" }-lodore's still in beta, isn't it? ;) ;D

i always put my username at the bottom of all my posts;D

NOD32
AVG 7.5
SpywareBlaster
Ad-Aware

as of today:

Core Force .95.x.x (hips/firewall) still tinkering
NOD 32 2.5 though looking at Dr Web or Avira
Buzzer Zone Pro
Cyberhawk 1.2.0.39...but only because i cannot make Prevx1 phone home?!? :wacko:

and intrestingly enough these guys so far play well together!


Mike

I think I just need three to have the perfect setup:

Nod32
Look'n'Stop
System Safety Monitor Full

Well I could had a forth just to do some ocasional scans ;)
Trend Micro Anti-Spyware

I think the reason for more than one anti-malware app is in case you suspect you're infected and your main app didn't pick it up. Then you could run scans on your back up anti-malware apps hoping one of them will catch it. That has worked for me.

By use of the expression "anti-malware app," I am interpreting that to mean, for purposes of this repy, "second level" security app which, under my construction, includes the following: anti-virus app (AV), anti-spyware app (AS), anti-trojan app (AT) and anti-keylogger (AK).

Under that construction, my first choices at this time are:

1) AV (Kaspersky Antivirus 6.0)
2) AS (SuperAntiSpyware Pro)
3) AT (A-Squared)
4) AK (PrivacyKeyBoard)*

*Antikeyloggers that load at the kernel level are, according to the argument, the best at what they do (namely spot out and prohibit the operation of keylogger programs) and, for my money, "PrivacyKeyBoard" by Raytown is the best of the lot at this point in time, given my study of antikeyloggers, cursory though that research be -- and, admittedly, suspect, given my lay status. Be that as it may, I have found that kernel level antikeyloggers do not get along well with third level security "HIPS" apps. Having tried, at one time or another a few on my machine, I have found that they either do not work properly, if at all, assuming I can install them at all, or they create tremendous stability problems. Therefore, since I am not going to forego a good "HIPS" app such as "ProcessGuard" or "System Safety Monitor" for a straightforward "AK" security app, but, as I see the usefulness of having a security app that hunts specifically for keyloggers, I would go with "Spy Cop" as my sole and special AK tool as I have not had a problem integreting "Spy Cop" into my overall computer security network.

1. NOD32
2. AVG Anti-Spyware (Paid)
3. A-Squared (Paid)
4. SUPERAntiSpyware Professional

whoa you paid for avg antispyware and asquared antimalware?
and sas pro?
lodore

I paid for AVG so I can run it live because it doesn't use resources, and the defs update frequently, but I use the SUPERantispyware free to do on demand scans because I like the way it scans. You don't have to pay for both.

the post i refered to said they paid for both a squared antimalware and av antispyware.
and they have got superantispyware pro which is paid as well.
thats alot of money that one paid would be fine and the rest could be free versions.
lodore

-{ Quote: "I use the SUPERantispyware free to do on demand scans because I like the way it scans." }-

I use SAS the same way, but I find it is incredibly slow - almost a half hour for a full scan. Norton NIS takes that long, but it is doing AS and AV scans.

And I don't necessarily buy the notion that longer scan times corrrespond to 'deeper' or better scans.

One point I will make is that if you have several AS apps offering active protection, it's a good idea to shut the others down when you are running a scan, in order to reduce scan time. I have found that Spy Sweeper often doesn't like the actions of other AS when they start scanning; it springs to life so to speak, a compatability issue in essence. The same is true of Spyware Doctor.

When I run a scan, I have Process Explorer on the screen as well to monitor the activity of any other AS that is running concurrently. It's a great free tool, even though I admit I don't begin to understand all the data presented.

dcdc - I haven't had SAS more than a week, and haven't done a deep scan yet because I know I'm clean. A short scan takes 9 minutes. I know what you mean about SS and the need to shut down other antispyware apps during a scan. I learned that when I did a scan while AVG AS was running. SS dumped. I just got rid of it to install SAS. Too much of a pig.
From experience with other AVs and AS's, I don't think a half hour for a full scan is out of the ordinary.

-{ Quote: "
From experience with other AVs and AS's, I don't think a half hour for a full scan is out of the ordinary." }-

Well, it's difficult to compare applications to begin with, but Spy Sweeper takes about half that time for a full sweep. It does have the option of allowing you with a slider to adjust how much CPU resources you devote to a scan. Since I don't run anything else during a scan, I let SS use it all.

Ad-Aware and Spybot take about 15 minutes or a little less each, but neither is a top AS app anymore in my opinion. Windows Defender takes about 20 minutes. Both AVG and a-squared take about a half hour.

dcdc - So you're saying SS does a full scan in 15 minutes? If I did a quick scan it took 15 minutes. A full scan took 35 minutes. I have a 80 gb hard drive with 74% free space.

its not about speed.
i would rather a slower scan and better detection rate and more through.
windows defender doesnt have a great detection rate where spysweeper and sas do.
spysweeper 5.2 is way to buggy now so i normaly do scans with sas instead.
64gb used out of 160gb
25minutes quick scan
spysweeper scans take about 20minutes.
lodore

-{ Quote: "dcdc - So you're saying SS does a full scan in 15 minutes? " }-

I just checked the session log for the last sweep a couple of days ago. "Custom Sweep has completed. Elapsed time 00:16:44" So technically I guess I lied.

I have 149 gig , 136 free.

A few things you can do to speed up the sweeps, some applicable to any AS app.

First, defrag your hard drive regularly. I use the basic Windows XP Disc Defragmenter. Start>All Programs>Accessories>System Tools>Disc Defragmenter. I pinned it to the Start menu so I don't have to go clicking for it all the time. For those who don't know, this application gets the various pieces of files that may be scattered all over your hard drive into one contiguous place, so that the drive can read them faster, in one sweep rather than hunting here, there, and everywhere. Defragmenting will make everything go faster.

Last month I ran this for the office secretary whose computer is used almost exclusively for Quick Books and was now so slow that it took over 15 minutes just to load. Everything seemed slower than hell. The disc had not been defragged since she arrived a couple of years ago, and it took over an hour for the app to run just once. When it was through and we rebooted, Quick Books came up instantly. It was really amazing. (Meanwhile I was thinking malware.)

Computer experts will tell you there are better disc utilities than Disc Defragmenter, and they are probably right (true of everything Microsoft makes), but for me it's good enough. If you update a lot, or download a lot, you should run it a lot. Your AS app(s) will be in one place, and so will each file it scans. If you do it regularly, it only takes a couple of minutes. Just hit Defragment, rather than Analyze; if you do that and then decide to Defragment, it will analyze all over again for nothing. Kind of interesting to watch, especially if you have never done it and the bar looks like a crazy quilt of colors.

Second, speed up Spy Sweeper if you have 5.0 or higher (I have the current 5.2). Unfortunately SS makes some things hard to find. Go to Options>Sweep tab>Custom Sweep>Change settings>Advanced options>on the Sweep speed vs. processor usage, slide the pointer all the way to the right (Sweep faster)>OK.

One of the oddities of SS is that you can't do this with a full sweep or quick sweep, only the custom sweep. (Reason?) But you can just check everything to sweep on the custom sweep and it's the same thing. Webroot said that not sweeping for rootkits saves some time, but I still sweep for them.

Third, clean up all the junk before you sweep to save scanning time. I use Webroot's Window Washer 6.0, which I think is OK for a cleanup utility. Again, experts probably know of better apps. WW cleans out Temporary Internet files and cookies and so on. You might as well get this stuff off your system anyway, especially tracking cookies if your AS doesn't remove them. Why scan temporary files if you are going to delete them? Kill two birds with one stone. Use the WW Cookie Keeper feature to save the cookies you want for things like automatic login, or else WW will delete them, and if you have forgotten your login name and password, you're out of luck for the moment.

Actually, you should run Window Washer or the like before defragmenting, and get the junk out of the way.

Fourth, get out of your browser. No point being on the internet when scanning for malware. I think some AS apps will prompt you to close IE or whatever if it's open.

Fifth, use Process Explorer, a free download from sysinternals.com to monitor sweep activity, regardless of what AS you are using. If not much is happening until you start the sweep, and then suddenly your other AS starts rolling, then shut them down. I found that Spyware Doctor really kicks in when Spy Sweeper was scanning, and vice versa; shutting them down (by right clicking their icon in the system tray and selecting 'shut down' or whatever) can cut the scan times in half, and that's no joke.

This may sound like a lot, but it isn't. Most of it is basic more or less daily computer maintenance, like updating itself.

-{ Quote: "its not about speed.
" }-


True enough, but I don't necessarily find a high correlation between the length of time of a scan and the results, although AS vendors with long scan times will tell you their scans are time consuming because of the thoroughness of the scans. Maybe so, but not necessarily. It's partly a matter of how efficient your algorithms are. Note that some AS and AV vendors when they issue an upgrade will specifically comment that they have cut the scan times in response to customer feedback; hopefully they did not do so by reducing the detection rate, but rather by examining the scan process.

I myself am happy with Spy Sweeper. Some features are hard to locate, and there are some quirks, but in about three years since I have had my machine (I bought SS soon after the purchase based on a computer savvy friend's recommendation), I think I have had one false positive that Webroot quickly corrected, and to my knowledge I have never had a piece of malware installed, and early on I did a little dubious surfing.

I have added quite a bit of AS since, so I cannot give full credit to SS for a clean machine, but I look at the SS session logs and see that it has blocked a lot of stuff silently, and warned me of anything suspicious.

There are many road to Rome, and if whatever you use works for you, then that's good enough.

i agree if it works for you then its fine.
i used to use spysweeper in realtime with version 4.5 but with 5.2 it really slows down my system so i use it for on demand only now.
i still think superantispyware pro is better for realtime antispyware since it updates more and is alot lighter on the system.
lodore

dcdc - I see you only have 13 gb used space, so i think that will cut down a little on scan time, but on your 16 minute scan how much time did it take in preparation with WW and Process explorer, and the defrag? Just a note, every time I check the defrag it says my hd doesn't need it right now. Just as an experiment, I installed Diskeeper which defrags in the background once every day. My initial defrag defragmented almost 9,000 fragments, and every day it defrags between about 400 and 1,500 fragments. I've used it since 12/16 and I think I'll keep it. :)

i use diskeeper 10 pro which defrags daily.
but i might get diskeeper 2007 pro since it has less impact of the system due to the realtime defrag and automatic folder and files consolation.
lodore

lodore - Before you upgrade you should see how much your hd can be compacted. Mine only would be compacted 1%. Not worth it. I assume you mean compacted, not consolated. :)

hardware firewall

AVAST antivirus

Shadowuser (installed today)

That's all I'm running

If Shadowuser works as described and my pc becomes infected, a reboot and they're gone. Since I turn the pc off every night anyway, everything picked up during the day should disappear.

-{ Quote: "hardware firewall

AVAST antivirus

Shadowuser (installed today)

That's all I'm running

If Shadowuser works as described and my pc becomes infected, a reboot and they're gone. Since I turn the pc off every night anyway, everything picked up during the day should disappear." }-

Just a cautionary advice to yourself or anyothers seeing this as a potential security solution.What is stated is correct for rollback/imaging as long as 2 potential events/scenario's do not occur.

1) If bad code runs on your machine borks SU then your rollback is shot.Relying soley on Avast AV for def based protection against malicious code is a false sense of security.

2)Session infection- in all theories if again bad code executed on your machine(not picked up by Avast) that there is the potential for security compromise.
If you are using this 'puter for holding sensitive data then in all theories if a backdoor/PSW trojan installed past Avast you have no other checkpoints to ensure the security of that session or data contained apon that PC.

Although theses are outside possibilities and not forgone conclusions i for one would not be happy with these potential *weak* points in your chosen 4 antimalwares unless of course you/i had nothing on my PC i was'nt prepared to share with 3rd parties of the criminal kind;)

I would add at least a software firewall to control outbound communications from this computer:thumb:

It is often overlooked by folks that although imaging/rollback is excellent for recovery but offers no current session security as such !

HTH:)

-{ Quote: "dcdc - I see you only have 13 gb used space, so i think that will cut down a little on scan time, but on your 16 minute scan how much time did it take in preparation with WW and Process explorer, and the defrag? " }-

Well, my point was that Window Washer or something similar is a utility that you should run regularly anyway (I do once a day), so I don't feel that it is appropriate to add the time it takes to run, maybe a minute or two, to the overall scan time regardless of which AS you are using, and any such cleaner will cut the scan time with any AS because it is deleting files that would otherwise be scanned, unless your app is set up to ignore them.

About Process Explorer, I usually have it running all day anyway, not just before a scan, and it comes up almost instantly. Watching its own process on the table, I find that it doesn't take up much cycle time at all, so it is not burdensome on my system. It's invaluable when my system seems very slow to respond for some unknown reason - is it me, or a server or something else external to me? PE lets me see what processes if any are soaking up the CPU time. Very handy.

My response is similar with defragmentation of the hard drive: it's a utility you should run occasionally anyway. I run mine every week or so. Depending on the amount of downloading and updating, I guess it takes 2-3 minutes if done regularly. I don't defrag before every scan as I don't think it is necessary.

I see what you are saying. I claim a 16-17 minute full scan, but I am not including in that figure the run times for other utilities that shorten that scan time. My point is that I run these utilities (WW and Disc Defragmenter) anyway, so I don't feel it is appropriate to add their running times to the total. Process Explorer is a different animal from the other utilities mentioned, and is irrelevant.

-{ Quote: "lodore - Before you upgrade you should see how much your hd can be compacted. Mine only would be compacted 1%. Not worth it. I assume you mean compacted, not consolated. :)" }-

quote from diskeeper website
"Automatic online directory consolidation boosts virus scans, back-ups and file searches"
lodore

This is my current set-up. I feel, for my machine it is a good balance of performance and security.

Xp firewall (with xpfiremon)
App/Reg Defend
Avast (Web/Network/P2P/Standard shields enabled)
Spywareblaster

I also use FF with noscript and the missus uses Opera.
I feel quite safe with this setup and never discover any malware on my system (scanning with several on demand scanners), other than the odd cookie.
For my machine this setup is quite light, together running at about 28mb RAM and more often than not zero CPU.
This is also a totally free setup which gives me protection equal to many paid for apps/suites IMO.

1. Hardware Firewall
2. Firefox - no scripts
3. Mail provider scanning www.netaddress.com
4. system images - to restore if ever anything bad got thru

I've had this config for quite a while and it's served me well:

OutPost Pro
AVG AS
NOD32
SSM

Also run FF w/ no script and adblocker plus exclusively

-{ Quote: "Just a cautionary advice to yourself or anyothers seeing this as a potential security solution.What is stated is correct for rollback/imaging as long as 2 potential events/scenario's do not occur.

1) If bad code runs on your machine borks SU then your rollback is shot.Relying soley on Avast AV for def based protection against malicious code is a false sense of security.

2)Session infection- in all theories if again bad code executed on your machine(not picked up by Avast) that there is the potential for security compromise.
If you are using this 'puter for holding sensitive data then in all theories if a backdoor/PSW trojan installed past Avast you have no other checkpoints to ensure the security of that session or data contained apon that PC.

Although theses are outside possibilities and not forgone conclusions i for one would not be happy with these potential *weak* points in your chosen 4 antimalwares unless of course you/i had nothing on my PC i was'nt prepared to share with 3rd parties of the criminal kind;)

I would add at least a software firewall to control outbound communications from this computer:thumb:

It is often overlooked by folks that although imaging/rollback is excellent for recovery but offers no current session security as such !

HTH:)" }-

Thanks, fcukdat. I totally spaced having a hardware firewall and LnS outbound firewall installed.

In any case, Shadowsurfer (not Shadowuser. Brain cramp) is history. I got it into shadowmode and then shadowmode wouldn't deactivate. My computer wouldn't reboot, and when I had to hard boot it by turning it off and on, Shadowmode was still there. Tried a number of times and finally spent a full 45 minutes plus this morning trying to get rid of Shadowsurfer before it would finally uninstall.

It's a shame. I liked the concept, but there ARE times I'd prefer not to be in Shadowmode. I'm back to Bufferzone. It works.

If I had to choose just four:

Norton Internet Security - AV, firewall, antispam, now has AS - mostly recommended for the first two items

Spy Sweeper (currently version 5.2)

SpywareBlaster

Windows XP Service Pack 2 and associated updates - necessary plugs for Microsoft products

Not an easy choice to make, as there are plenty of other good antimalware combinations that would no doubt provide as good (or maybe better) protection, but I consider these the nucleus of my well-protected system.

-{ Quote: "
It is often overlooked by folks that although imaging/rollback is excellent for recovery but offers no current session security as such !

HTH:)" }-

I'm sure that at least some other Imaging programs must work this way but Acronis is able to restore even when it is not possible to boot.

My main system is partitioned as C: for XP and programs F: for data and G:
for images. If I couldn't boot I would simply boot from the emergency CD.

C: and F: are imaged daily so it is true that I have no current security and could find I had lost a days work but as I haven't seen any real malware in years I guess I could live with the loss.

I wouldn't trade Acronis for all available Malware programs paid for or free.

-{ Quote: "I wouldn't trade Acronis for all available Malware programs paid for or free." }-

How does Acronis work? Does it make an image on a partition of the hard drive, or does it copy to an external drive? Probably gives you the option for either, I would guess.

If on a partition, you must be cooked if your hard drive crashes; that happened to me once.

If an external drive, any idea what is available to back up say 20 gig from the hard drive? Are they available that large? I've been thinking about external backup, but haven't gotten around to it for lack of knowledge.

-{ Quote: "C: and F: are imaged daily so it is true that I have no current security and could find I had lost a days work but as I haven't seen any real malware in years I guess I could live with the loss.

I wouldn't trade Acronis for all available Malware programs paid for or free." }-Long View,

I believe that you are missing the underlying point made by fcukdat. You're focusing on loss of files and/or file corruption. When malware was simple cybervandalism, that was the primary concern and any system recovery measure should be ably up to that task.

However, objectives have changed over time. Recovery as the primary objective harkens back to the days before malware was a money making enterprise. The primary objective of some malware these days is to separate you from your money/assets/personal information/identity. If this information is harvested and transmitted within a login session, it's really irrelevant whether you restore your PC to its previous state or not since the mission of the malware has been accomplished and there is no further need for activity. In fact, if you think about it, in some ways your approach is the best case scenario for a software-based thief since you have just wiped all evidence of the trespass.

Now, is this a problem you need to continually obsess over? Of course not! However, if you are implementing measures against potential problems, it is important to understand the scope of the solution employed. You may already have an alternate security solution in place in addition to backup. However, using a system backup approach as a substitute for a security solution is not it.

Blue

I take your point about harvesting - Acronis would be of no value. For what its worth I primarily rely on my hardware firewall, and Firefox - no scripts to protect me here. My mail is scanned before delivery and every so often I load up a number of malware programs (AVG AS, A2, etc) -- run them and find nothing - and then restore my previous image. I have run thru a series of anti-virus programs and haven't seen a virus for years. Probably the malware writers have taken over control of my life years ago and I just don't realize it ;D

-{ Quote: "
If an external drive, any idea what is available to back up say 20 gig from the hard drive? Are they available that large? I've been thinking about external backup, but haven't gotten around to it for lack of knowledge." }-

This is next on my shopping list http://tomshardware.co.uk/2006/08/24/seagate_500_gb_external_hard_drive_goes_esata_uk/

-{ Quote: "Long View,

However, objectives have changed over time. Recovery as the primary objective harkens back to the days before malware was a money making enterprise. The primary objective of some malware these days is to separate you from your money/assets/personal information/identity. If this information is harvested and transmitted within a login session, it's really irrelevant whether you restore your PC to its previous state or not since the mission of the malware has been accomplished and there is no further need for activity. In fact, if you think about it, in some ways your approach is the best case scenario for a software-based thief since you have just wiped all evidence of the trespass.
" }-

If Long View runs his restore program with a hardware firewall and (probably) another software firewall, how will the information be stolen during the login session?

I still don't see a reason for anything but a good firewall, my Deep Freeze and Anti-Executable -- and my own common sense. How will my money/assets/personal information/identity be stolen? Could you give us a scenario? Maybe I'm missing something!

Gerard

its possible if:

1. the AV misses the malware

and

2. theres no program (like a software firewall) to stop the malware from connecting out

-{ Quote: "its possible if:

1. the AV misses the malware

and

2. theres no program (like a software firewall) to stop the malware from connecting out" }-

I don't even run an onboard AV. I run Deep Freeze and then Anti-Executable will stop any malware from executing and yes, my firewall will stop any unwanted outbound connections. What malware would frighten you in this scenario?

-{ Quote: "I got it into shadowmode and then shadowmode wouldn't deactivate. My computer wouldn't reboot, and when I had to hard boot it by turning it off and on, Shadowmode was still there. Tried a number of times and finally spent a full 45 minutes plus this morning trying to get rid of Shadowsurfer before it would finally uninstall.

It's a shame. I liked the concept, but there ARE times I'd prefer not to be in Shadowmode." }-

I have experienced that "EXACT" same disturbing scenario. This is what i discovered thru trial and error to remedy, or should i say "workaround" it.

ShadowSurfer for whatever reason is "stuck" in Shadow mode after each reboot. No matter what i try it stays stuck and will not REBOOT right after i select "Disable ShadowMode". I know it's designed to keep my unit safe but at my own discretion in my own time thank you.
When it comes up next boot after you have to manually RESET by pressing the off button on PC, use a good Task Manager like AdvanceProcessTermination by DiamondCS. Mine is Version 4.0 w/ 2 sets of Kernel Kill, i only need #1.
Terminate BOTH SS process files: suatshut.exe & shadowsurfer.exe
At least this is been method, crude but makes Shadowsurfer tolerable instead of ditching it.
Next i go to ADD/REMOVE PROGRAMS in Control Panel and Uninstall, it throws up a message at times saying ShadowMode is still enabled and must be Disabled before Uninstalling. Bah!! I do it anyway then Reboot manually again w/ the RESET button, next time the PC boots up guess what?
Hooray! Finally out of ShadowMode, tray icon & background wallpaper bears this out. I know is a pain in the neck, but untill i find a replacement for ShadowSurfer or discover a permanent remedy, this procedure pulls my PC out of that mode, THEN IF IT TICKED ME OFF REAL BAD, i can really UNINSTALL it from the PC since ShadowMode is indeed "Disabled" and not locking the station anymore. :wacko:

"Next i go to ADD/REMOVE PROGRAMS in Control Panel and Uninstall, it throws up a message at times saying ShadowMode is still enabled and must be Disabled before Uninstalling. Bah!! I do it anyway then Reboot manually again w/ the RESET button, next time the PC boots up guess what?
Hooray! Finally out of ShadowMode,"

Yep, exact same situation I ran into. At least I know it isn't my PC.

Every single thing you mentioned, I had happen. I finally got rid of it, although I still have the .exe on another drive, along with the key, although I doubt I'll ever use it again.

With your permission, I'd like to copy your post since it's more detailed than I can do and email them about the problem.

-{ Quote: "If Long View runs his restore program with a hardware firewall and (probably) another software firewall, how will the information be stolen during the login session?

I still don't see a reason for anything but a good firewall, my Deep Freeze and Anti-Executable -- and my own common sense. How will my money/assets/personal information/identity be stolen? Could you give us a scenario? Maybe I'm missing something!

Gerard" }-

In the original post by OP last page there was no mention of a software firewall although this was included in a subsequent reply later on.If you read from the last post of the last page onwards you will see where you have reversed the the arguement:P

You are technically correct on what you say i for my crimes use only software firewall,process firewall and IDS as core security policy but and this is the big *but* we are secure with our setups because we understand what they are doing and how to make decisions/rules etc.

This however would be far beyond your average Joe user ability to utilize effectively.So we should all remember what works for us might not necessarily work for the next person ;)

-{ Quote: "If Long View runs his restore program with a hardware firewall and (probably) another software firewall, how will the information be stolen during the login session?" }-Gerald,

Typically, the role of a hardware firewall is to only reject unsolicited inbound communications with outbound allowed to freely leave. If a software firewall is used, it will generally flag communications made by an unapproved application or using unapproved ports, it doesn't know the intent of those packets.

The information can be stolen if the user provides it in another context within session. This is purely hypothetical at this point. You're focusing on specific avenues to compromise. I'm saying restorability does not equate to security, no more.
-{ Quote: "I still don't see a reason for anything but a good firewall, my Deep Freeze and Anti-Executable -- and my own common sense. How will my money/assets/personal information/identity be stolen? Could you give us a scenario? Maybe I'm missing something!" }-Let me start by noting that I believe there are many routes to an appropriate level of security. Those routes span running a machine completely bare of added security products and using the native configuration capabilities of the OS and associated applications to completely lock down the system to using a handful of added security related products. Both extremes and the intervening scenarios are valid approaches for different usage profiles and/or user levels of expertise. One size doen't fit all, but maintaining that image restoration is equivalent to having good security simply misses the point. As I mention above, image restoration maintains good operability, not good security. They are different end goals and this is the specific point that my comment was directed towards. No more, no less. It is important to understand what specific actions accomplish and what they don't accomplish. Facile restoration does not make a system secure.

Your own setup goes well beyond what I was discussing. It doesn't have an AV, but it does implement a whitelist strategy through AE. It is not foolproof since you are still, in principle, susceptible to script based incursions using approved applications and if you decide to install a downloaded application, and it brings along a companion or two, nothing in your setup flags that aside from, as you note, your own commonsense. Is it sufficient? Much more than likely, I personally wouldn't recommend any changes or additions in your case.

The other point that should be made is that measures to take should not simply be based on the frequency of the event, potential severity should also be a factor. Frequency should influence your attitude towards things. My own experiences would suggest individual exposures on a year type timeframe, not a daily or hourly event as some of the paranoia rampant here and elsewhere might suggest.

Blue

Update:

NOD32
AVG Anti-Spyware
SpywareBlaster
SUPERAntiSpyware Professional

Sandboxie

DropmyRights

AVG antispyware

NAT Route your internet connection.

ProSecurity
NOD32
Comodo Firewall
Vmware

This thread is going on forever.
I refuse to reply, because the answer is my set-up. I don't have more than 4 apps!

I'm using

ZA Antivirus 7 (Kaspersky Engine)
AVG Antispyware (free, on demand)
McAfee Site Advisor
CCleaner

Use Firebird instead of IE.

I would recommend those 4:

Realtime:

1. Avira Personal

Ondemand:

2. A-Squared Free
3. SuperAntispyware Free
4. Avira RootkitDetection Tool