Hey there, currently I use CIS + MBAM Pro as my overall security on most systems (including EMET, UAC, etc). I am thinking of adding/switching AppGuard or NVT Exe Radar Pro. For example: Comodo D+ with NVT Exe Radar Pro + MBAM Pro But what exactly is the difference between Comodo D+, AppGuard and NVT Exe Radar Pro ? Aren't they basically all the same? Would adding/switching to on of them be an "overkill" ? I could imagine smth like: Comodo FW and D+, MBAM Pro, NVT Exe Radar Pro, Avast Free AV.. or is that too much? Basically I want to focus on lightweight and battery saving Thanks
They are not exactly the same 1-Comodo D+ is a classical HIPS 2-Appguard is kind of a restricted rights sandbox (kind of hard to explain) 3-Exe Radar Pro is an anti executable
If you're wanting lightweight then.. CIS on it's own is more than enough, even though it has it's issues it is still one of the best 'protectors' and all for free. Especially as you have EMET installed as well.
I wouldn't make any combo of Comodo D+, AG and ERP. They are rather different but to use any combo of them is definitely overkill. It's better to use them separately. As for "lightweight and battery saving" it greatly depends on the hardware and OS. Here I assume that most probably ERP can be the most lightweight.
Doesnt mbam pro only scan on execute? Thus mbam pro and nvt anti exe are overlapping. With those that have been suggested are lightweight in that none of them do realtime protection which is the real hog. I guess defense+ hips may have the largest memory footprint but i havent used it.
Not at all. NVT does no scanning, and makes no judgement as to whether the file is good or not. It simply either allows it if whitelisted, or challenges or blocks it based on settings.
Are you sure about that Pete? I test ERP from time to time, and give feedback. I have had ERP block several files, and show a red prompt that looked as though it was classifying the files as threats. It gave no option to allow the files. The only way I could allow them was disable ERP. The only executable I can remember off hand that should reproduce this behavior is the Torchat Client. I don't have ERP installed right now so I can't check to see if ERP is still displaying this type of behavior. If you would like to look into this you can download the latest version of the Torchat client from the link below. I was using version 0.9.9.553. https://github.com/prof7bit/TorChat/downloads
Yep. It only classifies as unknown. I downloaded the portable version of Torchat and as usual I forgot about appguard. Once past that ERP(in Alert Mode) thru up it's standard unknown pop up, defaulted to allow, but offering all options. I chose block, which it did. The only "scanning" option in ERP is when you have it scan a folder to find exe files to add files to whitelist. Also check the description on the website, and don't think you will find anything about identifying friend from foe, just known and unknown. Pete
CIS is more than enough imo. If your using Avast remember not use it in hardened mode to avoid it conflicting with Comodo`s Defense+. Regards Eck
AppGuard (policy restriction HIPS) and EXE Radar (app whitelisting) are descendants of Comodo's D+ (CHIPS). It all depends on which style do you prefer.
I guess AppGuard could be more lightweight than Comodo D+ ? But if I am going to use Comodo FW den the D+ will be installed anyway?