Confused about HIPs programs

Are PG, AntHook, Prevx1, SSM and Saf n' Sec all HIPs? If so, should more than one be run at a time? Which is best? Which is easier? Does SpySweeper and ZA provide the same coverage? A lot of questions I know, but before shelling out $50 I need some guidance. Thank for you help.

 

yes they're all considered HIPS.

If used in ABC mode, Prevx1 would be the easiest as it would make the majority of decisions.

heres a question: why are you looking for an HIPS? if u surf safely and your AV/FW/AS are updated then u should be protected fine.

also keep in mind that any paid version of ZA has OSFirewall which acts much like an HIPS. you should try it and see what u think.

and lastly, if ur seriously considering an HIPS, i recommend u try u trial it first before even purchasing it. It would be best if u decided which program works best for you.

 

WSFuser,
Thanks for the response. I guess two reasons I am investigating alternatives are to lessen the amount of programs used for security, if possible, and by doing so lessen my memory load.

 

seems plausible

 

HIPS are not meant as a replacement for traditional AV/AS/AT, so if u decide to use one, would might be adding to teh programs u use.

 

Before you spend any money on HIPS software, System Safety Monitor has a free version. I would also limit to running one such program, same as you would a firewall. Using 2 will give very little if any increase in security and may even lower it if they happen to conflict. Using 2 would definitely increase your system load and give you a lot of unnecessary configuring to do.
Rick

 

I recommend Online Armor AV+. It is a full-scope HIPS PLUS Kaspersky antivirus PLUS a spam killer PLUS antikeylogger PLUS web surfing guard PLUS (soon) a firewall. Small footprint. Great support.

 

I find it a pity that OA still only really looks at IE... Just like Kaspersky by the way. I find that they should include Firefox/Thunderbird support in any case. Maybe Opera too.

 

OA does support FF and all POP3/IMAP mail clients We don't manage the FF extensions at the moment, and Opera support will be coming along with the Firewall/Kernel Mode release.

Hope that helps!

Mike

 

I want to jump in and see if a HIPS is necessarry in my case. If so, which did you recomand. Recomandation should refer to efficience and not if it is easy to configurate or not. Freeware or payed, doesn't matter.

Using:
AntiVir personal edition
Jetico Firewall (changed from Blackice)
a2-squared freeware for weeky on demand scans
Ad-Aware for weekly on demand sans.
(testing Neoava Guard in the moment)

 

Is HIPS necessary or right for you? That depends on several things:
Do you engage in high risk online activities like file sharing or visiting warez or porn sites?
Is your PC a multi-user or family PC and are there other users whose practices might not be safe?
Are you using win98 or winME?
If you answered yes to any of these and you're up to the task of configuring it, HIPS would be a valuable asset.
On Win98 and WinME systems, I would consider HIPS a necessity now that M$ isn't supporting these systems anymore and many security-ware vendors are following suit. While several HIPS programs don't run on these operating systems, System Safety Monitor does, and the version that these use is free and very good. It's especially valuable on multi-user PCs where you can set up a separate ruleset and filter list for the inexperienced user and set it to block any unknown instead of prompting the user. A well configured HIPS can offset many a vulnerability. There is another factor to be considered. Malware is getting harder to remove, and in many cases difficult to detect. HIPS greatest benefit is its ability to stop the unknown, as long as you are knowlegable enough to answer the alerts properly. While I can't say regarding the other HIPS programs, if you're using System Safety Monitor and don't have the UI connected, the user won't be prompted when an unknown is encountered. It'll just be blocked. This is especially useful if you have kids who want to install whatever they see. Installers are unknown processes as far as SSM is concerned and will be blocked. The filter module also makes an excellent parental control tool. Once a HIPS program is well configured and assuming the user doesn't permit things they shouldn't, your adware/malware scanners won't have much to do.
Rick

 

Sometimes file sharing and by accident looking at some nice naked girls ..jajaja

Using WinXP SP2 on a Laptop, which is used only by me. So i think i am not a high risk internet user, but you never now. I am testing Neova Guard seams a good complement so it uses very less CPU and memory. I will check out SSM.

 

This may seem paranoid (I am about my system) but from where does SSM originate? I get leery of sites that don't list their location in their company information, only email contacts.

 

Russia, I think.

 

SSM folks R N Ukraine. I think that's somewhere north of Texas.

 

It is being developed in the Ukraine. That would be a long way north of Texas, or is that north , then south again?
Their IP shows as being from the USA as they use Go Daddy out of Arizona to host their site.
I wouldn't get too concerned about their Ukraine origins. Some excellent software comes from that region, SSM being on top of that list.
If you decide to install SSM, make certain your system is clean, especially if you intend to use the learning mode. SSM doesn't discern what is malicious from actual system components or legitimate software. The learning mode basically tells SSM to trust what is running, and if malware is running, it will also be trusted. This is less a problem if you're setting it up manually but that requires you to know what is necessary and legitimate. Unless you really know your system, the executables it contains, and what they do, use the learning mode, but clean your system to the best of your ability with every tool you have access to before using learning mode.
Rick

 

IMHO you don't need a HIPS. What most can get by with just fine is a decent firewall, AV, AS and maybe an AK, if you feel you need it. Pratice safe hex, keep Windows up to date and tighten up IE and/or run an alternate browser like Opera or Firefox. That's about all most users will need. I run something similar to the above and never get malware on my system other than what I put there myself for testing purposes and boy is my system fast these days.

 

Don't pay for anything you can't try out first. I recommend HIPS, but I'm new to it and what I know is mostly recently learned from others.

SSM is free, ProcessGuard has a free version, and RegRun has multiple trial versions. I don't know about the others.

 

Add to that list good ole Online Armor, a fine-fine program with a thirty day trial. Very easy to set up and use and 10 bucks less than you are looking to shell out...