Do I need NOD32 when I use PrevX Edge and Defenswall?

Discussion in 'other anti-malware software' started by softtouch, Apr 20, 2009.

Thread Status:
Not open for further replies.
  1. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    I currently have NOD32, PrevX Edge and Defensewall installed.
    My NOD32 license will expire in about 6 weeks.
    Do I need NOD32 or is PrevX Edge and Defensewall just enough?
    I like NOD32, but also like PrevX, and I just do not like to run all of them if it is not needed...
     
  2. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,014
    Location:
    Ontario, Canada
    I would say yes that Prevx 3.0 is enough but I like the layered approach so I will continue to run both! :thumb:

    TH
     
  3. robbcrg

    robbcrg Registered Member

    Joined:
    Apr 15, 2009
    Posts:
    22
    I think Nod32 and PrevX have considerable overlap although I am seeing more detections (valid after researching) being caught by PrevX than my Nod32 systems. So far on my test systems I am seeing a number of incidents that PrevX is spotting that Nod32 and others have missed (mostly Adware, but some Trojans as well). PrevX is more than AV and I think that is why it catches things Nod32 is missing.

    I would consider DefenseWall an entirely different layer, although there is some minor overlap since PrevX also uses behavior tracking (from what I understand). Due to deployment costs and support issues with my remote users I do not use DefenseWall. I do encourage you to try it on your local machines, it is quite cool. But you will need some kind of recovery software in case DefenseWall untrusted elements become infected, and for that PrevX should work.

    One thing to remember is that PrevX is "cloud" based and requires an internet connection. If you are in a situation where you could get infected without having Internet (roaming laptop and USB drive for example) then a AV with resident database is a good idea. DefenseWall is also very handy here as well since any infection will be limited in what it can do. Sandboxie can also work in this case but requires some discipline to remember to use it effectively.
     
  4. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    PrevX and DefenseWall would be sufficient I think.

    In its early days I had PrevX and Cyberhanwk runninng together. When they (PrevX) were outrun by ThreatFire on the behavioral aspect, they sort threw in every kind of protection (blacklist/ community voting / whitelist).

    Since PrevX Edge, there is some rational in using PreVX together with a policy or virtualisation sandbox. PrevX can be configured to pay close attention on the behaviour of relatively new installs.

    See scenario's one and two

    One: no intended install/trust

    a) DefenseWall keeps files and programs in a stronger than limited environment
    b) PrevX filters out the known bad guys

    Two: explicitely trust a program file with DefenseWall
    a) Defense does not touch it (because the user him/herslef explicitely trusted it)
    b) Being a new install, PrevX scrutenises the behaviour of this application, when it shows strange behaviour, it will be stopped (obvious intrusions) or analysed with their in the cloud technology, when you shot yourself in the food, it provides a counter measure.

    So the added value of PrevX is when you open the gates of DefenseWall.

    Since DefenseWall has total untrusted file control, I would not worry about PrevX not taking part of Anti-Virus comparatives, because DefenseWall will keep any malware paralised

    A nice combo IMO especially for users not backing up their images or not having 'recover-on-boot' type of software.

    When you are using IE or FF, I would advise the free KeyScrambler, to minimise keylogger risk in the time (of scenario two) between suspicious behavior and analysing results of PrevX central servers.
     
  5. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    Thank you for the responses.

    I guess, I will just let my NOD32 license expire and will stay with PrevX and Defensewall.

    I am not browsing warez sites etc., nor do I use a laptop. I have 24h internet connection and most of the time I am just working (programming) on the PC, so I think I am out of danger and the duo (PrevX/Defensewall) might be enough for my browsing behavior.

    I just don't know yet what will happen when I receive emails with malware attached. I know Nod32 will block the email, but PrevX? I guess, time to study PrevX and Defensewall.
     
  6. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    E-mails are also contained by DW when your e-mail application is listed as untrusted
     
  7. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    When I run outlook as untrusted, and access my pop yahoo account, I get from time to time timeouts, which does not happen when I run it at trusted.
     
  8. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    If you have "timeouts", it could be because of various reasons. This case, first, you have to send me DW's logs exported.
     
  9. 1000db

    1000db Registered Member

    Joined:
    Jan 9, 2009
    Posts:
    718
    Location:
    Missouri
    I have used NOD32 for a few years and have always been pleased (until v4 came out). I believe that the unique way DW works along with the way prevx detects you will be plenty safe. It should be easier on your resources too.
     
  10. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    Where do I send the log to?
     
  11. Creer

    Creer Registered Member

    Joined:
    Jun 29, 2008
    Posts:
    1,345
  12. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    To support e-mail or forum.
     
  13. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,048
    Location:
    SouthCentral PA
    Just to play it extra safe if you want to, you could always let your NOD subscription run out and then switch to something like the free version of Avira which is just about as good as NOD although maybe not as light. I might do that myself if my wife and I BOTH lose our jobs within the next two months which is a real possibility. :doubt:

    Acadia
     
  14. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,048
    Location:
    SouthCentral PA
    Thank you, we may know by the end of this week. :doubt:

    Acadia
     
Loading...
Thread Status:
Not open for further replies.