Is this Considered Too Much Security?

Discussion in 'other anti-malware software' started by mrm3601, Jun 11, 2009.

Thread Status:
Not open for further replies.
  1. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    I am running on my PC (Windows XP Home):

    • Firefox
    • ESET NOD32 (latest edition)
    • Malwarebyte's Anti-Malware (real time)
    • SuperAntiSpyware Professional (on demand)
    • Prevx v3.0 (latest edition)
    • Online Armor
    • Window Washer
    • CCleaner



    (Am I out of breadth?). I'm concerned that all of these security apps are slowing down the system.

    Thanks.
     
  2. philby

    philby Registered Member

    Joined:
    Jan 10, 2008
    Posts:
    940
    Hello

    I think this depends on what you're doing with your machine.

    As a home user I've survived a long while now using only Sandboxed Opera + Prevx.

    I also occasionally use Returnil (for testing) and CCleaner for killing detritus.

    I used to use ESS and a lot of other stuff...

    Not worth the overhead if you're prudent in what you do, IMHO.

    The most important thing for me is to have recent clean images to revert to.

    However, even my use of "clean" in that last line can be questioned - see entertaining thread here.

    philby
     
    Last edited: Jun 11, 2009
  3. Woody777

    Woody777 Registered Member

    Joined:
    Aug 29, 2006
    Posts:
    484
    You probably don't need MBAM real time if you have NOD. Do you really need that much HIPS. After all you have Online Armor which is pretty good all by itself.
     
  4. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    Thank you both for your replies.

    Woody777, I have a question: other than Online Armor, what other HIPS am I running? Does NOD32 have a HIPS or do the other security apps have a HIPS other than Online Armor?

    Thanks again
     
  5. Warklen

    Warklen Registered Member

    Joined:
    Jan 17, 2009
    Posts:
    107
    Your fine Online Armor is your only HIPS
     
  6. the Tester

    the Tester Registered Member

    Joined:
    Jul 28, 2002
    Posts:
    2,854
    Location:
    The Gateway to the Blue Hills,WI.
    If you are running Prevx and MBAM real-time you could drop one.
    That would be the only change I might consider.
     
  7. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    Thanks Warklen and the Tester.

    I'll consider running either MBAM or Prevx in real time (but I'll probably keep them both running real).

    Thanks.
     
  8. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    If you have common sense and safe surfing habits, then you should remove Online Armor, as the protection it provides should be similar to Prevx.
     
  9. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    But Someone: isn't Online Armor considered to be a firewall? And isn't Prevx an anti-malware tool?

    Thanks.
     
  10. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
    Yes and Yes. See: http://www.tallemu.com/comparisons.html. I consider Prevx 3 to be an anti-malware tool (cloud data base) and behavior blocker (heuristics). Prevx is a good addition to an anti-virus program on your computer.
     
  11. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    Online Armor is a firewall and HIPS and Prevx is a HIPS so you really don't need both.
     
  12. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    A behavioural blocker is really just a "smart" HIPS so it's not completely different.

    And seriously, with Nod32 and MBAM already the OP doesn't need both of these programs.
     
  13. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    Well back to the question at hand, here are the overlaps I can see

    NOD - MBAM Realtime
    Nod has spyware built in so MBAM in real time may be adding more overhead than it is worth.

    OA - PREVX
    Yes they are somewhat different as PREVX is an heuristics based behavior blocker and OA is a classical behavior blocker. However you probably dont need both. If you want more control, go for OA, if you want more leave and forget go with PREVX. Not considering the firewall aspect as I dont really believe it is a big part a security solution.

    Window Washer - CCleaner
    Dont really need both. But because they are on demand, its not adding any overhead. Also if you are serious abt privacy, you should consider using whole disk encryption with Truecrypt.
     
  14. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    Thanks again, to all (with particular reference to huangker, G1111, and to the Tester).

    My concern about the security applications I have running is that they slow my system down a bit (which I can live with). I'm an academic, and the only time I have to do work at home is when I return here at night and it is at night when I have the following running:

    1. NOD32
    2. Malwarebyte's Anti-Malware
    3. (I've configured Prevx3.0 to "real time")

    And even though I've scheduled these applications not to overlap in their running time they still do. Does this account for the slow down? This is what I mean by "slow down": in the evening, when I use, for example, MS Word 2007 to write, and as a type, I see the letters come across in a halting way. Has anyone experienced the same?

    Thank you.
     
  15. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    Two more questions: would using a program such as "sandboxie" obviate the need for software such as MAB or SuperAntiSpyware Professional? And would a program like "sandboxie" make the system slow down noticeably?
     
  16. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    Re need for MBAM or SAS: It is another layer, totally different approach. Dont think there was ever a 'need' for MBAM resident. (See EDIT)

    Re overhead: Sandboxie may slow down the startup of the the program you are sandoxing but wont really have any massive overhead over the rest of the system.

    EDIT: To give you a run down on SAS and MBAM, these products were created when most AV vendors didnt do a very good job with spyware. MBAM and SAS filled that niche of finding spyware. Now most AVs have really caught up in spyware detection. (Check http://www.virusbtn.com/news/2008/03_13a.xml) In my opinion, now the niche they fill is removal. i.e. they are quite good at removing spyware that have installed on your system. On demand, they dont pick up nearly as much as the mainstream AVs. MBAM and SAS haven't really been tested for their heuriscs.
     
    Last edited: Jun 12, 2009
  17. philby

    philby Registered Member

    Joined:
    Jan 10, 2008
    Posts:
    940
    I think this would depend on how cautious you are about what you recover from the Sandbox.

    Both Opera and Outlook take 1 second longer to load on my machine, even with a "fresh" Sandbox every time.

    philby
     
  18. mrm3601

    mrm3601 Registered Member

    Joined:
    Oct 23, 2007
    Posts:
    66
    Thanks again, huangker and philby. I think I'll keep the security applications I'm running now, with a tweak here or there.
     
Loading...
Thread Status:
Not open for further replies.