What do you say about community-based HIPS

Discussion in 'other anti-malware software' started by Wai_Wai, Sep 26, 2006.

Thread Status:
Not open for further replies.
  1. Wai_Wai

    Wai_Wai Registered Member

    Joined:
    Dec 28, 2004
    Posts:
    556
    Community-based HIPS

    What do you think about community-based HIPS?
    What're their merits and demerits?

    There're two community-based HIPS I'm aware of - Prevx1 and Online Armour.
    Is there any more?
    How do you compare between one another? Which is better?

    Thanks a lot for your reply.
     
  2. cheater87

    cheater87 Registered Member

    Joined:
    Apr 22, 2005
    Posts:
    3,122
    Location:
    Pennsylvania.
    I love prevx it gives me a very good sense of security
     
  3. austin1257

    austin1257 Infrequent Poster

    Joined:
    Sep 24, 2006
    Posts:
    31
    Prevx1 and Nod, what more can I say. I love Prevx.
     
  4. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    prevx1 is great.
     
  5. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    I sincerely hope that the community database is quickly verified by experts, who see the difference between clean and infected applications, because I don't trust the housewives doing this.
    I also hope that these experts can handle the quantity of new applications.
     
  6. Davidpr

    Davidpr Registered Member

    Joined:
    May 24, 2006
    Posts:
    92
    I would not use a pc without Prevx.
     
  7. starfish_001

    starfish_001 Registered Member

    Joined:
    Jan 31, 2005
    Posts:
    1,041
    A valid concern - Prevx do have a lot of people verifying the DB entries.

    I like prevx - it adds a second opinion - but sometimes gets things wrong. I have had a few things jailed that were not malware but - overall I like it


    Online Armour is quite nice - I have just put this one one of my test pc after a few months without it.

    SNS is another alternative - kinda

    Personally I prefer Prevx
     
  8. Notok

    Notok Registered Member

    Joined:
    May 28, 2004
    Posts:
    2,969
    Location:
    Portland, OR (USA)
    Indeed it is. The Analysts are the only ones that make changes to the db, otherwise the malware writers would be all over it.

    Feel free to PM me with questions like these, if you like. You can also feel free to drop by the official forums at CastleCops.
     
    Last edited: Sep 26, 2006
  9. Wai_Wai

    Wai_Wai Registered Member

    Joined:
    Dec 28, 2004
    Posts:
    556
    cheater87, austin1257, lodore:
    Why do you love this application?
    Any specifc reason? Or just the feeling of liking?
     
  10. Wai_Wai

    Wai_Wai Registered Member

    Joined:
    Dec 28, 2004
    Posts:
    556
    I know users can right-click on the result and "disagree"!
    How does it actually work and proceed?
     
  11. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    the applications are quickly checked for spyware and malware and send to the community right away. it used to be heavy on resourses but now getting lighter.
    so its improving with every relase which is always nice to see in a company.

    lodore
     
  12. cheater87

    cheater87 Registered Member

    Joined:
    Apr 22, 2005
    Posts:
    3,122
    Location:
    Pennsylvania.
    im paranoid of stuff like spyware so a program that stops it from installing is great for me.
     
  13. austin1257

    austin1257 Infrequent Poster

    Joined:
    Sep 24, 2006
    Posts:
    31
    Easy to install, verifies your pc for issues wjile installing. Once installed it will nip anything that tries to mess deep into your pc. I know that isnt the technical way of putting it. But I know of 2 people who use it and the XP firewall and nothing else, and have never had a issue. This was verified by online scans they did from 2 other vendors. Personally, I like the added protection of Nod, and Ewido inactive just to keep a eye out. But it will pretty much keep all malware off your pc. No slow down either that I have noticed.
     
  14. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    no slow down thats is good.
    im thinking of putting prevx1 in my setup.
     
  15. austin1257

    austin1257 Infrequent Poster

    Joined:
    Sep 24, 2006
    Posts:
    31
    I thought you did have it. Just what do you use, today.o_O
     
  16. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    Protected by Fsis 2006.firefox with no script,adblock ,siteadvisor,nat device.

    just whats above. the other stuff in my sig is what is coming soon

    fsis=f-secure internet secuirty 2006. it keeps on giving me over 10mb updates and then doesnt want to install em. so have to run there special tool to reset updates.

    cant wait to get rid of it.
     
  17. austin1257

    austin1257 Infrequent Poster

    Joined:
    Sep 24, 2006
    Posts:
    31
    Wow, if you ever sell your PC, sell it cheap.:rolleyes:
     
  18. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    i ment i cant wait to get rid of f-secure:)

    the stuff here is what is to come.

    av+prevx1+nat device+windows firewall.

    sieems simple enough.

    the av's are eiether bitdefender 10 or kaspersky 6.
     
  19. Notok

    Notok Registered Member

    Joined:
    May 28, 2004
    Posts:
    2,969
    Location:
    Portland, OR (USA)
    It sends a message in with the specific location in the database (which is important) and any comments you provide. The analysts then review it and either change it or tell you why not. Believe it or not we actually get people disagreeing about actual malware.

    It pretty much follows the "Neighborhood Watch" analogy. In a Neighborhood Watch, people keep an eye out for crime and give the police any information they have to help the police to take care of it. With an official Neighborhood Watch, citizens are given the information/tools to spot and report suspicious activity more effectively than just someone that happens to see something happening, and so it is with Prevx1. Obviously if the citizens could add or remove criminal records from the database, the criminals would all be deleting any records of themselves, and is just what would happen with the Prevx1 Community Database if it were open. Hopefully there will be more "community" type features added, but until then don't hesitate to write in or visit our forum. Of course I'm always around here as well :)
     
  20. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408
    Prevx1 looks like a good security program.Can someone tell me if this would be a good addition to my other security software or would there be conflic's due to overlaping? Would like to try this one.
     
  21. austin1257

    austin1257 Infrequent Poster

    Joined:
    Sep 24, 2006
    Posts:
    31
    Dont know, you have alot you wont need with Prevx1. I am getting ready to test Prevx1 with the new Antivir beta suite. Will keep you informed.
     
  22. muf

    muf Registered Member

    Joined:
    Dec 30, 2003
    Posts:
    926
    Location:
    Manchester, England
    I dropped Online Armor for Prevx1. Found my system ran faster, there are far less popups and i only get bothered by the 'really obscure' things. It really does run transparent. It must have one hell of a large whitelist cos some of the apps i use are not what i'd call mainstream. I've tried a few HIPS out but my main gripe was always having to make too many of the decision's myself. Prevx1 has taken 99% of the decision making away, and thats how i like things...running in the background only popping up when really needed.

    Lovin' it!!!

    muf
     
  23. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    I would assume that this "new applications" workload is made even larger by changes/updates to applications already in the Prevx database.
     
  24. Wai_Wai

    Wai_Wai Registered Member

    Joined:
    Dec 28, 2004
    Posts:
    556
    Possible. If two applications are monitoring the same area, a conflict may occur. Some conflicts may be hidden. That's mean they don't geenrate an error message. Instead each one nullify the protection of others, but you don't notify it if you don't investigate deep enough. Given stability/reliablity into consideration, it isn't worth to overlap protection.
     
  25. Wai_Wai

    Wai_Wai Registered Member

    Joined:
    Dec 28, 2004
    Posts:
    556
    How come?

    Do they really disagreeing, or just naughty?

    I may expect there may be some arugments about some greyware (the behaviour may be regarded as bad, but obviously not harmful).

    Will the workload be huge since no one will agree on everything?
     
Loading...
Thread Status:
Not open for further replies.