Internet Security

[Pete B]

What do folks here consider to be the best internet security protection
software packages (AV, spam, etc)? I have been using AVG Pro but it has
firewall and other problems. I have been looking at the items on this
list:

http://internet-security-suite-review.toptenreviews.com/

Do any of you have these packages, any recommendations? I am inclined to
try ZoneAlarm Extreme Security, but would appreciate advice from experienced
users of any kind of such software.

 

[R. McCarty]

Real Time security agents -
Nod32 ( Anti-Virus )
Tallemu Online Armor ( Firewall )
Windows Defender ( Malware Detect/Remove)

Scanner & Removal tools -
Spybot Search & Destroy (1.6.2) Omit Tea Timer functionality
Malwarebytes (1.34) [ Freeware Version ]
*At least a weekly check, Malwarebytes a little more frequently

Accessory tools:
HiJackThis

Online scans, as double-check on resident Security
BitDefender
Kaspersky
Secunia Scan - Checks applications for latest version, vulnerabilities

 

[Tim Meddick]

Hi Pete B
Maybe underrated, but I really like the AVG antivirus resident
shield and it's built-in Link scanner. I have used Spybot's tea-timer and,
although it is very good, it found it too resource intensive for my slightly
outmoded system. If you have system resources to spare then tea-timer IS
the one I recommend. I also use Microsoft's Windows Defender which catches
internet related threats and provides resident protection.

 

[John Inzer]

What do folks here consider to be the best internet security
protection software packages (AV, spam, etc)? I have been using AVG
Pro but it has firewall and other problems. I have been looking at
the items on this list:

http://internet-security-suite-review.toptenreviews.com/

Do any of you have these packages, any recommendations? I am
inclined to try ZoneAlarm Extreme Security, but would appreciate
advice from experienced users of any kind of such software.

================================
I use the free versions of the
following programs...and FWIW...
the following site rates my system
as "TruStealth".

ShieldsUP!
https://www.grc.com/x/ne.dll?bh0bkyd2

Avira Personal
ZoneAlarm
SUPERAntiSpyware
MalWareBytes
Ad-Aware
Spybot
A-Squared
Windows Defender
SpywareBlaster

Q - Why so many you may ask?

A - Because they all tend to find
different things.


And...ESET Smart Security
may be worth a try.

ESET Smart Security
http://www.eset.com/smartsecurity/


--


John Inzer MS-MVP
Digital Media Experience

Notice
This is not tech support
I am a volunteer

Solutions that work for
me may not work for you

Proceed at your own risk

 

[Pete B]

To all:

Thanks for the feedback.

OK I like that ESET Smart Security package, but it looks similar in
performance to the Kapersky suite, which is another one I am considering.
What are the problems with ZoneAlarm? BTW I am not necessarily looking for
freeware, I have no problem paying for what I get.

What I am looking for is a package that is as transparent as possible, IOW
that does not slow down my system, especially via the malware/antispam
stuff, and that does not hinder bootup, and that detects everything,
especially the hard stuff like keyloggers and rootkits. I had to disable
the AVG antispam because it slowed down the downloading of my email to a
crawl while it scanned each new message, which is pathetic. The firewall in
AVG is forever interrupting my browsing or else just pops up info windows
whenever it feels like it, and it takes forever to negotiate with WinXP
firewall at startup. I do agree the AVG antivirus is great, but the rest of
the pro stuff sort of sucks.

I know nothing is perfect, but after seeing your comments, I am now
undecided between Kaspersky's (fast), ESET (fast), and still considering
ZoneAlarm. I agree with not even thinking about anything Norton-made, that
stuff is pure evil junk.

So does ESET seem to be a top-rated package? What is bad about ZoneAlarm?
Has anyone had experince with Kaspersky's which supposedly has the best AV
engine of all? As for spam and such, I used to use Lavasoft's AdAware Pro,
which was very good, but then they screwed me out of a half-year of the
license I paid for when they "upgraded" so screw them. Now I have PC Tools
Spyware Doctor, which is OK but not as good as the old AdAware.

Based on all your comments, I am now inclined either to Kaspersky's or ESET,
anyway, but I hope someone has more tips and advice to offer.

 

[Kayman]

What do folks here consider to be the best internet security protection
software packages (AV, spam, etc)? I have been using AVG Pro but it has
firewall and other problems. I have been looking at the items on this
list:

Steer away from 3rd party software firewall applications!

http://internet-security-suite-review.toptenreviews.com/

Do any of you have these packages, any recommendations? I am inclined to
try ZoneAlarm Extreme Security,

I wouldn't, waste of money! Spend your money on a decent back-up
application.

but would appreciate advice from experienced users of any kind of such
software.

Realistically, no software will give you 'security protection'!

For WinXP the most dependable defenses are:-
1. Do not work as Administrator; For day-to-day work routinely use a
Least-privileged User Account (LUA).
Applying the Principle of Least Privilege to User Accounts on WindowsXP
http://technet.microsoft.com/en-us/library/bb456992.aspx

2. Secure (Harden) your operating system.
http://www.5starsupport.com/tutorial/hardening-windows.htm

3. Don't expose services to public networks.
Windows XP Service Pack 3 Service Configurations
http://www.blackviper.com/WinXP/servicecfg.htm

4. Keep your operating system (and all software on it) updated/patched.
How to configure and use Automatic Updates in Windows XP
http://support.microsoft.com/kb/306525
http://www.update.microsoft.com/windowsupdate/v6/default.aspx?ln=en-us

4a.Got SP3 yet?
Why Service Packs are Better Than Patches.
http://www.microsoft.com/technet/archive/community/columns/security/essays/srvpatch.mspx?mfr=true

5. Reconsider the usage of IE and OE.
Utilizing another browser application and e-mail provider can add to the
overall security of the OS.
Consider: Opera, FireFox or Seamonkey and PegasusMail,Thunderbird or
WLM.

5a.Secure (Harden) Internet Explorer.
Internet Explorer7 Desktop Security Guide.
http://www.microsoft.com/downloads/...DA-6021-468E-A8CF-AF4AFE4C84B2&displaylang=en

6. Review your installed 3rd party software applications/utilities;
Remove clutter, *including* all Anti-WhatEver ware and 3rd party
software personal firewall application (PFW) - the one which claims:
"It can stop/control malicious outbound traffic".

7. If on dial-up Internet connection, activate the build-in firewall.
Windows XP: How to turn on your firewall.
http://www.microsoft.com/protect/computer/firewall/xp.mspx

7a.Configure Windows by using:
Seconfig XP 1.1
http://seconfig.sytes.net/

7b.If on high-speed Internet connection use a Router and
implement Countermeasures against DNSChanger.
http://extremesecurity.blogspot.com/2008/06/use-default-password-get-hijacked.html

7c.And (just in case) Wired Equivalent Privacy (WEP) has been superseded by
Wi-Fi Protected Access (WPA2) and/or IEEE 802.11.

8. Utilize one (1) each 'real-time' anti-virus and anti-spy
application.
Consider: Avira AntiVir® PersonalEdition Classic - Free
and Windows Defender.

9. Employ back-up application(s).
Windows XP Backup Made Easy
http://www.microsoft.com/windowsxp/using/setup/learnmore/bott_03july14.mspx
Consider: Acronis, Casper or Norton Ghost and ERUNT.

9a.Utilize vital operating system monitor utilities/applications but you
need to know the nature or meaning of what those programs are
disclosing.
Consider: Process Explorer, AutoRuns, TCPView, WALLWATCHER, Wireshark,
Port Reporter, Regmon/Filemon or Process Monitor, rootkit detection
tools like Rootkit Revealer, Gmer Rootkit or Hook Analyzer.
There are more but beware computer forensics is a quite difficult and
complex field.

10.Routinely practice Safe-Hex.
http://www.claymania.com/safe-hex.html

The least preferred defenses are:-
Myriads of popular anti-whatever (*real-time*) applications and staying
ignorant.

"*Security is a process not a product*" (Bruce Schneier).

Educational reading:
10 Immutable Laws of Security.
http://technet.microsoft.com/en-us/library/cc722487.aspx

Security Watch Revisiting the 10 Immutable Laws of Security, Part 1
http://technet.microsoft.com/en-us/magazine/2008.10.securitywatch.aspx

Security Watch Revisiting the 10 Immutable Laws of Security, Part 2
http://technet.microsoft.com/en-us/magazine/2008.11.securitywatch.aspx?=blog

Security Watch Revisiting the 10 Immutable Laws of Security, Part 3
http://technet.microsoft.com/en-us/magazine/dd228983.aspx?pr=blog

Good luck

 

[Randem]

There is no one software package fits all. It like buying a component stereo
system. A bunch of inferior products slamed together to make a package. The
individual components would be of higher quality and perform better.

--
Randem Systems
Your Installation Specialist
The Top Inno Setup Script Generator
http://www.randem.com/innoscript.html
Disk Read Error Press Ctl+Alt+Del to Restart
http://www.randem.com/discus/messages/9402/9406.html?1236319938

 

[Pete B]

I wouldn't, waste of money! Spend your money on a decent back-up

application.

I already know about all those "preventive" measures, and I use a backup
regularly, Acronis. Most of your points are not the information I was
looking for, and many are simply cases of closing the henhouse door after
the fox has done the deeds. Your other advice is off the mark for a home PC
user.

 

[Pete B]

I agree with that, but I do not want to buy many different packages, just
one. I am having a hard time getting recommendations for one package, let
alone trying to get the same advice for a group of independent packages. In
any case, I am not looking for perfection because there is no such thing in
this regard, I am just looking for the best of the suites even though they
are not ideal. I am not in need of the ultimate bulletproofprotection, just
a good package for home use.

I do not need something invincible, I have never in all my years since the
PC was invented had my PC get a virus, perhaps because either I am extremely
lucky, or maybe it has to do with the fact that I do not browse to the sites
that are liable to expose me to that danger. I will not even use the social
networking sites lkike Facebook for that reason.

Thanks for the reply.

--
Pete B

There is no one software package fits all. It like buying a component
stereo system. A bunch of inferior products slamed together to make a
package. The individual components would be of higher quality and perform
better.

--
Randem Systems
Your Installation Specialist
The Top Inno Setup Script Generator
http://www.randem.com/innoscript.html
Disk Read Error Press Ctl+Alt+Del to Restart
http://www.randem.com/discus/messages/9402/9406.html?1236319938

 

[Jim]

2. Secure (Harden) your operating system.
http://www.5starsupport.com/tutorial/hardening-windows.htm

This is an interesting subject at the above link. I was reading the section
on "Renaming and password protecting the
Administrator account" (for WinXP) and the instructions said

1 "Right click on 'My Computer' then click on 'Manage', which opens the
Microsoft Management console.

2 Expand the "Local Users and Groups", and open the 'Users' folder

My problem right off is that there is no "Local Users and Groups" to expand
on my computer (XP Home SP3). All there is
is System Tools, Storage, and Services and Aplications

Any Advice . . .?

Thanks
John


==============================
On my SP3 system, I find "Local Users and Groups" as follows"
1. Open the Control Panel
2. Select the "Administrative Tools " tab
3. Select "Computer Management"
The Local Users and Groups tab appears in the panel on the left hand side of
the screen. You expand this setting to get users and groups.
If you can logon to the computer, this list is not empty.

This process is supposed to yield identical results to what you posted. It
is possible that the instructions left out something.
It is also possible that I left out something as well.
Jim

 

[John Inzer]

To all:

Thanks for the feedback.

OK I like that ESET Smart Security package, but it looks similar in
performance to the Kapersky suite, which is another one I am
considering. What are the problems with ZoneAlarm? BTW I am not
necessarily looking for freeware, I have no problem paying for what I
get.
What I am looking for is a package that is as transparent as
possible, IOW that does not slow down my system, especially via the
malware/antispam stuff, and that does not hinder bootup, and that
detects everything, especially the hard stuff like keyloggers and
rootkits. I had to disable the AVG antispam because it slowed down
the downloading of my email to a crawl while it scanned each new
message, which is pathetic. The firewall in AVG is forever
interrupting my browsing or else just pops up info windows whenever
it feels like it, and it takes forever to negotiate with WinXP
firewall at startup. I do agree the AVG antivirus is great, but the
rest of the pro stuff sort of sucks.
I know nothing is perfect, but after seeing your comments, I am now
undecided between Kaspersky's (fast), ESET (fast), and still
considering ZoneAlarm. I agree with not even thinking about anything
Norton-made, that stuff is pure evil junk.

So does ESET seem to be a top-rated package? What is bad about
ZoneAlarm? Has anyone had experince with Kaspersky's which supposedly
has the best AV engine of all? As for spam and such, I used to use
Lavasoft's AdAware Pro, which was very good, but then they screwed me
out of a half-year of the license I paid for when they "upgraded" so
screw them. Now I have PC Tools Spyware Doctor, which is OK but not
as good as the old AdAware.
Based on all your comments, I am now inclined either to Kaspersky's
or ESET, anyway, but I hope someone has more tips and advice to offer.

==================================
As I previously stated, I use several programs
because they find different things. Best advice...
one Firewall..one Virus scanner...and as many
malware/trojan scanners as you wish to keep
up with. (some are updated several times daily)

BTW...ZoneAlarm does have it's share of detractors
but it works well for me.

Anyway...if you prefer an all-in-one suite...ESET
is worth a look.

As an experiment...you could create a system
restore point so you can revert if you are unhappy
and then download and install the 30 day trial
version.

ESET Download a FREE 30-day trial
http://www.eset.com/download/free_trial_download.php

--


John Inzer MS-MVP
Digital Media Experience

Notice
This is not tech support
I am a volunteer

Solutions that work for
me may not work for you

Proceed at your own risk

 

[John Inzer]

This is an interesting subject at the above link. I was reading the
section on "Renaming and password protecting the
Administrator account" (for WinXP) and the instructions said

1 "Right click on 'My Computer' then click on 'Manage', which opens
the Microsoft Management console.

2 Expand the "Local Users and Groups", and open the 'Users' folder

My problem right off is that there is no "Local Users and Groups" to
expand on my computer (XP Home SP3). All there is
is System Tools, Storage, and Services and Aplications

Any Advice . . .?

Thanks
John

==================================
Did you try expanding...System Tools?

Computer Management / System Tools /
Local Users and Groups / Users

Here's an article that may be worth a look:

(555441) TechNet Support webcast:
Make your Windows XP PC more secured
http://support.microsoft.com/kb/555441
(Scroll down to: Rename the Administrator account)

--


John Inzer MS-MVP
Digital Media Experience

Notice
This is not tech support
I am a volunteer

Solutions that work for
me may not work for you

Proceed at your own risk

 

[Pete B]

Thanks, maybe I will give that ESET a try. Yes that is the way I usually
test software, although I also have Acronis which provides a "secure
testing" method that is even better.

 

[Randem]

I have used seperate packages that concentrate on one specific area. I use
AVG 8.0 (Free), Spyware Doctor ($30) and MalwareBytes (Free) to keep my
computer clean. Norton used to be the defacto standard in virus removal
before they were perchased by Symantec and build into a suite. Since then
the package has been marginal as best. I would rather used seperate packaged
and be protected than a marginal suite and have minimal protection.

--
Randem Systems
Your Installation Specialist
The Top Inno Setup Script Generator
http://www.randem.com/innoscript.html
Disk Read Error Press Ctl+Alt+Del to Restart
http://www.randem.com/discus/messages/9402/9406.html?1236319938

I agree with that, but I do not want to buy many different packages, just
one. I am having a hard time getting recommendations for one package, let
alone trying to get the same advice for a group of independent packages.
In any case, I am not looking for perfection because there is no such thing
in this regard, I am just looking for the best of the suites even though
they are not ideal. I am not in need of the ultimate
bulletproofprotection, just a good package for home use.

I do not need something invincible, I have never in all my years since the
PC was invented had my PC get a virus, perhaps because either I am
extremely lucky, or maybe it has to do with the fact that I do not browse
to the sites that are liable to expose me to that danger. I will not even
use the social networking sites lkike Facebook for that reason.

Thanks for the reply.

 

[Randem]

I also use Firefox with the plugins NoScript and AdBlock Plus instead of IE
and that helps a lot...

--
Randem Systems
Your Installation Specialist
The Top Inno Setup Script Generator
http://www.randem.com/innoscript.html
Disk Read Error Press Ctl+Alt+Del to Restart
http://www.randem.com/discus/messages/9402/9406.html?1236319938

I agree with that, but I do not want to buy many different packages, just
one. I am having a hard time getting recommendations for one package, let
alone trying to get the same advice for a group of independent packages.
In any case, I am not looking for perfection because there is no such thing
in this regard, I am just looking for the best of the suites even though
they are not ideal. I am not in need of the ultimate
bulletproofprotection, just a good package for home use.

I do not need something invincible, I have never in all my years since the
PC was invented had my PC get a virus, perhaps because either I am
extremely lucky, or maybe it has to do with the fact that I do not browse
to the sites that are liable to expose me to that danger. I will not even
use the social networking sites lkike Facebook for that reason.

Thanks for the reply.

 

[John Inzer]

After a Google search I discovered that it is not avalable on XP Home
machines which is what I have. I think an
alternitive is to go to "User Accounts" in Control Panel.

Tanks
John
____ _
| __\_\_o____/_|
<[___\_\_-----<------------------<No Spam Please><
| o'

=================================
Ok...if you say so...but did you actually
double left click 'System Tools' to see
if it would expand?

--


John Inzer MS-MVP
Digital Media Experience

Notice
This is not tech support
I am a volunteer

Solutions that work for
me may not work for you

Proceed at your own risk

 

[Kayman]

I already know about all those "preventive" measures, and I use a backup
regularly, Acronis.
Good.

Most of your points are not the information I was looking for,

Sorry, I thought you were seeking advice in relation to Internet Security.

and many are simply cases of closing the henhouse door after
the fox has done the deeds.

How so?

Your other advice is off the mark for a home PC user.

On the contrary, my suggestions are spot-on and relevant with respect to
Internet Security! You need to educate yourself reading publications which
are *not* commercially sponsored - don't be blinded by marketing, oh well.

 

[Kayman]

This is an interesting subject at the above link. I was reading the section on "Renaming and password protecting the
Administrator account" (for WinXP) and the instructions said

1 "Right click on ‘My Computer’ then click on ‘Manage’, which opens the Microsoft Management console.

2 Expand the "Local Users and Groups", and open the ‘Users’ folder

My problem right off is that there is no "Local Users and Groups" to expand on my computer (XP Home SP3). All there is
is System Tools, Storage, and Services and Aplications

Any Advice . . .?

WinXP Pro only, sorry

 

[Pete B]

I do not disagree or claim what you posted is wrong. It is simply not what
I asked about, and IMO is far more appropriate for a business environment
machine than for a simple home user. Nothing you posted about is new to me,
I am aware of all those security measures you wrote, and used most in the
past but I do not need all those things now. I am not trying to protect the
Keys To The Kingdom, I simply want to avoid an annoying intrusion on my PC.

For example, I practiced that procedure faithfully about avoiding running as
an Admin user, protecting passwords, etc. at my business before I retired,
when I was working as a data analyst and software engineer. As well, most
of the other suggestions you posted were part of our business practice for
our workstations.

But now I am retired, I use my PC at home as a stand-alone system for
completely non-business purposes, and I am the only user that ever touches
this PC. The only data of value on my system here are my passwords, which
are contained in an encrypted file managed by a very robust password
application which itself is encrypted and requires a password, and my
financial data, but since my whole financial system is also very well
encrypted, I doubt if any intruder could do anything with it even if they
did manage to hack in, since I store all my vital personal data on an
encrypted removable data drive, which I only power on and use when it is
needed (and I back up that data often). Furthermore, I am one of those few
who actually have subscribe to a credit watch service for many years, so
even my financial affairs outside of the computer are protected very well,
and I check what is going on there quite often to make sure nothing is
changed.

And because I do frequent image and data backups (I use Acronis TrueImage),
even if some hacker did manage to bust in and demolish my operating system,
I would not be devastated or totally suicidal; I would simply wipe out the
HDD and restore the image and carry on.... but having to do so would piss me
off for the time it would waste, that's all.

Like I said, I have actually run my home system the way I do now since the
days of the first personal computers back in the '80s, and even did so for
many years early on with no security at all on my system. I only started
using security when I began doing things at home that needed to be secured,
but I have never actually had my system successfully hacked in all the years
I have used it because among other things, I am careful what I do on the
'net, and I now use a commercial internet security package which so far has
protected me totally (and I know it has because I can read the logs it keeps
showing exactly what it did all the time I was running).

I have found that a commercial software internet security package suits my
needs just fine. I know there is always a slim chance that some evildoer
will still get in somehow, but the chances of my system being the individual
target of some miscreant out to do me actual financial or real personal harm
are virtually nil; as I also stated earlier, those guys are interested in
the big corporate, government, and commercial database info, where they can
get millions of records at one swoop. And nowadays, I would venture that it
is virtually impossible for any hacker to intercept my communications as
they go over the 'net by hacking the WWW itself, so I also do not get overly
concerned about that. All I want is something that will keep an eye on
things while I am running my system here at home, and a commercial suite of
software will do that good enough for me; not perfect, for sure, but good
enough.

My biggest concern in asking about this was not whether such software was
the absolute pinnacle of invincible security protection, which I know it is
not; nothing is, including all those measures you posted. Any hacker that
is truly determined to get into any PC will be able to do it if he has the
skills and ability, there is no perfect protection, period, and that applies
to all the various platforms, not just my good ol' WinXP. But I am
concerned primarily with the performance effects of such software on my
system AFA slowing it down and so forth, and about compatibility with my
total PC software and the speed the security software runs at and so on.
That is what I sought advice on, and that is why I replied to you as I did.
It is not that i do not appreciate your advice, it is just not what I am
really concerned about for my home PC. I can live with the security
provided by such internet security software. Something may happen some day,
but it will not be The End Of Life As I Know It. I will survive no matter
what happens. And in fact, I am sure I have done worse things to my PC all
by my stupid self over the years, worse than any hacker could ever dream of,
things that literally took me days to rectify; I survived that, good enough
for me if I just have software that looks out for the bad guys out there.

So thanks again--

 

[Pete B]

I currently use AVG 8.5 Pro and Spyware Doctor, too, but like I said I am
not really happy with them for various reasons not to do with security
itself, so I am looking for a new package to try. The old Ad Aware was
better than Spyware Doctor IMO. I would rather use an all-in-one than
separate, too, if it does good enough for what I need. I also used to use
Norton's but their software totally invades and hooks into your system and
conflicts with some other apps, and it will not allow you to uninstall it
because it is so hooked into your PC, it even uses a rootkit for gods sake;
I finally got it totally gone and I would never use it again (I have found
many others who feel the same way).