On a different note, several of you have suggested that I add (or at least mentioned) Syshardener. Thanks for that! I think I may integrate it into my system today since (at least for the time being) I need to continue running Windows rather than switching say to Linux.
Also, several of you have mentioned I do not need to be running "three" real time apps - that it is overkill, and that I should get rid of either VooDooShield or HitmanPro Alert. In responding to that, I'll say it again: You may very well be right. And I may be wrong. I'll go ahead and explain what I run (and why) for those who are interested but I'm not doing it to argue with you nor am I doing it to suggest others follow my lead. Here's what I'm doing - I'm here to learn (like all of us).
Let me begin by saying that I'm well aware that the best defense against malware is good practices - not security software. And so I employ good practices. I do not indescriminately open attachments, go to sketch sites, or run illegitimate software. I keep my software applications UPDATED, educate myself on threat vectors, etc. I practice good defense. I check files & links against VirusTotal. Etc. For some, that may be all that's needed. But I'm not perfect. If I'm researching a project I'm often working fast and sometimes inadvertantly clicked on a search engine result that leads to a malware compromised domain. For that reason, I also rely on security software.
Next, here's what I run, the impact it has on my system, and why I'm run them:
1) I run 4 realtime apps: EmsiSoft, HPA, VoodooShield, Heimdal. They've played extremely well together with zero conflicts. Each has caught or blocked something. Heimdal has been especially impressive in that regard and also keeps my other apps updated.
2) At a browser level, I run FireFox w/ uBlockOrigin (advanced configuration), NetCraft, TrafficLight, Ghostery, HTTPS everywhere, etc.
Impact on Performance: VERY little. Perhaps this is due to my machine's specs and configuration (SSD, RAM and the VideoCard I run) but I can detect virtually no impact when I delete two, even three or all 4 of the realtime apps I run. Same on the browser side - lightning fast.
I've considered going with EmsiSoft and Heimdal only - and probably could. That said, I like to keep my bases covered. I choose these four applications after a lot of research and trial and error. When I've tested them they've never once conflicted with one another. I'm not saying they can't, only that they've never conflicted in any way, shape or form and they've certainly had opportunity to do so. HMPA (hitman pro alert) is supposed to harden the system: Hollow Process Mitigation, prevent code injection via APC, prevent use of verifier DLL's, stop backdoors in trusted code, protect against keyloggers, among a host of other things. Perhaps EmsiSoft does some of this too. But not all of it. And for that reason I've elected to run them both.
I suppose it could be argued that I'm unlikely to be at risk for these kinds of attacks (especially if I'm consistent with good practices). I hope so. I'm also sure others may argue that malware may very well slip through due to one or more of these conflicting with one another and that I'd be better off eliminately 2 or 3 of them - I get that too. It just hasn't been my experience. Thus far they seem to work very well together even when something's detected. And of course I back things up. And then there's the browser addon's I mentioned above - I'm sure I'll get some criticism there perhaps with NetCraft and/or TrafficLight - but they've both caught things too.
Bottom line: Performance remains lightning fast and it all seems to be working. As I said, I'm considering adding SysHardner (which should also no impact on performance) and if I do, perhaps that negates the need for HMPA.
Anyways, that's what I'm running. I'm sure I can do better - perhaps by eliminating one or more of these. Or perhaps not. I'll be interested in hearing your thoughts.
