I download all kinds of software from the internet. Can a HIPS program still protect me after I have allowed softwares to be installed and they has install their drivers too?

Hi!

A pure hips can't do it..But a sandbox yes (if you installed the new softwares into the sandbox);D

-{ Quote: "I download all kinds of software from the internet. Can a HIPS program still protect me after I have allowed softwares to be installed and they has install their drivers too?" }-yes indeed but you will have to follow the program and then apply couple of block rules to it.withing malware defender i can be able to block already application from ever loading to run;)

Well I want the softwares to run and all. I just don't know if the softwares are malicious or not. I'm wondering if at that stage, after installation, can HIPS still protect me if they do indeed turn out to be malware?

-{ Quote: "I download all kinds of software from the internet. Can a HIPS program still protect me after I have allowed softwares to be installed and they has install their drivers too?" }-


I'm not sure about installing drivers. If you let things install drivers they can have a lot of control over your computer.

-{ Quote: "I download all kinds of software from the internet. Can a HIPS program still protect me after I have allowed softwares to be installed and they has install their drivers too?" }-
if u allow certain software to be installed you almost in its hands , since u allow it to install, and the HIPS engine trust its process and drivers ....

cheers

-{ Quote: "I'm not sure about installing drivers. If you let things install drivers they can have a lot of control over your computer." }-

This is correct - after something is allowed to enter kernel mode on a 32bit OS, it can do literally whatever it wants: no software protection can fully protect against an already loaded driver.

You'll want to configure your protection to warn or block new driver loading so that you'll have a manageable scope to work with :)

-{ Quote: "Well I want the softwares to run and all. I just don't know if the softwares are malicious or not. I'm wondering if at that stage, after installation, can HIPS still protect me if they do indeed turn out to be malware?" }-
If you're unsure about the safety of any programs you wish to run then installing within Sandboxie is a wise precaution.

-{ Quote: "If you're unsure about the safety of any programs you wish to run then installing within Sandboxie is a wise precaution." }-

Yes but the OP said he wants to install software with drivers to also be installed. and you can't install drivers from with in sandboxie.

the best thing to do would be to install and test the software on a backed up OS image, before installing it on your real OS

-{ Quote: "Sounds good, but I'd say using a sandboxed VM is more convenient - that way, you can test it on various operating systems in a single session (even at the same time if you have enough RAM) like Windows XP, Windows Vista, Windows 7 without having to restart etc." }-

What about Returnil?

-{ Quote: "What about Returnil?" }-

No upon reboot the installed driver would disappear.

He should be able to do this using RollBack Rx.
Take a snapshot, install the software including drivers, reboot if required and if it all goes bad just roll back without saving the current snapshot.