Advice - best HIPS for testing - shows everything that happens

Discussion in 'other anti-malware software' started by Sully, Aug 10, 2009.

Thread Status:
Not open for further replies.
  1. lonelywolf

    lonelywolf Registered Member

    Joined:
    Jun 10, 2009
    Posts:
    73
    I am currently running Shadow Defender in conjuction with OA premium and its run safer feature, moreover alongside NAV 2009 and Malwarebytes' and everything works smoothly. I definitely recommend OA in conjuction with SD. Well, I have had some problems with OA 3.5 and the new Malwarebytes' release 1.40 but that was quickly solved, had to tweak some rules in OA and restart.
     
    Last edited: Aug 12, 2009
  2. spootnack

    spootnack Registered Member

    Joined:
    Aug 14, 2009
    Posts:
    4
    Hello.

    I saw this link http://drop.io/eqsecure for these rules but what's that ?

    And what about Seven or Vista ??

    Thank you.
     
  3. subset

    subset Registered Member

    Joined:
    Nov 17, 2007
    Posts:
    825
    Location:
    Austria
    This ruleset was created with EQSecure 3.41, which does not support Vista or Seven.

    From what I've read Alcyon is less than thrilled by the new EQS versions 4.x.
    So either someone else creates a ruleset or that's it.

    Cheers
     
  4. spootnack

    spootnack Registered Member

    Joined:
    Aug 14, 2009
    Posts:
    4
    OK.

    So no need ...

    Thank you.

    ++
     
  5. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    None of these are HIPS, but all list changed items between snapshots:

    SpyMe Tools - registry or file changes (file comparision done by metadata, not contents)
    NIS Filecheck - file changes by contents
    HijackThis
    Autoruns
    What's Running

    I use the four latter programs regularly for security purposes, looking for changes between snapshots.

    You could also check out SysAnalyzer.
    You could also use ThreatFire or PrevX to test for malware behavior.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.