Aggressive HIPS recommendation needed

hi,
The right terminology is not aggressive HIPS, but System Expert HIPS, classical HIPS, proactive or behavioural protection.
I've not tried SpyShelter, then as a recent and maintained choice i would say OSSS, but as an old (designed for XP) HIPS, i guess that Parador File protection would be interesting:
http://e-securion.com/Public/App_E-securion/Products/Security/Parador_Product.aspx

Choose the paranoid mode and you'll need to click every second...each one his way of having fun

Rgds

 

I don't think anything could quite beat good old System Safety Monitor in that regard.

Especially if you installed in non-Learning Mode A veritable pop-up extravaganza !

 

Maintained?? They talk about development of version 2, but atm you can see not much development. And with the kernel approach they have choosen there is always a risk.
__

For x86: I still recommend malware defender, although it development got slower/stopped. English freeware version: here

 

i am using MD

 

Well i have always done that since a few months ago, i got it in Pop Up Machine mode

 

Figures because you just love popups Noobie. I'm still waiting on that coupon

 

Man i ran out of coupons but for you ma friends i'll send you a few pills for free.

 

I know...All-Seeing Eye (Fortego) is abandoned HIPS but I remember that is "one of the best" HIPS to tiring and weaken each user and sometimes to "kill" him. If you remove all authorized processes, drivers, dll's, autostart entries, etc. it can do it of course faster

 

cool

 

I hope you don't plan on doing much with your computer other than answering popups lol Productivity will come to a stand still. Anyways, I would recommend you use Online Armor or Comodo without using their whitelist. You will go insane in no time lol

 

or if you want block them all kind of thing then go with appguard it is very silent but very effective

 

Well if he can get through the first 7 days then it will be a lot quieter unless you tend to install/uninstall a lot of things then i'm pretty sure you won't survive (Because even for ME! it's too much when doing lots of install/uninstall LOL)

 

um.... after trying some HIPS (which mentioned in this thread) against stuxnet rootkit and i can tell this
1-for aggressive HIPS u need to pickup ones which you can define rules like MD or EQSecure or even SSM(the problem with SSM is that default rules for system processes i couldnt modify so SSM failed against stuxnet)
2- then come OSSS and comodo
now FWIW only All seeing Eye could detect ASLR dll trick when it loaded
and MD has no MBR protection whereas SSM and EQsecure have
you cant have aggressive HIPS without predefined rules or it will be very annoying
BTW, to my info ..there are many chinese HIPS software i tried some but barely i could deal with them :S if you are interested you may search them

 

Hahaha Noobie. I knew I count on you

Yea that would be a popup extravaganza

 

When i used MD i used to disable it when i was installing uninstalling things, it was endless pop ups And i still do it nowadays with OA

 

I hear ya. Yea OA would give me nice popups when I used to install and uninstall software alot more. I barely do that now even though I don't use OA

 

Don't they have some sort of installation mode?

 

Yeah it does

 

Why do you still disable it then?

 

Cuz he's Noobie and he likes popup heaven

 

howz popup even considered as heaven lol

 

I think that means lack of popups.

 

I still have not made sure how the "Install mode" works.
What i don't want is OA to creature rules for all these temporary actions, that's why i opt for disabling it completely.

 

What about Appdefend/Regdefend? Isn't that a System Expert HIPS?

I want to try GSS someday so I have a question. Is it possible to enforce 'Default-Deny' using GSS?

 

Never tried those apps, haven't seen those names in the Wilders and that's a rare thing