HIPS: Automatic mode with rules

Hello,

How does work the HIPS with this method (Automatic mode with rules)?

Is the PC protected? How?

In advance, thank you for your clarifications.

 

Basically it is not focused on threat detection, but on prevention of unauthorized changes to your system.
Depending on what changes you want to unauthorize, you must create the specific rules or filtering mode.

 

Could give me examples to illustrate your two sentences?

Thanks.

 

How do I enable HIPS
Disabling HIPS, disables self-defense

 

I have no problem to activate the HIPS.

What I want to understand is:

- What protection does it provide?
- How does it with "Automatic mode with rules"?
- Is it normal that in this mode the rules list is empty?
- What is the mode that offers the best protection?
...

What is the meaning of the sentence found in the help. :"Operations are enabled, except pre-defined rules that protect your system."

 

The manual configuration of the HIPS module is designed for technically advanced users only.

The default mode (HIPS activated, no visible default rules) is the suggested settings for now, and that's the way most people will/should run it.

Using the HIPS module, the user can block access to low-level things in the computer (e.g. say that program X should never interfere with program Y, or folder Z). Many of the settings require deep technical knowledge.

The text basically just says that as default, everything is allowed, except pre-defined rules that you can't alter (e.g. Self protection).

 

Is there any way to expand a variable/registry key to obtain the path to e.g. startup folder?