A light best of freeware breed HIPS do it yourself setup

Discussion in 'other anti-malware software' started by Kees1958, Feb 26, 2009.

Thread Status:
Not open for further replies.
  1. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857

    CIS with the my configurations option. (Comodo console -> miscellaneous -> Manage my COnfiguratiions: export all to a safe location)

    ThreatFire by copying the C:\Documents and Settings\All Users\Application Data\PC Tools\ThreatFire\general.dat to a safe location
     
    Last edited: Mar 2, 2009
  2. Yoda1953

    Yoda1953 Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    163
    Location:
    Netherlands
    Thank you so very many! :)
     
  3. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Found out a strange quirck of Comodo after updates. It is better to set D+ in safe mode. You won't get many extra pop-ups with it anyway.

    Cheers Kees
     
  4. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    What quirck? If you don't mind saying.



    Thanks
     
  5. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    I did the test Aigle did, (https://www.wilderssecurity.com/showthread.php?t=235884) surprisingly after an update of Comodo (was abroad for a week, so maybe also a program update), it did not block direct keyboard access. It did block dorect screen and direct disk access though.

    Setting D+ to safe mode plus a reboot did the trick
     
  6. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    Did you also install the antivirus module? If so, and if choosing Clean PC Mode, then most of the advanced settings won't be selected by default.

    That's due to the fact that the predefined security mode is Internet Security.

    It's something known since the first CIS version.
     
  7. runoades

    runoades Guest

    Hi from Turkey. I'm new in this forum.Thank you for your guide @Kees1958. Really good protection. I feel myself safe now.

    But i have a problem about Chrome. Before i used firefox & adblock plus extension so Chrome with ads very annoying :(

    Have u got any adblocker for Chrome?

    Thank You.
     
  8. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Very Welcome and Warm Greetings for you runoades

    Thanks runoades for your new entry membership to perhaps the World's Best Security Forum ever formed on behalf of our global internet community.

    Kees1958 should easily answer your concerns and hopefully to your expectations.

    Yours is a valid concern so i won't waste time trying to offer my opinions since i have yet to even use Chrome just yet. I'm sort of at this time examining both Opera & Firefox myself.

    But welcome nonetheless from the territory that includes the ancient city of Constantinoble better know as Istanbul, and i hope you find many positive and useful security answers come your way as you browse this unique forum.

    Best Regards

    EASTER
     
  9. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    It will have soon, in the mean time IRON webbrowser from SRWare http://www.srware.net/en/software_srware_iron.php it is implemented via an ini file http://www.srware.net/en/software_srware_iron_news.php (click found here on that page).

    You have to change the names in ThreatFire from Chrome to Iron and possibly the directory names also.
     
  10. runoades

    runoades Guest

    I changed my browser now with adblocker :) thnx but should i change/remove or create any new registry rules for iron browser as chrome?

    Thanx for your friendly answer :)
     
  11. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Yes in ThreatFire change Chrome.exe into Iron.exe
     
  12. runoades

    runoades Guest

  13. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    I discovered an incompatibility between ThreatFire and EdgeGuard Solo. I also discovered that Comodo did not protect (nor TF). After replacing Solo with StripMyrights, I managed to succeed.

    See pic
     

    Attached Files:

    • 1.JPG
      1.JPG
      File size:
      81.4 KB
      Views:
      21
  14. Yoda1953

    Yoda1953 Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    163
    Location:
    Netherlands
    Please elaborate.

    Should I uninstall Edgeguard Solo?

    And how do you use Stripmyrights in this setup?
     
  15. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Yes, I uninstalled EdgeGuardSolo and replaced it with "Stripmyrights" for the internet facing programs.
     
  16. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    is this Stripmyrights similar to dropmyrights?thanks
     
  17. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Yes, only without the dos box before startup of a rights limited program
     
  18. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    thanks
     
  19. Yoda1953

    Yoda1953 Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    163
    Location:
    Netherlands
    Ok thanks. I will lookup how to use stripmyrights.
     
  20. vhick

    vhick Registered Member

    Joined:
    Jan 21, 2006
    Posts:
    224
    Location:
    Noypi.........
    Thanks sir Kees for very easy tutorial. and seen very protected. I have a question sir, I have two drive.My system drive (c:\) and the data drive (d:\). and I have some portable programs located in my d: drive. My question is how do i setup my portable programs to run very well in this setup? is this posible? Thank you...
     
  21. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Portable applications should run with the rules for D (portable applications should not make registry changes or install drivers). In case of problems, add them manually to D+ and allow the nessecary items with custom rule.
     
  22. vhick

    vhick Registered Member

    Joined:
    Jan 21, 2006
    Posts:
    224
    Location:
    Noypi.........
    ok sir thank you for fast reply :)
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.