I'm currently looking around in vain for something like R2008's anti-executable plugin. Why? Because it offers something very basic that many HIPS don't have... It's got both a query (Allow/Deny/Remember Decision) mode, and a whiltelist mode where it blocks everything not explicitly allowed. I've tried some alternatives... - Trust-No-Exe: has whitelisting, but no query mode. - Winsonar: doesn't query for new executables during training, which from a security standpoint isn't as good (at least IMO). - Privatefirewall/Outpost Free: no whitelist mode, only popups. Also, Outpost stupidly defaults to the "Allow" option for some popups. Is there anything else like this, either free or reasonably priced for home use? Failing that, is the most recent version of Returnil 2008 secure enough to be usable?