Suggestions

Discussion in 'other anti-malware software' started by AndyXS, Jul 7, 2009.

Thread Status:
Not open for further replies.
  1. AndyXS

    AndyXS Registered Member

    Joined:
    Mar 17, 2009
    Posts:
    44
    Suggestions for an office network.
    I currently have...

    Windows Firewall
    A-Squared (Paid version)
    Sandboxie
    Paragon Disc Backup


    Anything else?
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    assuming you are already using fully patched machine, disabled scripting in the browser (except trusted sites) & common sense, that combo is good enough
     
  3. AndyXS

    AndyXS Registered Member

    Joined:
    Mar 17, 2009
    Posts:
    44
    The main problem which bothers me is the USB drives. We do actually need to use them, also in other companies too. Usually they come back with trojans or worms.

    I was just wondering if Returnil or something similar would be any use to us?
     
  4. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    You should consider using a Limited User Account.

    Also you should disable AutoRun, e.g. with Panda USB Vaccine.
     
  5. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Agree, better lua than a sandbox, for steady state of C, I would prefer Returnil (I asume you have programs partition and data partition all split on every PC).

    Syncback for intellligent backup of data partition

    Make sure you select intelligent false positive reduction in IDS of A2
     
  6. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    I think there's also Windows SteadyState? Don't know much about it though. :doubt:

    Agreed.:thumb: It's a great program.
     
  7. AndyXS

    AndyXS Registered Member

    Joined:
    Mar 17, 2009
    Posts:
    44
    windows accounts are limited.

    i cannot use returnil as there are issues regarding network keys.

    how do i protect againt someone who opens a 0day trojanand presses allow in a2? do i not need hips to backup to malware scanner?
     
  8. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,213
    Shadow Defender (virtualizer that allows you to exclude/commit important files) or DeepFreeze (virtualizer that doesn't allow anything whatsoever to be written to disk in protected state, ideal when one doesn't trust users). They both can be passworded.
     
  9. AndyXS

    AndyXS Registered Member

    Joined:
    Mar 17, 2009
    Posts:
    44
    wouldnt these also stop the network keys from being saved like returnil
     
  10. subset

    subset Registered Member

    Joined:
    Nov 17, 2007
    Posts:
    825
    Location:
    Austria
    With Shadow Defender you can exclude files or folders.
    So if they are stored at drivers\etc\networks this shouldn't be a problem.
    Only if they are stored in the registry this could be unfeasible, as it makes not much sense to exclude the registry completely.

    Cheers
     
  11. AndyXS

    AndyXS Registered Member

    Joined:
    Mar 17, 2009
    Posts:
    44
    Will HIPs be necessary with limited accounts? I was thinking of adding Comodo Firewall Defense +.
     
  12. Hiker

    Hiker Registered Member

    Joined:
    Nov 23, 2007
    Posts:
    268
    Can you explain about the need for disabling autorun. When I plug in my USB with PortableApps, I'll get a pop up to open PA among others. If my USB becomes infected from another machine will my my laptop become infected as soon as I plug it in, or once I open it?

    How does Panda vaccine prevent infection?
     
  13. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    If you click on the pop up that appears, you'll get infected. At least that was the case with Conficker, I'm not sure about all cases. And I think when you double click on the drive in Windows Explorer you can also get infected.

    Also Panda USB Vaccine "immunizes" USBs by placing an empty autorun.inf file to prevent your USBs from becoming infected.
     
  14. simisg

    simisg Registered Member

    Joined:
    Nov 6, 2008
    Posts:
    410
    Location:
    Greece
    you are ok
     
  15. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    Guys, is it just me or the latest version of Panda USB Vaccine isn't work properly?

    No matter which USB drive I try to immunize, it will hang and hang... I actually need to end it with Task Manager.
     
  16. pbust

    pbust AV Expert

    Joined:
    Apr 29, 2009
    Posts:
    1,173
    Location:
    Spain
    Be careful with killing the vaccination process while its running, specially under NTFS which takes a lot longer than under FAT32 drives. If you do kill it while its "doing its thing" you may end up with some corrupted data and have to run chkdsk /f on the drive to fix it.

    Simply let it run until its finished vaccinating. It takes time, specially with bigger NTFS drives, but it will eventually finish its task.
     
  17. dell boy

    dell boy Registered Member

    Joined:
    Apr 13, 2009
    Posts:
    240
    Location:
    uk, england
    rising pc doctor has usb immunization, it halts the drive loading and scans it before allowing it onto your computer, that should be quite effective and its a great free program...
     
  18. raven211

    raven211 Registered Member

    Joined:
    May 4, 2005
    Posts:
    2,567
    Good point, and a big reason I use it in conjunction. ;)
     
Thread Status:
Not open for further replies.