What is your security setup these days?

is it life time product purchase?

 

There are several licensing options, including lifetime, see:

https://www.admuncher.com/register.shtml?Partner=www.admuncher.com

 

I don't know your level of knowledge, but you've been using Sandboxie a lot longer than I have Over time you will figure out the safest sources of downloads, and then it possibly won't even be an issue. Also downloads can be checked before taking them out of the sandbox.

You could try running them in a sandbox and monitoring the processes. Just set appropriate restrictions, because as you probably know Sandboxie doesn't automatically prevent the loss of data e.g. if a file turned out to be a trojan that looked for stored passwords.

For checking with multiple scanners:
Virustotal.com (http://www.virustotal.com/)
Jotti's Malware Scan (http://virusscan.jotti.org/en)
VScan (http://vscan.novirusthanks.org/)
OPSWAT Metascan (http://www.metascan-online.com/)

Sandbox Analysers - For analysing the behavious of executables:
Anubis sandbox analyser (http://anubis.iseclab.org/)
Threatexpert (http://www.threatexpert.com/submit.aspx)
Norman (http://www.norman.com/security_center/security_tools/)
Comodo Instant Analysis (http://camas.comodo.com/cgi-bin/submit)

 

ExtremeGamerBR thanks

 

trying Ad Muncher trial

 

You're welcome.

 

i wonder if OpenDNS VIP does block fying adds like addmuncher does?
OpenDNS VIP is our premium service for home users. It has all the great benefits of OpenDNS Basic, including DNS to improve the reliability of your Internet connection and Parental Controls to keep your family safe. In addition, there are no ads and you get access to our top-notch support team. All this for only $9.95 a year.

 

I right-click to do a manual scan of downloaded files with MBAM or HitmanPro. I do a lot of small downloads mainly for games and flight sim add-ons, so I probably should just give in and run MBAM real-time, or load a light AV.

 

why put the load of a real-time AV on your system?
especially if you play flight sims.

the less of these real-time security apps the better.

 

I have the Download folder sandboxed, and usually check the files before taking them out, even though I download from reliable sites. But because of the number of files I download, it is a pain to scan each one manually. I'd rather not run a real-time AV, but so far I haven't found a convenient alternative to deal with downloads.

 

why scan files if they're from reliable sites?

i don't.

 

What happens when a reliable site is compromised thus becoming unreliable?

 

i'm certainly not gonna start scanning files from Microsoft and Adobe.
and a quite a few others.

it's up to each of us to decide what is 'reliable' and 'trustable'.

 

I agree it's up to each of us to decide but justenough wasn't talking about Microsoft and Adobe and the like.

 

well,

he said a "reliable" site.

so i went along.

 

l classify downloads in maybe 2 or 3 categories: from trusted to untrusted.

'trusted' get a 'free pass', medium gets scanned depending on the mood i'm in and previous history/behavior/reputation, or lack thereof, and untrusted.

that's when on-demand scanners get to do the job they were born to do.

 

I don't scan anything. I let everything run in a sandbox....

if a file cannot run in the sandbox, most of the time I won't execute it outside the sandbox unless I full tested its behavior with HIPS and AV.

 

right,

if it needs to run outside the sandbox it's probably because it needs to install a driver.
and that's a good warning sign.

 

The Hammer and moontan, this is exactly how I go back and forth. These days it seems any site can get hit, so it is better to check everything. But in the last two years I've been running Windows, I have never downloaded a bad file from my main flight sim and game sites, and that's out of probably more than a thousand downloads, so I might as well relax and just use an on-demand scan on anything iffy. But running a light AV would hardly be noticed on this fast machine. Etc.

 

Keep using SBIE. I mean, you don't have to stop using SBIE just because you pulling the files out of your downloads folder. Force to open sandboxed the programs that cover most of what you usually download and you should be fine.

I usually keep my downloads in my downloads folder for a long time but 99% of all files that I pull out of it, will run under sandboxie even after they are taken out of the DL folder.

For executables, I run the 1:45 minutes HMP scan and when possible upload the file to Virus Total and Jotti. Thats been more than enough for me.

Bo

 

I do use live USB with a couple on-demand scanners on it, used to do a full scan every other day, but since there are no "bad results", now i just do it once every two weeks.

 

One thing I do often is install the larger, trusted application outside the sandbox - then any patches/mods/etc install inside a sandbox. Running the game from the sandbox works fine.

 

did any one has this in their security arsenal?
http://www.xyvos.com/free-antivirus.htm

 

trying out Sunbelt Personal Firewall 4.6.1861
is it free after the 30 day trial?

 

4.6?
Yes, but with limited features.