MyCity » Zaštita od zlonamernih programa -> Zaštitni programi » ThreatFire (HIPS)...

ThreatFire (HIPS)...

Napisano na dan: 7.8.2010
1

ThreatFire (HIPS)...
Sledeća strana Pagination

Idi na vrh

Poslao: 07 Avg 2010 18:48
Idi na vrh
offline
  • System administrator
  • Pridružio: 19 Jul 2010
  • Poruke: 367
  • Gde živiš: Golubinci

Da li se isplati drzati proizvod ovakvog tipa zajedno sa antivirusom u tandemu? Da li dobrim delom pojacava zastitu kao sto se prica o ovom programu? Wink



Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.
Poslao: 07 Avg 2010 18:51
Idi na vrh
offline
  • Pridružio: 13 Nov 2008
  • Poruke: 467
  • Gde živiš: Beograd

http://www.mycity.rs/Zastita/HIPS.html



Poslao: 07 Avg 2010 19:00
Idi na vrh
offline
  • System administrator
  • Pridružio: 19 Jul 2010
  • Poruke: 367
  • Gde živiš: Golubinci

Da, ali tema je stara tri godine...do sad su mogla brojna poboljsanja da se odrade...treba mi misljenje nekog iskusnog korisnika koji je vec imao prilike da barata sa ovim stvarcicama... Wink

Poslao: 07 Avg 2010 20:25
Idi na vrh
offline
  • Pridružio: 31 Avg 2009
  • Poruke: 234
  • Gde živiš: Republika Srpska

Koristio sam ThreatFire,zajedno sa Nod32,jer na sajtu PC Tools,rekoše da se može kombinovati sa ostalim AV proizvodima.Međutim,previše mi je usporavao sistem,pa sam ga deinstalirao.

Poslao: 07 Avg 2010 21:11
Idi na vrh
offline
  • higuy  Male
  • Legendarni građanin
  • penzionisani tabijatlija
  • crni hronicar
  • Pridružio: 21 Apr 2010
  • Poruke: 8565
  • Gde živiš: Dubocica

Malware Defender. Dobijes funkcije HIPS + firewall. Po meni idealno da se kombinuje sa nekim AV software-om. Besplatan.

Poslao: 07 Avg 2010 21:17
Idi na vrh
offline
  • System administrator
  • Pridružio: 19 Jul 2010
  • Poruke: 367
  • Gde živiš: Golubinci

Za ThreatFire sam cuo, ali za Malware Defender slabo...otkud to da ima tako malo HIPS programa??? Da li uopste vredi imati tako nesto na kompu ili je suvisno? Neki savet, najbolje resenje?

Poslao: 07 Avg 2010 21:33
Idi na vrh
offline
  • higuy  Male
  • Legendarni građanin
  • penzionisani tabijatlija
  • crni hronicar
  • Pridružio: 21 Apr 2010
  • Poruke: 8565
  • Gde živiš: Dubocica

Napisano: 07 Avg 2010 21:31

http://www.nsaneforums.com/topic/48214-malware-defender-271/

http://www.wilderssecurity.com/showthread.php?t=267680

http://dl.360safe.com/md_setup_en.exe

Malware Defender is a HIPS (Host Intrusion Prevention System) with firewall. It is effective to protect your computer system from all forms of malware (viruses, worms, Trojans, adware, spyware, keyloggers, rootkits, etc.).

Malware Defender is also an advanced rootkit detector. It provides many useful tools that can be used to detect and remove already installed malware.

Whether you are an expert or not, Malware Defender is your choice to protect your system.

Key Features

Realtime protection system

* Monitors process, file and registry activity for suspicious behavior.
* Monitors network activity.
* Detects all forms of malware, whether known or unknown.
* Supports learning mode and silent mode.
* High performance and low resource usage.

Process manager screen shot

* Detects hidden processes and threads.
* Detects unsigned processes and modules.
* Kills processes and threads using advanced method.
* Suspends/resumes processes and threads.
* Unloads modules of processes.
* Closes handles of processes.

Kernel module manager screen shot

* Detects hidden kernel modules and kernel threads.
* Detects unsigned kernel modules.
* Kills, suspends and resumes kernel threads.
* Kills kernel DPC (Deferred Procedure Call) timers.

Hooks detector screen shot

* Detects and removes system service table hooks (SSDT hooks).
* Detects and removes Win32k service table hooks (shadow SSDT hooks).
* Detects and removes interrupt descriptor table hooks (IDT hooks).
* Detects and removes SYSENTER handler hook.
* Detects and removes kernel object hooks.
* Detects and removes kernel notify routines.
* Detects and removes kernel mode code hooks.
* Detects and removes user mode code hooks.
* Detects and removes global message hooks.
* Detects attached devices.
* Detects hooked driver dispatch routines (IRP hooks).

Autostart application manager screen shot

* Scans all known autostart locations.
* Detects hidden autostart entries.
* Detects newly added autostart entries.
* Undoes and redoes deletion of autostart entries.

File explorer screen shot

* Detects hidden files and folders.
* Shows and deletes NTFS Alternate Data Streams (ADS).
* Deletes in-use files.

Registry editor screen shot

* Full functional registry editor.
* Detects hidden registry entries.


System Requirements

* Windows 2000 (Service Pack 4)
* Windows XP (32-bit)
* Windows 2003 (32-bit)
* Windows Vista (32-bit)
* Windows 2008 (32-bit)
* Windows 7 (32-bit)

Note: This program is Freeware now, since it was bought by the Chinese security company used by almost all Chinese, "SAFE360" ....

Dopuna: 07 Avg 2010 21:33

Valjda neko od dve milijarde Kineza zna sta je dobro.

Poslao: 07 Avg 2010 21:34
Idi na vrh
offline
  • diarno  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 15 Jun 2007
  • Poruke: 5572

http://www.winpatrol.com/
http://www.jacobsm.com/mjsoft.htm#rgwtchr

Ostali uglavnom dolaze uz Firewall. Svi kvalitetni FW programi imaju HIPS.

Poslao: 08 Avg 2010 09:59
Idi na vrh
offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Citat:Da li se isplati drzati proizvod ovakvog tipa zajedno sa antivirusom u tandemu?

Isplati se ukoliko se korisnik mal'ko razume u malware. Nekom koji ne zeli ni da procita pop-up prozor koji mu izadje nece biti od koristi. A i ako ga procita, treba znati da odgovori.



Citat:Da li dobrim delom pojacava zastitu kao sto se prica o ovom programu?
Da, HIPS-om je podignuta zastita, jer detaljnije kontrolises aplikacije (aplikacija moze da uradi "to", ne moze "to"). Imas bolji uvid u tome sta se dogadja na racunaru.
HIPS npr. treba da zaustavi keyloggers.

-> http://antivirus.about.com/od/securitytips/g/hips.htm
-> http://antivirus.about.com/od/antivirussoftwarereviews/a/hips_behavior.htm
-> http://tinyurl.com/2892489

Citat:
Top three is usually involving Comodo Internet Security, Outpost Security Suite and Online Armor Personal Firewall.. Those all have a strong HIPS component

Poslao: 09 Avg 2010 01:48
Idi na vrh
offline
  • System administrator
  • Pridružio: 19 Jul 2010
  • Poruke: 367
  • Gde živiš: Golubinci

Kada vec pricamo na ovu temu...Avira Premium poseduje HIPS, zar ne? Otuda onako dobra detekcija i behavior block... Wink

MyCity » Zaštita od zlonamernih programa -> Zaštitni programi » ThreatFire (HIPS)...

Ko je trenutno na forumu
 

Ukupno su 1110 korisnika na forumu :: 52 registrovanih, 4 sakrivenih i 1054 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: babaroga, bojank, bojcistv, Boris Bosiljčić, BORUTUS, ccoogg123, Darko_X, debeli, djboj, elenemste, flash12, FOX, gmlale, goxin, havoc995, HrcAk47, hyla, Ilija Cvorovic, JOntra, Karla, Krvava Devetka, ksyyaj, Kubovac, kunktator, laki_bb, Lubica, MaksicZoran, Marko Marković, MB120mm, Mi lao shu, mile09, mile23, milenko crazy north, Milometer, mkukoleca, nuke92, ozzy, panonski mornar, RJ, robert1979, ruger357, sasa76, sasakrajina, Smiljke, solic, Stefan M, suton, Vlada1389, wolverined4, zdrebac, zziko, šumar bk2