Stephen in Victoria says thanks to both Alex and Tom. You have summed it up very well except I definitely recommend the SB firewall for any computer that does business or banking. It recently stopped a port intrusion that got through my router firewall and was searching for an .exe in an obscure program called "Active Ports" that I had installed. That was gave me the heads up re XP as this takeover came closer than most.

Alex also recommended the Secunia software inspector - I would call it Step 5 and a very good option if you are adept with software.

Remember how futurists used to recommend electronic money because how it was safer than cash? I think we have come full circle now if you are not digitally literate and methodical about updating.

Thank you so much for Vipre as it works superbly well and with its light resource use it has extended the lifecycle of my aged computers for a very significant $ saving.

you have have one of the top five best blogs on the Internet INHO - thanks for the currency/literacy you provide
S
Stephen in Victoria | Homepage | 11.02.09 - 10:53 am | #

Quote: "VIPRE can stop previously unidentified malware by using MX-V advanced 'behavior-based' scanning to spot its malicious behavior in a virtual environment before it infects the machine."

Does VIPRE Active Protection use MX-V?? I am wondering whether there is a technology that can detect malware after it is installed, but it has not been identified by "signature" or "heuristics".
Stardance | 11.02.09 - 8:09 pm | #

In the Current Threat example that you included for VIPRE, the last two items on the corresponding web page were for a Windows 7 code-injection exploit and a Sun Java buffer overflow vulnerability. Would the Sunbelt Personal Firewall Intrusions HIPS feature prevent each of those events from being exploited?? I noticed that the SBAM Tray application is on the exceptions list for code-injection and wonder why.
Stardance | 11.02.09 - 8:16 pm | #

Stardance, Active Protection uses MX-V, yes.

As to the second question, the HIPS feature might block that, but generally, we would rely on specific detections in VIPRE to do that work.
alex e | 11.03.09 - 1:16 pm | #

I think LUA should be included in any suggestions on how to use WinXP securely. With regards to those banking Trojans, have a look at what they do, and ask yourself how many of those actions can be accomplished by a non-Admin.

And if that's not enough, throw Software Restriction Policy on top, assuming any version besides XP Home Edition, using what Microsoft calls the line-of-business-PC setup.

Once that groundwork's been laid, yes, add your anti-malware software, user education, etc etc.
mechBgon | Homepage | 11.05.09 - 12:58 am | #

mechBgon and others: The following TechRepublic articles by Michael Kassner are quite interesting and informative -- the second one explores the ZeuS Banking Trojan and another one called URLZone.

Online Banking: How Safe Is It? http://blogs.techrepublic.com.co...content; leftCol

Crimeware: How It Works http://blogs.techrepublic.com.co...ecurity/? p=2464

Crimeware: Looking For Solutions http://blogs.techrepublic.com.co...ecurity/? p=2492
Stardance | 11.05.09 - 2:26 am | #