Spyshelter protection test and outbound protection

SpyShelter managed to give me a score of 310/340 using only itself and the Windows Firewall.

Date 2:22:14 PM - 9/10/2010
OS Windows XP SP3 build 2600

  1. RootkitInstallation: MissingDriverLoad Protected
  2. RootkitInstallation: LoadAndCallImage Protected
  3. RootkitInstallation: DriverSupersede Protected
  4. RootkitInstallation: ChangeDrvPath Protected
  5. Invasion: Runner Protected
  6. Invasion: RawDisk Protected
  7. Invasion: PhysicalMemory Protected
  8. Invasion: FileDrop Protected
  9. Invasion: DebugControl Protected
  10. Injection: SetWinEventHook Protected
  11. Injection: SetWindowsHookEx Protected
  12. Injection: SetThreadContext Protected
  13. Injection: Services Protected
  14. Injection: ProcessInject Protected
  15. Injection: KnownDlls Protected
  16. Injection: DupHandles Protected
  17. Injection: CreateRemoteThread Protected
  18. Injection: APC dll injection Protected
  19. Injection: AdvancedProcessTermination Protected
  20. InfoSend: ICMP Test Protected
  21. InfoSend: DNS Test Vulnerable
  22. Impersonation: OLE automation Protected
  23. Impersonation: ExplorerAsParent Vulnerable
  24. Impersonation: DDE Protected
  25. Impersonation: Coat Vulnerable
  26. Impersonation: BITS Protected
  27. Hijacking: WinlogonNotify Protected
  28. Hijacking: Userinit Protected
  29. Hijacking: UIHost Protected
  30. Hijacking: SupersedeServiceDll Protected
  31. Hijacking: StartupPrograms Protected
  32. Hijacking: ChangeDebuggerPath Protected
  33. Hijacking: AppinitDlls Protected
  34. Hijacking: ActiveDesktop Protected
    Score 310/340

Hm. Obviously, the problem is that I don’t have outbound protection. So how do I cover these vulnerabilities and get a perfect score without having to install an additional firewall? ??? I’ll explore more on spyshelter’s settings and other security products i have. :-? I’ll update this when I find the solution. If you know anything that can be of some help, please do comment. No threatfire or quttera. They slow pc’s significantly. (Hence, the requirement is to maintain a stable and responsive pc. No slow down, no hassle.)

spainach_12, please help me understand. You see to be asking about using spyshelter with no CIS installed, only windows firewall switched on? If so, why do you ask this on a comodo forum since this is nothing to do with the comodo product? By the way, I notice that spyshelter do not recommend that it is used only by itself.

Nothing against you in any way Cavehomme, it is just my belief that Spainach-12s questions about Other Security Products in the Other Security Products section of the forum would be ok. Kind regards
To Spainach-12 I realise you said no additional firewall, so sorry for my answer but I am sure your system would still be stable and responsive with Comodo Firewall. Sorry I have no other answer. Good luck

That’s fine, I was just curious and thought it a bid odd, but now I understand better. Thanks.

;D I suppose it is a bit odd.

No harm done. True, it’ll still be stable and responsive. But I simply hate it when it takes so long to start. That’s why the only thing that starts up with windows now is WinPatrol. Everything else, I removed. Even ctfmon. lol

It wasn’t by itself. The Windows Firewall was on, remember? ;D I was testing for spyshelter’s protection ability. Since the XP version only provides inbound and spyshelter covered almost all of the things it could cover, the remaining would have been problems brought by the lack of outbound protection. I was hoping I could find security products that would not only act as a pseudo-firewall, but provide protection for other threats as well. SpyShelter and Threatfire for example. Threatfire made it with a few added configurations, but it was overbearingly making my pc slow. Plus, it’s hardly getting any updates. Kinda scary.