Yeah they removed the lightbulbs, which is good. I hope that they will make those new sliders a bit more better. Also the font in the menu is much bigger.
very cool update.i like the new ui,one thing about disabling protection, it's need improvement,when i disable one module icon in system tray icon must be grayed but it now happen when all module disabled.
I tested SpyShelter recently, but I only tried it in the High Secure Mode. It was called something like that anyway. I don't remember exactly what the mode was called. I don't think SpyShelter was prompting me for .exe's executing. Does SpyShelter prompt the user for .exe's in one of it's modes? I like a HIPS more like Online Armor, and i'm still looking for a replacement. SpyShelter has several different modes of protection, and I have never been a fan of preset profiles. I uninstalled SpyShelter because I could not disable it's network protection for a specific application by whitelisting the application.
yes it is firewall module,if you disable it you can run any exe and maybe you ticked Current component can execute any application and Remember my choice with each other when the parent process explorer.exe .in other word,if you ticked both then when you run any program that explorer.exe is his parent process then you don't get any alert for execution
I didn't disable it. I will have to go back, and look at it again when I install Spyshelter again. I don't think I ticked allow current component to execute any application, and remember either. If i'm seeing a different behavior I will record it. Do you know if SpyShelter uses any kind of kernel driver for execution control, or does it only use hooks?
ok i see help file.and i see in High security level it create allow rule for explorer.exe the rule is like method Current component can execute any application and Remember my choice ticking.sorry i was in this level long time ago.so because of that it seems don't ask for exe execution.so you must set it in Ask user Level.if you want always get alert for execution set in this level Auto allow - High security level: Based on our internal rules, this will automatically allow certain non-signed apps, without prompting you. This happens when SpyShelter Firewall has already identified and classified these applications as safe. no i don't know that.
Ok, that makes sense. Thank you! Your response was very helpful. I will set it to ask user, and see what happens.
No idea. I took a quick look on their website and I could not find such information. As co22 said, Ask User mode is the best to use, although it will rain down a ton of alerts.
Hi all You can write about SpyShelter 10 here now https://www.wilderssecurity.com/threads/spyshelter-10.378379/
AFAIK, everything is monitored with the driver, even protection against banking trojans, which is quite unique, since others like Zemana and Trusteer all make use of "user mode hooks". To be honest, I'm not so sure if protection against browser API hooking (used by banking trojans) is as good as others.
I have two copies of my system: with SS Premium + LnS and next with SS Firewall...so it's depends of my needs, some tests or...just of mood Both copies are from time to time loaded, updated and still ready to use.
Where is spyshelter.sys located at on the system? I don't have SpyShelter installed right now. Is it located in the System32, or SysWOW64 driver folder? I thought I checked those folders, but maybe I overlooked it somehow. If they use a kernel driver then it should be in one of those folders. Its seems like I may remember seeing a .sys file in the SpyShelter Program File Folder, but I don't know why they would put it there instead.
OK I see. I tested SS Firewall a while back, but wasn't satisfied, I'm waiting for a new version with a redesign.
spyshelter.sys is located in Program Files x86. However, SSP has an option to run the program as a service. You must have more than one user account to run an SSP service. This information pops up when trying to make the tick
The driver and service are always active. I believe SS gives an option to start the GUI via the service.