VoodooShield/Cyberlock

Discussion in 'other anti-malware software' started by CloneRanger, Dec 7, 2011.

  1. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    +1 :thumb:
    They should consider the way Zemana Anti-Malware solved it. ;)
     
  2. smith2006

    smith2006 Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    808
    Auto-update to 3.0.2 Beta
     

    Attached Files:

  3. smith2006

    smith2006 Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    808
    After auto-update, there are a lot of duplicate entries (with same hash) in the whitelist, for example
     

    Attached Files:

  4. ghodgson

    ghodgson Registered Member

    Joined:
    Dec 20, 2003
    Posts:
    835
    Location:
    UK
    VS just auto updated to 3.02 beta here too, the second attempt was very smooth and very nice.
    The first attempt didn't install because I have some software restriction policies in force for the Appdata folder, which I had forgotten about -- Doh !
    I've now whitelisted VS to run in the Appdata folder for future updates.

    PS Thanks Dan !
     
  5. ghodgson

    ghodgson Registered Member

    Joined:
    Dec 20, 2003
    Posts:
    835
    Location:
    UK
    Hi, I don't seem to have that problem. Have you tried resetting the whitelist ? as that seems to get rid of the duplicate entries.
     
  6. smith2006

    smith2006 Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    808
    Tried reseting, duplicate entries appear again.

    Do you see a grey out item 'Custom Folders'?
     

    Attached Files:

    Last edited: Oct 6, 2015
  7. ghodgson

    ghodgson Registered Member

    Joined:
    Dec 20, 2003
    Posts:
    835
    Location:
    UK
  8. ghodgson

    ghodgson Registered Member

    Joined:
    Dec 20, 2003
    Posts:
    835
    Location:
    UK
    Yes that is disabled by design for now - as is the 'allow windows store apps'
     
  9. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    I wish we could do this too... it would actually be very simple and quick to implement into VS, especially for Vlad. Maybe one day we can get approval to do so. In the meantime, what I did a while back was look through the various AV test lab results and figured out which of the AV's had a relatively high false positive rate, and did some automatic stuff with it. This is why sometimes VS will show a purple (mix between red and blue) false positive result. So if you guys find a specific AV that keeps tripping a false positive, let me know and we can hardwire that in... it is a 10 second fix since it is already set up.

    I do not plan on replying to any of the other posts, unless I see one that needs to be addressed, but if you guys need me, please let me know! Vlad will be back on Sunday. Thank you!
     
  10. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    I just installed the latest beta of VS, and the tray icon turned red while in Always On Mode. Is this expected behavior?
     
  11. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Hey Cutting_Edgetech, long time no see ;). I hope you are doing well! No, this is a bug of some kind. If you discover anything else about this bug, or how to reproduce it, please let us know! Vlad will be back on Sunday. Thank you!
     
  12. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    Thanks! Yeah, i've been on the road a lot. I've only had time to get on the internet here, and there. I have a lot of emails to catch up to as well. All I have to do is leave the computer idle for a while (not sure exactly how long). The tray icon, and shield turn red. I'm in Always On Mode. I haven't changed any of the other settings from their default.
     
  13. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    Dan, I think maybe it is expected behavior now. I have not used VS in a while, and I forgot about the automatically deactivate VS after 10 minutes being checked by default. I will uncheck that, and see if VS still deactivates itself.
     
  14. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Hehehe, very cool! Yeah, that is expected behavior... VS will toggle to OFF after 10 minutes if the user is not using it so that it can learn the system / background processes while no one is using the computer. And of course this is optional. Either way, if you find anything, please post it on here or email vlad@voodooshield.com, and he will look at it when he returns from vacation. I actually shut the development computer down while he is on vacation since it will not be used until Sunday at the earliest.
     
  15. smith2006

    smith2006 Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    808
    Thanks for the reply. :thumb:
     
  16. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    My brief experiment with v3.02:

    Put VS in Training Mode and open Chrome - Norton toolbar loads.
    Put VS in Smart Mode and open Chrome - Norton toolbar does not load.
    Put VS in Training Mode and open Chrome - Norton toolbar loads.
    Exit VS and open Chrome - Norton toolbar loads.

    No fly-outs, no "Blocked" pop-ups, no notification of any kind. NTB just did not load with VS active.

    Perhaps when VS 3 is more refined but until then, bye bye VS.
     
    Last edited: Oct 7, 2015
  17. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    The toolbar I was using comes included with Norton Security 22.5.4 but you can download the stand-alone version from here - https://identitysafe.norton.com/

    I imagine a similar result, or you can download a trial of Norton Security from www.norton.com/latestns
     
  18. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Why not edit command-line string with wildcard...?
     
  19. TNO_sec

    TNO_sec Registered Member

    Joined:
    Sep 26, 2010
    Posts:
    47
    Just a fun observation:
    There are so many well established and well known AV vendors out there. They have tons of users all over the world, tons of employees all over the world, and I'm certain they have a massive budget compared to VoodooShield.

    But you know what? Generally speaking, I think VoodooShield provides better protection. :)
     
  20. ropchain

    ropchain Registered Member

    Joined:
    Mar 26, 2015
    Posts:
    335
    That is called "Anti-Executable", block all non-whitelisted executables by default and it will be quite effective.
     
  21. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    I hope Dan and Vlad will receive good offer soon.. ;)
     
  22. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Okay, with ERP I opt for Allow command-line and edit string with wildcard.
    eg: C:\Windows\system32\cmd.exe /c "C:\Program Files (x86)\Norton Security with Backup\Engine\22.5.*.*\coNatHst.exe" --parent-window=0 chrome-extension://cjabmdjcfcfdmffimndhafhblfmpjdpe/ < \\.\pipe\chrome.nativeMessaging.in.* > \\.\pipe\chrome.nativeMessagin
     
  23. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Sorry about that... there is a good explanation for this, and we will work it out as soon as Vlad gets back. To make a long story short, Vlad thought that there might be a slight vulnerability in one of the algorithms that I have been using for quite some time now, and he did raise a concern that we need to address. We just have not had time to discuss it yet, since there were so many other things going on with all of the amazing changes that he made, and really it is not that big of an issue... but we will figure it out soon.

    But as a result, he added wildecards, which is fine for advanced users, but we will have to figure out something for average users as well. So this is where the problem is, and it will be quite easy to fix once we figure it out. Sorry about that, thank you!
     
  24. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you, I appreciate that ;).
     
  25. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you, I appreciate that too! I posted a LONG time ago in this thread that I believe whitelisting is one of the more effective solutions, but the trick is to make it as user-friendly as possible, otherwise it will never be adopted by the masses. That is what VS is all about (and my main focus)... making whitelisting as user-friendly as possible.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.