VoodooShield ?

[VoodooShield]

Quote:

Originally Posted by the mul

I am running Avira and it is detecting this with voodooshield.

Virus or unwanted program 'TR/Dropper.Gen7 [trojan]'
detected in file 'C:\Program Files (x86)\VoodooShield\VoodooShield.exe.
Action performed: Deny access.

No doubt a false detection from Avira but I cant submit the file as it says I do not have permission so will just to exclude this from realtime protection and scanning, will just have to wait and see if maybe someone from voodooshield will contact Avira on my behalf.

Yeah, we kind of figured that some of the AV's would produce a false positive. I know McAfee did at first, but I believe the problem is cleared up now. I think it just takes some time for the different companies to become familiar with something like this. We can possibly try to submit VS to Avira, but they will probably whitelist it before they read our submission. Thank you!

[VoodooShield]

Quote:

Originally Posted by the mul

I have noticed with Windows 7 x64 SP1 that if you leave the system idle for more than 5 minutes it does go into train me mode but after some activity it will not go back to always on, it just stays in train me mode.

I have now unchecked the deactivate computer when idle setting and will see how things go with VD.

Just an update I have left my system in idle with the deactivate box unchecked and VD stays in always on mode but if I select a program that i have not trained, even though VD is in always on mode nothing pops up and says that the program is blocked, so it seems as if it is still in train me mode but is showing always on mode. I have turned VD off and back on and it is in always on mode and if I select a program that is not trained, VD pops up and blocks it without issue, so going to try once again to leave VD in idle and check again if the same issue exists.

Update two After leaving the system in idle once again with the deactivate box still unchecked and in always on mode voodooshield is working as it should and blocked a program that I did not train but VD only started to work properly once I exited the program and restarted VD, so there is still a bug when you have the deactivate selected in VD on windows x64 but seems OK if you disable this feature.

Thank you for the description, this seriously helps. We have had various problems with auto deactivate. I will send this to the developer who works on that part of the code and see what he says. Thanks again, this is a lot of help to us!

[VoodooShield]

Quote:

Originally Posted by Blackcat

Can you elaborate on why VS works better without UAC? Is it more stable, more responsive, no conflict with UAC?

And if true, then shouldn't UAC be permanently disabled.

Sure. UAC makes getting the paths of the white list processes more difficult. At some point we are going to run the engine as a service, and that should fix this problem. Besides, it is kind of silly to have UAC On when VS does everything that UAC does.

One of the key differences of VS to anything else out there is the fact that it does not require an Affirmative user response, whereas UAC does. In my opinion, and this really is just my opinion, any security software that requires an Affirmative user response has a huge vulnerability, known as the prompt. To me, this is more serious than all other vulnerabilities / exploits combined.

I hope this answers your question, if not, please let me know.

[MrGump]

@Voodooshield

can/should we disable windows defender when using VS? I currently only run VS and Windows Firewall and a few on-demand scanners.

[VoodooShield]

Hi MrGump, actually I would leave windows defender on, it works great with VS. I only run VS and scan with malwarebytes once a week or so, and have never had a virus the 8 months I have been running VS. We also recommend Microsoft Security Essentials, and it works great with VS. Thank you!

[MrGump]

do you run Windows Defender? I kinda thought the point of VS was that you didnt need any realtime virus scanning. If you recomend real time virus scanning while using VS why should I not go back to Avira instead of Microsoft Security Essentials?


also, if all you use is Malwarebytes and it doesn't detect anything why do you think you are virus free? Am I to believe that if Malwarebytes doesn't detect anything on your system you are certain you are clean? Please don't take my questioning as annoyance, just think of it as training for your official launch

[Tarnak]

Wondering which version, I do have?





P.S This happened, also, when I installed v0.96.

[Marsman]

D/L & installed VS V1.00 this afternoon & similar to Tarnak's findings Revo uninstaller & VS properties indicate I'm running V 0.94.0.0.

Also VS constantly kills my resident backup app Second Copy V7.1.0.36
even after several attempts in the VS Train Me mode.

Any suggestions are appreciated!


OS: WinXP Pro SP3
Privatefirewall V7.0.26.4
Avast V6.0.1367
Winpatrol 2012 Plus V24.1.2012.0

[the mul]

Quote:

Originally Posted by Tarnak

Wondering which version, I do have?

Attachment 231894

Attachment 231895

P.S This happened, also, when I installed v0.96.

I can also confirm having the same different version numbers.

[the mul]

Quote:

Originally Posted by Marsman

D/L & installed VS V1.00 this afternoon & similar to Tarnak's findings Revo uninstaller & VS properties indicate I'm running V 0.94.0.0.

Also VS constantly kills my resident backup app Second Copy V7.1.0.36
even after several attempts in the VS Train Me mode.

Any suggestions are appreciated!


OS: WinXP Pro SP3
Privatefirewall V7.0.26.4
Avast V6.0.1367
Winpatrol 2012 Plus V24.1.2012.0

Have you tried to exit Voodooshield and then restart the program, select train me mode and then try to see if you can add your resident backup app Second Copy.

[the mul]

Quote:

Originally Posted by VoodooShield

Thank you for the description, this seriously helps. We have had various problems with auto deactivate. I will send this to the developer who works on that part of the code and see what he says. Thanks again, this is a lot of help to us!

You are very welcome and I hope you get this fixed soon.

[Marsman]

Quote:

Originally Posted by the mul

Have you tried to exit Voodooshield and then restart the program, select train me mode and then try to see if you can add your resident backup app Second Copy.

Yes, just tried it & still no go. VS still blocks Second Copy.

Cheers MM

[VoodooShield]

Quote:

Originally Posted by MrGump

do you run Windows Defender? I kinda thought the point of VS was that you didnt need any realtime virus scanning. If you recomend real time virus scanning while using VS why should I not go back to Avira instead of Microsoft Security Essentials?


also, if all you use is Malwarebytes and it doesn't detect anything why do you think you are virus free? Am I to believe that if Malwarebytes doesn't detect anything on your system you are certain you are clean? Please don't take my questioning as annoyance, just think of it as training for your official launch

Hey MrGump, Windows defender does not actually do that much, but it does not hurt to have it on. Everyone runs windows defender, but most people do not realize they are running it.

We believe that Microsoft Security Essentials is one of the best traditional blacklist AV's available. But the blacklist approach is soon to be obsolete, but it does not hurt to have a backup as we move into new technologies.

We run many, many, many test and all I am saying is that on my personal computer, VS is all I run, and scan with malwarebytes once a week.

[VoodooShield]

Quote:

Originally Posted by Tarnak

Wondering which version, I do have?

Attachment 231894

Attachment 231895

P.S This happened, also, when I installed v0.96.

1.0

[VoodooShield]

Quote:

Originally Posted by Marsman

D/L & installed VS V1.00 this afternoon & similar to Tarnak's findings Revo uninstaller & VS properties indicate I'm running V 0.94.0.0.

Also VS constantly kills my resident backup app Second Copy V7.1.0.36
even after several attempts in the VS Train Me mode.

Any suggestions are appreciated!


OS: WinXP Pro SP3
Privatefirewall V7.0.26.4
Avast V6.0.1367
Winpatrol 2012 Plus V24.1.2012.0

Hey Marsman, you can try to check the option on the settings screen to allow all programs from the programs file folder, that really should work. If not, please let me know. Thank you!

[Marsman]

Quote:

Originally Posted by the mul

Have you tried resetting the white list in VD settings then save and close and try to add second copy in train me mode and see if it still blocks it?

I just reset my white list, save & close, added SC while in train me mode but unfortunately again & it blocks and shuts down Second Copy.

Everything is running smoothly so it must be a compatibility issue between these 2 apps!

[Marsman]

Quote:

Originally Posted by VoodooShield

Hey Marsman, you can try to check the option on the settings screen to allow all programs from the programs file folder, that really should work. If not, please let me know. Thank you!

Yes, this worked but it seems this setting is not the most secure. Is there another possible workaround to address this down the road?

Cheers MM

[VoodooShield]

Quote:

Originally Posted by Marsman

I just reset my white list, save & close, added SC while in train me mode but unfortunately again & it blocks and shuts down Second Copy.

Everything is running smoothly so it must be a compatibility issue between this 2 apps!

Have you tried to check the option on the settings screen to allow all programs from the programs file folder? We will get all of the bugs worked out, it just takes time.

[VoodooShield]

Quote:

Originally Posted by Marsman

Yes, this worked but it seems this setting is not the most secure. Is there another possible workaround to address this down the road?

Cheers MM

It is secure, they are protected folders. Also, you can always uncheck this option once VS learns SC.

[Marsman]

Quote:

Originally Posted by VoodooShield

It is secure, they are protected folders. Also, you can always uncheck this option once VS learns SC.

This works & sounds good to me however the VS warning indicated this setting is not the most secure or desirable.

"...but your computer is put at slight risk for virus infection."

Thanks for your help & much appreciated!

[Marsman]

Quote:

Originally Posted by VoodooShield

It is secure, they are protected folders. Also, you can always uncheck this option once VS learns SC.

As soon as I uncheck the Automatically allow..."Programs Files" Folder box it immediately blocks & shuts down SC. How long approximately will it take for VS to learn SC?

Cheers!

[VoodooShield]

Quote:

Originally Posted by Marsman

As soon as I uncheck the Automatically allow..."Programs Files" Folder box it immediately blocks & shuts down SC. How long approximately will it take for VS to learn SC?

Cheers!

We just added that warning because technically, it is not as secure as it is when it is disabled, but either way, it is secure.

I think I see what is going on. We have a small blacklist of programs and commands that we never allow. SC must be using a command or something on our blacklist. I will download it and see. Thank you!

[Triple Helix]

Running very well with new version on Win 7 x64! It's so quiet after you get your Whitelist set!

Thanks,

TH

[VoodooShield]

Good to hear, thank you! I agree, it is very quite, but on friday I was doing some research on the web and VS killed a virus. I thought it looked like a virus, so I checked it out, and it certainly was. I ran it just to see how bad it was, it was pretty bad. It worked just like VS, but only in reverse. I couldn't even bring up the task manager. After I clicked on the virus, it installed isecurity.exe.

http://voodooshield.com/images/AVScan/Viruses.PNG

http://voodooshield.com/images/AVSca...ed%20Virus.PNG

[ellison64]

It seems the site you visited has been compromised? by redirect js.