New Antiexecutable: NoVirusThanks EXE Radar Pro

[novirusthanks]

@powerpack

Thanks for your feedback and glad you like the ERP

@lurker20

Quote:

For some reason, I am able to kill the process(exeradar.exe) using task manager in xp. And able to launch a blacklisted exe. How do I enable Self Protection?

The Free Edition has no self-protection, it is available only in the PRO Edition (a comparison table will be created soon). Take in mind that anyway a process to terminate ExeRadar.exe needs to be executed, I would recommend to blacklist the process "C:\WINDOWS\system32\taskkill.exe" to make sure that if you have whitelisted "cmd.exe", an user cannot terminate/kill ExeRadar.exe using "taskkill.exe".

@CGuard

Thanks for contacting us by email, I will send you a trial code in few days.

[CGuard]

Quote:

Originally Posted by novirusthanks

@CGuard

Thanks for contacting us by email, I will send you a trial code in few days.

(again) Thank you for responding to my request.

[lurker20]

Quote:

Originally Posted by novirusthanks

@lurker20

The Free Edition has no self-protection, it is available only in the PRO Edition (a comparison table will be created soon). Take in mind that anyway a process to terminate ExeRadar.exe needs to be executed, I would recommend to blacklist the process "C:\WINDOWS\system32\taskkill.exe" to make sure that if you have whitelisted "cmd.exe", an user cannot terminate/kill ExeRadar.exe using "taskkill.exe".

Thanks for the tip.

[bellgamin]

I just had reason to check ERP's logs & discovered that I had DOZENS of them. None of the logs were big but still... why keep so many logs for so long a time?

Granted, there is a "clear logs" option. Even so ...

I REQUEST: Give the user the option to limit the logs retained by ERP based on EITHER: (a) limiting the number of logs retained OR (b) limiting the number of months a log is retained , OR (c) limiting the total KBs of logs to be retained.

[noons]

Any update on an x64 version?

[1000db]

Using free version 1.3.6.5 and downloaded a malicious file that did not have an extension. When I tried to open the file and selected notepad, it opened the file. I was in game mode and had the option set to not notify me but the file was allowed to be opened anyway. It appears that unknown executables are either blocked by file extension, or they are allowed to run in a previously trusted program. Its possible I'm misunderstanding something but this seems like a major hole in the defenses.

[novirusthanks]

@bellgamin:

Quote:

I REQUEST: Give the user the option to limit the logs retained by ERP based on EITHER: (a) limiting the number of logs retained OR (b) limiting the number of months a log is retained , OR (c) limiting the total KBs of logs to be retained.

Sure, will be added in the next version

@noons:

We're getting close to it, but we need some time yet.

@1000db:

Quote:

When I tried to open the file and selected notepad, it opened the file. I was in game mode and had the option set to not notify me but the file was allowed to be opened anyway.

If you used notepad to open an executable, it most probably opened the file content inside notepad.exe as text, so in this case no malicious code has been executed, except the safe executable notepad.exe (if whitelisted). Try to view the "Events" tab to see if the process without the extension was inr eal executed or just open inside notepad.exe (see commandline parameters for this).

[bellgamin]

Quote:

Originally Posted by novirusthanks

@bellgamin:
. . . Sure, will be added in the next version

Thanks!!!

[CGuard]

Quote:

Originally Posted by novirusthanks

@CGuard

Thanks for contacting us by email, I will send you a trial code in few days.

Thank you for the code NVT! I received it a week ago. Great security utility, very configurable, straightforward and light-weighted. I really like the "Rules" section. Any recommended readings (links) regarding the "File Content" of suspicious/malicious files?

Keep up the good work!

[JoeBlack40]

What are the differences between the pro and free version?

[JoeBlack40]

Quote:

Originally Posted by JoeBlack40

What are the differences between the pro and free version?

Heeellooo,anybody knows that there really is a free version??

[powerpack]

Quote:

Originally Posted by JoeBlack40

Heeellooo,anybody knows that there really is a free version??

What's you mean Yes of course it has free version and I am running very well in my W7 HP 32.

Here is link posted a while ago by novirusthanks :
http://www.wilderssecurity.com/showp...&postcount=464

Hope this help ,

Thanks,
PP

[JoeBlack40]

Quote:

Originally Posted by powerpack

What's you mean Yes of course it has free version and I am running very well in my W7 HP 32.

Here is link posted a while ago by novirusthanks :
http://www.wilderssecurity.com/showp...&postcount=464

Hope this help ,

Thanks,
PP

Ok,my English sucks.I wanted to be funny by saying something like "do you know that really exists a free version,don't you?" thingy.
Thank you for your reply,but again,what are the free version's limitations?Does is worth have it installed?

EDIT.Ok,just saw this

Quote:

The Free Edition has no self-protection, it is available only in the PRO Edition (a comparison table will be created soon).

,so my question is pointless now.

[sg09]

Quote:

Originally Posted by JoeBlack40

Ok,my English sucks.I wanted to be funny by saying something like "do you know that really exists a free version,don't you?" thingy.
Thank you for your reply,but again,what are the free version's limitations?Does is worth have it installed?

EDIT.Ok,just saw this ,so my question is pointless now.

Although there is no official comparison table.
1. Splash Screen for 10 secs.
2. No Self protection.
3. No Behavioral Analysis.
4. No Password protection for UI and Process.
5. No Malwarehash.com API Service support.
6. No Malware Signature Scanner support.
7. Custom Scanners cannot be integrated.
8. No Remote PHP Notification.
9. No advanced rules: like block processes that run from USB, Network Drive, CD/DVD; Allow processes with a digital signature or specific digital signature, allow processes without MD5 hash check. And many other rules that I hardly understand.

In short, the free version is just an essential anti-executable, just what a basic user needs.

[kupo]

Any news about 64 bit version?

[JoeBlack40]

Quote:

Originally Posted by sg09

Although there is no official comparison table.
1. Splash Screen for 10 secs.
2. No Self protection.
3. No Behavioral Analysis.
4. No Password protection for UI and Process.
5. No Malwarehash.com API Service support.
6. No Malware Signature Scanner support.
7. Custom Scanners cannot be integrated.
8. No Remote PHP Notification.
9. No advanced rules: like block processes that run from USB, Network Drive, CD/DVD; Allow processes with a digital signature or specific digital signature, allow processes without MD5 hash check. And many other rules that I hardly understand.

In short, the free version is just an essential anti-executable, just what a basic user needs.

Thank you sg,much appreciated.
Better to use Spyshelter free as a conclusion...

[kupo]

Quote:

Originally Posted by JoeBlack40

Thank you sg,much appreciated.
Better to use Spyshelter free as a conclusion...

Isn't Spyshelter an antilogger? Well I know it got HIPS protection but EXE Radar Pro is an anti-executable right?

[Scoobs72]

Quote:

Originally Posted by JoeBlack40

Better to use Spyshelter free as a conclusion...

Strange conclusion. ERP is an anti-executable without additional HIPS functionality. SS is a HIPS with specific keylogger protection but without anti-executable functionality. Hardly comparable.

[Kees1958]

Quote:

Originally Posted by Scoobs72

Strange conclusion. ERP is an anti-executable without additional HIPS functionality. SS is a HIPS with specific keylogger protection but without anti-executable functionality. Hardly comparable.

True words, Spyshelter is not anti-executable but it does has a restricted mode.

You can add folders (for instance your data partitions, or all user directories on your desktop) under the restricted protection, as with USB drives. Executables launched in this area, will run in a safe (or restricted user) mode.

Regards

[JoeBlack40]

Sorry for my momentary leak of knowledge,you're all right.Just a slippery confusion.

[bo elam]

Quote:

Originally Posted by sg09

Although there is no official comparison table.

3. No Behavioral Analysis.


In short, the free version is just an essential anti-executable, just what a basic user needs.

The free version does have the Behavioral analysis, there's a setting to enable/disable the feature but nothing else. Everything else on the list, is not available in the free version.

I tried the program for a few days, works great, very easy to set up.

Bo

[safeguy]

Quote:

Originally Posted by bo elam

I tried the program for a few days, works great, very easy to set up.

True but I wish it would work with standard/limited user accounts too. I'm pretty sure there's something that NVT can do to make it work..

[Yanick]

Quote:

Originally Posted by safeguy

True but I wish it would work with standard/limited user accounts too. I'm pretty sure there's something that NVT can do to make it work..

Still waiting this same thing to be implemented.

[Cutting_Edgetech]

I have not been keeping up with NoVirusThanks EXE Radar at all. I haven't read anything on it since the first page of this thread. After reading the last few pages in this thread it seems users are liking this product to say the least. I am a huge Appguard fan. How is this product in comparison with AG? I already see it's only for 32 bit OS.

[powerpack]

Quote:

Originally Posted by bo elam

The free version does have the Behavioral analysis, there's a setting to enable/disable the feature but nothing else.

Bo

That's correct here is a screenshot: