Zemana AntiLogger 2.0 alpha beta soon :)

Using SpywareShelter's Anti-Test tool, ZAL 2.30.2.37 Beta blocks execution of the tool & quarantines it. ZAL is passing the Keylogging and webcam tests, but FAILS screen capture, clipboard, sound and system tests. No improvement

 

I wonder if this is because you added the tool as an exception (removing it from quarantine automatically marks it as an exception) so ZAL "trusts" it and allows it to do anything it wants. Did the keylogger actually get blocked or was it allowed to hook the keyboard but the keys were encrypted. It should prevent the hooking and the encryption driver is a second line of defence.

It is worth removing the exception and trying again with Real Time Protection Disabled but ID Theft Protection Enabled.

If it doesn't work then, I would suspect that the additional anti-logging features from v1.9 (clipboard, screen, webcam privacy) have not been implemented (yet?).

 

the keystrokes are encrypted

removed the exception and disabled Real Time Protection - test results are the same

Weren't these in v1.9? I can't find any of the old documentation now.... They are not specifically listed as features in 2.x, but the "System Intrusion Protection" .i.e. the behavior blocker - I would think should be able to handle it

 

The other anti-logging features were in v1.9 but they didn't work (for me) in Windows 10. Before that they worked ok in Windows 8, 8.1.

As far as I can tell the System Intrusion Protection from 1.9 isn't implemented either, though parts of it may be used in the SSL Protection, now called SSL Intrusion Protection in the GUI (Latest version: 2.30.204.37).

The best description I have found for ZALs features is the web page for the business product Zemana SafeOnline

https://www.zemana.com/en-US/SafeOnline

In the diagram, all of the real-time layers of the current ZAL can be seen:

• Real Time Protection (also in ZAM) is an improved version of IntelliGuard (also in 1.9).
• Pandora Cloud-Sandbox (heuristic scanning) (also in ZAM) is for 0-day protection.
• SSL Intrusion Protection is for MitB protection (also in 1.9).
• Keystroke Encryption driver (also in 1.9).

The missing features seem to be:

• System Intrusion Protection
• Clipboard protection
• Screen protection
• Webcam protection.
• Ability to create own allow/deny rules for Real Time Protection (HIPS)

I hope these will be added (there doesn't seem to be much chance of the last one).

There may be some issues under Windows 10 which might need to be resolved since these were previously not working in 1.9.

It would be good if we could get some feedback on this from Zemana.

 

so ZAL2 is currently the old ZAL-Free + ZAM....could be

this link states the System Intrusion Protection is implemented, but it's not listed on the main web page so who knows...
http://dl9.zemana.com/Website_Media/Zemana AntiLogger brochure_2016.pdf

 

For those who missed the lifetime beta license, this is up for a free 1 year license as of this morning:

http://sharewareonsale.com/s/free-zemana-antilogger-29-95-value

I've used the Sharewareonsale service before. It's usually a "give us an email and share on facebook/G+" routine. Takes 2 minutes.

 

license key:
~ License Key Removed ~

 

Awesome! Thank you.

 

Does Zemana offer a chart somewhere that compares the features of ZAL to those of ZAM? I don't have a good handle on the differences between the two products.

 

The only difference is that ZAL has these features in addition to ZAM:

 

Yup so uninstall LAM and install ZAL, unless you don't want the added protection.

 

Very good, thanks.

So, that would suggest that ZAL should not be run alongside HitmanPro.Alert, but that maybe it's OK to run it along with MBAE or EMET?

 

It runs fine alongside MBAE and EMET. You can run it with HMP.A but have to disable the keyboard encryption in HMP.A and use the ZAL for that.

 

In the latest version they have remove all the lines of text except the first 2

 

Well those lines were only text introduced in the last release. I wonder if this page of the GUI will eventually have some controls?

I can't see any other GUI changes.

 

I ran a ZAL smart scan on my win 7 x64 laptop and it said ntdll.dll was a "hollow process". More info said the process was ZAL.EXE itself!

I checked the file on VT and all engines reported it as clean. It even said the file was trusted and safe.

Is this a false positive?

 

https://www.zemana.com/WhatsNew/?ProductID=1

 

Update says I already have the latest version. Update is probably not completely live yet.

 

That's normal.
=

 

Oh! Thanks for the info!

 

Thank you for the additional info!