Question about SS Premium: with Chrome I get lots of popups saying SS is blocking hookings. Looking at the journal, I see it's action #33 that gets blocked. Should I allow them? Thanks in advance!
Didn't we already discuss this? Apparently there is some app on your system that wants to hook your browser (Chrome), so if it's a malicious tool, SS is protecting against it. It may however also be a legitimate tool like MBAE that is causing this. So perhaps you could add it to the exclusions and see what happens. If I'm correct, in the log window you may be able to see which app is being blocked.
It was about the FW, but now the Premium version. Not the same Windows version either. But anyway, I've added MBAE to the exclusion and the popups are still there. What I want to know is if Chrome should be allowed to create these hooks. Is blocking them like SS is doing a problem? The log only talks about Chrome, not another app.
It looks you are right...according to dev explanation process is ignored https://www.spyshelter.com/blog/spyshelter-10-4-released/#more-5723 But the box for #33 action (List of monitored actions) is designed to allow (or deny) such action for all trusted signer.
Both version - Premium and Firewall - contain ANS protection. It's advisible not to disable system's FW because SS is based on its drivers...depends on version of Windows you can chose type of drivers (Tab Settings/Advanced).
I just added chrome.exe to the list of process ignored by the AntiNetworkSpy module. Hope it was not a bad thing to do that.
It doesn't matter what version it is, the concept stays the same. But I'm not sure why you get to see this. Are you saying that in the log window, Chrome is blocked from setting network hooks (action-type 33)? That is weird indeed, normally Chrome shouldn't trigger this. This is not recommended, because now it's not protected against banking trojans trying to hijack the browser. Perhaps it's better for now to simply hide the tool-tips, you can do this in the settings-security tabs.
It's a bit confusing, but I have just tested a SSL Logger (simulation) and it seems like SS kept blocking it, no matter if I added the simulator (or Internet Explorer) to the exceptions. So something seems to be not working right. BTW, who are the trusted signers anyway? This doesn't seem to be visible in the GUI.
Yep, here's an excerpt from the log: 2015-12-21 16:32:23,C:\Program Files\Google\Chrome\Application\chrome.exe,33,Blocked ;Setting hook to monitor network requests (C:\Program Files\Google\Chrome\Application\chrome.exe(PID=74) Ok, will do, thanks1 The question that remains now, is why is Chrome doing that. Thanks again! François
Yes, this is something that the SS developers should take a look at. It might still be some other app that's triggering this alert, and perhaps SS wrongly identifies Chrome, I just saw something similar during testing. I will soon install MBAE, and will report back.
Hello, SpyShelter version 10.6 has been released: Homepage: https://www.spyshelter.com/ Download: https://www.spyshelter.com/download-spyshelter/ Changelog: https://www.spyshelter.com/blog/spyshelter-changelog/
Hello, SpyShelter version 10.6.1 has been released: Homepage: https://www.spyshelter.com/ Download: https://www.spyshelter.com/download-spyshelter/ Changelog: https://www.spyshelter.com/blog/spyshelter-changelog/ Blog: https://www.spyshelter.com/blog/spyshelter-10-6-released/#more-6025
Yes I understand, but I'm guessing it might still be responsible for the alerts. Perhaps you can report this issue to the developers.
Done, I just opened a ticket. Strange, they released another update today, but nothing it on the changelog. (Yet)
Got a response from technical support, but it doesn't add anything new, I'm afraid: And my own message when I opened the ticket:
You can try to uninstall MBAE, and see if the alerts go away. And perhaps you can also install Chrome sandboxed (with Sandboxie), because I run it virtualized, and SS doesn't give me these alerts. Of course purely as a test, in case you don't use SBIE.
You were absolutely right. I just had to disable MBAE (no need to uninstall) to get rid of the detections in SS. It's doing the same thing with Firefox, by the way. Nothing unusual there, it's protected the same way as Chrome by MBAE. I've forwarded my tests results to SS so they can work on a fix. (appears as a bug to me) Thanks again!
OK I see, just what I thought. So normally speaking, excluding MBAE should have fixed the problem, unless excluding means "don't protect this process". Then excluding Chrome should have fixed this, but you don't actually want to exclude Chrome, since it should be monitored. So perhaps the SS team can somehow white-list MBAE.
I have indeed reported them the result of this investigation. Let's see what they'll answer this time. I have also reported this on MBAM's MBAE forum.
Does anyone find spyshelter gui to be very unresponsive?.Ive installed SS on and off for a long time and always found the gui to be sluggish.Dragging the scroll bar down leads to jerky movements.Also the fonts within the gui seem strange.Some fonts seem to be bold while others are not.Small L for example (see screenshot) seems to show in bold?.Ive run SS skinless but the same drag is always there.Anyone else have this problem? or know a workaround?.
Yes, I have the same. I have no problems with fonts, but the GUI is very sluggish when scrolling through the Rules and Log Window. This only happens after system reboot, and the way I fix it is by simply restarting the SS GUI. I'm not sure what's triggering this, changing skins and excluding it from KatMouse also didn't help, this is definitely an annoying bug. http://alternativeto.net/software/katmouse/
Thanks for confirmation.I find it very annoying too ,so much so that i usually uninstall it after a few days.This leads me to conclude that it probably isn't a "bug" experienced by a majority ,as googling I don't see many complaints.My processor is core 2 duo 2.33.Not a Ferrari ,but not a slouch either and I don't have problems with any other program either. My graphics card is ati radeon hd 2400 pro.Again its not brilliant but not that bad to cause the problem imo.I found the version 5 releases of adguard GUI were sluggish too ,but not to the extent of, SS.The adguard 6 RC GUI has fixed the little slowdown completely for me.Ill have to contact SS support and see what they say
Yes, I'm not sure what's triggering this, I think it must be a bug in SS. And I don't believe it's because of hardware specs, I have quite a fast system. Perhaps you might want to try to start the GUI as a service, I haven't encountered this problem as often since changing this setting. You can find it in the Settings tab ---> Launch the program from the service (early start). BTW, I'm using Win 8.1 64 bit.
