AppGuard 3.x 32/64 Bit

Shadek and Peter2150 thanks a lot for clarifying this for me. I now have all my browsers, Thunderbird, Pidgin, Spotify, Adobe Reader and all the Java applications under Guarded Apps and I have my system set to locked down. Will AppGuard protect non guarded apps? Also what does the Privacy option do under Guarded Apps? I must admit, I've found it very tricky getting used to AG and getting it to run properly.

 

If a Guarded app is attacking an unguarded app, AppGuard will prevent it. In 'locked down' mode and all applications you have posted in Guarded... you're very safe. Also, don't forget to put any Office program if you have any under Guarded Apps as they are often targeted by malware.

Privacy option is if you want to block access to the private folder on your harddrive. In this folder you can put files/documents etc that you DO NOT want any Guarded Application to have access to.

For instance, if you use Chrome and want to upload a file to Youtube that is located in the Private Folder, and Chrome has 'Privacy' ticked, AppGuard will prevent you from even browsing the private folder from within Chrome.
The Private Folder is sort of a safe box. The Private Folder is located in;

C:\Users\User-name\Documents\MyPrivateFolder

A basic rule is to add all Internet-facing apps to Guarded Apps. Then, add as many other applications as you can and want. If a program does not work properly anymore (not likely), you could just remove it from Guarded Apps again.

Again, this is just to put it simple for a beginner. Eventually you'll get the hang of it.

 

Shadek, again thanks for the explanation. I finally feel I've got AppGuard working properly and my set up is more secure. One thing I couldn't get working with AG is Steam but it's never given me any problems before and I have it protected with EMET so it should be okay.

 

I too have Steam installed. It's the only Internet facing application I have not Guarded. I do not protect it with AppGuard as it uses to much writes to System Space/User Space. Games won't work properly. I decided I trust Steam enough and let my ordinary anti-malware application take care of any eventual threats. Afterall, all games released on Steam are also very well tested and the risks are minimal to catch malware via Steam.

 

I guess there's only so much you can do to protect your system. Do you think there's anything else I need to do with AG apart from what you've mentioned or do you think it's pretty much okay now?

 

What Media player do you use? Be sure to guard VLC, Media Player Classic or whatever media player you have. That is also a known way in for malware. Especially VLC have been targeted for its vulnerabilities.

 

I use Windows Media Player and while thats already added to to Guarded list, I added Windows Media Centre and a couple of others to the list. I also set up a sandbox around WMP. Thanks for the heads up on this.

 

I'm thinking of trying out SecureAnywhere with Appguard on Win7 64-bit.

Do you need to add wrsa.exe to the application exception list in MemoryGuard like you do with the latest sandboxie beta ?

 

Probably better to make wrsa.exe a power app instead. Also add Webroot to the trusted publishers list.

 

Thanks. I'll try this.

 

Well I want to start off by saying this is my first post and thanks for all the epic support you have given me over the years with technical difficulties with guides and stuff!!!! You guys are awesome!!!! Well I need help with AppGuard(Lockdown mode)(Windows 7 home premium 64-bit) and Sandboxie I have set the exclusions and everything but when I start Skype appguard will not let me(because AppGuard is in lockdown mode) so can I just set skype to be a PowerApp and just sandbox Skype?

 

But Skype does not work in lockdown mode so can I just add it to the PowerApps and just sandbox it and I should be fine(by the way I also use Microsoft Security Essentials).

 

As a rule I usually only add other security applications as Power apps. It's not a good ideal to add something like Skype as a Powerapp. Add Skype as a guarded application. Then lower your security level to high, and lunch Skype. It should be allowed to lunch then if you have Skype designated as a guarded App. Then once it has lunched change your security level back to Locked Down. That way Skype will be guarded while your using it. Will that work for you? I don't use Skype.

 

Skype should work in 'Lockdown mode' as long as you add is as a Guarded App. It's working flawlessly for me.

 

AG set to locked down, Skype runs as Guarded App with no problems at all.

 

Probably a silly question, but what is the benefit of using Appguard instead of UAC? Isn't UAC enough?

 

UAC can be bypassed by malware.

 

that is the diference

 

it gives me this error when I use skype in lockdown mode set in guarded apps with privacy and memwrite on 05/05/13 05:31:45 Prevented process <skype.exe - c:\windows\explorer.exe> from launching from <c:\users\austin\desktop>.

 

It looks like Skype is running for you... Do you run Skype portable or installed? Is Skype prevented from starting at all or is it just a log message? If it's just an error log message, you can ignore it if Skype is working properly.

 

How? Is this frequent?

 

https://www.wilderssecurity.com/showthread.php?t=299502

http://www.zdnet.com/blog/security/...-bypassed-by-8-out-of-10-malware-samples/4825

 

I have Skype installed and a Skype icon on my desktop Skype is working properly but when I set AppGuard to lockdown and try to launch Skype it will not let me even if I add it to GuardedApps this is the log file from AppGuard. 05/06/13 04:54:26 Prevented process <skype.exe - c:\windows\explorer.exe> from launching from <c:\users\austin\desktop>.

 

1) Do you have Skype installed into user-space or into C:\Program Files?
2) Do you by any chance run Win 8 with a Win 7 Start Menu UI tweak?