AppGuard 3.x 32/64 Bit

appguard and look and stop are very light on system

 

Kiko78, without intending to insult or cretique you, I hope you understand it is a irrelevant test. The thing is it the Comodo test could not have executed. What you have tested is level 3 and 4 of https://www.wilderssecurity.com/showpost.php?p=2226367&postcount=2413

In real life situation this Comodo Test would not have passed levels 1 and 2 with AppGuard.

AppGuard can't be tested like a classical HIPS. Because it is designed to stop the starting points/triggers/entry gates of an intrusion. When you test it on all attack vectors it will fail some (problably many attack vectors).

A program like Anti Executable for instance is directed to stop stage 2 of an intrusion. Yet in daily life it has proven to be a top pick for security. AppGuard stops the entry points of all four phases. It will take an über champion of all hackers to break these first steps of those four phases. I would bet €10 that despite the fact that AppGuard protects against less attack vectors as for instance Comodo, DefenseWall and Sandboxie, in daily life it is as good as any of those leaders in their field (Comodo = classical HIPS, Sandboxie = virtualisation and DefenseWall = policy containment).

Disclaimer:
I don't use AppGuard so I can't be accused of being a fan-boy. It is just one of those programs I value very high.

 

I just translated again with google translation, sorry I misunderstood your words

 

No I can't be accused of being a fan boy, not you, please don't feel attacked. Programs like AppGuard can only be tested in real life sitiations, not PoC's or static lab tests. They will never obtain 100% in PoC or static lab tests, in real life they will obtain 100%. That is the point I was trying to make.

 

I try to place holder this protocol:
if on my computer I want to install a software, I verified if this software is safe with virustotal, hitman pro and malwarebytes for example (there are other), if it means the product is downloaded as healthy then I drop software lowering my guard AppGuard in installation mode and I moved, and then I put in AppGuard lockmode, and everything else is blocked, this approach sounds good knowing that I earn lightness on my computer ....
What do you think
(sorry for my bad english, iam french)

 

Kiko

Vous êtes bien protégé par AppGuard, Excusez moi pour mon mauvais Français (je suis Hollandais)

You are well protected by AppGuard, Apologize for my bad French, I am Dutch

regards Kees

 

Windows_Security thank you, sorry again he'll have to take an English court

 

That is just as AppGuard is intended to be used!

 

I just found something a little strange with AppGuard. I'd been playing a game on Steam and when I stopped playing it, I noticed the AG icon said install and when I checked it was in lock down mode (I have it set to locked down by default) just to make sure, I moved the slider and put it back to locked down and clicked apply and it then said I was in medium. It seemed a little unsure which was the correct seting for a minute or two. It's okay now, but that seemed very odd and if it's falling out of locked down mode, it defeats the purpose of me having it.

 

I have not experienced that, even though I'm using Steam a lot too.

What I have experienced is a GUI glitch in 'Locked Down'-mode. When I allow User-Space launches temporarily as Guarded, AppGuard sometimes revert back to the original icon instead of keeping the icon with a green exclamation mark. I have to double-click the systray icon to get it back to green exclamation mark.

 

I suspect it was a GUI glitch of some kind that I experienced because it had blocked a couple things and so I think I was still being protected.

 

This is very odd and has not been reported yet by anyone to my knowledge.

 

I don't think this is a glitch. I think the suspension timeout is taking effect. Although I can't really explain why double-clicking would get the green exclamaition mark back. BTW, when you temporarily allow guarded user-space launches, even though the protection reverts back, your application will remain Guarded. AppGuard will just prevent future user-space launches.

 

It was only like that for a couple of minutes and there haven't been any problems before or since.

 

Suspension time did not take effect. It was only after 20 seconds or so. It happens every now and then and one click on the tray-icon is enough to revert it back to exclamation mark icon. In fact, I just tested again and it was the same. I think it's a glitch. I will report back if it's just a UI glitch or if AppGuard stops user-space launches even though suspension time hasn't passed.

EDIT: It's a GUI glitch. I am positive. Even though AppGuard changes from normal tray-icon to exclamation mark-icon when user-space launch is allowed as Guarded, it reverts back to normal tray-icon after a little while.

 

does anybody know i there is a limit to the maximum number of power apps i can add. i have around 17 and when i try to add more the add button is greyed out.

 

That is unheard of. Seventeen Power Apps? That is quite a lot and I'm pretty sure few people here have added that many before. You should only add other security applications if you want AppGuard to be effective. I think Barb_C is going to have to give us a statement here.

 

I think you should only add other security related apps to PowerApps.

 

adding so many power apps is mainly due to my lack of knowledge and needing a quick fix, i am pretty sure that most of the power apps dont need such privildges.

 

Only when you notice a conflict should you add that application to PowerApps.

There is a purpose of having known programs added to Guarded list. It is to protect your system from 0-day vulnerabilities or other malicious activity. If a program is not working properly, try adding it to the Guarded list first. If that fails, try giving it read/write access in Memory Gaurd.

 

So can yall think of anything I can add to Microsoft Security Essentials(Real-Time)+AppGuard(Lockdown Mode)+Sandboxie(just for browsing,sometimes software)+Hitman Pro(On Demand) I got a windows 7 Home Premium 64-bit laptop.

 

Maybe something to improve web protection...like K9?

 

I think I got good enough web protection I use Google Chrome and COMODO Dragon with the extensions ad block plus and https everywhere and the extension Notscripts.

 

Looks perfectly fine.

 

Ok I now use Opera with Ad Block Plus+ScriptWeeder+Ghostery


PS: I think I am gonna use MSE+AppGuard(Lockdown)+Hitman Pro(on-demand)
Does that cause any conflicts at all? Talking about my extensions in my browser with AppGuard.


Thanks for all the help guys!!