AppGuard 4.x 32/64 Bit - Releases

The blocked events you are seeing should be normal. It should not cause a problem. Are you experiencing any problems with Chrome? If not then you should be ok.

 

Chrome works. Ignore the red messages?

 

As Cutting_Edgetech said, if everything is working normally, you can ignore the blocked event messages.

 

Thanks for the reply.
I have a question about Sandboxie.
Previously I showed messages "Activity Report" for Chrome without placing it in the sandbox. Now I set Sandboxie in such a way:

http://i.imgur.com/kV5SgnT.jpg
http://i.imgur.com/mBHu5sg.jpg
http://i.imgur.com/2BshwJR.jpg

Are these the correct settings, or too much?
When I use the Chrome in sandbox is the beginning for a few seconds there is something like this:

http://i.imgur.com/NPfSawd.jpg

but later pages load fine. Maybe the settings there is something wrong?

 

Have you tried using Sandboxie without making any of it's executables power apps? In many cases Sandboxie will work fine by just adding the sandbox folder as part of the user-space, and then making it an exception folder as you have already done. Basically just remove the power apps, and see if Sandboxie still works fine. If you have problems try making SbieSvc.exe a power app. That may be the only one you need to make a power app. There has been a few cases where the user was unable to get sandboxie to work with AG after making the sandbox part of the user-space. It happened with a user recently that was using Windows 8, or 8.1. What OS are you using? Try as I suggested, and see if you have any problems first. Those settings work fine for me on Windows 7X64 Ultimate.

 

That's why I asked for details in some other thread. The way you described the attack, is that the malware started up a probably legitimate instance of svchost.exe to avoid being suspicious. After that it injects code with the "process hollow" technique into the process.

HMPA clearly indicated that it had stopped the attack. I wonder how other tools handle this. For example, AG would have let the malware run in "Guarded mode", but does it allow code injection into the child process svchost.exe? And if it does, can the malware still do any damage? Actually, the same applies to Sandboxie, so the answer is probably no.

 

I have a weird issue goin' on......Latest Appguard doesn't trigger any notification message,nor it blocks anything,be it with medium settings or with locked down settings......
When I change the settings,the tray icons change,but I can still open every .exe in my download folder without getting error messages or blocking alerts.
other sec. programs: UnHackMe,MBAM Pro,PrivateFirewall 7,MBAE,WinPatrol and Hitman Pro Alert.....
Resetting AppGuard to default settings didn't help either.....

 

I had the same problem. It's because Chromium starts from User Data instead of Programs. You can copy the Chromium app to Crogram Files, create a new shortcut and delete the application portion from User Data and it works just fine without having to disable protection for it.

 

It seems that my issue with AppGuard is related to the MaxVeloSSD caching software.After uninstall,AppGuard works again....
I dunno if it's a driver conflict,or something else,but fact is that AppGuard gives no error messages,and it LOOKS like your system is protected,but it's not....

 

So, what does it mean FleischmannTV in what areas/ways Sandboxie is better than or equal to AppGuard in what way is the opposite?
You seem to be saying that Sandboxie is only a limited version of Appguard, basically they are the same except AppGuard protects more like protecting all dlls, while Sandboxie, with restrictions, cannot protect against all dlls?

 

No, I've never said that Sandboxie is only a limited version of AppGuard and frankly most of what you've interpreted from what I've written is completely wrong. I've also never said that Sandboxie doesn't protect you from malicious dlls and so and so forth.

I've said it now repeatedly that I am no security expert and nothing of what I say carries any weight whatsoever and I am certainly no source of information which can be quoted. So please don't quote me any longer, especially since you don't understand it anyway and you are putting things in my mouth that I have never said. Reactions like yours are the reason why I quarrel with myself heavily before I write anything at all, most of the time I refrain from posting and in the rare occasions that I do, I regret it every time afterwards.

 

My honest apology, Fleischmann, I won't quote you anymore, I promise.

 

Thank you and apologies if my tone sounded too harsh.

 

Oh, no need to apology at all, no, you were not harsh at all, at least I didn't understood that way, that you have been harsh at all in the first place.

 

I for one always read your posts with interest. Thanks for when you choose to share your point of view.

 

For me it is less about being misunderstood and its ramifications (although that is an important part as well) but rather about being viewed as some kind of expert and people putting too much weight in what I say. I am just a home user and there is always the possibility that my posting is wrong.

 

So here's a question... I reinstalled my system a little while back, but when I went to reinstall AppGuard, I found that I apparently deleted the email containing my 4.0 key. Is there a contact person at AppGuard who can re-send the mail? I already tried contacting their sales email acct but got no response.

 

Try sending an email to AppGuard@BlueRidge.com. I believe that Maureen Gray deals with licensing.

 

Is there a file in the Appguard installation folder that I can copy to save settings?

dja2k

 

https://www.wilderssecurity.com/threads/appguard-3-x-32-64-bit.294876/page-79#post-2163749
Still valid for 4.x version

 

Thanks that worked like a charm!

dja2k

 

No problem.

 

Been getting these alerts for a few days, can anyone tell me what this is, maybe Google phoning home?