VoodooShield/Cyberlock

Are you saying VS toggles on your computer if automatically reactivate when returning to web browser or email is unticked? VS will also toggle if you plug in a USB device. That is a separate settings though.

 

Yeah, not USB ~~ I'm saying without Automatically reactivate VS toggles Red to Blue upon facing the web.

 

Hello Dan,

I performed an install over (from 2.50 to 2.51a) and ended with two desktop icons (one old, one new).

I have deleted one of them (minor issue).

First time experience after so many install over.

Thank you.

 

VS does not specifically block dll files, but it does block the executables that would call a dll. However, I have seen once or twice where VS said that it blocked something.dll... I am assuming they were drive by exe files that were named something.dll.exe. Thank you!

 

I can't think of any reason it should be toggling with that option unticked. The only other reason I can think of that would cause VS to toggle is if a USB device was plugged in. Since it's not due to a USB device I think it must be a bug.

 

Sorry I am so busy, I will be back soon and will catch up on the posts. I also am trying some new things with the multithreading that might work really well, but it is going to be difficult.

Also, a client of mine got the Reveton ransomware and I spent a lot of the day fixing that and recovering his files. I thought he knew about VS, but I guess he didn't.

 

IDK....I tried un-check Automatically reactivate because I had no idea what all the timers were for....
Since, VS continued to Toogle I simply left well enough alone. The top four Advanced boxes are un-checked. VS is Blue as we speak in SMART

 

VS 2.50
Multiple Sandbox clicks do nothing. Red Alert remains. Finally, after multiple clicks Red goes Blue. Then multiple Allow clicks do nothing. Finally x close. Why is it sometimes 'click(s)' does nada. Intuitively, I'll click again and yet again. Then out of frustration. I'll click other option to find same dead 'click'. Is this behavior fixable when a click does nada. Does Unknown mean there's no virus total match. How does Unknown Red go Blue in seconds. Do multiple no action clicks cause an issue for VS. What would be protocol for unresponsive Alerts.

 

Hi C_E
Are you still questioning 2.51a.

 

I've been getting this prompt even though I click Allow. You explained problem with sc.ex before....sorry, I don't remember.

 

Hi Dan,

The leatest beta 2.51a, after a few days of testing seems to be working just perfect . I've made an upgrade direct from the stable one and I haven't noticed any issues so far (Win8.1 64bit PL).

Thanks ,

Mike

 

+1

 

Same here Mike I really like this version!

Daniel

 

You already answered my my question in post 6827. I just wanted to make sure I understood exactly what your problem was. I just wanted to make sure it was bug, and not due to something in the settings.

 

Sorry I posted the wrong link I think. I'm asking about #6806
Sounded like you had a valid question in 6806 that also interests me ...

 

Sorry, I never did get a response from Dan for that post.

 

OK ~ Great ~ Thank you. Sorry for link mistake. So, are you at 2.50 or have you updated to 2.51a. I trust your expertise. Oh, I've reinstalled 2.50 thinking maybe a glitch. VS Toggles for me with the top four boxes on Advanced un-checked. IDK must be some settings anomaly on my machine.

 

I was using 2.50 at the time of the post. I did not try 2.51a. I don't have VS on the current image i'm using because I'm testing Comodo Firewall right now.

 

Thanks

 

Also still awaiting response from Dan for that post (#6806).

 

Sorry guys. I will email Dan about it this weekend. I just wanted to give him a breather because he has been working so hard, and AFAIK he is still doing most of the work on his own. Sometimes when taking a break from things you are able to see things more clearly when you return. I know he deserves a break. I will email him about it, and post his reply this weekend.

 

Redoing the multithreading has been extremely difficult, but it looks like it will be worth it, it looks like CET ws right .

I will catch up on the posts that I missed asap, but as far as allowing appdata or programdata when VS is in Smart / OFF mode, it's cool because VS only changes to Smart / Off Mode when no web apps are running, and if no web apps are running then we are safe, right .

Hopefully I will be able to post the new version in the next couple of days, I cannot wait for you guys to see it .

 

That's great news Dan. Take your time. Do what ever you need to do. We aren't going anywhere.

 

That partially answers the appdata, and programdata question for myself. I was not sure if VS was blocking executions in those folders when protection was OFF in Smart Mode. I don't see it being a security issue now that I know VS blocks executions in those folders when the system is vulnerable due to web apps being open. I do have one more question though. If the user has the option enabled to "protect the user-space in Smart Mode when VS is OFF" will VS block executions in those folders then when VS protection is OFF in Smart Mode?

 

The "protect user-space in Smart Mode when VS is OFF" is exactly what was triggering these blocks . Here is what I am thinking, please let me know if you guys agree. The whole purpose of the protect user-space option is to protect the user from accidentally running something from their desktop, downloads, etc. after the user closes their web apps and VS toggles to OFF (kind of like, oops, I did not mean to run that without scanning it first). Since web apps are no longer running when VS toggles to OFF in Smart Mode, malware downloading to appdata or programdata is no longer a concern. It is a concern when a web app is running, since most malware downloads their payloads to these folders, but when all of the web apps are closed, it is no longer a concern. The goal is to reduce the number of affirmative prompts to an absolute minimum while safely allow as many good items as possible. I am not sure why I added appdata and programdata to this feature, but I do not think that I should have.

I actually think that if VS is in Smart / OFF mode, anything that the user launches from the user space (desktop, downloads, etc.) should be scanned first, then automatically allowed without a prompt if the scan is clean, so that is one of the things I am working on. The reason is that the user intended to run the item (since they clicked on it), and they are going to anyway if the scan comes back clean, so there is no reason to prompt the user. Does that sound right to you guys? Please let me know, thank you!