VoodooShield/Cyberlock

Thank you Krusty, hopefully this is fixed, but if not, please let me know. I did not work on this specific issue, but I made some other changes that hopefully will have fixed this too.

 

Thank you for letting me know... if this is still happening, please let me know and I can install AX64 on a Windows 10 machine and figure it out.

 

Thank you mood for letting me know. Yeah, Truecrypt must emulate usb or something like that, so unless we change the usb detection method, which we certainly can if we need to, then this will probably always happen.

Hmmm, which mode is not reactivating with mouse/keyboard events? I will check it out.

A lot has been changed with all of the mode stuff in 3.15, so hopefully it is all just right now, but if not, please let me know!

 

Hi, thank you for letting me know... I probably will not have time to work on VS 2.0 anytime soon. Is there any chance that you can try VS 3.15 and let me know if it is working ok? Thank you!

 

Yeah, I had no idea that traditional application whitelisting in the enterprise was that daunting until I spoke with a few VS users who are testing it on their end points.

 

As Vlad would say... Fixed . Thank you!

 

Krusy, btw, I know the edgehtml.dll command line is an issue... I am checking it out as we speak. But other than that, how is the freeze issue going? For me, so far so good, thank you!

 

Thank you... I believe all of these are fixed, if not, please let me know!

 

Yeah, we tried VS with different colors a long time ago, but it was just way too confusing, and we figured it was best to essentially keep it simple and have red for unlocked and blue for locked.

Yeah, animations would be very cool! We might do something like that once VS is completely stable... we are getting close. Although, I do not want to make it too fancy .

Yeah, thank you for the My Account suggestion, I will add that... very cool!

Yeah, we need to add some things to our site too.

Thank you for all of the suggestions, I really appreciate it!

 

Hey Balrick, how are you? Thank you!

 

We should be getting close to having everything just right with the new AutoPilot mode... once I release 3.16 sometime in the next day or so, please let me know if there are any final tweaks we need to do. A lot has changed, so we want to make sure everything is just right.

Also, IF ANYONE EVER SEES VS / VOOODOOAI RECOMMEND THE USER TO ALLOW SOMETHING THEY SHOULD NOT, PLEASE LET ME KNOW!!!!!!!!!! Thank you .

 

Thank you, I appreciate that! Hopefully everything is just right in 3.16, but please let me know if there is anything else we need to tweak a little.

 

Hmmm, this really should not be VS causing the issue, but if you find out that it is please let me know! Thank you!

 

Not good, Dan. It seems that after each time I've allowed something VS has froze not long after, but not straight away though. I know if I right click the Tray icon when VS is frozen, then open Task Manager under the running "Apps" section and in "Background processes" I see two VS icons, one blue, the other red.

I don't know what that means.

Cheers.

 

Yeah, there are some signed apps (and signed malware) that VS will have a high VoodooAi scored probability. The digital signature is only 1 out of probably 40 or so features, although it is probably one of the more important ones. VoodooAi is not quite perfect yet, and actually never will be, but for me (out of the 5000 or so files I have tested), it is usually dead on... and it will get better over time. There are exceptions that VoodooAi will always have issues with, but that is true with all malware classification. But to me, the important thing is that it detects the zero day and unknowns extremely well.

I was at lunch with a friend / client who used to run an old version of VS, but he removed VS for a while and was trying something else. Anyway, he was infected with a semi-bad pup, so I cleaned it up for him. I was then telling him how much VS has progressed since he tried it, and I was telling him about VoodooAi. So he asked me how VoodooAi would have done with the packed software that he downloaded that infected his machine. I guessed VoodooAi would have returned a 0.65, since it was a pup and not a super bad ransomware or whatever. VoodooAi returned a 0.75, so I was pretty close.

My point in telling you this is that I have tested thousands and thousands of files with VoodooAi, and most of the time the results make sense... only rarely does it surprise me with an unexpected result. But as I was saying, it is only going to get better, especially when we retrain the machines with truly random training sets. The training sets that I used for the current algorithms were not even close to being random, and I think the results will amaze us. Thank you!

 

Thank you for letting me know! My focus is completely on the freeze issue and the command line issue now, I think they are related. I will get to the bottom of it .

 

Thank you, I appreciate that!

Hmmm, I am not sure... It might be good to ask other testers to see what they say. One tip I can give you, please make sure you reset your whitelist often while testing .

 

I see what you are saying, but keep in mind, AutoPilot is very new, so we have some fine tuning to do.

 

Hehehe, dude, that is the VS 1.0 review .

Here is the VS 2.0 review... http://www.pcmag.com/article2/0,2817,2470799,00.asp

A LOT has changed in VS 3.0 with all of the new features and refinements... I hope they review it when it is finished, it is a completely different animal than 2.0.

 

Very cool, thank you! Actually, you might even just install all three... I think they would play really well together.

BTW, I thought of a few other security software that I like a lot... although there are TONS of really great ones to choose from. The ones that came to mind are Emsisoft and HMP... I will start making a list when I think of them .

Or anything on this list... Neil knows what he has been talking about.

http://uk.pcmag.com/antivirus-reviews/8141/guide/the-best-antivirus-utilities-for-2016

 

Hehehe, I love that game... we should play together sometime! Anyone else play Rocket League? BTW, I am NOT much of a gamer at all, and I am not very good .

 

Definitely! I'd love that. Don't worry, I'm not very good at it either. I keep trying! That's all you can do haha.

By the way, adding Vivaldi to the custom apps seemed to work fine. I'm not used to actually using the settings, as I've always used the free version of VoodooShield, up until you kindly gave me a license. So I'll try to look more into those settings before asking lots of questions.

 

Not sure about ReHIPS or WAR... and to be honest, I have to be careful what I say since they are extremely similar to VS in a lot of ways. Although, I will say, I would never put anyone down for doing their best to help fight against malware. That being said...

I tried ReHIPS when it first came out a couple of years ago... I thought the use of multiple desktops was very innovative, although, for me personally, I can never have more than 2-3 apps running at a time, or I would go crazy (my mind is a single core P-133) . And I always thought that multiple desktops in general looked really cool, and I have tried different (non-security) utilities that had multiple desktops, and although it looked really cool, multiple desktops would never work for me. Although, when I visit a lot of clients of mine, and they have 25 things running all at the same time, I am certain they would not have an issue with multiple desktops. I have not tried the latest version of Re-HIPS (I have not had the time and the beta is not readily available), but I think I read somewhere that they simplified it quite a bit in this version, which is a very good thing, so who knows, maybe I would understand it better than the initial release. Either way, I did not spend enough time with the initial release to try to understand how it works... I just tried it for 5-10 minutes to check out the desktop shield gadget to make sure we do not borrow ideas from each other... I go out of my way to be as respectful as possible of other companies intellectual property, and spend a lot of time doing so. For example, I think multiple desktop sandboxing would be great to add to VS (not for my fragile little mind), but for the users who were able to do more than one thing at a time... but I will not ever add this feature since it is their idea / invention.

As far as WAR goes... I do not have a license, and obviously will not be buying one, since VS blocks everything that WAR does. But I have heard some very good things on its effectiveness against ransomware from some very trustworthy people.

I will say that I am not a fan of specialty products... if we keep it up, we will have 10 different security solutions running on every computer. Then again, you cannot have one product that has every single security feature ever created... it would be a little bloated, don't you think . So I think it is a fine line, and something the security community needs to figure out.

The thing about security software in general... there is not one security software that every single person in the world likes. As I always say... believe it or not, not everyone likes pizza! Can you believe there are actually people who do not like pizza? And really, it is ok that not everyone likes your product... the security space is a huge space with more than enough room for everyone.

About CS and Webroot... basically, I am a huge fan of super light, highly effective security software. And I think that describes both CS and Webroot. As I posted above... the more I thought about it, I would probably run all 3 CS, Webroot and VS. There is no reason not to since they are all so light.

 

Very cool, thank you!

 

Oops, that reminds me... I have to fix it so that if VS / VoodooAi blocks a clean file (and they both say it is clean), it is not added to the threats blocked count... somehow it is.