AppGuard 3.x 32/64 Bit

I have a license for ProcessGuard, and the last time I checked it still works really well on XP If you have not already you should give Appguard a try! I've been using it since around 2007, and it's an amazing product! I'm confident it will stop just about anything your throw at it! It also has read / write memory protection. We are beta testing the latest build right now, but I believe the final build will be released soon. We like to really test things thorough around here

 

Hello,

You are most welcome ...

 

Thanks much, Cutting_Edgetech.

Yeah, I still use and love PG on my old XP box. So it's decided now--I'm going to give AppGuard+VoodooShield a try and see if that combination doesn't come close to giving me what I want.

Yours,

David

 

Nothing has been modified in AppGuard to handle these two "attacks". With that being said:

• Regarding the 16-bit file attack, AppGuard did stop this in locked down. In High, the 16-bit application was able to Install, but the OS will restrict 16 bit applications to run in a 16-bit subsystem and does not have access to the registry and critical file system directories.
• Regarding the black hole exploit kit vulnerability: I believe that AppGuard already protects against this. Is there a specific post that you're referring to?

 

No, AppGuard is not adversely impacted by PatchGuard.

 

Did you open a ticket? I have not seen it yet.

 

Status Update: The two bugs that were reported here against the beta (Privacy Mode GUI issue and Trusted Publishers being lost upon upgrade) have been fixed and are being tested in our lab. We hope to update the software on the beta link mid-week. The issue related to special characters embedded in the folder policy will be addressed in a future release.

 

Thanks for the confirmation, Barb.

 

No problem at all!

 

Looking forward to trying the next beta!

 

Yes, there was some Youtube video testing products against Blackhole, here's your reply about developing counter measures:
https://www.wilderssecurity.com/showpost.php?p=2206587&postcount=2227

 

Yes, we're still working this particular counter measure. It's not in the current release.

 

i have been using appguard for several months and i have noticed that sometimes when try to run an app (usually a game) that even if i had aleady previously had the app excluded and running normally that it refuses to start showing an error in the appguard log window. when i look to try and track down the problem after trying to re add the app i am told by appguard that the program is already in my list, and only after deleting and re adding am i able to run it as normal. nothing in my system has changed or drives added/removed or re mapped. this seems to happen totally randomly and i cant predict when it will happen again or not.

Gazzer

 

That is some odd behavior. I've never actually encountered it myself. Perhaps the .exe changed filename? Is it an application that is started from user-space?

What OS are you running?

 

The bare minimum they will need to trouble shoot this is your Appguard Event Log, and Appguard's policy file. To save the event viewer log right click on the event viewer, and select save as. Save the file to your choice of location. If you are using Windows Vista or Windows 7 AppGuard's policy file can be found at users/username/appdata/roaming/blueridge networks/appguard
The folder is hidden so you will need to enable viewing of hidden files, folders, and drives. To do this just click on any folder, and select tools from the toolbar. Then select folder option, and then select the view tab. Then select hidden files, folders, and drives. Then click apply, and ok to exit.

The next time it happens do the following above, and send the event viewer log, and policy file in an archive to AppGuard@BlueRidgeNetworks.com with a description of the problem. Be sure to tell them your operating system specs. I always send them my Windows log files as well, but if they need them they will let you know. If you can get a screen shot of the error you are receiving that would be great to.

 

i am using win7 x64 fully updated. the problem seems to happen with random apps mostly games, i all instances the games had been running with appguard set to high security level and any files or folders that needed excluding added as guarded apps or powerapps if needed. each time the problem happened i tried to re add any exclusions needed as shown in the log window and appguard would complain that the exclusion already existed, after deleting the appropriate exclusion and re adding as if from new the problem went away and everything worked normally.

as stated above nothing had been added or changed and no drives been re mapped or removed, sometimes a driver had been updated but nothing else.

 

I am not entirely sure why you would need to add games to Powerapps or even set them as Guarded.

If you install them into system-space, there should be no worries. I play A LOT of games using Steam, running with Lockdown-mode and I never have any issues.

 

i onkly add games as power apps after all else fails. my games are installed to a seperate drive to make backups smaller and have windows run faster.

 

Aha! Have you tried excluding game folders from user-space? I think other harddrives than C:\ are considered user-space. That might cause the issue?

 

I occasionally experience some strange behavior with Appguard's tray icon disappearing. When I look in windows task manager it shows AppGuardGUI.exe to be running. If I access Appguard from the programs menu then the tray icon will appear. I noticed when it happened this time I had just exited Shadow Mode with Shadow Defender which requires a reboot. I wonder if there is a connection. I'm not currently running the beta build of Appguard. I'm using Appguard stable build 3.4.2.0 I'm using Shadow Defender stable build 1.2.0.376

 

Thanks, I hope it will be in the next release.

 

Just to confirm, I have seen this myself. The only specific time I can recall is when running ThunderbirdPortable via a Truecrypt volume and also FileZilla (via TC) as GUARDED APPS.

I think one time, after (a) getting an app error, (b) trying to add as guarded, (c) getting the notification that the app was already in the list, I just closed the dialog box without re-adding it and waited. The app subsequently did start the next time I ran it.

To be honest, I'm kind of expecting a few issues when running Tbird > TbirdPortable > TrueCrypt > USB with AppGuard on lockdown, so didn't report anything, but I have seen similar.

 

Thanks for stepping in here. I appreciate it. I'm still in the middle of my move and things are crazy right now.

 

No problem!

 

good program the best of the best pound per pound