New Antiexecutable: NoVirusThanks EXE Radar Pro

It's here!

We have released a new version of NoVirusThanks EXE Radar Pro v2.7.4.
Changelog:

[03-04-2013] v2.7.4.0

+ Fixed prompt dialog "Enter password to disable protection" displayed at reboot
+ Renamed "Sensitive Processes" in "Vulnerable Processes" in Alert List TAB
+ Added option "Automatically block processes executed from RAM Disks"
+ Ask user to add vulnerable processes in the alertlist on first run
+ Allow user to edit the wildcard in WhiteList CommandLine (Wildcard) TAB
+ Added option "Clear logs on shutdown"
+ Fixed "Restore Lockdown Mode if disabled for more than"
+ Added support to monitor processes started inside SandboxIE 3.76 (it is needed to edit sandbox configuration)
+ Added option to change to default settings
+ Added option to play a custom WAV file when the alert dialog is displayed
+ Added option to play a custom WAV file when a process is blocked
+ Show a balloon hint when Lockdown Mode or Real-Time Protection has been restored
+ Show a balloon hint when Lockdown Mode or Real-Time Protection has been enabled/disabled
+ Fixed a small issue when importing settings
+ Show a message when settings have been exported or imported
+ Added option "Do you want to export your current settings ?" after the option to reset settings is clicked and confirmed
+ Added option "Save events log to a file" to allow user to save or not save events logs to disk
+ Added option "Enable debugging" in Settings->Debug tab
+ Fixed Windows 8 x64 incompatibility issue
+ Minor fixes and optimizations

 

@Beethoven1770

NVT ERP has the following benefits:

- Real-time protection to monitor execution of any new and unknown process
- Whitelist/Blacklist a process
- Whitelist an entire commandline string
- Whitelist an entire whitelist using wildcard
- Whitelist an entire folder and sub-folders
- Whitelist a parent process
- Whitelist a process without checking its MD5 hash
- Lockdown mode to block any unknown process (by default only whitelisted items are allowed, the rest is blocked)
- Quarantine a process to later delete it permanently or restore it
- Password protect the execution of a process
- Temporarily allow a process until the next reboot
- Easily view all allowed and blocked processes with detailed information
- Auto block processes executed from USB, RAM disks, CD-ROMs, network drives
- Stealth mode to hide the tray icon
- Play a beep or a custom WAV sound when a new process is executed or when a process is blocked
- Process manager to manage running processes

@everyone

We have released NoVirusThanks EXE Radar Pro v2.7.4:

[03-04-2013] v2.7.4.0
+ Fixed prompt dialog "Enter password to disable protection" displayed at reboot
+ Renamed "Sensitive Processes" in "Vulnerable Processes" in Alert List TAB
+ Added option "Automatically block processes executed from RAM Disks"
+ Ask user to add vulnerable processes in the alertlist on first run
+ Allow user to edit the wildcard in WhiteList CommandLine (Wildcard) TAB
+ Added option "Clear logs on shutdown"
+ Fixed "Restore Lockdown Mode if disabled for more than"
+ Added support to monitor processes started inside SandboxIE 3.76 (it is needed to edit sandbox configuration)
+ Added option to change to default settings
+ Added option to play a custom WAV file when the alert dialog is displayed
+ Added option to play a custom WAV file when a process is blocked
+ Show a balloon hint when Lockdown Mode or Real-Time Protection has been restored
+ Show a balloon hint when Lockdown Mode or Real-Time Protection has been enabled/disabled
+ Fixed a small issue when importing settings
+ Show a message when settings have been exported or imported
+ Added option "Do you want to export your current settings ?" after the option to reset settings is clicked and confirmed
+ Added option "Save events log to a file" to allow user to save or not save events logs to disk
+ Added option "Enable debugging" in Settings->Debug tab
+ Fixed Windows 8 x64 incompatibility issue
+ Minor fixes and optimizations

Tomorrow we will release the 30-days trial version.

 

Updating, thanks

 

Whoa! Already updated. Thanks a lot NVT, you're doing great job!
Can't wait till trial is released to let my friends try ERP. They are going to love it for sure

 

Great job, nvt!
We should all work on trial marketing now.

 

I agree

 

Can you please provide some short description of proper settings for smooth co-operation with SBIE?

 

Was in the process of wanting to do an update, but this link http://downloads.novirusthanks.org/license.php still returns the previous version.

Where can I download it?

@NoVirusThanks - Out of curiosity, is this BUILD 13?

 

@pablozi

To allow ERP to monitor processes started inside SandboxIE you need to:

1) Open SandboxIE
2) Browse to Configure->Edit Sandbox
3) Under the sandbox paragraph (ex: [DefaultBox]) add this line:

OpenPipePath=*\mailslot\NVTInj\*

Example:
http://postimg.org/image/gtpba1ho3/

Then close the sandbox settings file and try to open a process inside the sandbox, it should be detected by ERP and you should receive the prompt dialog to allow/block it.

Let me know if that works for you.

@RADEON

I tried it now and it showed "Download EXE Radar Pro v2.7.4" that redirects to build-14. Try now and let me know if you can see that too.

//Edit

I got now what you meant, the title is now fixed to say "Get Download Link for EXE Radar Pro v2.7.4"

 

You're correct

HaHaHa, I always forget to check that E-mail because it's only used for sign-ups and such.

User error, I feel like a doof

Thanks

 

Ok, updated and working great

Thanks NoVirusThanks

 

Just a question:

Why is there an ERP file sent to the recycle bin, after exporting settings?

What exactly is being deleted?

 

Maybe some temp file.
What do you have in Recycle Bin?

 

@RADEON

Yes, they are temporary files.

 

Thanks for letting me know, I appreciate it

 

this new version is even better than the last one

 

Agree 100%. It just keeps getting better.

 

I have a question, should I whitelist any and all microsoft process's?

 

Hi,
A question, novirusthanks. Why would one want to have access within the Sandboxie sandbox with ERP? Anything within the sandbox stays in the sandbox and is deleted on browser close (if that option is used...which I'm sure most people do). Is it just to notify the user that something unexpected is executing within the sandbox (like an exploit)?

Also, have you changed the way you handle licenses with this new version? Sometimes I delete ERP to try new or different software (Comodo 6 CIS is not compatible with ERP...at least not for me) but I leave my config files and license file in ProgramData. On reinstall of ERP it never asks for my product key. With 2.7.4 I had to uninstall ERP 2.7.3 first before I could upgrade to 2.7.4 due to an error when I tried to install 2.7.4 over 2.7.3 (access was denied to shutting down ERP's driver). On reboot I installed 2.7.4 but then it asked for my product key even though my license file was still in ProgramData. Thus my question.

One more also. It would be nice if I could copy an entry from Whitelist>Commandline to add to Commandline (Wildcard) and then edit.

Win 8 Pro 64 bit.

Thanks. .

Later...

Bob

 

Well if you trust microsoft yes
I allowed all on mine like everything so no unknown exe should be able to run but the system exes.

 

May I ask what settings you use?

 

The default ones are good enough