NoVirusThanks OSArmor: An Additional Layer of Defense

Discussion in 'other anti-malware software' started by novirusthanks, Dec 17, 2017.

  1. Chuck57

    Chuck57 Registered Member

    Joined:
    Sep 2, 2002
    Posts:
    1,534
    Location:
    New Mexico, USA
    Right, and since I just put Win 10 on this thing, I've already done that - except I've got my word processor and several other things I've got to have included in the image. That's my base image. Documents are up to date on an external HDD. All the rest is stuff I can install in minutes.
     
  2. Floyd 57

    Floyd 57 Registered Member

    Joined:
    Mar 17, 2017
    Posts:
    467
    Location:
    Europe
    If you're gonna do that, you might as well just clean install instead of use the macrium image (the one in the beginning), since macrium reverting all the way to the clean install from your current drive will take a lot more time than simply formatting your drive and then clean installing, latter takes <10 mins on a fast pc. And if you're talking about imaging a clean install after installing programs, then you're gonna need to update all the programs after you use the image, so you might as well clean install and just install the programs with their latest versions, this is the cleanest way possible for your system
     
  3. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,356
    Location:
    Europe then Asia
    when i say after a clean install, i assumed people understood that they do a full backup after installing drivers, necessary softs and setup/tweaking Windows to their liking (which take surely more than 10mn compared to a restoration with macrium taking less than 10mn.)
    I give people options/advice, after they are adult and smart enough to decide by themselves what procedure fit them best..

    Btw, OSA roxx :p
     
  4. Chuck57

    Chuck57 Registered Member

    Joined:
    Sep 2, 2002
    Posts:
    1,534
    Location:
    New Mexico, USA
    Yep, pretty much what I did. All I have to do is install OSArmor, SysHardener and a the firewall control, which is a few minutes.

    I like the idea of ReHIPS since I have a license with a few months left, but after fighting with it for over a month before stepping up to Win 10, I gave up. It's just a step beyond me, even with reading the instructions.
     
  5. jagth

    jagth Registered Member

    Joined:
    Feb 25, 2019
    Posts:
    6
    Location:
    Warszawa
    I should ask, how about whitelisting? is the gui now easy to use or still want use notepad? I remember I could not whitelist something or dig into the right settings
     
  6. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    34
    Location:
    Poland
    it still uses that semi manual system and saves as .db, and not useful for many programs as they run in temp or appdata with new name/tag at each run, but 80% can be whitelisted, sometimes you have to turn off a bunch of rules or turn off OS armor
     
  7. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,356
    Location:
    Europe then Asia
    Use wildcards
     
  8. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    8,044
    Location:
    U.S.A. (South)
    All the best Windows 10 is everything to satisfaction for you.
    I still run all productions with strictly Windows 8.1 despite having Win 10 on at least one system but only for video-HDMI tethering to large flat screen entertainment display for films-movies etc. It does seem to preserve and makes best use of memory capacity better than Windows 8.1.

    Of course OSArmor covers both systems to expectations so much so that there's no way in hades I will ever fork for an AV again or any other security apparatus since layering with quality 3rd party protections has not only dampened but eliminated ANY intrusions.
     
  9. Chuck57

    Chuck57 Registered Member

    Joined:
    Sep 2, 2002
    Posts:
    1,534
    Location:
    New Mexico, USA
    I'm back with 8.1 Pro, again and this time for good. Win 10 Pro was great for a couple, three weeks. I kept it like I posted, with minimal software, only those I needed. A week ago, hit start and it stuck. Would not open. Tried a couple of more times, then tried going into safe mode. No luck. Could not open. I went to the base Macrium image. It installed and would not open. I've never seen this happen before. It was a good image.

    Anyway, enough is enough. The gods of computers don't want me to have Win 10, but are happy to give me 8.1. It works.
     
  10. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    8,044
    Location:
    U.S.A. (South)
    Allow me share my own aggravation and one more reason why I refuse to ever run that jerky thing online in a production environment.

    The Windows 10 unit once my disk begins to load up (over 50%) with new programs or even videos-audios etc the age old silly Windows Disk Checking kicks in and on several occasions it was allowed to run ruined the whole layout by completely transferring many programs around making for deep sea diving trying to fish them back to their original positions etc.

    "We" (Windows) this and "We (Windows) is doing that" is just way too over the top lame for what an operational and fully functional operating system should be IMHO- Windows 8.1 affords reasonable leeway on issues which most are honestly no issues at all but the system doing certain checks that just get in the way and accomplish zilch.

    Yep-I been through with that nonsense for awhile now with no interest in revisiting it at a later date either.
    8.1 simply works as expected! and tight as a lasso with ERP4-OSArmor guarding the gates.
     
    Last edited: Mar 12, 2019
  11. novirusthanks

    novirusthanks Developer

    Joined:
    Nov 5, 2010
    Posts:
    1,025
    Location:
    Italy
    Here is a new v1.4.3 (pre-release) test1:
    https://downloads.novirusthanks.org/files/osarmor_setup_143_BETA_build1.exe

    *** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

    So far this is what's new compared to the previous pre-release:

    + Disallow the UI from being respawned when the PC is rebooting or shutting down
    + Support %PROCESSMD5HASH% in CustomBlock.db and Exclusions.db
    + Improved Block processes with known fake extensions (i.e .pdf.exe)
    + Enabled by default: Prevent msiexec.exe from loading MSI files maskes as PNG files
    + Improved Block suspicious Explorer.exe process behaviors
    + Improved internal rules to block suspicious process activities
    + Fixed some false positives
    + Minor improvements

    To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

    Let me know if you find any issue or FPs with this new beta build.
     
  12. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    44
    Location:
    Brooklyn, NY
    Thank you for this new build. :) Edge browser opens virtually instantly on here, so again, if I test OSA the first time to block Edge, the browser opens regardless. I have to restart machine and then it is blocked successfully; the block message from OSA happens a few seconds afterward. Scrolls fine but not via the side bar still.....In the Advanced section of Configurator, it opens to the bottom of the list, is that intended? Anyone using any/all of the Experimental blocks without problems? Have three of them ticked and trying them out--so far so good. Any further suggestions welcome. :thumb:

    lockdown osa.PNG
     
  13. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,082
    Looks good here on Win 7 Pro. Thanks Andreas
     
  14. Antarctica

    Antarctica Registered Member

    Joined:
    Feb 25, 2003
    Posts:
    1,781
    Location:
    Canada
    No problems here either:) thanks Andreas
     
  15. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    8,044
    Location:
    U.S.A. (South)
  16. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,338
    Location:
    Among the gum trees
    I uninstalled1.4.2 before installing this test version and was prompted on install to restart my Win10 x64 1809 machine. I can't remember having to restart to complete an installation before.
     
  17. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    6,243
    Location:
    Hawaii
    Hoot mon, 1.4.3 test is running perfecto! 10Q Andreas.....................
     
  18. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    11,436
    Location:
    UK
    1.4.3 running smoothly here.
     
  19. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,338
    Location:
    Among the gum trees
    I'm guessing that maybe because I didn't restart after uninstalling. I installed 1.4.3 over 1.4.2 on my two other machines and wasn't prompted to restart to complete the installation.
     
  20. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    34
    Location:
    Poland
    @andrea how can I contact you, been sending emails at support but they are returning back.. I thought you closed down shop which would make me very sad

    many thanks for the release
     
  21. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    11,436
    Location:
    UK
  22. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    2,372
    Location:
    Canada
    Thank you for this fine product, Andreas.
     
  23. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    879
    +1
    Both OSA and SysHardener are excellent security tools. Thank you very much for all you do.:thumb:
     
  24. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    6,243
    Location:
    Hawaii
    +1
    If I were an IT with several computers under my aegis, OSA would be one of a very few security apps that I would be willing & eager to pay many hundreds of $$/year subscription fee, to safeguard my computers and my job security. And it's free!!!
     
  25. novirusthanks

    novirusthanks Developer

    Joined:
    Nov 5, 2010
    Posts:
    1,025
    Location:
    Italy
    Here is a new v1.4.3 (pre-release) test2:
    https://downloads.novirusthanks.org/files/osarmor_setup_143_BETA_build2.exe

    *** Please do not share the download link, we will delete it when we'll release the official v1.4.3 ***

    So far this is what's new compared to the previous pre-release:

    + Improved parsing of command-line string
    + Minor improvements

    To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

    Let me know if you find any issue or FPs with this new beta build.

    @Krusty

    Yes, I noticed it happens occasionally. Will see if there is a smarter way to avoid the reboot.

    @plat1098

    About Edge, here are my findings:

    Situation 1 - Edge is blocked:

    1) OSA is running
    2) Edge is not running (make sure of this via Task Manager)
    3) Now you open Edge and it is blocked by OSA

    Situation 2 - Edge is not blocked:

    1) OSA is running
    2) Edge is already running (make sure of this via Task Manager)
    3) Now you open Edge and it is not blocked by OSA

    So I guess if you have Edge running (MicrosoftEdge.exe) and then you go on Programs -> Microsoft Edge to run it, if MicrosoftEdge.exe is already running, svchost.exe spawns a child process named MicrosoftEdgeCP.exe (Microsoft Edge Content Process) that apparently can't be blocked.

    Anyway, if Edge is not already running, it is correctly blocked by OSA.

    Will take a deeper look at this soon.

    Fixed.

    @lucd

    You can send me a PM here on the forum or send me an email at support (at) novirusthanks (dot) org
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.