NoVirusThanks OSArmor: An Additional Layer of Defense

Discussion in 'other anti-malware software' started by novirusthanks, Dec 17, 2017.

  1. guest

    guest Guest

    I think NVT made ERP and OSA free to home users while SOB is oriented to corporations (because more secure) and is their main source of incomes, so get more attention about development.
    Home users and especially Security forums guys like us are niche market, we don't provide enough incomes for a company to live, however we are a good testing grounds and for free.

    About my block list I won't share it since it will break most systems, it is very customized. I did it once for Appguard and people couldn't handle it.
     
  2. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    6,690
    Location:
    Hawaii
    @guest -- "SOB" = Smart Object Blocker, right?
     
  3. guest

    guest Guest

    Yep
     
  4. Roberteyewhy

    Roberteyewhy Registered Member

    Joined:
    Mar 4, 2007
    Posts:
    562
    Location:
    US
    Everyone is entitled to their belief.

    "Such is Life!";)

    Thanks, bellgamin, for your kind words,
    Robert
     
    Last edited: Aug 12, 2019
  5. Roberteyewhy

    Roberteyewhy Registered Member

    Joined:
    Mar 4, 2007
    Posts:
    562
    Location:
    US
    Yep.I know what it means too.

    You know how much I respect your opinion.:thumbd:

    Thanks, guest,
    Robert
     
    Last edited: Aug 12, 2019
  6. Roberteyewhy

    Roberteyewhy Registered Member

    Joined:
    Mar 4, 2007
    Posts:
    562
    Location:
    US
    Yep...you have to achieve 'Balance'.

    Robert
     
  7. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,367
    Even if you block Powershell.exe, you should still enable Powershell Constrained language. Why? Because sometimes malware runs a Powershell script directly from the dll. Powershell Constrained language will apply to such scripts, while simply blocking Powershell.exe will not help in such a case.

    Powershell Constrained language can be set by SysHardener, as mentioned, or by Andy Ful's Hard_Configurator, or by running a simple Powershell command with Admin privileges. I think you can do it from Group Policy, too.
    If anyone has the instructions handy on how to do either of these methods, please post. I set it by Powershell command, but I forgot how I did it...
     
  8. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,063
    Don't go, Robert. People often disagree with my posts/opinions. Who cares? I would definitely miss your informative posts. And you are my go-to guy when it comes overpriced AG.:D
     
  9. Roberteyewhy

    Roberteyewhy Registered Member

    Joined:
    Mar 4, 2007
    Posts:
    562
    Location:
    US
    AG v6 is worth it, if configured correctly in 'User Space'. Same with OSA. in 'Custom Block-Rules'.

    guest, mood and others are better than me. They helped me. No one wants to contradict mirimir when it comes to VPN.

    Plus, they are nice and decent human beings—they have integrity.:)

    Honor above all!

    Aloha Buddel,
    Robert
     
    Last edited: Aug 12, 2019
  10. Roberteyewhy

    Roberteyewhy Registered Member

    Joined:
    Mar 4, 2007
    Posts:
    562
    Location:
    US
    Buddel and other members, trust me when I say, guest knows more about AG Solo and OSA.:D

    I try to do my homework. WFC, I use Alex's last version, not MB's.

    So is OSA v1.4.3. That's why it does not get updates for months already...if it works, why fix it.

    Appreciate the inputs,
    Robert
     
    Last edited: Aug 12, 2019
  11. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    12,148
    Location:
    The Netherlands
    BTW, have you guys noticed any system crashes after installing OSArmor? Win Explorer crashes at least once a week, this never happened before on my system. For now I have disabled OSA, to see how things go.
     
  12. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,560
    None on Win 7 X64 Pro
     
  13. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    12,724
    Location:
    UK
    None on Win 10 1903

    Does it say anything in OsA logs ? (right-click on OSA taskbar icon and select open logs folder)
    Does it give any more detailed info about the crashes in Windows Reliability History?
     
  14. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    2,612
    Location:
    Canada
    None on Win10 Pro, fully updated and running SRP default-deny applies to all users.
     
  15. guest

    guest Guest

    none too, and i have enabled almost all options and added a big personal blocklist
     
  16. loungehake

    loungehake Registered Member

    Joined:
    Mar 9, 2015
    Posts:
    145
    Location:
    Wigan
    I thought that OSArmor was a big factor in my 2006 vintage hardware equipped Windows 7 Ultimate 64bit system hanging. I turned off all the problem reporting features in Action Center and find that performance has perceptibly improved. Now I am using OSArmor again.

    During patch Tuesday updates, the error log previously grew to 1GB+. It's like driving a car with the parking brake on. I wish that I had realised this years ago but, what the heck, it's better late than never.
     
    Last edited: Aug 17, 2019
  17. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    6,690
    Location:
    Hawaii
    No crashes. None. Nil. Nada. Zip. Zero.
     
  18. GrDukeMalden

    GrDukeMalden Registered Member

    Joined:
    Jun 16, 2016
    Posts:
    169
    Location:
    VPN city
    What's the deal with Smart'O'Blocker? I fiddled with it, but I didn't see it do anything besides interfere with sandboxie's processes. Does it just have all the features of EXE radar, OS armor and all the other stuff?
     
  19. guest

    guest Guest

    It is all by command lines (like OSA's Custom Block list), GUI is almost inexistent but the real deal is it also monitors dlls and drivers (ERP, OSA and other basic anti-exe don't).
    So where some malware may use malicious dlls, SOB would block it while ERP won't.
     
  20. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    2,612
    Location:
    Canada
    I ran a couple tests against OSArmor and it stopped them both dead. Impressive little utility :thumb:
     
  21. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    1,586
    osa is just a passive interface for windows settings. so it's windows that "stopped them both dead".
     
  22. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,159
    Location:
    Among the gum trees
    Isn't that SysHardener?
     
  23. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    2,612
    Location:
    Canada
    OSArmor stopped them. I have logs to prove it.
     
  24. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,959
    That's what I was thinking too....
     
  25. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    1,586
    my bad, guys. that's what it was like in its earlier release (v1.0) but apparently it's evolved into more than that in later releases. :thumb:
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.