NoVirusThanks OSArmor: An Additional Layer of Defense

Discussion in 'other anti-malware software' started by novirusthanks, Dec 17, 2017.

  1. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    3,998
    Location:
    .
    My question re Sandboxie was answered #58. Thanks
     
    Last edited: Dec 18, 2017
  2. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,411
    Location:
    Surrey, England.
    As always in these cases, the only way to resolve that is via the whitelisting route. However, if the builds of OSA are being released very frequently (a la beta), the monitoring would recur until again whitelisted.

    IMHO this looks like a very interesting new software, and I'll probably try it before long.
     
  3. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    554
    Location:
    Croatia
    There is a couple of security vendors that have flag this app malicious:

    ~ Removed VirusTotal Results Image as per Policy ~
     
    Last edited by a moderator: Dec 19, 2017
  4. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    3,998
    Location:
    .
    Yes
     
  5. plat1098

    plat1098 Guest

  6. daman1

    daman1 Registered Member

    Joined:
    Mar 27, 2009
    Posts:
    1,292
    Location:
    USA, MICHIGAN
    BD eng. ver. is on 7.7 now and it clears it(exe)
     
  7. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,397
    Location:
    U.S.A.
  8. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,704
    Location:
    U.S.A. (South)
    Thanks Andreas for a new BB which had all but been rendered left behind in yesterday's PC world.

    This makes a fine impression and compliment to current safety screens already in place. Woopee.
     
  9. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    3,998
    Location:
    .
    Date/Time: 12/18/2017 5:57:45 PM
    Process: [796]C:\Users\bjms\AppData\Local\Temp\Temp1_speedyfox.zip\speedyfox.exe
    Parent: [5028]C:\Windows\explorer.exe
    Rule: BlockDirectProcessesExecZip
    Rule Name: Block direct execution of .exe files from .zip\.rar\.7z archives
    Command Line: "C:\Users\bjms\AppData\Local\Temp\Temp1_speedyfox.zip\speedyfox.exe"
    Signer: CrystalBit Solutions
    Parent Signer: Microsoft Windows
    2078.png
    Edit: adding OSA + ERP pic
    OSA + ERP.png
     
    Last edited: Dec 18, 2017
  10. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,577
    I installed it ten minutes ago (just couldn't wait for the official release). Playing with it right now.:)
     
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,991
    Location:
    Among the gum trees
    It sounds interesting indeed. Will it always be offered free, or is it only free for beta testing?

    I'm not doing any beta testing on my machines at the moment.

    Thanks.
     
  12. novirusthanks

    novirusthanks Developer

    Joined:
    Nov 5, 2010
    Posts:
    1,125
    Location:
    Italy
    I've released a new version v1.1:
    http://www.novirusthanks.org/products/osarmor/

    This is the changelog:

    [18-Dec-2017] v1.1.0.0

    + Block any process executed from java.exe and javaw.exe (unchecked by default)
    + Block any process executed from mmc.exe (unchecked by default)
    + Block any process executed from wmiprvse.exe (unchecked by default)
    + Block any process executed from mstsc.exe (Remote Desktop) (unchecked by default)
    + Block unknown processes executed from TeamViewer (unchecked by default)
    + Block execution of any process related to TeamViewer (unchecked by default)
    + Block execution of .wsf scripts
    + Improved detection of suspicious processes
    + Improved detection of suspicious svchost.exe behaviors
    + Fixed hiding of the GUI window on PC reboot
    + Fixed some false positives

    To update just uninstall the old version and install the new one.

    No reboot needed.

    @Krusty

    Most probably free.

    @Buddel

    Please try the new v1.1 version, should work better.

    @Rasheed187

    It uses particular internal rules to identify a process as suspicious and to detect a unusual svchost.exe behavior.

    @Peter2150

    Yeah :D Noticed it now, will try to fix that issue on dual monitors.
     
  13. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,577
    Thanks for the new version.:)
     
  14. plat1098

    plat1098 Guest

    I installed OSArmor, though this machine has mostly Windows stuff but will surely report anything at once. Uses 14.0 MB of RAM when idle. This also makes an attractive addition to my dock! :thumb:

    osarmor.PNG

    Edit: pinned the configurator to the dock instead.
     
    Last edited by a moderator: Dec 18, 2017
  15. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    40,187
    I was also about to post the new version but you were a tad faster ;)
    The problem with detections on VT is solved with v1.1 :thumb: (except of the 32-bit verson of OSArmorDevSvc.exe which is flagged by Sophos)
     
  16. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Avira Browser Safety is blocking your site o_O

    EDIT: Only when I try to download OSA

    2017-12-18_162026.png
     
  17. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,704
    Location:
    U.S.A. (South)
    Likewise :thumb:
     
  18. daman1

    daman1 Registered Member

    Joined:
    Mar 27, 2009
    Posts:
    1,292
    Location:
    USA, MICHIGAN
    Obviously FP..
     
  19. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Of course
     
  20. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    1,577
    I reported this FP to Avira a couple of minutes ago. Let's hope Avira will fix it asap.
     
  21. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Great, Thanks!
     
  22. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    thanks Andres
     
  23. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,991
    Location:
    Among the gum trees
    Great! Thank you, NVT.
     
  24. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,846
    Oh nice. This looks pretty cool!
     
  25. guest

    guest Guest

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.