SpyShelter 11

Discussion in 'other anti-malware software' started by puff-m-d, Apr 17, 2018.

  1. puff-m-d

    puff-m-d Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    5,260
    Location:
    North Carolina, USA
    Hello,

    SpyShelter version 11.0 has been released.
    Homepage
    Download
    Blog
    Changelog
     
  2. Jerry666

    Jerry666 Registered Member

    Joined:
    May 28, 2002
    Posts:
    161
    Thanks , updated and runs well .
     
  3. puff-m-d

    puff-m-d Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    5,260
    Location:
    North Carolina, USA
    Hello @Jerry666,

    You are most welcome ;) ...
     
  4. puff-m-d

    puff-m-d Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    5,260
    Location:
    North Carolina, USA
    Hello,

    SpyShelter version 11.1 has been released.
    Homepage
    Download
    Blog
    Changelog
     
  5. Jerry666

    Jerry666 Registered Member

    Joined:
    May 28, 2002
    Posts:
    161
  6. puff-m-d

    puff-m-d Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    5,260
    Location:
    North Carolina, USA
    Hello @Jerry666,

    You are most welcome ;) ...
     
  7. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,512
    Location:
    USA
    I'm testing Spyshelter in a VM right now. I executed gmer.exe file from the desktop, and it allowed it to execute. Spyshelter then alerted me to the pwrdyfoc.sys driver that gmer was trying to execute in my local temp folder. I have Spyshelter set on Allow Microsoft. Why did Spyshelter not alert me to the gmer.exe file before it tried to install the driver? Is there something in the settings I need to change so SS will alert me to .exe files attempting to execute?
     
  8. rs11

    rs11 Registered Member

    Joined:
    Jun 23, 2009
    Posts:
    52
    what other security software would be good to pair up with SpyShelter Firewall?
     
  9. co22

    co22 Registered Member

    Joined:
    Nov 22, 2011
    Posts:
    357
    Location:
    router
    under application execution control find explorer.exe find if there is a rule like " * " if there is remove it
    then go to list of monitored action find action 53,then select it
    then uncheck "auto allow action for component signed by trusted signer"
    then put in allow Microsoft mode.it should alert now.

    however not sure why its allowed.since file not have certificate maybe it in a builtin allowed hash?!


    edit: or maybe because parent file is from microsoft
     
  10. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,196
    There are many security softs that SpyShelter does not play well with. You definitely cannot use another product that has HIPS.
    It combines well with Appguard.
    If you run SSF in "ask user" mode, you don't really need anything else.
     
  11. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,196
    Put Spyshelter in "ask user" mode, and also search and destroy those asterisks, like @co22 said.
     
  12. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,793
    Location:
    Poland - Cracow
    If you realy want to add something other I think NVT ERP - but in old version "3.1" - can be good and efficient companion to SS.
     
  13. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,356
    Location:
    Europe then Asia
    i believe OSA would be better, it has no prompts, just block notifications.
    SpS already does what ERP do.
     
  14. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    11,337
    Location:
    The Netherlands
    Only the SS Firewall edition has "App Execution Control" and co22 already explained how to fix the problem.

    Nope, SS isn't as userfriendly as ERP. Sandboxie also plays well with SS, and no, the sandbox in SS isn't really that advanced.
     
  15. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,512
    Location:
    USA
    It turns out I just needed to click on terminate instead of deny. I thought they both should do the same thing. I was never able to find the settings that CO22 referred me to, but i'm not using the Firewall version either. I'm testing SpyShelter Premium.
     
  16. rs11

    rs11 Registered Member

    Joined:
    Jun 23, 2009
    Posts:
    52
    Thank You, I think I will give OSA a try
     
  17. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,356
    Location:
    Europe then Asia
    i talk only about security mechanism. You can compare user-friendliness between apps with similar mechanism, if one mechanism does already what the other does, the other became useless.
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    11,337
    Location:
    The Netherlands
    I'm not following you, the thing is that anti-exe in SS is very unhandy, so that's why I'm using EXE Radar. So I don't see how ERP is useless in this case.
     
  19. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,356
    Location:
    Europe then Asia
    Long time i didn't used SS, but i recall it blocks exe, drivers and dlls, and have a great command line parser. ERP blocks only exes.
    So you see why i say it is useless to use both?
    By using both it is like you are using an AV with antispyware capabilities, then add a basic anti-spyware because the AV is not convenient to use.

    Personally i choose a product based on its efficiency and coverage, i don't care much on its user-friendliness, i just need a GUI. I avoid redundancy.
     
  20. Jerry666

    Jerry666 Registered Member

    Joined:
    May 28, 2002
    Posts:
    161
    Where do I find "put in allow Microsoft mode." I folloed up to this point .
    Thanks
     
  21. Poppey

    Poppey Registered Member

    Joined:
    Nov 23, 2015
    Posts:
    36
    Location:
    Germany
    I think he means this issue (it is a screenshot of my german version)

    Spyshelter.jpg
     
  22. co22

    co22 Registered Member

    Joined:
    Nov 22, 2011
    Posts:
    357
    Location:
    router
    "settings">"secuurity tab">"certified application": from dropdown menu "allow Microsoft"
     
  23. Jerry666

    Jerry666 Registered Member

    Joined:
    May 28, 2002
    Posts:
    161
    Thanks , that's why I didn't "see" it , have it set to always ask .
     
  24. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    6,243
    Location:
    Hawaii
    Firewall (FW) with HIPS is what I seek. SS FW has HIPS. Comodo FW (CFW) has HIPS. I have 3 questions, just in case anyone here has experience with both SS FW & CFW:

    1) Which is more user friendly: SS FW or CFW?

    2) Which is easier on the CPU: SS FW or CFW?

    3) Which is more stable: SS FW or CFW?
     
  25. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,196
    1) At default settings, CFW is more user friendly, in the sense that it is quieter.
    But when something does get blocked, SSFW is easier to deal with. You don't have all that messy autosandboxing stuff. (I am not really speaking of true Comodo default settings, I have in mind @cruelsister settings, which SHOULD be used by default.)
    2) Both are easy on CPU
    3) Both are prone to conflicts and issues of various sorts.

    It should be noted that CFW at default (@cruelsister) settings is a default/deny setup, but SSFW at default settings is not.
     
    Last edited: Jun 18, 2018
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.