VoodooShield ?

Discussion in 'other anti-malware software' started by CloneRanger, Dec 7, 2011.

  1. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
  2. fs2com

    fs2com Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    118
    Here's another that I found and still offer the 2.11 version...
    Code:
    http://www.baixaki.com.br/download/voodooshield.htm
    
    http://www.superdownloads.com.br/download/200/voodooshield/

    both link is blocked by eset

    Edit : This one offer v2.12 and blocked by eset too
    Code:
    http://voodooshield.findmysoft.com/download/
     
  3. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you, I have not seen those yet... wow, they are popping up all over the place. And these are totally different files from the other ones. I wish these people would get a life. Thank you for letting me know!!!
     
  4. fs2com

    fs2com Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    118
    Yeah... I think they will try hot software lure to inject malware to their target audience... at least one of them keep up with the newest version lol...
    well the bright side is your software is already "Hot" :thumb:
    Can't imagine all these innocent peoples who download it in order to secure their pc, but then got the opposite... poor soul
     
  5. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    hehehe, that really cracked me up when you said "at least one of them kept up with the newest version ;)."

    I am not too worried about it, I am certain it happens to all software developers / companies, but we do need to keep an eye on it. I have only had 3-4 reports of these sites, starting the other day, so I am certain that the vast majority of users are downloading the legitimate version.

    Lucky for us, our 4 investors are all attorneys, and they have every interest in shutting these people down ;). So we will find out who these people are and we will take whatever civil and criminal actions we can possibly take.

    If anyone else has any other ideas on how we can stop them, please let me know!
     
  6. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Morning! Digmor! I felt that AppGuard was sufficient in tandem with WSA at the time. But the ongoing scenario with Apps...reacting differently with whatever else you have installed on your system Continues. And regarding yesterday's Football...it's Western Canada...Snow's a Given! And to be Geographically correct my Imaginary Million Dollar Cabin is South East of The Lake Of The Woods...which straddles the Ontario...Manitoba border! Sincerely...Securon
     
  7. fs2com

    fs2com Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    118
    Can you put a lawsuit on them? Since they're a Brazilian sites... and I think I spot one Vietnamese site do the same stuff...
    and I saw up to 1.000+ download on that link :p

    Yes usually they did that with hot application and games, so the users must be smart about what they download nowadays...
    I'll always search the Author website to download application that I want, and still run it on sandboxed first if I'm not completely sure :D
     
  8. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    I am not sure about the whole international law thing, but yeah, I am sure we are more limited on what we can do outside of the US.

    Either way, they are going to just keep popping up. Kind of like a bad game of whack-a-mole ;). You knock one down and 3 more pop up ;).
     
  9. fs2com

    fs2com Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    118
    Yep that's for sure... there's no way stopping them...

    btw today VS service doesn't auto start again... so I had to start it manually... looks like there's some random conflict between service start...
    but can't figure out with which one... So right now I put to Automatic (delay) for VS service and see if this problem arise again in a couple of days...

    Maybe you can put some checking routine on the program Dan, to see if the service has started or not for this kind of problem...
    I don't know if it's the best way... just a suggestion
     
  10. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you for letting me know. Our new developer started reviewing the code this weekend and is starting on development this week! He finished the KMD about a month ago, and also helped me with a few complex issues I was struggling with for VS 2.0.

    He is really good, so I cannot wait to see how VS 3.0 turns out!

    But I will see if he can look at the service issue asap, along with a few other small things, like hiding the gadget when a video or game is full screen. So we will have a couple more VS 2.0 releases, probably in the next few weeks. I would guess that VS 3.0 will take around 4 months or so for the first beta versions to be available. Hopefully the beta tests for 3.0 will go even better since we have most of the bugs already worked out... well, that, and he is a much better coder than I am ;). Please do not get me wrong, I think VS 2.0 turned out great in the end, but it was just a lot of struggle for everyone involved, especially our beta testers (thank you for sticking with me ;)).

    This will free me up to to focus on some of the other things we need to be focusing on. It is kind of funny though, because now that I learned a lot about development in the last 3.5 years, I will be stepping away from it, at least for a while. That is typically what I have always done with coding. I got my first computer around 30 years ago (Commodore VIC 20) ;), and coded for 4-5 years straight. Then when I was around 15 years old, I realized that females were much more interesting than computers could ever be, so I quit coding for 4-5 years. And basically that has been the cycle over and over again... 3-5 years on, 3-5 years off. I imagine if I would have stuck with it the entire time, I would be a pretty good coder by now ;). But anyway, it looks like I am now entering a 3-5 year off period ;).
     
  11. WildByDesign

    WildByDesign Registered Member

    Joined:
    Sep 24, 2013
    Posts:
    2,587
    Location:
    Toronto, Canada
    This may not relate to your exact problem specifically, but just rundll errors in general blocked by VS and some advice for others here when installing software alongside VS.

    I have gotten a few rundll errors as well. I would say, maybe 3 out of 20 software programs installed on my system had these issues. Not a very large percentage, by any means. But it still could potentially cause problems for those particular programs, certain modules, etc. Some of these installations might fail outright, or go through successfully but may be missing certain components or not properly registered that individual component in the registry. So it's hard to say how broken some of these installations could be, or at least some point down the road when you access certain components. Therefore, I disable VS entirely during installation. Obviously these install programs would be from trusted sources, of course. And if there were any doubt, a simple manual scan from any AV or VirusTotal could be done prior to installation of something that might not be as trusted or verified.

    My best advice for installing software while running VS would be to disable the protection entirely during installation, then enable VS protection once install is complete. Although I suppose Training mode when running the newly installed program for the first time.
     
  12. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Ahhhh, yes, thank you ;). Here is what the new developer will focus on initially.

    1. VoodooShieldService startup issues
    2. Refine the Rundll32.exe code
    3. Refine the Dllhost.exe code
    4. Hide desktop shield gadget when video or game is full screen
    5. Disable Protection mode bug that CET found
    6. Anything else you guys recommend that should be fixed asap

    Edit: Actually #3 and #5 are the same issue.
     
  13. fs2com

    fs2com Registered Member

    Joined:
    Sep 20, 2014
    Posts:
    118
    Great and hope the development will make this software more great and robust...
    Well we need a variety in life... if it's not it will be a boring and dull life :D
    Take your time off and let the coding detail to your team so you can focus on the big picture...
    I find it hard to focus on bigger thing if I had to deal with the little detail all by myself single handedly

    Thanks for the tips WildByDesign... that the best way to use VS with the offline installer... don't know about the application with automatic update..
    they tend to silent update while we are connected... Will VS conflicted with them? since we can see VS flashes but we might think it is malware or something.

    Number 4 is very interesting addition I think... so it will be for the free version right Dan? since the pro can hide the gadget
     
  14. WildByDesign

    WildByDesign Registered Member

    Joined:
    Sep 24, 2013
    Posts:
    2,587
    Location:
    Toronto, Canada
    It only injects dll into the processes in which it kills. Whitelisted programs are not injected.
     
  15. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, thank you, I appreciate that!

    Yeah, I agree with you guys, VS (and all other security software for that matter) should be disabled when installing new software. VS has an installer detector that detects if a file is an installer or not, and if an installer is detected, then VS will offer and Install button instead of an Allow button... and the Install button will actually turn VS OFF for 5 minutes, or whatever it is set to in the settings. VS's installer detector is great, and works almost all of the time, but it is dependent on definitions... for example, I sure everyone is familiar with the InstallShield Installer. Well, that is one of the definitions that is on the list of installers. I think we have almost all of the installers on the list, but we might be missing a couple of the lesser known installers, but at some point we should have them all. But either way, yeah, I think all software should be closed and all security software should be disabled if someone is installing new software. That is the way it used to be (remember that, like 10-15 years ago ;)), but somehow everyone has gotten away from that ;).

    I am not sure if the auto hide will be included in the free edition or not, that is a toughy, we could go either way on that ;).
     
  16. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    That makes sense to me. The reason I am not sure is because there is very little documentation on that method, and I have heard 2-3 different answers from the different developers I have worked with. If you find some useful documentation or resources online, can you please either post or email them to me? I actually do not work on that part of the code, I just work on the GUI and the Service (the other 95%) so I am not familiar with the CPN / C++ code. Thank you!
     
    Last edited: Nov 3, 2014
  17. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
  18. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    Has VS been cracked? :)
     
  19. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Not that I am aware of, and I have tried several... I think they are just malicious files just like the other sites. I think it would be hard to crack since it has to authenticate with the server. That, and the code is obfuscated, so I think it would be hard. But I am sure there is always a way. Besides, it is free now, so I guess they would only be cracking the Pro version ;). Please let me know if anyone finds a crack that works!
     
  20. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,653
    Location:
    USA
    The search results for the VS crack should be somewhat of an indication of VS's growing popularity. :thumb:
     
  21. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you CET! Are you taking the VoodooShield Challenge? ;) BTW, I think the new developer knows what is going on with that Kaspersky installer error in Disable Protection mode. He should have it fixed soon, along with the other minor issues.
     
  22. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,653
    Location:
    USA
    I think the new developer is going to work out really well. I'm looking forward to testing the KMD version as well.
     
  23. WildByDesign

    WildByDesign Registered Member

    Joined:
    Sep 24, 2013
    Posts:
    2,587
    Location:
    Toronto, Canada
    Hopefully the new developer will be vocal here on Wilders as well. It's always nice to talk the technical talk with developers.

    I can only imagine it is a very daunting task as a new developer jumping into an already mature security software program and having to read and understand the existing code base so as to gain a good overall understand of how the program works from a technical standpoint. So I am sure it will take him a bit of time to get up to full developing speed which is certainly understandable. I look forward to seeing and testing what comes down the road for VS. And it's always nice to see a security software that provides a bit of a roadmap like that as well.
     
  24. IvoShoen

    IvoShoen Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    805
  25. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Yeah, it should work out great! And he is a very quick learner, but I know what you mean WildByDesign.

    BTW, I am not sure what happened but our downloads went freaking crazy over night. The downloads were doing extremely well after the PCMAG review, but something happened last night that made it just go nuts... I would guess probably related to the pcmag review. Anyway, if someone finds the source, please let me know! I would love to thank them!
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.