VoodooShield ?

Discussion in 'other anti-malware software' started by CloneRanger, Dec 7, 2011.

  1. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, thank you for posting the screenshot. It looks like to me that something is triggering a plain command prompt, which without command lines cannot be dangerous AFAIK. All you have to do is to uncheck the CMD option box in Settings / Advanced, that should fix it. If it does not fix it, it means that something else is going on, so please let me know. Actually, I think we can remove the CMD option (and possibly others), since this stuff has been handled by command lines for a while now. A couple of years ago, VS did nothing with the command lines, but now that it does, we should be able to remove these options. Thank you!
     
  2. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Ok, thank you. I just sent myself a test from our website, and I have not received it yet... maybe that mailbox is full, I better check it out, thank you!
     
  3. rm22

    rm22 Registered Member

    Joined:
    Oct 26, 2014
    Posts:
    357
    Location:
    Canada
    ok, thanks for the info - i'll try a reset and let you know how the next WFC update goes
     
  4. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Here is the last VS 2.0 beta release. We may never release it as a full release because I am thinking VS 3.0 will be ready before then. This version does not include the 4 new web apps that you guys recommended, but I already added them to VS 3.0 (PDFXChange, Cyerfox, Waterfox and Yandex).

    https://voodooshield.com/Download/beta/InstallVoodooShieldbeta.exe
     
  5. ghodgson

    ghodgson Registered Member

    Joined:
    Dec 20, 2003
    Posts:
    835
    Location:
    UK
    Thanks Dan,
    2.86 beta already installed and so far so good.

    Gordon
     
  6. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,603
    Location:
    South Wales, UK
    Hi Dan

    Am a bit late to the party but v2.86 installed under Windows 10...and all running tippity top here...will keep you posted on any developments.

    Regards, Balder
     
  7. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    9,369
    Location:
    Among the gum trees
    V2.86 is running fine on both of my machines - Win7 x64 & Win10 x64.

    Nice work Dan! :cool:
     
  8. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    9,369
    Location:
    Among the gum trees
    Dan,
    Any news? Did you receive the support ticket?
     
  9. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, thank you Gordon!
     
  10. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Very cool, thank you Balder ;).
     
  11. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, thank you for letting me know! It is still down, but my web guy is looking into it. The mailbox was pretty full 84%, but there is something else going on, he will have it fixed very soon.
     
  12. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    BTW, I finished up my part of VS 3.0 and Vlad is working hard on his part... he is doing truly amazing work! Hopefully we will have a beta for you guys within a week!
     
  13. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
  14. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,654
    Location:
    USA
    Did the service have to be completely rewritten as well?
     
  15. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,974
    Location:
    Poland - Cracow
  16. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
  17. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    No, but he is basically going through all of the code and proof reading my work, and he is making some changes to the service.
     
  18. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Very funny ;).
     
  19. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,603
    Location:
    South Wales, UK
    OOOOOOOOOOOOOOOOOOHHHHHHHHHHHHHHHHHHHHHH...can hardly wait! :)
     
  20. TNO_sec

    TNO_sec Registered Member

    Joined:
    Sep 26, 2010
    Posts:
    47
    I'll admit it, I did not read all 310 pages in this thread prior to posting, so perhaps my questions have already been covered. Feel free to direct me in the right direction if that is easier than to repeat previous replies.

    I notice that the PC is scanned at the first Windows boot after the installation of VoodooShield, but some files still seem to be unknown and cause a popup once they try to execute. So it does not seem like everything on the PC at the time of installing VoodooShield is automatically trusted and allowed to execute. So what exactly does this initial scan do?

    Also, what sort of whitelisting is active with default settings? Are certain windows folders whitelisted by default? Or certain known files?
     
  21. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Me either ;).
     
  22. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Hi, VS actually does not do an initial scan when building the initial whitelist, although we plan to implement this soon if we can get approval.

    VS builds the whitelist by taking a snapshot of the running processes... the whole idea is to have the smallest attack surface possible. Basically, anything that was running before a web app is launched is allowed, but while a web app is running, new non-whitelisted processes are blocked.

    Really, the best thing to do is to put VS in Scan and Allow for a couple of days, then either Smart or Always ON mode. We have been starting VS in Smart Mode after installation, but will probably change this to Scan and Allow.

    Yes, a handful of specific Windows folders are automatically allowed, but you can change this in VoodooShield Settings. We believe this is perfectly safe because malware coming from a web app will start in user land, which is always protected by VS, even when VS is in Smart / OFF mode.

    Please let me know if this answers everything for you! If you need a free Pro license, shoot me an email at support@voodooshield.com and I will set that up for you. Thank you!
     
  23. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
  24. TNO_sec

    TNO_sec Registered Member

    Joined:
    Sep 26, 2010
    Posts:
    47
    Okay, so everything in certain Windows folders are allowed by default. That looks to me like a (probably reasonable) compromise between security and ease of use. But you make it sound like this is actually not an issue at all. Perhaps you could elaborate on that? Or point me to a previous discussion about it? I mean, if for instance a vulnerable browser gets exploited and the payload is downloaded into one of the Windows folders that are not monitored by VoodooShield, wouldn't it be able to execute from that location?

    Also, I'm unsure how WoodooShield can provide protection "even when VS is in Smart / OFF mode". Can you explain please?

    Thanks so much for the Pro license offer, much appreciated. Your support just got an email. ;-)
     
  25. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    9,369
    Location:
    Among the gum trees
    Cool! :cool:
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.