VoodooShield ?

Discussion in 'other anti-malware software' started by CloneRanger, Dec 7, 2011.

  1. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,555
    Location:
    South Wales, UK
    Shalom Vlad

    Very much looking forward to v3 and glad to know that you will be around to help Dan out with all our questions, as we have been wearing him out recently.

    Regards, Baldrick
     
  2. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,358
    Location:
    Among the gum trees
    G'day Vladimir and welcome to Wilders'.

    I'll try v3.0 beta when it's released.

    Cheers,
    Dave
     
  3. hjlbx

    hjlbx Guest

    @VoodooShield

    I have rather high hopes for VS-KMD once the kinks get all sorted out. In other words, I hope the next stable release feature set gets locked-in\finalized and we can focus more on refining and polishing it.

    HJLBX
     
  4. ProTruckDriver

    ProTruckDriver Registered Member

    Joined:
    Sep 18, 2008
    Posts:
    1,223
    Location:
    Stand Up For Your Country
    Last edited: Sep 17, 2015
  5. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,358
    Location:
    Among the gum trees
    Good eye there, PTD. :)
     
  6. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Welcome Vlad!!!
     
  7. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,358
    Location:
    Among the gum trees
    https://msdn.microsoft.com/en-us/library/windows/hardware/ff554836(v=vs.85).aspx

    It took some searching but now I know what "KMD" is. :p
     
  8. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
    Can't wait to try out V3.0 beta. I had to take off the current beta and have been trying out SecureAplus with WSA beta. I'm sure V3.0 will work famously with WSA beta as it always does.
     
  9. rm22

    rm22 Registered Member

    Joined:
    Oct 26, 2014
    Posts:
    355
    Location:
    Canada
  10. porkpiehat

    porkpiehat Registered Member

    Joined:
    Jul 18, 2015
    Posts:
    31
    Hi, I'm running (free) version 2.75, and after checking my logfile, I noticed that I have whitelisted a virus by accident (god knows how I managed that).. is there any way of removing that file from the whitelist, or do I have to purchase VoodooShield to be able to do this? other than that, I'm really enjoying using VS....
     
    Last edited: Sep 18, 2015
  11. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    How funny! I always wanted to have a VM ready with VS on it, completely locked down and with a password, just to see what would happen. I mean, they would not be able to open mmc to show me all of the "errors" in the event viewer, start the task manager, or install new software. But unfortunately I did not have a VM ready at the time ;).
     
  12. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Yeah, they are pretty funny!
     
  13. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    The 4 new web apps were added to VS 3.0, which will be ready soon. I am not sure why the desktop shortcut is not working, that is odd. Did you uninstall VS and reinstall, or did you install over the top of the old version? It should have worked either way, but I would be curious to know so I can test it. Thank you!
     
  14. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, thank you for letting me know! I usually use this mode for most of my local clients, it seems to work pretty well for them.
     
  15. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you for the help ghodgson, Gillor, Krusty13, paulderdash, Baldrick, WildByDesign and Cutting_Edgetech!
     
    Last edited: Sep 19, 2015
  16. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you, I appreciate that! Yeah, that is pretty much how the anti-exploit feature works, it is pretty simple but should be quite effective. EMET and MBAE are much more sophisticated when it comes to stopping exploits, and both work with and compliment VS nicely. They both specifically defend against exploits by blocking the 24 or so techniques that hackers use to exploit vulnerable software, whereas VS simply blocks the payload that are spawned through exploits, which should work great, but it never hurts to add an additional layer of protection, especially when they work that well with VS.

    I agree, and I also need to complete the owners manual, which I have been working on. The problem is that VS is extremely difficult to explain how it works in words, but ironically it is simple to use. Now that Vlad is working on the development, I should have more time to finally complete an owners manual ;).
     
  17. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Baldrick explained it really well, but I would like to add one thing. When VS blocks and item, it detects whether the blocked item is an installer or just a stand alone executable. If the item is detected as an installer, then VS will show the Install button, otherwise, it shows the Allow button. This feature is dependent on definitions (signatures) of the various installers, so it is not perfect... like if there is an installer definition that is missing, then VS will show the Allow button. And really the only difference between the Install and Allow button is that the Install button will turn VS OFF during the installation. I hope this makes sense, if not, please let me know!
     
  18. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Most of the command lines that are essential to Windows and Office are hardwired into VS and are automatically allowed. A while back I built a massive list of built in command lines by turning VS ON and played around with the various Windows features to see what would be blocked. We could list them in the command line settings tab, but there would just be too many and it would be confusing.

    But for example, here is a windows command line that VS should block: Rundll32 Shell32.dll,SHHelpShortcuts_RunDLL Connect

    I hope this makes sense, if not, please let me know. Thank you!
     
  19. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    It sounds like everything is working properly, if not, please let us know!
     
  20. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Thank you TH!
     
  21. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
  22. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Interesting, thank you for letting me know!

    This comment cracked me up... "All the Gizmo recommended anti-virus programs should prevent rogue programs from hijacking your computer so this application is redundant in that respect. The free version of Voodoo doesn't have adjustable user settings but includes those nag screens we all love so much."

    Hopefully someday everyone will understand why whitelisting is vital. It is simple... the computer should be locked while a web app is running.

    Hehehe, nag screens? VS only shows a nag screen on Fridays, and ONLY if it actually blocked a threat in the past.

    It always cracks me up when people post comments without actually trying the software ;).
     
  23. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Me too, and it is looking good ;)
     
  24. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    How funny, I did not notice that, it must be good luck!
     
  25. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Cool, it should be ready very soon, we will let you know!
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.