VoodooShield/Cyberlock

What a great day

 

Hi Dan

Happy holidays / Merry Christmas to you too...and wishes for a Peaceful & Prosperous New Year too.

Do you ever take time off...well, I hope that on this Cristmas Day you will at the very least hang up the overalls, put your feedt up and relax/be merry?

All installed here & VS 3.49 looks to be running fine here, but will hopefully have some time this week to do some serious testing. WIll let you know if anything appears.

Well, well done and here is looking to the imminent release of VS 3.5 and of VAi v2.0, and here's hoping that 2017 turns out to be the year that VS/VAi goes 'global'.

Wishing you a cool Yule.

Regards, Baldrick

 

VS 3.49
logitech updater triggered a scan, but the results never appeared. It just kept whirling.

 

I still have high CPU with v3.49p beta... See my earlier posts, #13339, #13340 and #13340

 

Not seeing that here...VS handled updater worked fine and quickly.

 

Ah, well...I am seeing just 15Mb of CPU spread across the two VS entries in the Taskk Manager.

 

Version 349 beta installed quietly over the previous, no problems so far.

You're welcome, Dr. VoodooShield!

Happy holidays, y'all!

 

Thanks Dan installing the new version via clean reinstall!

Daniel

 

Thank you guys... I will catch up soon, but real quick…

@Tarnak, thank you, yeah, I am seeing a small memory leak as well, and I think it is when a file that is not in the VoodooAi database is dragged and dropped to VS… it will be really easy to fix. There might be a few small memory leaks for the next couple of days (until the next release), but they will be fixed for the next version in a couple of days. This is completely normal since so much code was added and changed.

@shmu26, thank you for letting me know… do you know the path of the file, and possibly the parent process path? What Logitech software are you using? I will download it and see what’s up. This is not surprising either, and will be extremely easy to fix as well.

 

Well who convinced you? I talked blisters on my tongue trying to convince you in our skype talks. Now all of a sudden this Christmas present

 

Really?
I think this product (standalone product) will be my ransomware protector. Could be?

 

I have a logitech MX Master wireless mouse, the updater path: C:\ProgramData\Logishrd\LogiOptions\Software\Current\updater.exe.
As for parent process, unfortunately I am not in a VS snapshot right now...
I am not sure if this is quite the right command line, but I found this in ReHIPS trusted command lines:

 

Hi Peter,

Thanks for the info, gonna try it...

 

I've just installed at this very moment VS and it's on hold waiting for my input: Autopilot Mode or Application Whitelisting Mode.

Now I am interested in its AI module to stop ransomware than any other form of malware. Besides, AppGuard and NVT ERP are watching right now...

Please, any advice?

 

is there an advantage of using autopilot mode over always on and paranoid?

thanks

 

The advantage is, you may get fewer prompts because unknown files which are determined to be clean, are auto-allowed and whitelisted.
This can be good if you play games and don't want to be disturbed from prompts.

The disadvantage is, you "lose control" over execution of your files.
If you always want to be alerted and to have more control about the execution of unknown files, better choose a different mode.

 

Thanks, switching to Autopilot now...

 

Spare me the hard way of learning.

Could someone tell what to consider, whitelist or set anything up on my scenario, to prevent any conflict? Please.
1. Windows 8.1 x64
2. Sandboxie
3. AppGuard (Locked Down Mode)
4. NVT ERP (Alert Mode)
5. MBAE
6. WFC
7. Shadow Defender (On-demand, enter shadow mode manually after logon and update/change anything)
8. VoodooShield (Autopilot Mode), just installed two hours ago for the very first time.

 

Thank you once again Peter.

 

Can I use latest VS with CIS 10?

 

Hehehe, of course you did Kees . While I was typing that, I kept laughing and wondering what you were going to say .

Now we just need to figure out if there is enough of a difference between VS on AutoPilot (as it currently is), and the new "Silent" stand along version .

The thing is... Ai is never going to be perfect, and I always complain that many companies are trying to find the holy grail of computer security, and in the end find that one does not exist, so they end up locking the computer with application whitelisting anyway . Basically, will the prolong us from doing what we should have been doing all along (locking our computers when they are at risk)?

I certainly do not want to be hypocritical... that is the one trait that annoys me to no end!

But yes, thank you for the suggestion of having a stand alone Ai version, I appreciate that! Please let me know what you think about my thoughts above, and if they are a concern, thank you guys!

 

You should be able too... I am not that familiar with CIS, but it should be fine.

BTW, thank you Mister X and Peter for taking VS for a test drive!

If anyone needs a license, please let me know!