VoodooShield ?

Discussion in 'other anti-malware software' started by CloneRanger, Dec 7, 2011.

  1. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,172
    Location:
    Among the gum trees
    http://www.voodooshield.com/Download/InstallVoodooShield471.exe
    https://calendarofupdates.org/index...gmnd98o7hcf55qakr33&topic=770.msg9861#msg9861
     
  2. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,172
    Location:
    Among the gum trees
    I can't get to the COU site today. Is their server down?
     
  3. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    3,682
    Location:
    Under a bushel ...
    Connection Problems
    Sorry, SMF was unable to connect to the database. This may be caused by the server being busy. Please try again later.
     
  4. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,172
    Location:
    Among the gum trees
    Thanks, Paul. Yeah, that's what I've been getting all day.
     
  5. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    12,756
    Location:
    Ontario, Canada
    Yes it's down and I'm looking into it.
     
  6. Willpower

    Willpower Registered Member

    Joined:
    Jan 3, 2014
    Posts:
    30
    Location:
    Sunny Okanagan, BC Canada
    COU Back up now.
     
  7. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    12,756
    Location:
    Ontario, Canada
    Yes but we don't know for how long? :(
     
  8. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    220
    I may be wrong, but it seems anti-executables have a weakness. If a person is signed in as a admin, then the attacker can write her payload anywhere, like \windows. Since anti-executables generally allow programs running from that folder, security will be bypassed. Same with SRP.
     
  9. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    164
    Location:
    Bulgaria
    I think there are a few bugs in the latest build (4.71) which I didn't encounter in 4.68. I noticed that the program switched by itself from the Autopilot mode to Training mode once and today the program asked me to turn the protection on:

    i.imgur.com/wRiG8Wo.png

    Any ideas? OS is Windows 8.1 x64.
     
  10. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,172
    Location:
    Among the gum trees
    http://www.voodooshield.com/Download/InstallVoodooShield472.exe
     
  11. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,801
    Location:
    Kolkata, India
    I received same warning twice in last few weeks but was lazy to report.

    I am on Win 10 Pro x64 and using v4.68.

    Surprisingly, Voodooshield is still showing me that I am using the latest version.
    2019-01-31_005305.jpg

    Update: Official page still shows v4.68 as the latest build.
    https://www.voodooshield.com/#download
     
  12. Floyd 57

    Floyd 57 Registered Member

    Joined:
    Mar 17, 2017
    Posts:
    548
    Location:
    Europe
    If by attacker you mean a malicious executable, that will first have to be allowed to run. And even when windows folder is whitelisted, the file will first have to be written to the windows folder, which (if configured properly) requires admin permissions (administrators), limited users (users, interactive, authenticated users, everyone, all application packages) can't write in windows folder (with a few subfolders being the exception, which should be blacklisted if windows folder is whitelisted by default). And even if you're running as admin, if an executable wants to run with admin permissions it will prompt for UAC (if configured properly, again). The exception is processes which are started by a service, or ones started by task scheduler, they may run as admin or system without prompting for UAC, but the malicious process 1st has to get there
     
  13. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,172
    Location:
    Among the gum trees
    Anything later is still beta.
     
  14. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    220
    Hi Floyd 57,

    If the hacker attacks a Windows system program which was running under the System account, there would be no restrictions for her; she could write the file anywhere. You said that. And there are 2 Windows system programs that I know of which runs as admin that connects to the net to MS, to known ip's. So the attacker/hacker can simply spoof the ip and ride her way in. The programs are not listed in the Windows Firewall outbound rules, and most people have outbound set to allow anyways. So I am taking a renewed look at the firewall.
     
    Last edited: Feb 2, 2019
  15. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,891
    Location:
    localhost
    and I would you do that without been noticed by voodooshield? Spoofing an IP is not enough :D
     
  16. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,801
    Location:
    Kolkata, India
    Understood :thumb::thumb:
     
  17. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    220
    I mean the attacker is spoofing the IP and riding her way in to execute an exploit for that Windows executable.
     
  18. polly77

    polly77 Registered Member

    Joined:
    Jan 13, 2014
    Posts:
    45
    I know how good voodooshield is ,any way of tweaking settings to lower ram usage but keep defense still .?thks
     
  19. Freki123

    Freki123 Registered Member

    Joined:
    Jan 20, 2015
    Posts:
    79
    Untitled.jpg @polly77 I'm on VS 4.69 and the ram usage seems pretty low for me so i never thought about any tweaks.
    It's 25,2MB and 12,3MB for me, so both services combined under 40MB.
     
  20. polly77

    polly77 Registered Member

    Joined:
    Jan 13, 2014
    Posts:
    45
    Thks for reply I had it at 60 +megs ram yesterday with 4.72 ,I uninstalled everything and went back to 4.68 and have about 30megs ram now ,all good.
     
  21. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    12,756
    Location:
    Ontario, Canada
    I don't worry about that little amount of RAM as I have 32GB of RAM and it's minor compared to Browsers and other programs these days!

    2019-02-08_18-20-27.png
     
    Last edited: Feb 8, 2019
  22. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    20,900
    VoodooShield v4.72 now available to the public
    https://www.voodooshield.com/#download
     
  23. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    164
    Location:
    Bulgaria
    I had to uninstall it because the message continue to show up from time to time. Will try the next build when available.
     
  24. danielson

    danielson Registered Member

    Joined:
    May 15, 2017
    Posts:
    20
    Location:
    AR
    For whatever reason, I've lost site of VoodooShield until recent loss of usb device with all backups, thus obliging me to start from scratch without MalwareBytes I had acquired non-renewable lifetime license at the time (sad).

    But after looking and installing VoodooShield 4.72 (free option) and VTZilla (VirusTotal extension) for Firefox, I think I've found a pretty solid backup plan against malware.

    Do have one question.
    Can VoodooShield protect against back doors?


    Thanks a bunch for this free version and do hope to contribute a few dimes someday!



    -Daniel
     
  25. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    12,756
    Location:
    Ontario, Canada
    https://calendarofupdates.org/index.php?topic=770.msg10206#msg10206
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.