Zemana Anti-Logger

Discussion in 'other anti-malware software' started by Mahmoud01, Apr 19, 2014.

Thread Status:
Not open for further replies.
  1. Mahmoud01

    Mahmoud01 Registered Member

    Joined:
    Apr 19, 2014
    Posts:
    5
    Location:
    Jo
    Hello guys

    I noticed Zemana anti-logger sends some information to the company .

    So , I would to ask , is it sends Malware (which detected) to the company ?

    http://im87.gulfup.com/baZ4mT.png
     
  2. FOXP2

    FOXP2 Guest

    Zemana Anti-Logger's (not Free) Intelliguard Cloud technology will submit a detection for real-time Virus Total analysis and present its findings to the user. Detections are parsed against a local database (threats.zdb) updated by Zemana several times a day.

    Cheers.
     
  3. Mahmoud01

    Mahmoud01 Registered Member

    Joined:
    Apr 19, 2014
    Posts:
    5
    Location:
    Jo
    So , You are telling me , Any private program , I programmed it , Has been uploaded to virus total o_O?? :confused:
     
  4. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,917
    Location:
    U.S.A.
  5. FOXP2

    FOXP2 Guest

    Only if you're programming malware. :eek:

    Begin Soapbox- I think, and can stand to be corrected, that HitMan Pro is the only app that will upload an entire file it determines to be suspect. A while back I watched as it sent out a self-extracting archive I use to contain several other self-extracting archives. The root exe is Serpent 256 encrypted and the contained exes with AES 256, each with a unique 64 character password. That along with HMP's compressed SSL connection allayed my concerns but until HMP allows for path/file exclusions I'll never run it on any of my systems again. Or buy it. -End Soapbox

    The links JRViejo posted up should answer all you questions. Note also their policy is not much different from the policies of just about every other app written since the beginning of time.

    IntelliGuard can be disabled in ZAL-P's Settings.

    Of course you realize just about every infosec app these days has some kind of cloud submission component. You do, don't you?

    And that's about all I can contribute to this thread. Cheers.
     
    Last edited by a moderator: Apr 19, 2014
  6. Mahmoud01

    Mahmoud01 Registered Member

    Joined:
    Apr 19, 2014
    Posts:
    5
    Location:
    Jo
    Thank you so much FOXB2 , JRViejo

    I am not interested in programming malware too much. But i installed zemana to test it , i bypassed that program , and i want to know if the file sent to them ;) :argh: , that's all , and thank you for help ...
     
    Last edited: Apr 20, 2014
  7. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    What the hell, can you tell me some more about this bypass, how did you do it? It looks like quite a serious flaw.

    Did your app send input (windows message) to the Zemana main interface? Could you perhaps also test SpyShelter and EXE Radar Pro? :)
     
    Last edited: Apr 20, 2014
  8. Mahmoud01

    Mahmoud01 Registered Member

    Joined:
    Apr 19, 2014
    Posts:
    5
    Location:
    Jo
    http://im89.gulfup.com/EqVVWf.gif

    SpyShelter and EXE Radar Pro , I will see :)
     
  9. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    I've posted before about ZAL phoning etc home. Even when the Cloud & Updates are disabled, it still tries to. Why, i've never received a suitable explanation ?

    Due to the fact that my FW is set up to ALWAYS prompt me for Everything that wants out, i discovered the above several years ago when i first installed it. Later versions are no different either. I don't think it is "probably" doing anything dodgy, but who knows ?

    Apart from that, it's an Excellent App & i continue to use it, & get alerted to potentially unwanted etc stuff from time to time.
     
  10. john martin

    john martin Registered Member

    Joined:
    Apr 14, 2014
    Posts:
    28
    Nice gif Mahmoud01 :)
     
  11. Mahmoud01

    Mahmoud01 Registered Member

    Joined:
    Apr 19, 2014
    Posts:
    5
    Location:
    Jo
    Thanks , I'm working on SpyShelter :)
     
  12. john martin

    john martin Registered Member

    Joined:
    Apr 14, 2014
    Posts:
    28
    You able to find any weaknesses in Comodo? :) Just wondering :)
     
  13. micrei

    micrei Registered Member

    Joined:
    May 3, 2009
    Posts:
    12
    @Mahmoud01: Any news about bypassing SpyShelter?
     
  14. TomAZ

    TomAZ Registered Member

    Joined:
    Feb 27, 2010
    Posts:
    1,002
    Location:
    USA
    Anyone know if Zemana's Anti-Logger commercial license for just one (1) PC - or for multiples?
     
  15. puff-m-d

    puff-m-d Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    4,449
    Location:
    North Carolina, USA
    Hello TomAZ,

    According to their website:
     
  16. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    4,948
    Location:
    USA
  17. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    3,875
    All I know, is I bought multiple licenses through Bits du Jour, and I had to e-mail Zemana and explain that I only had one computer. They transferred the licenses into one extended license, i.e 3 yrs before expiry, instead of 3 x 1 yr licenses. It was a commercial license.
     
  18. iceman25

    iceman25 Registered Member

    Joined:
    Aug 9, 2013
    Posts:
    32
    Zemana's Anti-Logger protect you from screen logger ?
    in windows 7/8 64x ?
     
  19. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    2,867
    Location:
    Australia
  20. controler

    controler Guest

    I use to use anti-keylogger some years ago and I see on their site towards bottom, on a video in order to show how their privacy keyboard works they used security tests made by Zemana LTD
    Anti-keylogger was one of the first of its kind that used the sales pitch , no SIGS needed just like this program.
    I got a lifetime LIC for it way back when for finding an e-mail logging bug. But I can't find the lic anymore.

    http://www.anti-keyloggers.com/
     
  21. FOXP2

    FOXP2 Guest

    Beginning with v1.9.3.156, Zemana introduced IntelliGuard.
    -http://www.zemana.com/product/antilogger/modules/intelliguard.aspx-
    Detected threats are analyzed via Virus Total in real-time.
    Since v1.9.3.177, a known-threat database (threats.zdb) is stored locally and is parsed prior accessing the VT cloud.
    threats.zdb is updated several times a day.
    The IntelliGuard module can be disabled in Settings.

    For more info on Virus Total, their sales pitch:
    -https://www.virustotal.com/en/faq/-

    So "no sigs needed" is no longer accurate for ZAL depending on the user's settings as, uh... needed. :)

    Cheers.
     
  22. controler

    controler Guest

    404 - The requested page could not be found
     
  23. gerardwil

    gerardwil Registered Member

    Joined:
    Jan 17, 2004
    Posts:
    4,748
    Location:
    The Netherlands
  24. controler

    controler Guest

    I just installed the trial and got a blue screen. here is what whocrached my PC says. So not sure if it is this program or radar.

    Crash Dump Analysis Crash dump directory: C:\Windows\Minidump
    Crash dumps are enabled on your computer.
    On Sun 6/8/2014 12:40:36 PM GMT your computer crashed
    crash dump file: C:\Windows\Minidump\060814-16281-01.dmp
    This was probably caused by the following module: keycrypt64.sys (KeyCrypt64+0x7070)
    Bugcheck code: 0xBE (0xFFFFF8006A5B9070, 0x11A11F021, 0xFFFFD00020769450, 0xB)
    Error: ATTEMPTED_WRITE_TO_READONLY_MEMORY
    file path: C:\Windows\system32\drivers\keycrypt64.sys
    Bug check description: This is issued if a driver attempts to write to a read-only memory segment.
    This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: keycrypt64.sys .
    Google query: keycrypt64.sys ATTEMPTED_WRITE_TO_READONLY_MEMORY

    On Sun 6/8/2014 12:40:36 PM GMT your computer crashed
    crash dump file: C:\Windows\memory.dmp
    This was probably caused by the following module: drvradar.sys (drvradar+0x1123)
    Bugcheck code: 0xBE (0xFFFFF8006A5B9070, 0x11A11F021, 0xFFFFD00020769450, 0xB)
    Error: ATTEMPTED_WRITE_TO_READONLY_MEMORY
    file path: C:\Windows\system32\drivers\drvradar.sys
    product: NoVirusThanks Driver Radar Pro X64 Kernel-Mode Driver
    company: NoVirusThanks Company Srl
    description: NoVirusThanks Driver Radar Pro X64 Kernel-Mode Driver
    Bug check description: This is issued if a driver attempts to write to a read-only memory segment.
    This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: drvradar.sys (NoVirusThanks Driver Radar Pro X64 Kernel-Mode Driver, NoVirusThanks Company Srl).
    Google query: NoVirusThanks Company Srl ATTEMPTED_WRITE_TO_READONLY_MEMORY
     
Loading...
Thread Status:
Not open for further replies.