Compare Protection Best Anti-Executable in your opinion? - AppGuard, NVT ERP or VoodooShield ?

Discussion in 'Compare Apps' started by hjlbx, Jul 3, 2015.

?

Which Is Best Anti-Executable: AppGuard, NVT ERP or VooDooShield ?

  1. Blue Ridge AppGuard

    40 vote(s)
    26.0%
  2. NoVirusThanks Exe Radar Pro

    25 vote(s)
    16.2%
  3. VooDooShield

    89 vote(s)
    57.8%
  1. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    I hear you loud and clear. These programs take some patience, sometimes more than I have.
    The real paranoids will kill me for saying this, but I deleted the two instances of rundll32.exe from the vulnerable processes list of NVT ERP, because otherwise, it makes me so frustrated that I end up uninstalling the app altogether. Better to have 98% protection than 0% protection...
     
    mlnevese and Trooper like this.
  2. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    LOL. You have got to be kidding. All you have to do is whitelist the rundll32 command lines. Andreas' rundll32 command line library covers the most commonly encountered rundll32 command lines. It is really easy to whitelist the command lines. If there are repeating ones because some part of the argument is randomly generated every time it executes, then you just create a generic command line using the * wildcard in place of the randomly generated portion and whitelist it.
     
    Umbra likes this.
  3. Trooper

    Trooper Level 6

    Aug 28, 2015
    265
    679
    USA
    Windows 10
    ESET
    That is how I feel every time I have tried VS. Anytime I run that software it makes my machine crawl. Never had the time or patience to learn it, even though everyone says it is set and forget. For that reason alone, I refuse to use it. Free or not.
     
  4. Aktiffiso

    Aktiffiso Level 6

    Aug 24, 2013
    267
    510
    I am thinking seriously, I am a maniac consumist. ¿NVT will be free?.
     
  5. pablozi

    pablozi Level 22
    Trusted

    Jun 14, 2011
    1,155
    4,924
    Null Island
    Windows 10
    Default-Deny
    That's interesting as I have never had any performance issues while using VS.
    Have you tried report it to the developer?
     
    Trooper likes this.
  6. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    I do lots of * inserting into command lines, and every time, I am sure that now I got it right. Until something updates, and proves me wrong... It is usually my HP inkjet printer that manages to get around all my asterisks. The printer driver also drives VoodooShield crazy, for the same reason.
     
  7. Sunshine-boy

    Sunshine-boy Level 22

    Apr 1, 2017
    1,179
    5,210
    IRAN
    Windows 10
    ESET
    REHIPS in Expert mode can work as an anti exe .pls, add it to poll thanks.
     
    shmu26 likes this.
  8. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    This poll is very old. Time for a new poll.
     
    Sunshine-boy likes this.
  9. Sunshine-boy

    Sunshine-boy Level 22

    Apr 1, 2017
    1,179
    5,210
    IRAN
    Windows 10
    ESET
    Yes, you are right: D I didn't notice when poll created
     
    shmu26 likes this.
  10. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    Actually, it works as a very effective anti exe even in standard mode, although it will automatically whitelist certain processes that it considers to be safe.
    The standard mode of ReHIPS is stricter than the default settings of NVT ERP.
     
    Sunshine-boy likes this.
  11. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    Post command lines here or on Wilders. People will point out where to put *.

    If the * wildcard isn't working as expected, you could have found bug.

    That is why when it comes to these sort of little nagging issues it is best to reach out to the community and ask. If others see the same thing happening, then it is probably a bug.
     
    shmu26 likes this.
  12. Trooper

    Trooper Level 6

    Aug 28, 2015
    265
    679
    USA
    Windows 10
    ESET
    Recently? no. Tried it when it first came out and it was like this. I think early on I reported it to Dan. Tried it again a few months ago and same deal, right out of the box. Did not report it to him. I figure since Voodoo is in the name it had something to do with it lol.

    Anyway, since then, do not care to install it ever again.
     
  13. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    Right. Everyone's system is different. The user should always choose the app that works for him, not the one that works for the other guy.
     
    pablozi, Sunshine-boy and Trooper like this.
  14. askalan

    askalan Level 9
    AV Tester

    Jul 27, 2017
    425
    2,752
    Germany
    Linux
    Doctor Web
    I voted for NoVirusThanks EXE Radar Pro because you can reach a 100% protection ratio by whitelisting aplications.
     
  15. Trooper

    Trooper Level 6

    Aug 28, 2015
    265
    679
    USA
    Windows 10
    ESET
    Exactly. Not sure why I have problems. My machine is not from 2005 but it is not top of the line either. I run W10 x64 Ent CU. Nothing installed outside of Google Chrome and MS Office 2016.
     
    Sunshine-boy likes this.
  16. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    100% protection is beyond reach, in today's age of advanced threats.
    I would like to agree with you, but the experts say otherwise. Check out some of the discussion on this recent thread: Ten Process Injection Techniques:
     
    Trooper, Sunshine-boy and askalan like this.
  17. askalan

    askalan Level 9
    AV Tester

    Jul 27, 2017
    425
    2,752
    Germany
    Linux
    Doctor Web
    Sorry - NoVirusThanks EXE Radar Pro could score 100% by whitelisting trustful applications IF the developers would continue to develope it.
     
  18. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    Block by default prevents all the attacks. If it doesn't launch, then it doesn't do anything to the system.

    Block by default is not a complete system protection model; it is the foundation.

    If you are paranoid and want to protect against things that realistically have a tiny possibility of happening, then you can pile softs on top of each other like most people do here. And once you pile soft on top of soft, you still do not have 100 % protection.

    90 % or better of the system protection is supplied by the people using the system.
     
    shmu26, tonibalas, Trooper and 2 others like this.
  19. askalan

    askalan Level 9
    AV Tester

    Jul 27, 2017
    425
    2,752
    Germany
    Linux
    Doctor Web
    I mean that! Thanks for the explanation!
     
    shmu26 and Sunshine-boy like this.
  20. Umbra

    Umbra From Emsisoft
    Developer

    May 16, 2011
    17,165
    29,659
    Community manager
    Vietnam & France
    Windows 10
    Emsisoft
    no way i will do what you did , i rather click 10 prompts than deleting the rule...if i can't stand the issue, i just use something else; no way i reduce a soft protction, especially rundll32.exe which is the top vulnerable process ever...

    no soft are 100% secure, and anti-exe alone won't even give your system even 50% protection, why? because blocking exe is not enough anymore.
     
    pablozi, Trooper and Sunshine-boy like this.
Loading...
Similar Threads Forum Date
Help Me Decide Anti-Executable vs. Behavior Blocker vs. HIPS vs. Anti-Exploit: BEST AGAINST 0-DAY Threats/Exploits Compare Apps Archive Apr 3, 2015
Help Me Decide Best Anti-Executable Compare Apps Archive Jul 29, 2013
Poll Best detection rate for Android Antivirus? General Security Discussions Nov 30, 2017