Crystal Security 3.5

Status
Not open for further replies.
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
I found something weird now
Crystal security seems to stop working since I sent you the logs
I already cleared everything from blacklist, overview and whitelist -> everything was 0
I tried to execute "never-been-executed" files and some safe files which have a few detections from virustotal. However, after executing countless of files, CS still showed 0, 0 & 0
the only way to make it work it to do a right-click analysis -> CS started whitelisting some of them. I also tried to exit CS portable and restart it but still didn't work

during zipping the folder "3.5" in appdata crystal security detected itself :rolleyes: and this is the only popup I have got since I reported the last problem
QtpUCOJ.png


this is the "3.5" folder link
http://www.fileconvoy.com/gf.php?id...9178164224138fe20147abbe4a95482fe1259d1997888
 
  • Like
Reactions: Xtwillight, Der.Reisende, DardiM and 6 others
Kardo Kristal

Kardo Kristal

From Crystal Security
Thread author
Verified
Top Poster
Developer
Well-known
Jul 12, 2014
1,143
Hi @Evjl's Rain,

Thank you for the feedback. :)
Evjl's Rain said:
I found something weird now
Crystal security seems to stop working since I sent you the logs
I already cleared everything from blacklist, overview and whitelist -> everything was 0
I tried to execute "never-been-executed" files and some safe files which have a few detections from virustotal. However, after executing countless of files, CS still showed 0, 0 & 0
the only way to make it work it to do a right-click analysis -> CS started whitelisting some of them. I also tried to exit CS portable and restart it but still didn't work
Click to expand...

Interesting. After restart it should resolve the issue. No problems here.

objects.png

Evjl's Rain said:
during zipping the folder "3.5" in appdata crystal security detected itself and this is the only popup I have got since I reported the last problem
Click to expand...

It is normal because you generated a new ZIP file which is unknown to cloud.
Crystal Security analyzes own (e.g. Shell integration file when you enable Shell integration via Settings).
Evjl's Rain said:
Crystal had a complete crash this morning
Click to expand...

It is a known bug (reported by several users). I'll try to re-produce it. Hopefully it will be fixed in the newer version.

Regards,
Kardo
 
  • Like
Reactions: Xtwillight, Der.Reisende, King Alpha and 6 others
Kardo Kristal

Kardo Kristal

From Crystal Security
Thread author
Verified
Top Poster
Developer
Well-known
Jul 12, 2014
1,143
Hi @ExoGen CyberSecurity,

Thank you for the feedback.

ExoGen CyberSecurity said:
If I use 7Zip and I open eicar_com.zip and I select open archive and I execute Eicar.com from inside the archive will auto-quarantine the 7Zip.exe
Click to expand...

I tried to execute Eicar.com the same way but Windows displayed the following error:

eicar_test_2.png


Please provide the following information:
  1. On-access is enabled or disabled under Settings?
  2. Which version of Windows?
ExoGen CyberSecurity said:
Also, I love the new logo and the UI.
Click to expand...

Thanks! Glad to hear that. :)

Regards,
Kardo
 
Last edited by a moderator:
  • Like
Reactions: Xtwillight, King Alpha, DardiM and 3 others
D

Deleted member 2913

Yash Khan said:
Kardo,

Whats is VT policy in using it?

Can you use select AVs only for protection & list those select AVs in the GUI for the users to select/unselect for protection Or VT policy doesn't allow this?
Click to expand...

Yash Khan said:
Kardo,

Any update on the above?

You had replied that you will inquire VT for the info.
Click to expand...

Kardo Kristal said:
Hi @yesnoo,

Yes. I sent an e-mail to VirusTotal staff (Emiliano). Currently waiting for the reply.

I will let you know when I get an answer from VirusTotal. :)

Regards,
Kardo
Click to expand...
Kardo,

VT staff haven't replied yet?

Thank You
 
  • Like
Reactions: Xtwillight, frogboy, King Alpha and 3 others
Kardo Kristal

Kardo Kristal

From Crystal Security
Thread author
Verified
Top Poster
Developer
Well-known
Jul 12, 2014
1,143
ExoGen CyberSecurity said:
I don't get that anymore
Click to expand...

@ExoGen CyberSecurity,

Thanks for the reply.

I suggest to keep on-access currently off to avoid issues.

You are still protected because Crystal Security analyzes created, modified and launched files. :)
Yash Khan said:
VT staff haven't replied yet?
Click to expand...

Hi @Yash Khan,

Thanks for the interest. :)

Still no reply from VirusTotal. Maybe they are too busy to respond. I will try their support form.
nclr11111 said:
CS crashed during install of Avira.
Log sent to info@crystalsecurity.eu
Click to expand...

Hi @nclr11111,

Thanks for the bug report.

It is a known bug (same bug reported by @Evjl's Rain).

Can you please also send your Settings.xml file?

Thanks in advance. :)

Regards,
Kardo
 
  • Like
Reactions: Xtwillight, Wave, Deleted member 2913 and 2 others
nclr11111

nclr11111

Level 6
Verified
Well-known
Feb 25, 2011
277
Kardo Kristal said:
@ExoGen CyberSecurity,

Thanks for the reply.

I suggest to keep on-access currently off to avoid issues.

You are still protected because Crystal Security analyzes created, modified and launched files. :)


Hi @Yash Khan,

Thanks for the interest. :)

Still no reply from VirusTotal. Maybe they are too busy to respond. I will try their support form.


Hi @nclr11111,

Thanks for the bug report.

It is a known bug (same bug reported by @Evjl's Rain).

Can you please also send your Settings.xml file?

Thanks in advance. :)

Regards,
Kardo
Click to expand...

DONE!
 
  • Like
Reactions: Xtwillight and Kardo Kristal
Kardo Kristal

Kardo Kristal

From Crystal Security
Thread author
Verified
Top Poster
Developer
Well-known
Jul 12, 2014
1,143
SHvFl said:
@Kardo Kristal I have accessed files on and didn't notice any issues but is there a benefit from using it and if yes what? If not i will disable just in case.
Click to expand...

Hi @SHvFl,

Thanks for the feedback.

Glad to hear that it works well for you. :)

Benefit of on-access feature is increase in security because then it will pick-up all the files via Windows Explorer. Downside of this feature is higher CPU and memory (RAM) usage. In some cases it will overload Cloud engine too (more files in queue).

It seems that when on-access is enabled then it will cause issues on some systems. Personally I don't enable on-access feature because other analysis methods protects very well.

Your requested feature is still in the roadmap but probably it will be added after next release.

I am currently focused on bug fixes in the next version (because of the recent bug reports by many users).

Regards,
Kardo
 
  • Like
Reactions: Xtwillight, Wave, silversurfer and 1 other person
SHvFl

SHvFl

Level 35
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Nov 19, 2014
2,350
Kardo Kristal said:
Hi @SHvFl,

Thanks for the feedback.

Glad to hear that it works well for you. :)

Benefit of on-access feature is increase in security because then it will pick-up all the files via Windows Explorer. Downside of this feature is higher CPU and memory (RAM) usage. In some cases it will overload Cloud engine too (more files in queue).

It seems that when on-access is enabled then it will cause issues on some systems. Personally I don't enable on-access feature because other analysis methods protects very well.

Your requested feature is still in the roadmap but probably it will be added after next release.

I am currently focused on bug fixes in the next version (because of the recent bug reports by many users).

Regards,
Kardo
Click to expand...
Sure makes sense. Btw by cloud engine you mean yours or VT? I assume and hope it's VT because i would hate to create problems for your servers. I noticed the small increase in cpu usage(2-3% i believe) but no real change in ram but now that you mention it will test a bit without it and see.
No worries about the feature, i disabled VT for now and i will survive without it until the feature is added. No real worries here, VT offers small value to me.
 
  • Like
Reactions: DardiM, Xtwillight, Logethica and 1 other person
Kardo Kristal

Kardo Kristal

From Crystal Security
Thread author
Verified
Top Poster
Developer
Well-known
Jul 12, 2014
1,143
  • Like
Reactions: Wave, Sr. Normal 2.0, _CyberGhosT_ and 11 others
Status
Not open for further replies.

Similar threads

M
    • Like
    • +Reputation
New Update NEW Avast version 24.4
Replies
1
Views
515
Avast
Bot
Bot
oldschool
    • Like
    • +Reputation
    • Thanks
New Update Enhanced Phishing Protection in Microsoft Defender SmartScreen
Replies
11
Views
901
Windows 11
simmerskool
simmerskool
Gandalf_The_Grey
Security News QNAP adds NAS ransomware protection to latest QTS version
Replies
0
Views
1,523
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top