NoVirusThanks OSArmor

Deleted member 178 · Dec 18, 2018

jrw666 said:
Sorry if it's been discussed before, but it's a long thread....
But do you have to update OSA manually? Mine never updates to the latest version.

Yes manually.

NoVirusThanks · Dec 23, 2018

Here is a new v1.4.2 (pre-release) test3:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build3.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ Fixed: Default settings on Configurator are not handled properly on GUI (present on build 2 only)
+ Improved internal rules to block suspicious process activities
+ Fixed some false positives
+ Minor improvements

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

@ForgottenSeer 58943

That is a normal alert because OSA needs to get details about a process and Norton is alerting about that behavior to protect its own processes.

You should exclude OSArmorDevSvc.exe on Norton product so it will not cause other alerts.

Or you may just ignore the alert (there are no issues if OSA service can't get details like integrity, etc about Norton processes since they are safe).

@128BPM

Should be fixed now.

ForgottenSeer 58943 · Dec 23, 2018

Looking good then.. Nothing else to report.

NoVirusThanks · Dec 24, 2018

Just a quick update:

Here is a new v1.4.2 (pre-release) test4:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build4.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ Fixed: If I move the taskbar on left, top or right, the notification dialog is not displayed correctly

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

I3rYcE · Dec 27, 2018

NoVirusThanks said:
Just a quick update:

Here is a new v1.4.2 (pre-release) test4:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build4.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ Fixed: If I move the taskbar on left, top or right, the notification dialog is not displayed correctly

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

Hello!

Please,add auto update function to this software.

NoVirusThanks · Jan 2, 2019

Here is a new v1.4.2 (pre-release) test5:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build5.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ New rule: Prevent msiexec.exe from executing unsigned .tmp files (useful to mitigate "msi-to-exe" behaviors)
+ Improved uninstaller scripts (both .sys files are now removed)
+ Improved internal rules to block suspicious process activities
+ Improved internal rules to block suspicious command-lines
+ Minor improvements

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

@I3rYcE

Already in the todo list, should be added soon.

NoVirusThanks · Jan 2, 2019

Just uploaded a new video:

Block EXE to MSI Malware with OSArmor

In this video we show how OSArmor can help in blocking an EXE to MSI malware with the rule "Prevent msiexec.exe from executing unsigned .tmp files" in the Advanced tab. We also tested a malicious Excel document that exploits MS Excel to run a EXE to MSI payload, blocked by the "Protect Microsoft Office Excel" rule in "Anti-Exploit" tab.

128BPM · Jan 3, 2019

@NoVirusThanks

When I insert a USB device:

Date/Time: 03/01/2019 01:54:09 p.m.
Process: [7124]C:\Windows\System32\dinotify.exe
Process MD5 Hash: B175DF5E51116E07F34A6A3D754101E1
Parent: [6708]C:\Windows\System32\rundll32.exe
Rule: BlockSuspiciousProcessesFromRundll32
Rule Name: Block suspicious processes executed from Rundll32
Command Line: "C:\Windows\System32\dinotify.exe" pnpui.dll,SimplifiedDINotification
Signer:
Parent Signer:
User/Domain: PC/PC
System File: False
Parent System File: True
Integrity Level: Medium
Parent Integrity Level: Medium

Thanks

NoVirusThanks · Jan 7, 2019

Here is a new v1.4.2 (pre-release) test6:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build6.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ Improved internal rules to block suspicious process activities
+ Fixed some false positives
+ Minor improvements

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

* We will release official 1.4.2 if no other issues are found within this build 6 *

@128BPM

Should be fixed now, please confirm if possible.

Thank you.

NoVirusThanks · Jan 8, 2019

Here is a new v1.4.2 (pre-release) test7:
https://downloads.novirusthanks.org/files/osarmor_setup_v1.4.2_beta_build7.exe

*** Please do not share the download link, we will delete it when we'll release the official v1.4.2 ***

So far this is what's new compared to the previous pre-release:

+ During uninstallation, ask user "Do you want to remove all settings, log files and .DB files?"

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Let me know if you find any issue or FPs with this new beta build.

blueblackwow65 · Jan 9, 2019

Hi any problems or conflicts with OS armor and eazyfix time machine

Deleted member 178 · Jan 9, 2019

blueblackwow65 said:
Hi any problems or conflicts with OS armor and eazyfix time machine

EazyFix = rollback RX, so no issues I'm aware of. Just that RX v11 seems to be a huge crap from the feedback I heard.

blueblackwow65 · Jan 9, 2019

what about aomei backup running once a week with eazyfix?

NoVirusThanks · Jan 11, 2019

We've officially released NoVirusThanks OSArmor v1.4.2:

Changelog:

[11-Jan-2019] v1.4.2.0

+ During uninstallation, ask user "Do you want to remove all settings, log files and .DB files?"
+ Improved internal rules to block suspicious process activities
+ New rule: Prevent msiexec.exe from executing unsigned .tmp files (useful to mitigate "exe-to-msi" behaviors)
+ Improved uninstaller scripts (both .sys files are now removed)
+ Improved internal rules to block suspicious command-lines
+ Fixed: If I move the taskbar on left, top or right, the notification dialog is not displayed correctly
+ Added option to password-protect power options (Configurator -> Password tab)
+ Fixed some false positives
+ Minor improvements

To install it, first uninstall the previous build, then reboot (not really needed but may help), and install the new build.

Product Page & Download:

Prevent Malware and Ransomware with OSArmor | NoVirusThanks

In2an3_PpG · Jan 11, 2019

Very nice, thanks for the update!

jerzy601 · Jan 12, 2019

thanks for the info about the official release.

Freki123 · Jan 15, 2019

Hi i'm on win 10 64bit, Version 17134.523 and i when i installed the new nvidia gpu drivers 417.71 i got a popup from OS Armor
that looked like the ones i get when it blocks stuff. The thing is i was on passive logging (since i was installing the driver.)
So did it still blocked stuff even while in passive logging? Installing a gpu driver where stuff is getting blocked would do my gaming not good

bjm_ · Jan 15, 2019

@Freki123
"Passive Logging" (from tray-icon) will passively log blocked events without actually blocking them.
"Passive Logging" (from tray-icon), will be remembered on reboot and will passively log blocked events without actually blocking them.

jetman · Jan 15, 2019

I have Voodooshield. Is OS Armour a similar product ?

Freki123 · Jan 15, 2019

bjm_ said:
@Freki123
"Passive Logging" (from tray-icon) will passively log blocked events without actually blocking them.
"Passive Logging" (from tray-icon), will be remembered on reboot and will passively log blocked events without actually blocking them.

Thanks for the clarification. I was surprised by the popup which i didn't expect.
I thought passive only creates logs and not visual cues what it would have blocked

Search

NoVirusThanks OSArmor

Deleted member 178

NoVirusThanks

From NoVirusThanks

ForgottenSeer 58943

NoVirusThanks

From NoVirusThanks

I3rYcE

Level 12

NoVirusThanks

From NoVirusThanks

NoVirusThanks

From NoVirusThanks

128BPM

Level 2

NoVirusThanks

From NoVirusThanks

NoVirusThanks

From NoVirusThanks

blueblackwow65

Level 23

Deleted member 178

blueblackwow65

Level 23

NoVirusThanks

From NoVirusThanks

In2an3_PpG

Level 18

jerzy601

Level 21

Freki123

Level 16

bjm_

Level 15

jetman

Level 10

Freki123

Level 16

Similar threads