Q&A Regarding on NVT EXE Radar PRO?

Discussion in 'NoVirusThanks' started by Av Gurus, Oct 8, 2015.

  1. jamescv7

    jamescv7 Level 61
    Trusted

    Mar 15, 2011
    12,664
    17,723
    Web and FileMaker Developer
    Philippines
    Windows 10
    Microsoft
    @Davidov: What do you mean? Voodoshield provide as much as possible an anti-exploit functionality that blocks any possible scripts to execute same goes to NVT too.
     
  2. CMLew

    CMLew Level 22

    Oct 30, 2015
    1,150
    2,947
    Registered Safety Practitioner
    Singapore
    Windows 10
    Default-Deny
    I thought NVT by itself is a pure anti-executable?
     
  3. bunchuu

    bunchuu Level 7

    Mar 17, 2015
    343
    901
    Sales Supervisor
    Indonesia
    Windows 10
    ESET
    learning mode is the best feature in NVT ERP :)
     
  4. Azure Phoenix

    Azure Phoenix Level 19

    Oct 23, 2014
    923
    2,470
    Puerto Rico
    Apparently VoodooShield had integrated a basic anti-exploit function. I don't think EXE Radar Pro has that, at most what it does have is the "Vulnerable process" function which I think could help protect processes from being exploited. Though other users like @Umbra and @hjlbx could confirm or deny that.
     
  5. Azure Phoenix

    Azure Phoenix Level 19

    Oct 23, 2014
    923
    2,470
    Puerto Rico
    Install mode is good too. If you want, you don't have to disable the protection to install/uninstall any software.
     
  6. CMLew

    CMLew Level 22

    Oct 30, 2015
    1,150
    2,947
    Registered Safety Practitioner
    Singapore
    Windows 10
    Default-Deny
    That's what I thought too.
    Possibly what could happen is that in NVT you can whitelist them and put it into vulnerable process. Then set it to alert mode. But that's about it.
    Correct me if I'm wrong. :oops:

    Anyway, side topic here.
    Another question on NVT too.

    Recently I've been updating softwares like ZAM, EIS and such.
    I realise when NVT set to Alert mode, it prompt twice: one is exe and another one is TMP.
    Is that normal? Thought NVT wouldn't block/alert those non-exe?
     
  7. Umbra

    Umbra From Emsisoft
    Developer

    May 16, 2011
    17,169
    29,697
    Community manager
    Vietnam & France
    Windows 10
    Emsisoft
    NVT doesn't block exploit, but it monitors the child processes, that is maybe why the tmp files are detected.
     
  8. jamescv7

    jamescv7 Level 61
    Trusted

    Mar 15, 2011
    12,664
    17,723
    Web and FileMaker Developer
    Philippines
    Windows 10
    Microsoft
    @Azure Phoenix: Yes it has a basic anti-exploit functionality [Voodoshield], @Umbra manage to answer your question.

    @CMLew: Yes NVT is a anti-exe at its own built.
     
Loading...
Similar Threads Forum Date
Need Help Help me regarding virtual box security leak. Apps - Questions & Help Dec 3, 2017
Q&A Regarding Cisco Talos and CCleaner lies General Security Discussions Sep 25, 2017
Q&A Useful tips regarding Kaspersky App Control and System Watcher General Security Discussions Aug 15, 2017