Update SpyShelter 10.9.5 released

Discussion in 'SpyShelter (DatPol)' started by MalwareTips Bot, Oct 18, 2017.

  1. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    KeyScrambler has the anti-keystroke profiling feature

    ESET has script-based protection
    ESET Smart Security - Online Help

    And Zemana AntiMalware Ultimate has
    'Real-time browser extension protection'
     
  2. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    SpyShelter blocks scripts and script interpreters when set to "Ask User"

    SpyShelter will outperform KeyScrambler, ESET and all of Windows' built-in protections in the right hands
     
    harlan4096 and shmu26 like this.
  3. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    I just renewed 6 SpyShelter Firewall licenses

    Next to AppGuard, the next best value to be had
     
    harlan4096, shmu26 and HarborFront like this.
  4. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    I find it has a big issue and that is it don't handle mouse click. I can't find any info on this.
     
  5. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    #25 HarborFront, Nov 27, 2017
    Last edited: Nov 27, 2017
    I find its firewall is not as comprehensive in network protection features as compared to ESET IS/FortKnox Personal Firewall. So if I'll to disable its firewall (or use the Premium version) and use it will its HIPS clash with the HIPS of other programs like from ESET/COMODO/FORTKNOX/REHIPS etc?

    I'm thinking of using ESET IS + REHIPS + SpyShelter Premium combo. So not sure whether their HIPS will work out well
     
  6. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    I would not combo SpyShelter with another HIPS\firewall product. SpyShelter Firewall is more than sufficient all by itself.
     
    harlan4096 likes this.
  7. Lockdown

    Lockdown From AppGuard
    Developer

    Oct 24, 2016
    2,706
    11,858
    AppGuard LLC Virginia, U.S.
    What do you need to know ?

    SpyShelter intercepts all script file types when protection is set to "Ask User" and will alert to the execution of all interpreters when set to "Ask User."

    You have to use the product to know how it works. There is no documentation that will explain it. You have to understand malware and malware behaviors to get the most out of the product. Ask @shmu26.
     
    harlan4096 likes this.
  8. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    #28 HarborFront, Nov 27, 2017
    Last edited: Nov 27, 2017
    Is a key press works the same as a mouse click because a keylogger not only can record your keystroke but your mouse location and mouse click as well?
     
  9. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    SpyShelter Firewall (as opposed to SpyShelter Premium) has a very important feature: application execution control. If you want to use SpS seriously, you need the Firewall version, and put it in ask user mode. Application execution control is powerful, once you figure out what it is doing.
     
    HarborFront and harlan4096 like this.
  10. ichito

    ichito Level 2

    Dec 12, 2013
    67
    186
    Poland (Cracow)
    @HarborFront
    Could asnwer my question?
     
  11. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    So can I disable its firewall and use another without affecting the Application Execution Control feature? Or you need the latter to work with its firewall?

    Thanks
     
  12. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    #32 HarborFront, Nov 28, 2017
    Last edited: Nov 28, 2017
  13. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    Yes, you can disable firewall and use just application execution control. It is broken up into two separate categories. You can even disable everything, and just use application execution.
     
    harlan4096 and HarborFront like this.
  14. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    #34 HarborFront, Nov 28, 2017
    Last edited: Nov 28, 2017
    How about disabling its HIPS? Possible?

    If I take SS FW I'll want to disable its FW & HIPS. Then combine with ESET IS and ReHIPS.

    ESET IS will give me AV + FW + HIPS and other network protection features.

    And ReHIPS will give me SB + HIPS

    What do you think of this combo?
     
  15. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    The only way to know if the combo will work is to try it. It is a bit ambitious, in my opinion.
    As for disabling SS HIPS, well, almost everything in SS is a form of HIPS, but you can enable or disable categories at will, from the main window. If you want more fine-tuned disabling, when you see a prompt for a certain action, look at the bottom, and you will see an option to disable monitoring for that specific action.
    When installing, you have an option not to install kernel mode hook. This can solve conflicts with other software.
    Can't tell you much more than that, I don't actually have SS installed right now.
     
    HarborFront likes this.
  16. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    @HarborFront:
    Spyshelter firewall edition has a free 14 day trial, last I looked. Download it, and check it out for yourself. It is hard to describe or understand what SS is doing until you see it in front of your eyes. The term "HIPS" is too broad and vague. When you see SS in action, you will understand what it is all about.
     
    HarborFront likes this.
  17. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,273
    13,595
    Utopia
    One last rant before I get back to work:
    If you run SS at one of the lower levels of protection, it will make generic allow rules that will still be there when you switch to "ask user" mode. So either you should switch to "ask user" at the very beginning, or else delete the application execution rules when you do make the switch. If you look carefully in the application execution rules, you sometimes will see a *.
    The asterisk represents a generic allow rule. That's what you want to kill.
     
    HarborFront likes this.
  18. ichito

    ichito Level 2

    Dec 12, 2013
    67
    186
    Poland (Cracow)
    Hmmm...as I thought...your comment was rather "proof of concept" the same as addon you linked in post
    Ok...I'll ask him but actually I don't find any reason to use anti-profiling when I'm protected by keystrocks encryption...If you have encrypted (randomised) signals from kyeboard how are you able to recognise its real sense and by this way real words?
     
  19. HarborFront

    HarborFront Level 34
    Content Creator

    Oct 9, 2016
    2,305
    5,768
    Far East
    Well, you can ask KeyScrambler then :)
     
Loading...
Similar Threads Forum Date
Update SpyShelter 10.9.7 released SpyShelter (DatPol) Jan 10, 2018
Update SpyShelter 10.9.3 has been released SpyShelter (DatPol) Jul 10, 2017
Update SpyShelter 10.9.1 Released – Windows 10 1703 Support Added SpyShelter (DatPol) Apr 11, 2017