New Update VoodooShield CyberLock 7.0

[carl fish]

just installed the new version no problems

 

[Oldie1950]

The new version runs without problems.

 

[Berny]

@danb Thank you !

 

[ForgottenSeer 100397]

@danb Why didn't you opt for cyberlock.net?

 

[JasonUK]

Installed over v7.42 without issue. Pro licence automatically carried across.

 

[amirr]

Installed over v7.42 without issue. Pro licence automatically carried across.

What is the main advantage of having voodooshield running beside for e.g. Eset Smart Security Premium? Isnt that too much? I don't know much on this but thought to ask. Thankkyou.

 

[Digmor Crusher]

Basically VS would just provide a secondary layer of protection, I don't think it's too much unless your using some other program as well, some may disagree. Usually VS runs well alongside other AV's.

 

[Azure]

What is the main advantage of having voodooshield running beside for e.g. Eset Smart Security Premium? Isnt that too much? I don't know much on this but thought to ask. Thankkyou.

Might depend on what settings you are using on ESET.

If you enabled interactive HIPS or make some changes that increases the number of alerts ESET gives you, then on those scenarios having VoodooShield could be consider “too much”

 

[amirr]

interactive HIPS

No, I never mess with default settings in the ESET in regard to HIPS. The same about increases the number of alerts ESET gives me. I think you mean the Advanced Settings>Detection engine section where you can set ESET to alerts?


The section above you mean ? Also, HIPS setting is set to Automatic mode. Which mode, do you personally recommend? Thank you.

 

[oldschool]

Which mode, do you personally recommend?

Automatic.

HIPS settings
Filtering Mode – There are five filtering modes you can select to change how HIPS filters system activity. The modes are:

Automatic mode: This is the default setting. In this mode, operations are enabled except for those that are blocked by pre-defined rules that protect your system.
Smart mode: You will only receive notifications about suspicious system events.
Interactive mode: Only recommended for advanced users. You will receive notifications that prompt you to Allow or Deny each operation detected. Select the Create rule check box to save your response as the rule for a given operation. Selecting the check box next to Temporarily remember this action for this process will cause the action (Allow/Deny) to be remembered until HIPS rules are changed, the HIPS filtering mode is changed, the HIPS module is updated or your computer is restarted.
Policy-based mode: Operations not defined by a rule are blocked. See HIPS – Advanced setup for more details.
Learning mode: In Learning mode, operations are enabled and a rule is created after each operation. Rules created in this mode can be viewed in the Rule editor, but their priority is lower than the priority of rules created manually or rules used in Automatic mode.
Selecting Learning mode enables the Learning mode will end at option. When the specific time period passes, the Learning mode is disabled. The maximum time period is 14 days. After this time period has passed, you will be prompted to edit the rules and select a different filtering mode.

[KB3755] Host-based Intrusion Prevention System (HIPS) – Advanced setup (15.x–16.x)

 

[Azure]

No, I never mess with default settings in the ESET in regard to HIPS. The same about increases the number of alerts ESET gives me. I think you mean the Advanced Settings>Detection engine section where you can set ESET to alerts?
View attachment 274573

The section above you mean ? Also, HIPS setting is set to Automatic mode. Which mode, do you personally recommend? Thank you.
View attachment 274574

Automatic or Smart.

If you don’t mind having lots of alerts, then you can try interactive. However it might be for the best to leave it on learning mode for a couple of hours before using interactive mode.

 

[amirr]

ok, I will set it to interactive, then so its also ok now to install voodooshield, right?

 

[plat]

Maybe @danb can make a new sub-forum for CyberLock. How about it?

 

[amirr]

Automatic.

[KB3755] Host-based Intrusion Prevention System (HIPS) – Advanced setup (15.x–16.x)

Yes, I also noticed that Automatic mode is best for me, then I will install voodooshield.

 

[oldschool]

Maybe @danb can make a new sub-forum for CyberLock. How about it?

It will always be VoodooShield here, AFAIC.

 

[Gandalf_The_Grey]

Maybe a new thread, CyberLock releases and discussion ?

 

[Digmor Crusher]

Seeing it's basically the same product with the same settings and issues etc, why not just change the title of this thread? Voodoo Shield Cyberlock.

 

[eXDj]

why not CyberLock portable ?

 

[n8chavez]

@danb, I did notice a couple more things:

1. If I already have an allow firewall rule and that app gets updated Cyberlock will create a new block rule (because the update is initially seen as unsafe because the hashes are too new), that Cyberlock created block rule will take priority over any allow rule. Since Windows Firewall doesn't use hashes there's no way of distinguishing between the rules. That's not good. I recently began having rclone issues and I could see why, and my configurartion remained the same. Cyberlock created a block rule for it. Would it be possible to not create a block rule if there is already a rule created for that .exe?

2. I assume with this re-branding you want everything to say Cyberlock now and not VoodooShield. However, the application icons (tray, desktop shield, etc.) still say "VS."

3. When I try and do a manual update check within Cyberlock, I get the below message saying I have no internet connection, although I clearly do. I also have no firewall rule blocking cyberlock.

 

[Digmor Crusher]

fyi, I do not get that update issue when checking for an update.