App Review VoodooShield Review

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
M

MalwareBlockerYT

Thread author
Hi all,

This is my review/test of VoodooShield Free. I personally really like this software & am using it on my Host PC right now. Please watch the video for results :)

Sample Details:

- All from MalwareTips
- 18 Items that are executed
- 2 Items were missed because I renamed them to .exe when they should have been Javascript files! Opps...
- Some of the latest malware samples uploaded & some from late November.

In future tests:

- I will be executing the latest MalwareTips samples
- I will be executing some of the latest threats from Malcode & VXVault & other sources
- I will verify all files to double check for false positives

But here's the video:



Thanks for watching & hopefully you've enjoyed :) Any feedback is appreciated & I will see you all in the next video ;)
 
  • Like
Reactions: Solarquest, tonibalas, maximus and 18 others
X

XIII

Level 5
Verified
Sep 20, 2016
162
I know it might have been an honest mistake, and it would've been a lot of work to redo, but you have to understand that people look for professionalism and accuracy in these type of videos. Giving files the wrong extensions and then missing them is the same thing as leaving those samples out of the video entirely.

The second piece of feedback, is that I recommend you always use the Recommended/Default action for these videos. In this case, it would've been Quarantine instead of Block, as they will work differently, and in a very rare chance, may result in infection. You'd also have to doubleback and delete your Quarantined files and make sure they are removed completely.
 
  • Like
Reactions: Solarquest, askmark, AtlBo and 1 other person
M

MalwareBlockerYT

Thread author
SHvFl said:
I enjoyed the video. Any idea what it will get if you only relied on VAi and disabled VT because from what i saw most samples were probably old with many VT detections?
Click to expand...
Thanks & I believe that VoodooAI is actually quite good. From what I've seen it does a good job of classifying malicious files - I think it would still do pretty well in this test. Like I said at the top:

- All from MalwareTips
- 18 Items that are executed
- 2 Items were missed because I renamed them to .exe when they should have been Javascript files! Opps...
- Some of the latest malware samples uploaded & some from late November.

I will be changing this in future tests slightly as already mentioned :)
 
  • Like
Reactions: Behold Eck, tonibalas, Venustus and 4 others
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
MalwareBlockerYT said:
- 2 Items were missed because I renamed them to .exe when they should have been Javascript files! Opps...
Click to expand...
I suggestnext time, you can zip the files and create a password so AV won't scan the zip file
It's better than renaming in batch cuz some files can be hta or js or msi
 
  • Like
Reactions: Solarquest, Venustus, AtlBo and 4 others
SHvFl

SHvFl

Level 35
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Nov 19, 2014
2,350
Evjl's Rain said:
there will be a lot more false positives, VT will tell better
Click to expand...
Sure but many malware morfe every minute to bypass the VT detection. So if you are one of the unlucky to drop on the new payload gg you lost. VT and signatures it's the past and for sure me personally will not rely on them. It's pure chance getting protected like buying a lottery.
 
  • Like
Reactions: frogboy, Venustus, AtlBo and 4 others
M

MalwareBlockerYT

Thread author
XIII said:
I know it might have been an honest mistake, and it would've been a lot of work to redo, but you have to understand that people look for professionalism and accuracy in these type of videos. Giving files the wrong extensions and then missing them is the same thing as leaving those samples out of the video entirely.

The second piece of feedback, is that I recommend you always use the Recommended/Default action for these videos. In this case, it would've been Quarantine instead of Block, as they will work differently, and in a very rare chance, may result in infection. You'd also have to doubleback and delete your Quarantined files and make sure they are removed completely.
Click to expand...
At least I was honest about missing the two files. Does it really matter than I missed 2 Javascript files that would most likely both be blocked anyway? I understand that lots of people look for professionalism but trust me it's harder than you think! When you try to do this as well as Coursework, Revision, major exams & still have a social life well it's pretty difficult at times.

Yes I could have clicked on Quarantine but at the end of the day the files were all Blocked & so would all be Quarantined if I clicked the other button. I understand your point but an infection that way would have been extremely unlikely.

Evjl's Rain said:
I suggestnext time, you can zip the files and create a password so AV won't scan the zip file
It's better than renaming in batch cuz some files can be hta or js or msi
Click to expand...
That is a very good idea! I should have thought of that :) Thanks.

XIII said:
Never said you weren't.

Yes it does.

Don't assume what I think. I've made review videos in the past, I'm doing malware analysis now, as well as some programming projects, all while doing finals review, and 3 finals back to back to back. I don't care about any of that though, if you're not looking for feedback, edit your main post to reflect that.
Click to expand...
I am looking for feedback but constructive criticism. I understand your 2nd point but you didn't explain your 1st point: "Giving files the wrong extensions and then missing them is the same thing as leaving those samples out of the video entirely." Yes it is like missing them out of the video but why do you think this is extremely bad? In previous Prevention tests I had about 10 files + that would never execute & for the first time I've started to put together a folder of files which I test before the video to make sure that they execute & I've started to check all of those files for false positives.

I think I have a way of fixing the slightly distorted voice overs. It's my editing software that is messing with the audio quality & so I will need to make the voice over quieter to stop the distortion. As soon as I bring in my audio my editing software will amplify the audio volume causing distortion. In future videos hopefully this will be resolved.
 
Last edited by a moderator:
  • Like
Reactions: Solarquest, Behold Eck, Venustus and 7 others
AtlBo

AtlBo

Level 28
Verified
Top Poster
Content Creator
Well-known
Dec 29, 2014
1,716
Another excellent video. Thanks for the video and review.

Some considerations or observations:
Thinking of the masses of typical normal users who may find your video, could you perhaps carve out a little bit of time (at the end?) to place the products you review into a concept of layering? For example, I think I would find it helpful to know that this anti-executable may or may not stop a well designed memory infection, so I could look for this in another product. Another might be, what is the scope of the sandbox and how does it compare to the sandboxing of other products? Does VS sandboxing block all changes to the system, etc.? Overall, I personally think of VS as a last line of defense, considering it does turn off UAC.

A picture graphic or something to explain how a product fits in with other security products would be very beneficial and might even be something you could use over and over by classifying each given product as a specific type of protection all while using the same graphic in different videos. Great you went over the VT input in VS, which is great for everyday users, but the restrictions on free I think could be an issue too and maybe worth a little bit more discussion than just mentioning. Seriously, great work, but a little bit of big picture context at the end perhaps?

Antimalware18 said:
A little note though. Voodooshield with auto-quarantine any file with over 5 detection's on virustotal which cannot be changed in the free version.
Click to expand...

Thanks for this. I was not aware that this was the default for AS.

I agree with SHvF1 about the luck of the draw problem with VS. I don't know what it would be, but it seems the developers need a second angle on anti-executable to add to VS. Virus Total is a great start, though.
 
  • Like
Reactions: Solarquest, Behold Eck, MalwareBlockerYT and 2 others
Exterminator

Exterminator

Level 85
Verified
Top Poster
Well-known
Oct 23, 2012
12,527
During installation VoodooShield turns UAC off but you can re-enable it with VodooShield installed.

First of all to @MalwareBlockerYT thank you for spending the time to do your reviews and post them here and asking for member feedback.
There is a way to offer constructive feedback without being condescending and "tooting your own horn".
It would be nice if everyone remembers this and reply in a respectful manner.
 
  • Like
Reactions: Solarquest, MalwareBlockerYT, SHvFl and 5 others
Av Gurus

Av Gurus

Level 29
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Sep 22, 2014
1,767
Exterminator said:
During installation VoodooShield turns UAC off
Click to expand...

It does not!
Here a some picture of installation (i don't want to record video now):
Clipboard01.jpg Clipboard02.jpg Clipboard03.jpg Clipboard04.jpg

Can you show that?
 
Last edited:
  • Like
Reactions: Solarquest, MalwareBlockerYT, Deleted member 2913 and 4 others
askmark

askmark

Level 12
Verified
Top Poster
Well-known
Aug 31, 2016
578
AtlBo said:
I agree with SHvF1 about the luck of the draw problem with VS. I don't know what it would be, but it seems the developers need a second angle on anti-executable to add to VS. Virus Total is a great start, though.
Click to expand...


But VS does have a "second angle" as it doesn't just rely on VT results to determine if a file is malware or safe. It also uses what it calls VoodooAi to identify malware. This is completely signatureless and instead relies on machine learning and artificial intelligence to analyze files for maliciousness. This means VS can also detect zero day as well as known malware. The best of both worlds.
 
  • Like
Reactions: Solarquest, Behold Eck, MalwareBlockerYT and 5 others

Similar threads

NB InfoTech
    • Like
App Review Want to try? | Comodo Antivirus Test & Review | Comodo Internet Security vs Ransomware | 2024
Replies
4
Views
409
Video Reviews - Security and Privacy
bazang
bazang
NB InfoTech
    • Like
App Review Is it worth to use G Data Antivirus? | G Data Antivirus Review | G Data Antivirus Test | 2024
Replies
4
Views
484
Video Reviews - Security and Privacy
mlnevese
mlnevese
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Eset Smart Security Premium v18
Replies
12
Views
1,209
Video Reviews - Security and Privacy
mlnevese
mlnevese

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top