Battle VoodooShield vs SecureAPlus vs Comodo Firewall vs NVT EXE Radar

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
Good morning, I'm looking for a Good free security software, that should be used with Windows defender to prevent inexperienced users to get infected (basically, locking down the computer). I'm looking for a secure product (it should protect against zero-day ransomware, other malware,adware and also office macros). The product should be light, no great impact on boot-time and computer performance. Considering this will be used by inexperienced people, once set, the product should work mostly automatically without puzzling the user . I chose Voodooshield, Secure A plus and COMODO firewall, which seem the most secure to me. If you would like to recommend an other product, please tell me. Waiting for your suggestions, Thanks in advance
 
Last edited:

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
when you install a program, you are supposed to put VS into disable/install mode.
otherwise, an inexperienced user would have it in autopilot.
after installation, a few minutes later the user will get a prompt to turn the protection back on.
But.. An inexperienced user is usually unable to recognise If the software which is installing is secure (that's why we are using VS). So, If he disabled the product and the software was adware or malicious, it will be installed successfully. If VS was on autopilot, the program will be blocked on execution. And I can simply teach to the user that he should click allow If he receives a command line alert (in this case the software was safe)
 
D

Deleted member 2913

But.. An inexperienced user is usually unable to recognise If the software which is installing is secure (that's why we are using VS). So, If he disabled the product and the software was adware or malicious, it will be installed successfully. If VS was on autopilot, the program will be blocked on execution, and I can simply teach to the user that he should click allow If he receives a command line alert
Command line alert could be probs for inexperienced users as default is always block. Previous versions had command line options & you could disable those but the option was removed. But command line options are going to return as per Dev.

My idea of VS for inexperience users is -
List of AVs in the GUI so that you can select/unselect AVs for Blacklist Scan detection. This will help minimize FPs as 56 AVs means FPs chances increases.
VAi sensitivity level - It depends, you can keep default @100 or test & select the sensitivity level you find good for the use.
Command line - When options return back, I will disable command line.

I will install VS on my family shared system of Average users But when the above mentioned things will be present.
 

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
But.. An inexperienced user is usually unable to recognise If the software which is installing is secure (that's why we are using VS). So, If he disabled the product and the software was adware or malicious, it will be installed successfully. If VS was on autopilot, the program will be blocked on execution. And I can simply teach to the user that he should click allow If he receives a command line alert (in this case the software was safe)
the user knows when he is trying to install new software, or update existing software.
So if VS autopilot gives him the green light, then yes, you can safely tell him to click through whatever pop-ups may occur during the installation process.
I am guessing that this might result in the installation of side programs that were bundled with the main program, but that will happen anyway to the inexperienced user.
 

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
I discovered that NVT EXE Radar Pro has a Free version. How Is it compared to VoodooShield, considering protection and system impact? Is it Good to be used by inexperienced users? (does the product have lots of alerts in which you have to choose?)
 
D

Deleted member 178

I discovered that NVT EXE Radar Pro has a Free version.

the Beta is free at the moment, the stable will be paid (if a stable is ever released...)

How Is it compared to VoodooShield, considering protection and system impact? Is it Good to be used by inexperienced users? (does the product have lots of alerts in which you have to choose

For me, ERP was the best anti-exe ever made alongside Appguard, you have full control of everything , it is user-friendly , light on resources, almost bugless. The problem now is the development is paused. Now new players have come and ERP is loosing ground.
 

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
I will probably test it in the future.. I believe that, since only the beta is free, it is better using VS
the beta behaves like a stable version. that is not really the problem.
although it is not being actively developed right now, you can manually add to the list of vulnerable processes, and otherwise tweak it to keep yourself up to date.

however, VS is more suited for the average user

EDIT: many of the advanced users have left NVT and gone over to ReHIPS, which is also a beta program, and is not even open to the general public, unless you ask the dev to let you join.
 
Last edited:

King Alpha

Level 25
Verified
Top Poster
Content Creator
Well-known
Jun 21, 2013
1,492
VS - Light, User-Friendly
NVTERP - Light, A combination of Advanced/User-Friendly

For me, ERP was the best anti-exe ever made alongside Appguard, you have full control of everything , it is user-friendly , light on resources, almost bugless. The problem now is the development is paused. Now new players have come and ERP is loosing ground.
NVTERP + AppGuard + Sandboxie = Bulletproof :D
One of the security combos I learned from @Umbra. :p
 

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
the beta behaves like a stable version. that is not really the problem.
although it is not being actively developed right now, you can manually add to the list of vulnerable processes, and otherwise tweak it to keep yourself up to date.

however, VS is more suited for the average user

EDIT: many of the advanced users have left NVT and gone over to ReHIPS, which is also a beta program, and is not even open to the general public, unless you ask the dev to let you join.
So ,Basically the whitelist is no longer up to date?
 
  • Like
Reactions: Logethica

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
So ,Basically the whitelist is no longer up to date?
not exactly. the whitelist is defined by, and tailored to, your specific system.
but in addition to your personal whitelist, there is another list: vulnerable processes. This is an advanced feature, it keeps an eagle-eye on certain windows processes that are exploitable. So even if a known and trusted exe is trying to run a vulnerable process, you will get a prompt, unless that particular command-line is specifically whitelisted. This feature protects you from malware hijacking a trusted app in order to run windows processes that can do a lot of damage.

This vulnerable processes list is, in the opinion of some, too short. Each user may add to it, according to his own level of expertise and paranoia, or copy someone else's list who is more expert and paranoid.
 

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
basically the point is this: new forms of malware will find new exploit routes. once a certain process starts to be exploited a lot, you might want to add it to your vulnerable processes list. If the dev was on the job, he would be doing that for you.

Umbra might be able to shed more light on this subject.
 
  • Like
Reactions: Logethica

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
For the average user is not good... It's alerting eve when installing avira block.PNG
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top