[Buster_BSA]

Yes, it´s and it´s like I suspected... you didn´t read the manual.

Please read it carefully. ;)

[gjf]

Yup. Damned UDP. Pardon me! :)

[Buster_BSA]

netai.net was a poor server, with continous problems with downloads. Mark_ from Sandboxie forum has been so nice to give me hosting.

The new address (and I hope definitive for a long long time) is:

http://bsa.isoftware.nl

[Buster_BSA]

A nice review about BSA:

http://www.raymond.cc/blog/archives/201 ... -stronger/

[Tesk]

After playing around a bit with your tool, it has become a normal part of my analysis routine.

Anyway, I miss a function when you are in automatic analysis, you should save a log file of each file processed automatic and maybe make the Malware Analyzer able to read logfiles from a folder, so you can process old logs.

Maybe some command-line switches too?

EDIT: I see it automatically saves a logfile after being processed.

Anyway, what about maybe 3 folders which it will sort the files based on their actions - like "Suspecious" - "Malicious" - "Safe" - so you know what files you should put an interest into.

[Buster_BSA]

Tesk: I´m glad you liked my tool. :)

I will consider your suggestion of sorting folders by their actions.

[gjf]

Attached is simple winlocker file which has no malware activity according to analyzer.

Sure it can be easily investigated manually - just for future improvements :)

[Buster_BSA]

Released BSA 1.24.

No major changes this time; just a few minor additions and a bugfix.

* Added help inside BSA through a .CHM file.

* BSA will not modify HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SbieSvc value

* Fixed a bug when processing in automatic mode.

[gjf]

Looks like I have issues on Windows 7 Ultimate. Is it supported - if so, can we discuss?

[Buster_BSA]

Looks like I have issues on Windows 7 Ultimate. Is it supported - if so, can we discuss?

Sure, let me know.

Don´t forget to tell me what version of BSA and Sandboxie you are using.