A
Aaron
I need your opinion on the following software. All are none-time limited
but some might be considered lightware or crippleware.
1)Dr Web's cureit!
At bottom on http://download.drweb.com/win/
On demand scan that works without installation. This is similar to the
free Escan on demand scanner which uses KAV (
http://www.mwti.net/antivirus/mwav.asp ) . In between these 2 you have 2
excellent on demand scanners to supplment Antivir,Avast,AVG etc
You can download additional signatures here
http://download.drweb.com/bases/
2)Attack shield worm suppression WS
http://www.sanasecurity.com/products/as/index.php
"The first product in the Attack Shield family, Attack Shield Worm
Suppression (WS), is specifically designed to protect against the highest
risk attack class—network worms. Network worms have caused considerable
damage for organizations ranging from small businesses to large multi-
national enterprises, receiving high visibility due to their notable
impact on IT infrastructures. To better understand the magnitude of the
threat that this attack class imposes, consider the trains halted at CSX
, and the delays and cancellations at Air Canada that resulted from the
Blaster worm1. With Attack Shield WS, no signatures are required and
updates are a thing of the past. Instantly, upon software installation,
all your systems are protected from known and unknown network worm
attacks that target core Windows services."
This company is pretty reputable, this is the first of a family of
software, and shields 9 basic window services (you can add any exe, with
a registry tweak, only for advanced users). I believe it doesn't block
buffer overflows directly though.
3)Antispyware.
Flash Movie here
http://vnsi4h.com/softwares/AntiSpyware/AntiSpyware.sw
File here
http://vnsi4h.com/softwares/AntiSpyware/
Beta. Author claims that it offers superior realtime protection for IE
compared to those provided by spyware doctor,ad-aware watch and teatimer.
He shows this in the movie by going to sites with a *unpatched* XP setup,
where his guard catches the installations while the rest doesn't
I haven't tried this
4)STM (Secure transaction module) desktop
http://www.ossecurity.ca/product_page.php?ProdCode=stmd
On demand tool, to use before you carry out any secure transaction via
SSL. This program will check if the dll files have being tampered with.
5)Spyware doctor free
http://www.pctools.com/spyware-doctor/
Freeware version is much like ad-aware free, it can scan, remove threats,
but you need to pay to get the real time protection.
Not on the rogue antispyware list.
6)Malware bouncer
http://www.emco.is/malwarebouncer/features.html
On the rogue list for having excessive false positives. But I read that
some find it okay.
7)Spyware Interrogator
http://www.spywaredata.com/
Another freeware not on the rogue list.
8)Spyflush
http://www.spyflush.com/
Another freeware not on the rogue list.
9)Lomheuristics
http://www.lommage.co.uk/lomheuristic/
When you run any exe, it will first analyze the file and try to figure
out what dangerous behaviour it might do and warn you.
Experimental.
Any thoughts?
but some might be considered lightware or crippleware.
1)Dr Web's cureit!
At bottom on http://download.drweb.com/win/
On demand scan that works without installation. This is similar to the
free Escan on demand scanner which uses KAV (
http://www.mwti.net/antivirus/mwav.asp ) . In between these 2 you have 2
excellent on demand scanners to supplment Antivir,Avast,AVG etc
You can download additional signatures here
http://download.drweb.com/bases/
2)Attack shield worm suppression WS
http://www.sanasecurity.com/products/as/index.php
"The first product in the Attack Shield family, Attack Shield Worm
Suppression (WS), is specifically designed to protect against the highest
risk attack class—network worms. Network worms have caused considerable
damage for organizations ranging from small businesses to large multi-
national enterprises, receiving high visibility due to their notable
impact on IT infrastructures. To better understand the magnitude of the
threat that this attack class imposes, consider the trains halted at CSX
, and the delays and cancellations at Air Canada that resulted from the
Blaster worm1. With Attack Shield WS, no signatures are required and
updates are a thing of the past. Instantly, upon software installation,
all your systems are protected from known and unknown network worm
attacks that target core Windows services."
This company is pretty reputable, this is the first of a family of
software, and shields 9 basic window services (you can add any exe, with
a registry tweak, only for advanced users). I believe it doesn't block
buffer overflows directly though.
3)Antispyware.
Flash Movie here
http://vnsi4h.com/softwares/AntiSpyware/AntiSpyware.sw
File here
http://vnsi4h.com/softwares/AntiSpyware/
Beta. Author claims that it offers superior realtime protection for IE
compared to those provided by spyware doctor,ad-aware watch and teatimer.
He shows this in the movie by going to sites with a *unpatched* XP setup,
where his guard catches the installations while the rest doesn't
I haven't tried this
4)STM (Secure transaction module) desktop
http://www.ossecurity.ca/product_page.php?ProdCode=stmd
On demand tool, to use before you carry out any secure transaction via
SSL. This program will check if the dll files have being tampered with.
5)Spyware doctor free
http://www.pctools.com/spyware-doctor/
Freeware version is much like ad-aware free, it can scan, remove threats,
but you need to pay to get the real time protection.
Not on the rogue antispyware list.
6)Malware bouncer
http://www.emco.is/malwarebouncer/features.html
On the rogue list for having excessive false positives. But I read that
some find it okay.
7)Spyware Interrogator
http://www.spywaredata.com/
Another freeware not on the rogue list.
8)Spyflush
http://www.spyflush.com/
Another freeware not on the rogue list.
9)Lomheuristics
http://www.lommage.co.uk/lomheuristic/
When you run any exe, it will first analyze the file and try to figure
out what dangerous behaviour it might do and warn you.
Experimental.
Any thoughts?
. After all, if we