Microsoft Security Essentials – Breaking Up Is Hard To Do – But, It’s Over; You’re Gone

Sadly, Microsoft Security Essentials and I have had a falling out. We’re through – it’s over – that’s it. It’s broken the cardinal rule I’ve long established for all my applications – trust that it will perform as advertised.

It’s been replaced in my affection by another – one that lives up to its billing –  AVG AntiVirus Free 2013. Microsoft Security Essentials no longer does.

Frankly, I’ve avoided AVG’s products for years – with good cause I think. Applications that are slow, cumbersome, updates that crash systems ….. have a way of ending up in file 13 (the garbage), around here. In the past, AVG’s products were known for all of that, and more. It had its defenders of course, but I was not one of them.

As MSE has slowly lost its touch, AVG has bounded ahead. It’s sleek; it’s fast; it’s free – and, in the latest AV-Test.org’s (see AV-Test.org’s full results here), it pummels MSE – again.

In fact, for the second testing cycle in a row – Microsoft Security Essentials has failed certification as an effective security application.

Quick overview of AVG AntiVirus Free’s salient score points. Click graphic to expand.

Courtesy – AV-Test.org.

I’ve been running with AVG AntiVirus Free 2013 on a primary home system (a Windows 8 machine), since September 5, of last year. The verdict? I’m impressed – very impressed.

As you can see from the following screen shot, AVG AntiVirus Free offers substantial protection – not quite up to the standard of the company’s paid applications – but, more than enough (in my view), that an aware user should feel comfortable.

Keep in mind, that an educated user understands the limitations of relying on a single security application and, is conversant with the principal of layered security.

Windows 8 users will notice that the GUI (as shown below) owes a little something to Windows 8’s Metro (or whatever MS is calling it these days) GUI.

Multiple choices are available in the settings menu so that users can tweak and massage the application to meet their specific needs. I must admit – that was a major positive for me.

Running a scan: As is my practice – I run a complete scan on my machine’s boot drive every day. And a full scan on all attached drives, weekly.

Running a scan: 60 GB SSD – particulars as shown below.

Scanning time – just under 5 minutes with “High Priority” set.

Slip in a USB device – and….

System requirements: Windows 8, Windows 7, Windows Vista, Windows XP.

Download at: AVG

A Major Bonus – From the site:

It’s not just the software that’s free. So too is phone access to our team of support experts 24/7, 365 days a year (USA, UK, Canada). Kudos to AVG!!

You’ll notice a basket-full of additional free AVG products on the download page – you just might find something that fills a gap in your overall security plan.

Whether you’re an experienced user, or you consider yourself “average”, I recommend that you spend some time scouting around the application’s GUI – there’s lots to be discovered here. All of it good. 

Rescue Your PC With Free Kaspersky Rescue Disk 10

Much of today’s malware is expert at hiding or camouflaging itself – making it both hard to detect, and obviously more difficult to remove. But, if you can get to malware before it has a chance to run live within the installed operating system – you have a real chance of detecting and eradicating the varmint.

This is where a Rescue Disk (Live CD), which I like to think of as the “SWAT Team” of antimalware solutions – comes into play. More often than not, a Live CD can help you kill malware DEAD!

It’s important to know though, not all antimalware Live CDs are in fact, “Rescue Disks”. And, not all “Rescue Disks” are in fact – antimalware Live CDs.

Kaspersky Rescue Disk 10, by far and away my antimalware tool of choice,  combines the best of both genres. Not only is is superb at identifying and removing malware but, with it’s onboard tool kit it, definitely qualifies as a Rescue Disk.

Note: Kaspersky Rescue Disk 10, is designed to scan, and disinfect, both 32 bit and 64 bit machines. As well, Kaspersky Rescue Disk 10 can be run from a USB device.

The following is a quick walkthrough using Kaspersky Rescue Disk 10 in both malware scanning and “tool kit” capacities.

Kaspersky Rescue Disk 10 is available for download as an ISO file only, which means – you must burn the ISO image file to a CD/DVD, and then boot the application from your CD/DVD drive. If you’re unsure as to how to setup your machine to boot from your CD/DVD drive, PC Support at About.com has an easy to follow tutorial – How To Boot From a CD, DVD, or BD Disc.

If you don’t know how to burn an ISO image, you’ll find instructions below.

At boot-up, Kaspersky Rescue Disk 10 runs through a fairly large number of routines so be patient until the main menu screen appears.

From the menu screen, run the update task which will update the anti-virus databases. Following which, you can then go to “Scan your computer” or….

Click on graphic to expand to original size.

…….. you can choose to configure the scan settings to your specific requirements.

Click on graphic to expand to original size.

As the application is scanning, you will be reminded of both the percentage of objects scanned and, an estimated time to completion.

Click on graphic to expand to original size.

The bonus features bolted on to Kaspersky Rescue Disk 10 include:

Konqueror Web Browser

The Konqueror web browser integrated into Kaspersky Rescue Disk can view websites and save the pages you have visited. You can view all visited pages after exiting Kaspersky Rescue Disk. By default, the Kaspersky Lab website is displayed in the browser.

Click on graphic to expand to original size.

Integrated File Manager and Registry Editor

The Integrated file manager will allow you to access the Hard Drive/s. As a last resort (if it comes to that),  you will be able to save your important files (any file for that matter), using this tool.

As well, using the Registry Editor, you will be able to view and change settings in your system registry,

Click on graphic to expand to original size.

Kaspersky Rescue Disk 10 is an extremely powerful tool, with many more capabilities than I’ve been able to cover in this short review. I’m more than a little surprised that it can be downloaded at no cost. A serious computer user would do well to have this application ready to go when faced with one of those –  O No!!, moments.

To read a blow-by-blow description of Kaspersky Rescue Disk vs. Malware, checkout guest writer Mark Schneider’s – A Lesson In Malware Removal Using Kaspersky Rescue Disk, here on this site.

System requirements: Windows XP (Service Pack 2 or higher), Vista, Windows 7  (32/64 bit support for all).

Download the ISO image file at: Kaspersky

If you’re unsure as to how to burn an ISO image file to a CD/DVD in order to create a bootable disk, here’s an easy method. In this illustration I’m using a freeware application CDBurner XP.

1)  Activate  CDBurner XP.

2)  Insert a blank CD/DVD into the CD/DVD drive.

3)  Click on “Burn ISO image”, which will open the write screen.

4)  Select kav_rescue_10.iso which will reside in the location in which you saved the file.

5)  Click on “Burn disc”

6)  Sit back and relax until the job is complete (2/3 minutes).

OPSWAT’s Metascan Online – A VirusTotal Alternative

I’m right and you’re wrong.

No, I’m right and you’re wrong!

You’re listening to a couple of sports fans arguing over who’s the best tennis player maybe? Could be – but, if you’re analyzing a downloaded file with more than one antimalware application (and you should), you could be witnessing a more serious difference of opinion.

You’ve primary anti-malware application is advising you that the application you just downloaded contains malware. But, since you’re an aware computer user, you’ve launched your secondary malware scanner and – surprise – there’s a difference of opinion – no malware.

So, you’re now dealing with the big question – are you dealing with a false positive thrown up by the primary malware scanner, or is it more likely that the secondary scanner is misbehaving?

You could just flip a coin, or go with your best guess – but, you didn’t become a super user by flipping coins, or guessing, when it comes to your system’s security. No, you’re better than that, so you upload the questionable file to VirusTotal, where it will be scanned for nasties by thirty five plus diverse online scanners.

VirusTotal result – a clean file. Elapsed time on this scan – under a minute.

As an alternative to VirusTotal, or in addition to (maybe not a bad idea), you can run the file through a new service now being offered by OPSWAT, the company behind the highly recommended AppRemover.

OPSWAT’s Metascan Online, is similar in many respects to VirusTotal – as the following screen shots indicate.

Browse your Hard Drive for the file to be uploaded (for this test I’ve selected a different executable – 15 MB as opposed to 3 MB).

Detailed results are shown in the  following screen capture. As you can see – the file has been processed through 19 AVs and has come up clean. Elapsed time on this scan – just over a minute.

This new service was launched just a few days ago, so you may experience a glitch or two. In testing, over several days (in both Windows and Ubuntu Linux), I must admit I bumped my head a time or two,  but after speaking with the company, the minor server issues I encountered were resolved quickly.

Responsiveness to customer issues is the hallmark of a client centered organization, and OPSWAT certainly meets that test.

Fast facts:

Use of multiple antivirus engines

Real-time automatic updates of virus signatures

Detailed results from each antivirus engine

Real time global statistics available

Keep in mind, an online scanning service is not a substitute for an appropriate local defense system, including a firewall (either software or hardware), and a sound and effective anti-malware application.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Runscanner – Aggressively Queries Your System And Applications For Unauthorized Changes

The developers of Runscanner describe this freeware utility as having been designed to “detect changes and misconfigurations in your system caused by spyware, viruses, or human error.”

Sounds a bit like HijackThis, the free utility from Trend Micro, which has a well deserved reputation for being aggressive in tracking down unauthorized changes that have been made to your system/applications.

Runscanner though, takes this process miles beyond HijackThis, and does so by  using an intuitive approach that casual users*, and experienced users alike, should find easy to work with.

*The only difficulty I see, that casual users might have a problem with is – the enormous volume of information this application is capable of producing. This could make it difficult for a casual user to interpret results.

Runscanner is a simple executable, and no installation is required. Just click on the file, and then choose your mode – beginner or expert.

The following screen capture shows the results of a full scan I ran on a Win 7 (32 bit), machine. The only entry I was unfamiliar with was Staropen.sys. Runscanner was right on the job though, with the right click context menu providing access to “lookup” services, as the screen shot below illustrates.

I took a look at Staropen.sys using a Google link to the Prevx file investigation site, and found the following: The filename Staropen.sys is used by objects that are classified as safe. It has not yet been seen to be associated with malicious software.

I then uploaded the file to VirusTotal (another context menu option),and VirusTotal reported the following – as shown in the screen shot below.

I suspected that this system driver was a component of CDBurner XP, and opening the location (another context menu option), then reading the driver with NotePad, indicated this was correct.

The next part of the test involved generating an online malware analysis report, which generates a massive report on all items which are considered safe, unsafe, whitelisted and additionally, verification of each file’s digital signature.

The screen capture below shows only a tiny (and I do mean tiny), portion of this report. The report is the most comprehensive of any I’ve ever seen, produced by this type of utility.

When you click on the screen capture below, to expand to the original size, you’ll notice that I’ve queried  Nitro PDF Spool Service. Rather than go directly to the site, instead, I’ve used COOL Previews to gather the relevant information. If you’re not yet familiar with COOL Previews – you can read a review of this outstanding time saver here – Surf Smarter – Take A Sneak Peek At Links With CoolPreviews Firefox Add-on.

Fast facts:

100+ start/hijack locations

Online malware analysis

Import and export of .run files

Powerful process killer

Save to text log file

Powerful file filtering

Host file editor

History backup / restore

Explorer jump

Analysis of file certificates

Beginner, Expert mode

Bit9 FileAdvisor MD5 lookup

Systemlookup.com lookup

Upload file to VirusTotal

Analyze loaded modules

Google lookup

Runscanner database lookup

Regedit jump

If you are a casual user, one caveat from the developer you should be aware of: Runscanner requires advanced Windows knowledge. If you delete an item, without knowing what it is, it can lead to major Windows problems. If you are not sure what to delete, post your Run file to a helper forum.

A list of helper forums is available directly from within the application, or here.

System requirements: Windows 2003, Windows 2000, Windows Vista, Windows XP, Windows 7 (according to the developers, the application is x 64 compatible).

Download at: Download.com

Public process list is an additional service provided by the developers. In this list you will be able to browse all processes and files found by Runscanner. Extra information for top processes is added to the database and optional security info is provided by research.

Runscanner has additional capabilities not reviewed here, so I recommend that you take a close look at this freebie. I think you’ll find that it’s worth the effort.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Using Kaspersky Rescue Disk 10 – A Quick Walkthrough

Much of today’s malware is expert at hiding or camouflaging itself – making it both hard to detect, and obviously more difficult to remove. But, if you can get to malware before it has a chance to run live within the installed operating system – you have a real chance of detecting and eradicating the varmint.

This is where a Rescue Disk (Live CD), which I like to think of as the “SWAT Team” of antimalware solutions – comes into play. More often than not, a Live CD can help you kill malware DEAD!

It’s important to know though, not all antimalware Live CDs are in fact, “Rescue Disks”. And, not all “Rescue Disks” are in fact – antimalware Live CDs.

Kaspersky Rescue Disk 10, by far and away my antimalware tool of choice,  combines the best of both genres. Not only is is superb at identifying and removing malware but, with it’s onboard tool kit it, definitely qualifies as a Rescue Disk.

Note: Kaspersky Rescue Disk 10, is designed to scan, and disinfect, both 32 bit and 64 bit machines. As well, Kaspersky Rescue Disk 10 can be run from a USB device.

The following is a quick walkthrough using Kaspersky Rescue Disk 10 in both malware scanning and “tool kit” capacities.

Kaspersky Rescue Disk 10 is available for download as an ISO file only, which means – you must burn the ISO image file to a CD/DVD, and then boot the application from your CD/DVD drive. If you’re unsure as to how to setup your machine to boot from your CD/DVD drive, TechPaul has an easy to follow tutorial – How to boot from a CD.

If you don’t know how to burn an ISO image, you’ll find instructions below.

At boot-up, Kaspersky Rescue Disk 10 runs through a fairly large number of routines so be patient until the main menu screen appears.

From the menu screen, run the update task which will update the anti-virus databases. Following which, you can then go to “Scan your computer” or….

Click on graphic to expand to original size.

you can choose to configure the scan settings to your specific requirements.

Click on graphic to expand to original size.

As the application is scanning, you will be reminded of both the percentage of objects scanned and, an estimated time to completion.

Click on graphic to expand to original size.

The bonus features bolted on to Kaspersky Rescue Disk 10 include:

Firefox

The Firefox web browser integrated into Kaspersky Rescue Disk can view websites and save the pages you have visited. You can view all visited pages after exiting Kaspersky Rescue Disk. By default, the Kaspersky Lab website is displayed in the browser.

In the following usage example, I have chosen to search Google for “malware help”. Let’s hope you’ll never have to do this but, if you need to you can – without having to boot back into Windows.

Click on graphic to expand to original size.

Internet configuration

By default, the web browser works with system proxy server. You can specify the proxy server settings when configuring the web browser. Since malware can often affect Internet settings, this feature can be an invaluable assist.

Click on graphic to expand to original size.

Integrated file manager

The Integrated file manager will allow you to access the hard drive/s – as the following screen capture shows. As a last resort (if it comes to that),  you will be able to save your important files (any file for that matter), using this tool.

Click on graphic to expand to original size.

Heuristic analyzer

Threat detection technology for threats that cannot be detected using Anti-Virus databases. It allows detecting objects suspected of being infected with an unknown virus or a new modification of the known viruses. This mechanism is fairly effective, and very rarely leads to false positives.

Kaspersky Rescue Disk 10 is an extremely powerful tool, with many more capabilities than I’ve been able to cover in this short review. I’m more than a little surprised that it can be downloaded at no cost. A serious computer user would do well to have this application ready to go when faced with one of those –  O No!!, moments.

To read a blow-by-blow description of Kaspersky Rescue Disk vs Malware, checkout guest writer Mark Schneider’s – A Lesson In Malware Removal Using Kaspersky Rescue Disk, here on this site.

System requirements: Windows XP (Service Pack 2 or higher), Vista, Windows 7  (32/64 bit support for all).

Download the ISO image file at: Kaspersky

If you’re unsure as to how to burn an ISO image file to a CD/DVD in order to create a bootable disk, here’s an easy method. In this illustration I’m using a freeware application CDBurner XP.

1)  Activate  CDBurner XP.

2)  Insert a blank CD/DVD into the CD/DVD drive.

3)  Click on “Burn ISO image”, which will open the write screen.

4)  Select kav_rescue_10.iso which will reside in the location in which you saved the file.

5)  Click on “Burn disc”

6)  Sit back and relax until the job is complete (2/3 minutes).

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Two Free VirusTotal Apps Can Help You Catch Malware Preemptively

You’ve run your primary anti-malware application, and up pops a notice advising you that you have an infection. But since you’re an aware computer user, you launch both your secondary malware scanners in sequence and – surprise! According to your secondary scanners you are not infected.

But, you’re aware that anti-malware programs that rely on a definition database to identify malware files, can often be behind the curve in recognizing the newest threats.

So, decision time. Do you then trust your primary anti-malware application and attempt removal, or instead, do you trust the results produced by your secondary scanners, and leave well enough alone?

In reality, you’re not limited to just these two choices. There is another option open to you.

If you’re worried about a specific file, here’s an interesting twist on free Online scanners – you can have any computer file (files are restricted to a maximum of 20 megabytes), scanned for nasties by thirty five plus diverse online scanners; all in one go, through VirusTotal.

To take advantage of this service, simply upload a file that you’re uncertain of to Virus Total, or as an alternative, submit your suspicious file to Virus Total by email. What could be simpler?

File submissions (Last 7 days)

This graph shows the number of files received at VirusTotal over the last 7 days. The image illustrates how many of these were new at VirusTotal, and the submissions which were detected by at least one antivirus. Click on any graphic to expand to original size.

Top 10 file submissions (Yesterday – December 29, 2010)

This table shows the most submitted files yesterday to VirusTotal, the last detection rate, and the number of times they were submitted is specified.

Quick facts:

Free, independent service

Use of multiple antivirus engines

Real-time automatic updates of virus signatures

Detailed results from each antivirus engine

Real time global statistics

Keep in mind, this service is not a substitute for an appropriate local defense system, including a firewall (either software or hardware), and a sound and effective anti-malware application.

Upload your suspicious file/s to: Virus Total

VTzilla:

 

VirusTotal recently released a Firefox only extension – VTzilla. VTzilla has been designed to scan URLs, links, and files (potential downloads) for malware, by employing the installed toolbar, or alternatively, the right click context menu.

Using the toolbar, I’ve plugged in my own site address as an example.

VirusTotal’s report indicates my site is a safe site, and does not contain malware.

Next, I visited Download.com and set up a download. Before saving the file however, using the right click context menu again, I had VirusTotal perform a scan.

The result indicates a clean site.

A couple of caveats:

Regular VirusTotal users are aware that file size is restricted to 20 MB or less, and this restriction unfortunately, is still in effect for this new service.

VTzilla is available only as a direct download from the developer’s site at the moment. It should be available from Firefox’s add-on repository, in due course.

Overall, I think this extension has some value. But, it is not a panacea. More and more, if a site is imbedded with malware, just visiting the site can trigger a driveby download. Porn surfers particularly, need to take note of this.

System requirements: Firefox 1.5 – 3+

Download at: the developer’s site.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Download Free Runscanner – HijackThis On Steroids!

If you’re a malware hunter, and you’re in the market for a free system utility which will scan your system for running programs, autostart locations, drivers, services and hijack points, then Runscanner should make your shortlist.

The developers of Runscanner describe this freeware utility as having been designed to “detect changes and misconfigurations in your system caused by spyware, viruses, or human error.”

Sounds a bit like HijackThis, the free utility from Trend Micro, which has a well deserved reputation for being aggressive in tracking down unauthorized changes that have been made to your system/applications.

Runscanner though, takes this process miles beyond HijackThis, and does so by  using an intuitive approach that casual users*, and experienced users alike, should find easy to work with.

*The only difficulty I see, that casual users might have a problem with is – the enormous volume of information this application is capable of producing. This could make it difficult for a casual user to interpret results.

Runscanner is a simple executable, and no installation is required. Just click on the file, and then choose your mode – beginner or expert.

The following screen capture shows the results of a full scan I ran on a Win 7 (32 bit), machine. The only entry I was unfamiliar with was Staropen.sys. Runscanner was right on the job though, with the right click context menu providing access to “lookup” services, as the screen shot below illustrates.

I took a look at Staropen.sys using a Google link to the Prevx file investigation site, and found the following: The filename Staropen.sys is used by objects that are classified as safe. It has not yet been seen to be associated with malicious software.

I then uploaded the file to VirusTotal (another context menu option),and VirusTotal reported the following – as shown in the screen shot below.

I suspected that this system driver was a component of CDBurner XP, and opening the location (another context menu option), then reading the driver with NotePad, indicated this was correct.

The next part of the test involved generating an online malware analysis report, which generates a massive report on all items which are considered safe, unsafe, whitelisted and additionally, verification of each file’s digital signature.

The screen capture below shows only a tiny (and I do mean tiny), portion of this report. The report is the most comprehensive of any I’ve ever seen, produced by this type of utility.

Fast facts:

100+ start/hijack locations

Online malware analysis

Import and export of .run files

Powerful process killer

Save to text log file

Powerful file filtering

Host file editor

History backup / restore

Explorer jump

Analysis of file certificates

Beginner, Expert mode

Bit9 FileAdvisor MD5 lookup

Systemlookup.com lookup

Upload file to VirusTotal

Analyze loaded modules

Google lookup

Runscanner database lookup

Regedit jump

If you are a casual user, one caveat from the developer you should be aware of: Runscanner requires advanced knowledge about Windows. If you delete an item, without knowing what it is, it can lead to major Windows problems. If you are not sure what to delete, post your Run file to a helper forum.

A list of helper forums is available directly from within the application, or here.

System requirements: Windows 2003, Windows 2000, Windows Vista, Windows XP, Windows 7 (according to the developers, the application is x 64 compatible).

Download at: Download.com

Public process list is an additional service provided by the developers. In this list you will be able to browse all processes and files found by Runscanner. Extra information for top processes is added to the database and optional security info is provided by research.

Runscanner has additional capabilities not reviewed here, so I recommend that you take a close look at this freebie. I think you’ll find that it’s worth the effort.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

False Malware Positive? Or Not? How Do You Decide?

You’ve run your primary anti-malware application, and up pops a notice advising you that you have an infection. But since you’re an aware computer user, you launch both your secondary malware scanners in sequence and – surprise! According to your secondary scanners you are not infected.

But, you’re aware that anti-malware programs that rely on a definition database to identify malware files, can often be behind the curve in recognizing the newest threats.

So, decision time. Do you then trust your primary anti-malware application and attempt removal, or instead, do you trust the results produced by your secondary scanners, and leave well enough alone?

In reality, you’re not really limited to just these two choices. There is another option open to you.

If you’re worried about a specific file, here’s an interesting twist on free Online scanners– you can have any specific computer file (files are restricted to a maximum of 10 megabytes), scanned for nasties by thirty five plus diverse online scanners, all in one go, through VirusTotal.

To take advantage of this service, simply upload a file, that you’re uncertain of, to Virus Total, or as an alternative submit your suspicious file to Virus Total by email. What could be simpler?

The following graphics indicate just how efficient this free service is.

Received Files/Infected Files (Last 24 Hours) May 28, 2010:

This image shows the number of files that have been detected as infected (red) among the total number of files received within the last 24 hours (clean ones marked in blue).

Top 10 Infected Files (Last 24 Hours), May 28, 2010:

This image shows the list of the most-uploaded infected files received within the last 24 hours.

Quick facts:

Free, independent service

Use of multiple antivirus engines

Real-time automatic updates of virus signatures

Detailed results from each antivirus engine

Real time global statistics

Keep in mind, this service is not a substitute for an appropriate local defense system, including a firewall (either software or hardware), and a sound and effective anti-malware application.

Upload your suspicious file/s to: Virus Total

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Think You’re Infected? Find Out – Run An Online Scanner From Your Browser

Today’s malware generally writes itself into multiple parts of the operating system, and in many cases it can hide it’s files, registry entries, running process and services, making the infection virtually invisible.

The installation of this type of malware can often lead to a critically disabled PC, or in the worst case scenario, allow hackers access to important personal and financial information.

There are plenty of good anti-malware products, but no one anti-malware tool is likely to identify and remove all of the millions of malware strains that infest the cyber world.

As part of the mix of security solutions, online scanners offer an extra layer of protection that’s required in the current Internet environment.

The following graphics illustrates a scan I ran on a Windows 7 system:

Online Scanner Benefits:

Generally fast and easy to use.

Threat signatures and heuristic detection algorithms are always up to date.

Provides deep scanning of archive files, runtime packed executables and email messages.

Can often detect malware that some AV solutions cannot detect.

Avoids conflicts with existing security software.

Acts as a double-check on the accuracy of your onboard AV solutions.

Disadvantages:

May have fewer scanning options than locally installed AV solutions.

Not all scanners disinfect, or remove found malware.

The following are Online Scanners that have developed a good reputation for accuracy; be sure to read the Terms of Use, or Privacy Statements carefully.

Panda ActiveScan 2

ActiveScan 2.0 is an advanced online scanner based on Collective Intelligence (scanning in-the-cloud) that detects malware that traditional security solutions cannot detect.

Make sure your antivirus is offering you proper protection.

Find hidden threats on your PC, such as rootkits, banker Trojans and malware designed to steal your identity.

Simple, online disinfection of all malware detected on your PC.

BitDefender Online Scanner

Free and effective malware cleanup directly from your browser

Incorporating the BitDefender award-winning scanning engines, BitDefender Online Scanner is an on-demand antivirus and antispyware tool that shows how safe your PC is. Accessible from your browser, it will scan and automatically clean the system memory, all files and drives’ boot sectors.

One major advantage of BitDefender Online Scanner is, you can use it without having to uninstall your existing data security product.

Symantec Security Check

The Symantec site offers two scans – a security checker and a virus scanner. Both use ActiveX, so you need to have Internet Explorer running.

The security scan checks that you’re running an anti-virus program and then looks for Windows vulnerabilities, hacker risks and Trojan horses.

The anti-virus checker performs a deep scan and takes a considerable amount of time to complete. It won’t remove any infections it finds, but will suggest actions that you can take.

Note: Does not disinfect.

The graphic below (taken from my test system), outlines the results of the “hacker check” portion, of the Symantec Security Check.

Trend Micro’s HouseCall

HouseCall can quickly identify and fix a wide range of threats including viruses, worms, Trojans, and spyware. It is now faster, more powerful and browser independent.

Full scan and custom scan options, in addition to Quick Scan.

Support for 64-bit and Windows 7.

ESET Online Scanner

ESET Online Scanner is a user friendly, free and powerful tool which you can use to remove malware from any PC utilizing only your web browser without having to install anti-virus software.

ESET Online Scanner uses the same ThreatSense technology and signatures as ESET Smart Security/ESET NOD32 Antivirus, and is always up-to-date.

Administrator privileges are required to run ESET Online Scanner.

Kaspersky

Kaspersky Online Virus Scanner is a free online virus scanner to find out if you have any viruses or spyware on your machine without having to uninstall your current antivirus software or install a new one.

Most importantly, you can see what viruses your current antivirus software let slip through.

Note: Does not disinfect.

It’s good practice to run an online scanner occasionally. It’s convenient, and it’s a good double-check that your onboard security solutions are effective.

If your onboard AV informs you that you’ve been infected, it’s always a good idea to run a secondary on board scanner for confirmation, followed by an online scan.

Antimalware applications are not immune from false positives. In fact, false positives are more common than many users realize. Here’s just one example – some AVs are notorious for seeing extractor files in application setup files as a Trojan.

So run an online scanner if you think you’ve been infected. You may think this is aggravating, and maybe it is, but it’s a better solution than having to rebuild your system because you’ve removed a critical file.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Free CNET TechTracker – Automatic Application Updater

Almost all of your installed applications will offer to check for updates automatically. In fact, many applications have the annoying habit, on installation, of defaulting to this configuration.

Personally, I automatically turn this feature “off”. I just don’t want applications phoning home without my permission. It’s not because I don’t trust the developers…..well actually, it is because I don’t trust the majority of developers. Bill’s Internet paranoia in action once again, I guess. LOL.

Keeping applications up to date though, when automatic updates are turned off, can be a hit and miss affair. But there are solutions, and CNET’s free TechTracker application is one such solution. TechTracker is a Cloud based application which will detect, and download, updates for all of your installed software.

Once you have setup a free CNET account, TechTracker will query it’s own huge database after auditing your PC’s applications, to determine which local programs can be updated.

Updating installed applications is not just a question of increased functionality in the updated version, but more importantly, ensuring that any installed application which contains a vulnerability is updated in order to reduce your exposure to malware.

The following graphic illustrates a scan I did recently, which returned a report (the report is hosted on CNET’s site), indicating a number of applications which could be updated.

I choose to update CurrPorts, a free port checker which I use to continuously track my ports while I’m connected to the Internet. The graphic below indicates a successful download.

Setting the scan frequency with TechTracker couldn’t be easier, and you can choose, manual, every 4 hours (a little excessive I think), daily, weekly (which seems appropriate), or monthly.

I’ve just started testing this application, but I’m inclined to give it a tentative “thumbs up”. Any application that will make my computing experience just a little easier is a welcome addition.

System requirements: Windows (all), Mac OS X 10.5 Intel, Mac OS X 10.5 PPC.

Download at: Download.com

If you enjoyed this article, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.