Which virus/spyware scanners?

[Kayman]

On Thu, 08 May 2008 22:45:39 GMT, Al Smith wrote:

> How's Comodo working for you? I tried it a year or so ago, but it
> kept blocking stuff that I didn't want blocked, and didn't need
> blocked. I went back to ZoneAlarm.
>
For the average homeuser, the Windows Firewall in XP SP 2 does a fantastic
job at its core mission and is really all you need if you have an
'real-time' anti-virus program, [another firewall on your router or] other
edge protection like SeconfigXP and practise safe-hex.

The windows firewall deals with inbound protection and therefore does not
give you a false sense of security. Best of all, it doesn't implement lots
of nonsense like pretending that outbound traffic needs to be monitored.

PFW Criticism.
http://en.wikipedia.org/wiki/Persona...all#Criticisms

"Personal Firewalls" are mostly snake-oil.
http://www.samspade.org/d/firewalls.html

Why your firewall sucks.
http://tooleaky.zensoft.com/
"But I quickly realized the truth: The added protection provided by
outbound filtering is entirely illusory."

At Least This Snake Oil Is Free.
http://msinfluentials.com/blogs/jesp...l-is-free.aspx

Deconstructing Common Security Myths.
http://www.microsoft.com/technet/tec...s/default.aspx
Scroll down to:
"Myth: Host-Based Firewalls Must Filter Outbound Traffic to be Safe."

[Kayman]

On Thu, 8 May 2008 14:11:07 -0700 (PDT), void.no.spam.com@gmail.com wrote:

> If you wanted to be certain that a Windows computer was not infected
> with any viruses/spyware/trojans/etc, which scanners would you use?

Security software manufacturers tend to overstate their product description
to instill fear and uncertainty; After all it's all about the $ almighty.
Please step back and try to remove the advertisement hype from your mind.

In WinXP the most dependable defenses are:
1. Do not work as 'Administrator'; For day-to-day work routinely use a
Limited User Account (LUA).
2. Secure (Harden) your operating system (OS).
3. Keep your OS and all software on it updated/patched.
4. Reconsider the usage of MSIE and MSOE.
5. Review your installed 3rd party software applications/utilities;
Remove clutter.
6. Don't expose services to public networks.
7. Activate the in-build firewall and configure Windows not to use
TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving
TCP/UDP ports 135,137-139 and 445 (the most exploited Windows
networking weak point) closed.
7a. If on high-speed internet use a router as well.
8. Routinely practice safe-hex.
9. Regularly back-up data/files.
10. Familiarize yourself with crash recovery tools and re-installing
your OS.
11. Utilize a real-time anti-virus (AV) application and vital system
monitoring utilities/applications.
12. Keep abreast of latest developments - Sh!t happens...you know.
The least preferred defenses are:
Myriads of popular anti-whatever things and staying ignorant.
Educational Reading:
Security @ home
http://home20.inet.tele.dk/b_nice/index.htm

Good luck

[§]

Kayman wrote:
> On Thu, 8 May 2008 14:11:07 -0700 (PDT), void.no.spam.com@gmail.com wrote:
>
>> If you wanted to be certain that a Windows computer was not infected
>> with any viruses/spyware/trojans/etc, which scanners would you use?
>
> Security software manufacturers tend to overstate their product description
> to instill fear and uncertainty; After all it's all about the $ almighty.
> Please step back and try to remove the advertisement hype from your mind.
>
> In WinXP the most dependable defenses are:
> 1. Do not work as 'Administrator'; For day-to-day work routinely use a
> Limited User Account (LUA).
> 2. Secure (Harden) your operating system (OS).
> 3. Keep your OS and all software on it updated/patched.
> 4. Reconsider the usage of MSIE and MSOE.
> 5. Review your installed 3rd party software applications/utilities;
> Remove clutter.
> 6. Don't expose services to public networks.
> 7. Activate the in-build firewall and configure Windows not to use
> TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving
> TCP/UDP ports 135,137-139 and 445 (the most exploited Windows
> networking weak point) closed.
> 7a. If on high-speed internet use a router as well.
> 8. Routinely practice safe-hex.
> 9. Regularly back-up data/files.
> 10. Familiarize yourself with crash recovery tools and re-installing
> your OS.
> 11. Utilize a real-time anti-virus (AV) application and vital system
> monitoring utilities/applications.
> 12. Keep abreast of latest developments - Sh!t happens...you know.
> The least preferred defenses are:
> Myriads of popular anti-whatever things and staying ignorant.
> Educational Reading:
> Security @ home
> http://home20.inet.tele.dk/b_nice/index.htm
>
> Good luck

*hands the kayman a brew*

[Kayman]

On Sat, 10 May 2008 00:05:50 -0500, § wrote:

> Kayman wrote:
>> On Thu, 8 May 2008 14:11:07 -0700 (PDT), void.no.spam.com@gmail.com wrote:
>>
>>> If you wanted to be certain that a Windows computer was not infected
>>> with any viruses/spyware/trojans/etc, which scanners would you use?
>>
>> Security software manufacturers tend to overstate their product description
>> to instill fear and uncertainty; After all it's all about the $ almighty.
>> Please step back and try to remove the advertisement hype from your mind.
>>
>> In WinXP the most dependable defenses are:
>> 1. Do not work as 'Administrator'; For day-to-day work routinely use a
>> Limited User Account (LUA).
>> 2. Secure (Harden) your operating system (OS).
>> 3. Keep your OS and all software on it updated/patched.
>> 4. Reconsider the usage of MSIE and MSOE.
>> 5. Review your installed 3rd party software applications/utilities;
>> Remove clutter.
>> 6. Don't expose services to public networks.
>> 7. Activate the in-build firewall and configure Windows not to use
>> TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving
>> TCP/UDP ports 135,137-139 and 445 (the most exploited Windows
>> networking weak point) closed.
>> 7a. If on high-speed internet use a router as well.
>> 8. Routinely practice safe-hex.
>> 9. Regularly back-up data/files.
>> 10. Familiarize yourself with crash recovery tools and re-installing
>> your OS.
>> 11. Utilize a real-time anti-virus (AV) application and vital system
>> monitoring utilities/applications.
>> 12. Keep abreast of latest developments - Sh!t happens...you know.
>> The least preferred defenses are:
>> Myriads of popular anti-whatever things and staying ignorant.
>> Educational Reading:
>> Security @ home
>> http://home20.inet.tele.dk/b_nice/index.htm
>>
>> Good luck
>
> *hands the kayman a brew*

....as a matter of fact, I've got one *right now* (San Miguel-Pale
Pilsen...mmmh :-)

[Franklin]

On Sat 10 May 2008 03:00:20, Kayman wrote:
> On Thu, 8 May 2008 14:11:07 void.no.spam.com@gmail.com wrote:
>>
>>
>> If you wanted to be certain that a Windows computer was not
>> infected with any viruses/spyware/trojans/etc, which scanners
>> would you use?
>
> Security software manufacturers tend to overstate their product
> description to instill fear and uncertainty; After all it's all
> about the $ almighty. Please step back and try to remove the
> advertisement hype from your mind.
>
> In WinXP the most dependable defenses are:
> 1. Do not work as 'Administrator'; For day-to-day work routinely
> use a Limited User Account (LUA).
> 2. Secure (Harden) your operating system (OS).
> 3. Keep your OS and all software on it updated/patched.
> 4. Reconsider the usage of MSIE and MSOE.
> 5. Review your installed 3rd party software applications
> /utilities;
> Remove clutter.
> 6. Don't expose services to public networks.
> 7. Activate the in-build firewall and configure Windows not to
> use TCP/IP as transport protocol for NetBIOS, SMB and RPC,
> leaving TCP/UDP ports 135,137-139 and 445 (the most exploited
> Windows networking weak point) closed.
> 7a. If on high-speed internet use a router as well.
> 8. Routinely practice safe-hex.
> 9. Regularly back-up data/files.
> 10. Familiarize yourself with crash recovery tools and
> re-installing your OS.
> 11. Utilize a real-time anti-virus (AV) application and vital
> system monitoring utilities/applications.
> 12. Keep abreast of latest developments - Sh!t happens...you know.
>
> The least preferred defenses are:
> Myriads of popular anti-whatever things and staying ignorant.
> Educational Reading:
> Security @ home
> http://home20.inet.tele.dk/b_nice/index.htm
>


Good sensible stuff.

The trouble seems to be that many users want a solution so easy that
they can install and forget it and which needs no maintenance
effort.

The belief that this is possible is sustained by security center
suites which are marketed as if they can do this.

[rodney.usenet@gmail.com]

On 9 mei, 18:48, Straight Talk <b__n...@hotmail.com> wrote:
> On Thu, 8 May 2008 23:48:56 -0700 (PDT), rodney.use...@gmail.com
> wrote:
>
> >On 9 mei, 06:36, Straight Talk <b__n...@hotmail.com> wrote:
>
> >> >I go tohttp://housecall65.trendmicro.com/
>
> >> You really can't rely on online scanners.
>
> >> Online scans are a joke.
>
> >Hi ST,
>
> >Could you explain why online scanners are not reliable ?
> >TIA
>
> Hint: Your computer needs to be fully up and running to do an online
> scan.
>
> This means malware has all the advantages in the world to hide itself.

That makes sense

[rodney.usenet@gmail.com]

On 10 mei, 03:07, Kayman <kaymanDeleteT...@operamail.com> wrote:
> On Thu, 8 May 2008 23:48:56 -0700 (PDT), rodney.use...@gmail.com wrote:
> > On 9 mei, 06:36, Straight Talk <b__n...@hotmail.com> wrote:
>
> >> You really can't rely on online scanners.
>
> > Could you explain why online scanners are not reliable ?
>
> On-line scanners are the most unsafe and next to useless. Because by the
> time you've started your infected Windows and connected to the
> Internet via this infected code base, and start to look for scanning sites
> through infected DNS, you are almost certain to have the malware
> perfectly positioned to overrule your attempts to clean it.

that makes sense

> David's Multi-AV is *better and safer*, because you don't have to be
> on-line to use it (it has no dependencies on using a web browser to perform
> its function), and it can be used in Safe Mode.
>
> http://pcdid.com/Multi_AV.htm

Thanks, already use that. I'm almost dissappointed that none of the
AV's ever find anything.

[rodney.usenet@gmail.com]

On 10 mei, 04:00, Kayman <kaymanDeleteT...@operamail.com> wrote:

> In WinXP the most dependable defenses are:

1 to 10:
check

> 11. Utilize a real-time anti-virus (AV) application and vital system
> monitoring utilities/applications.

What "vital system monitoring utilities/applications" would I be
looking for ?

[Kayman]

On Sat, 10 May 2008 00:25:05 -0800, Craig wrote:

> Kayman wrote:
>> On Sat, 10 May 2008 00:05:50 -0500, § wrote:
>>
>>> Kayman wrote:
>>>> On Thu, 8 May 2008 14:11:07 -0700 (PDT), void.no.spam.com@gmail.com wrote:
>>>>
>>>>> If you wanted to be certain that a Windows computer was not infected
>>>>> with any viruses/spyware/trojans/etc, which scanners would you use?
>>>> Security software manufacturers tend to overstate their product description
>>>> to instill fear and uncertainty; After all it's all about the $ almighty.
>>>> Please step back and try to remove the advertisement hype from your mind.
>>>>
>>>> In WinXP the most dependable defenses are:
>>>> 1. Do not work as 'Administrator'; For day-to-day work routinely use a
>>>> Limited User Account (LUA).
>>>> 2. Secure (Harden) your operating system (OS).
>>>> 3. Keep your OS and all software on it updated/patched.
>>>> 4. Reconsider the usage of MSIE and MSOE.
>>>> 5. Review your installed 3rd party software applications/utilities;
>>>> Remove clutter.
>>>> 6. Don't expose services to public networks.
>>>> 7. Activate the in-build firewall and configure Windows not to use
>>>> TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving
>>>> TCP/UDP ports 135,137-139 and 445 (the most exploited Windows
>>>> networking weak point) closed.
>>>> 7a. If on high-speed internet use a router as well.
>>>> 8. Routinely practice safe-hex.
>>>> 9. Regularly back-up data/files.
>>>> 10. Familiarize yourself with crash recovery tools and re-installing
>>>> your OS.
>>>> 11. Utilize a real-time anti-virus (AV) application and vital system
>>>> monitoring utilities/applications.
>>>> 12. Keep abreast of latest developments - Sh!t happens...you know.
>>>> The least preferred defenses are:
>>>> Myriads of popular anti-whatever things and staying ignorant.
>>>> Educational Reading:
>>>> Security @ home
>>>> http://home20.inet.tele.dk/b_nice/index.htm
>>>>
>>>> Good luck
>>> *hands the kayman a brew*
>>
>> ...as a matter of fact, I've got one *right now* (San Miguel-Pale
>> Pilsen...mmmh :-)
>
> Well then, a tip o' me pint in your general direction, Kayman. Very
> solid survey.
>
Oh boy, I'd better stop posting....all that kindness is making me
intoxicated :-)

[Craig]

Kayman wrote:
> On Sat, 10 May 2008 00:05:50 -0500, § wrote:
>
>> Kayman wrote:
>>> On Thu, 8 May 2008 14:11:07 -0700 (PDT), void.no.spam.com@gmail.com wrote:
>>>
>>>> If you wanted to be certain that a Windows computer was not infected
>>>> with any viruses/spyware/trojans/etc, which scanners would you use?
>>> Security software manufacturers tend to overstate their product description
>>> to instill fear and uncertainty; After all it's all about the $ almighty.
>>> Please step back and try to remove the advertisement hype from your mind.
>>>
>>> In WinXP the most dependable defenses are:
>>> 1. Do not work as 'Administrator'; For day-to-day work routinely use a
>>> Limited User Account (LUA).
>>> 2. Secure (Harden) your operating system (OS).
>>> 3. Keep your OS and all software on it updated/patched.
>>> 4. Reconsider the usage of MSIE and MSOE.
>>> 5. Review your installed 3rd party software applications/utilities;
>>> Remove clutter.
>>> 6. Don't expose services to public networks.
>>> 7. Activate the in-build firewall and configure Windows not to use
>>> TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving
>>> TCP/UDP ports 135,137-139 and 445 (the most exploited Windows
>>> networking weak point) closed.
>>> 7a. If on high-speed internet use a router as well.
>>> 8. Routinely practice safe-hex.
>>> 9. Regularly back-up data/files.
>>> 10. Familiarize yourself with crash recovery tools and re-installing
>>> your OS.
>>> 11. Utilize a real-time anti-virus (AV) application and vital system
>>> monitoring utilities/applications.
>>> 12. Keep abreast of latest developments - Sh!t happens...you know.
>>> The least preferred defenses are:
>>> Myriads of popular anti-whatever things and staying ignorant.
>>> Educational Reading:
>>> Security @ home
>>> http://home20.inet.tele.dk/b_nice/index.htm
>>>
>>> Good luck
>> *hands the kayman a brew*
>
> ...as a matter of fact, I've got one *right now* (San Miguel-Pale
> Pilsen...mmmh :-)

Well then, a tip o' me pint in your general direction, Kayman. Very
solid survey.

thx,
-Craig