Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: VirusTotal getting annoying cause of FPs

09 Nov 2014   #21
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
Checking executables

I thought I'd post a way of checking any new unsigned executables that attempt to run anywhere on your system but just for information purposes and not to suggest that it's a good idea to install this software. I've been using it for some time. There's a one year free license.

https://secureaplus.secureage.com/Ma...s_download.php

Personally I use the offline No AV version. Once installed the initial scan of executables that are already present on your system takes around an hour or more. Those executables will be whitelisted.

What happens when an unsigned executable attempts to run - you get the option to block it:

VirusTotal getting annoying cause of FPs-secureaplus.jpg

The file gets scanned on VirusTotal and the result is shown.

VirusTotal getting annoying cause of FPs-secureaplus2.jpg

Configuration options:

Prompt when a file is not in the whitelist
VirusTotal getting annoying cause of FPs-secureaplus-settings-1.jpg

Trust the file based on digital signature if it's in the trusted list
VirusTotal getting annoying cause of FPs-secureaplus-settings-2.jpg

Disable AV and rely on your installed AV or optionally enable/ disable it when needed for a secondary scan
VirusTotal getting annoying cause of FPs-secureaplus-disable-av.jpg

Add any application capable of downloading/ creating executables to the restricted application list.

Typically:

Any/all web browsers installed on your computer
Entire MS Office suite (Access, Excel, Outlook, PowerPoint, Word)
Sun (now Oracle) Java
Any media player (Windows Media Player, VLC, iTunes, RealPlayer, QuickTime, Winamp)
Any software that waits and listens for a network connection
Any Adobe product that you see frequently listed within Adobe's Security bulletins and advisories.

No need to add flash player - the plugin is protected by adding the browser's executable.

VirusTotal getting annoying cause of FPs-add-restricted.jpg

When installing trusted software there's an option to "Trust All"
VirusTotal getting annoying cause of FPs-change-mode.jpg

There's also the option to change trust level for any executable on your system
VirusTotal getting annoying cause of FPs-change-trust-level.jpg

I feel that it does add an additional layer of security but it doesn't seem to get mentioned often here on SevenForums. I guess that it suits users who wish to be kept informed of what's going on on their system and who don't mind responding to pop ups. I like pop ups!




My System SpecsSystem Spec
.
10 Nov 2014   #22
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Quote   Quote: Originally Posted by Tookeri View Post
I'll have a look at Metascan, but is it as frequently used as VT? I don't know, but one of best things with sigcheck and VT is that it almost never have to submit any files because someone else has already done it, including recently updates files. Checking thousands of files only takes a few minutes.
MetaScan has been arounf for a bit, I don't see why it wouldn't get as much usage as VT. It works on exacly the same principle as VT.
My System SpecsSystem Spec
10 Nov 2014   #23
Tookeri

Windows 7 Pro 32
 
 

Thanks for the input guys!

And thanks for all the screenshots Callender, much appreciated!
My System SpecsSystem Spec
.

10 Nov 2014   #24
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
Opswat Metascan

Quote   Quote: Originally Posted by Golden View Post
Quote   Quote: Originally Posted by Tookeri View Post
I'll have a look at Metascan, but is it as frequently used as VT? I don't know, but one of best things with sigcheck and VT is that it almost never have to submit any files because someone else has already done it, including recently updates files. Checking thousands of files only takes a few minutes.
MetaScan has been arounf for a bit, I don't see why it wouldn't get as much usage as VT. It works on exacly the same principle as VT.
Sometimes I've used the MetaScan File Uploader

It does seem very similar to VirusTotal.

I also installed Gears from the same company:

Opswat Gears

I removed it as it crashed my machine. I couldn't be bothered to figure out why.

I do find their browser add on very useful though:

Metascan Firefox Add On released

Also available for Chrome.

Scans connections, downloads and ip addresses.

I just like to add additional security if it works without slowing things down too much!
My System SpecsSystem Spec
10 Nov 2014   #25
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Yep....its a brilliant little add-on for a browser
My System SpecsSystem Spec
Reply

 VirusTotal getting annoying cause of FPs




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
AdwCleaner bad VirusTotal result 4/55
AdwCleaner has been recommended from several quarters. I have downloaded "adwcleaner_3.308.exe" from the author ... https://toolslib.net/downloads/viewdownload/1-adwcleaner/ But scans by VirusTotal and Metascan return negative results VirusTotal - fresh scan 31-Aug-2014...
System Security
VirusTotal Uploader
VirusTotal Uploader VirusTotal Uploader (VTup) adds an Explorer context menu that allows you to right click on a file detected as suspicious by any malware scanner or Anti-Virus (AV) application and send it to VirusTotal (VT) for further analysis. . 1. Read the VTup online documentation. ...
Tutorials
VirusTotal: When is it a false positive, when is it new malware?
Hi everyone. Perhaps this is a stupid question, but I'm rather curious if there is any way to confirm that something is a false positive when it comes to malware scans? Recently I've become interested in running a rather old program that's being support out-of-cycle by user generated updates....
System Security
VTzilla - The VirusTotal addon for Firefox
VirusTotal - Free Online Virus, Malware and URL Scanner - Browser Addons
Browsers & Mail
VTzilla-VirusTotal Firefox plugin
A really handy security addon.... read here in browser addons...VTzilla d/l from here P.S. it overlaps browser & security both...so posted here instead of browser section:p
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 19:37.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App