NIST Site Search
Search NIST.GOV
Custom Search
[Official NIST.GOV TIME]
Product Research

Advertise on this site
Free Online Antivirus, Spyware, and Firewall Scanners Review
You might be doing everything right with your anti-virus and spyware malware protection. But no product is perfect and a "second opinion" is always valuable. We get a lot of questions on what to do about viruses, spyware, intrusions, etc. There are so many Anti-Spyware scams, fake products, and Trojans out there that we've put together this (non-affliate) list of free help sites. Starting off with a review of free online virus and spyware scanning tools. (updated 3/31/09)No Longer Supported
Free Online Anti-Virus / Anti-Spyware Tools (and other malware tools) – updated 5/7/2009

All of these sites and products listed below are well known, established companies, and have been tested and reviewed by NIST.org. They will not further junk up your computer. Don't trust malware scanners that you find through a search engine or popups you get when visiting some website. There are a lot of fake products out there and most will only make matters worse! (btw: everything listed below are non-affiliate links. Meaning we don't make a dime if you use them and we weren't paid to place them here. We don't control any Google ads appearing on the sidebar)

You will find that most of the online scanners require you to use Internet Explorer and have ActiveX enabled. The reason is simple, Firefox and Opera do not support ActiveX. ActiveX basically is a way to run applications within your web browser. It can also be very dangerous if you visit untrusted websites (all of these are safe). Which is one of the reasons we recommend using Firefox (see info below). No one spyware / virus checker will detect all malware so if you think you're infected run several of them. Those that say they scan for viruses most likely also detect (and possibly remove) worms and Trojans as well. Some detect and remove Spyware, while others do not. Again, when it doubt run several of them.

Free Online Web Based Malware Scanning Tools (some also remove malware):
Free Installable Always On Antivirus and Malware Prevention Programs
  • Free AVG – A truly free always on anti-virus / anti-spyware program with regular (free) updates.
  • Avast! antivirus Home Edition – Another free always on anti-virus / anti-spyware program. Lots of features including integrated virus cleaner.
  • PestPatrol (Free Spyware Scanner) – Also offers a free downloadable application to scan your hard drive for malware.

Free Off-Line Manual Scan Tools:
  • ClamWin Free Antivirus – An excellent free (and open source) antivirus tool. Can be used in addition with your always on antivirus program as a '2nd opinion'. Has automatic updates and can automatically remove infected file attachments in Outlook.
  • MalwareBytes - This tool is often recommended by the forums dedicated to helping you clena up a malware infection. Its easy to use and does a pretty good job of cleaning up most spyware and many virus infections. Not as powerful as a bootable CD option but easier to use. Definitely should be in your toolbox.

Manual Submission of Suspect Files – These websites will test individual files that you suspect of being infected. They use several up to date commercial antivirus programs:

Free Firewalls
  • ZoneAlarm Firewall - Free version. They also have a very good security suite that includes both a 2 way firewall and an antivirus program (up to 3 home PC's for $49.95)
  • Sunbelt Personal Firewall – Free Addition. This product works very well and will not slow down your computer. 2-way firewall will detect malware on your computer that tries to connect out to the internet.


If you see any good reputable sites we've missed in this review please send them to us. If you are in the market for a anti-virus program AV-Comparatives offers excellent independent testing and comparisons of Anti-Virus programs.
  • While you are scanning your computer you should visit Secunia's Software Inspector to inspect your computer and detect insecure versions of applications installed. It will also verify that Windows patches are applied and assist you with finding updates. Runs through your browser so there is nothing to install.

Need more help? Try the following website forums. Each is full of excellent advice, how-tos, and step-by-step removal instructions. Don't be afraid to ask for help.

Once you get everything cleaned up install Firefox and surf with it rather than Internet Explorer. A lot of web based malware, virus, and spyware problems can be avoided that way. Especially if you add the NoScript extension below. (again, both are absolutely free with no ads or spyware)
  • First, download Firefox – It is MUCH safer than using Internet Explorer and you won't need any help learning how to use it. Its also faster.
  • Second, install the NoScript Firefox extension (directly from Mozilla). Its very easy to install, just click the link and then click ok. It blocks JavaScript, Java, and other plug-ins unless you approve them (e.g. you're visiting a trusted websiet) and remembers sites you've approved so it doesn't bother you again. We wouldn't be caught surfing without it.




Share or Bookmark this Article Using:
| furl | reddit | del.icio.us | magnoliacom | digg | newsvine | stumble it |



Google
WebNIST.org
NIST.govSecurityFocus.com







Posted by NIST.org on Monday 04 May 2009 - 21:16:00 | |printer friendly
Translate to: {GOOGLETRANS}
Google Ads




Headlines

»CVE-2014-9970
jasypt before 1.9.2 allows a timing attack against the password hash comparison.
»CVE-2015-1529
Integer overflow in soundtrigger/ISoundTriggerHwService.cpp in Android allows attacks to cause a den ...
»CVE-2015-4045
The sudoers file in the asset discovery scanner in AlienVault OSSIM before 5.0.1 allows local users ...
»CVE-2015-4046
The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to ex ...
»CVE-2015-4054
PgBouncer before 1.5.5 allows remote attackers to cause a denial of service (NULL pointer dereferenc ...
»CVE-2015-4455
Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For ...
»CVE-2015-4704
Directory traversal vulnerability in the Download Zip Attachments plugin 1.0 for WordPress allows re ...
»CVE-2015-5381
Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x be ...
»CVE-2015-5382
program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows ...
»CVE-2015-5383
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by read ...
»CVE-2015-5401
Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.0 ...
»CVE-2015-5468
Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress ...
»CVE-2015-5469
Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allow ...
»CVE-2015-5609
Absolute path traversal vulnerability in the Image Export plugin 1.1 for WordPress allows remote att ...
»CVE-2015-5682
upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbit ...


Date published: 2017-05-25T05:00:01Z
Details

»Samba Releases Security Updates
Original release date: May 24, 2017 The Samba Team has released security updates that address ...
»ICS-CERT Releases WannaCry Fact Sheet
Original release date: May 17, 2017 | Last revised: May 19, 2017 The Industrial Control Syste ...
»Joomla! Releases Security Update for CMS
Original release date: May 17, 2017 Joomla! has released version 3.7.1 of its Content Managem ...
»Cisco Releases Security Updates
Original release date: May 17, 2017 Cisco has released updates to address vulnerabilities aff ...
»WordPress Releases Security Update
Original release date: May 17, 2017 WordPress versions prior to 4.7.5 are affected by multipl ...
»FTC Releases Alert on Fraudulent Emails
Original release date: May 16, 2017 The Federal Trade Commission (FTC) has released an alert ...
»Apple Releases Security Updates
Original release date: May 15, 2017 Apple has released security updates to address vulnerabil ...
»Multiple Ransomware Infections Reported
Original release date: May 12, 2017 | Last revised: May 15, 2017 US-CERT has received multipl ...
»Cisco Releases Security Update
Original release date: May 10, 2017 Cisco has released a security update to address a vulnera ...
»FTC Announces Resource for Small Business Owners
Original release date: May 09, 2017 The Federal Trade Commission (FTC) has released an announ ...


Date published: not known
Details

»WannaCry shows we need to understand why organizations don't patch
Perhaps the question we should be asking about WannaCry is not ...
»Modern security software is not necessarily powerless against threats like WannaCry
The WannaCry ransomware has affected many organisations around the ...
»Throwback Thursday: CARO: A personal view
This week sees the 11th International CARO Workshop taking place in ...
»VB2016 paper: Uncovering the secrets of malvertising
Malicious advertising, a.k.a. malvertising, has evolved tremendousl ...
»Throwback Thursday: Tools of the DDoS Trade
As DDoS attacks become costlier to fix and continue to increase in ...
»VB2016 paper: Building a local passiveDNS capability for malware incident response
At VB2016, Splunk researchers Kathy Wang and Steve Brant presented ...
»VB2016 video: Last-minute paper: A malicious OS X cocktail served from a tainted bottle
In a VB2016 last-minute presentation, ESET researchers Peter Kalnai ...
»Consumer spyware: a serious threat with a different threat model
Consumer spyware is a growing issue and one that can have serious c ...
»VB2016 paper: Debugging and monitoring malware network activities with Haka
In their VB2016 paper, Stormshield researchers Benoît Ancel and Meh ...


Date published: not known
Details
Main Menu
· Home
Current Security News
 
US-CERT Current Activity

» Samba Releases Security Updates
[24 May 2017 06:30pm]

» ICS-CERT Releases WannaCry Fact Sheet
[17 May 2017 09:14pm]

» Joomla! Releases Security Update for CMS
[17 May 2017 11:48am]

» Cisco Releases Security Updates
[17 May 2017 11:31am]

» WordPress Releases Security Update
[17 May 2017 07:09am]

» FTC Releases Alert on Fraudulent Emails
[16 May 2017 03:10pm]

» Apple Releases Security Updates
[15 May 2017 03:33pm]

» Multiple Ransomware Infections Reported
[12 May 2017 01:05pm]

» Cisco Releases Security Update
[10 May 2017 11:33am]

» FTC Announces Resource for Small Business Owners
[09 May 2017 07:14pm]

***
US-CERT Alerts

» TA17-132A: Indicators Associated With WannaCry Ransomware
[12 May 2017 07:36pm]

» TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors
[27 Apr 2017 04:50pm]

» TA17-075A: HTTPS Interception Weakens TLS Security
[16 Mar 2017 06:40am]

» TA16-336A: Avalanche (crimeware-as-a-service infrastructure)
[30 Nov 2016 10:00pm]

» TA16-288A: Heightened DDoS Threat Posed by Mirai and Other Botnets
[14 Oct 2016 05:59pm]

» TA16-250A: The Increasing Threat to Network Infrastructure Devices and Recommended Mitigations
[06 Sep 2016 04:29pm]

» TA16-187A: Symantec and Norton Security Products Contain Critical Vulnerabilities
[05 Jul 2016 08:50am]

» TA16-144A: WPAD Name Collision Vulnerability
[23 May 2016 05:38am]

» TA16-132A: Exploitation of SAP Business Applications
[11 May 2016 05:31am]

» TA16-105A: Apple Ends Support for QuickTime for Windows; New Vulnerabilities Announced
[14 Apr 2016 01:48pm]

***
Computerworld Security

» Appeals court gives Wikimedia thumbs up to sue NSA for 'Upstream' surveillance
[24 May 2017 09:26am]

» Former NSA chief weighs in on cybersecurity, cyberespionage at ZertoCon
[23 May 2017 03:53pm]

» IDG Contributor Network: Wikileaks reveals potent Windows malware from the CIA
[23 May 2017 03:00pm]

» 4 ways blockchain is the new business collaboration tool
[23 May 2017 04:01am]

» Connecting with work from the road? Here's how to stay safe
[23 May 2017 04:00am]

» 5 ways to stop future global malware attacks
[22 May 2017 03:06pm]

» No, Windows XP didn't fuel WannaCry
[22 May 2017 01:57pm]

» IDG Contributor Network: Winning the war on ransomware
[22 May 2017 12:00pm]

» Leak: Secret Facebook rules on what violence, self-harm and child abuse can be posted
[22 May 2017 07:18am]

» For enterprise protection, antivirus software is no longer enough
[22 May 2017 04:00am]

» Windows Defender does not defend Windows 7 against WannaCry
[21 May 2017 06:37pm]

» The ransomware epidemic: How to prep for a shakedown
[19 May 2017 02:37pm]

» The Windows firewall is the overlooked defense against WannaCry and Adylkuzz
[19 May 2017 10:25am]

» IDG Contributor Network: Who you gonna call?: Getting ready for the next cyber disaster
[19 May 2017 07:03am]

» CW@50: Vint Cerf on his 'love affair' with tech and what’s coming next
[19 May 2017 04:00am]

***
Microsoft Security Advisories

» 4022345 - Identifying and correcting failure of Windows Update client to receive updates - Version: 1.3
[12 May 2017 11:00am]

» 4021279 - Vulnerabilities in .NET Core, ASP.NET Core Could Allow Elevation of Privilege - Version: 1.1
[10 May 2017 11:00am]

» 4010323 - Deprecation of SHA-1 for SSL/TLS Certificates in Microsoft Edge and Internet Explorer 11 - Version: 1.0
[09 May 2017 11:00am]

» 3123479 - SHA-1 Hashing Algorithm for Microsoft Root Certificate Program - Version: 2.0
[14 Mar 2017 11:00am]

» 4010983 - Vulnerability in ASP.NET Core MVC 1.1.0 Could Allow Denial of Service - Version: 1.0
[27 Jan 2017 11:00am]

» 3214296 - Vulnerabilities in Identity Model Extensions Token Signing Verification Could Allow Elevation of Privilege - Version: 1.0
[10 Jan 2017 11:00am]

» 3174644 - Updated Support for Diffie-Hellman Key Exchange - Version: 1.0
[13 Sep 2016 11:00am]

» 3181759 - Vulnerabilities in ASP.NET Core View Components Could Allow Elevation of Privilege - Version: 1.0
[13 Sep 2016 11:00am]

» 3179528 - Update for Kernel Mode Blacklist - Version: 1.0
[09 Aug 2016 11:00am]

» 2880823 - Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program - Version: 2.0
[18 May 2016 11:00am]

» 3155527 - Update to Cipher Suites for FalseStart - Version: 1.0
[10 May 2016 11:00am]

» 3152550 - Update to Improve Wireless Mouse Input Filtering - Version: 1.1
[22 Apr 2016 11:00am]

» 3137909 - Vulnerabilities in ASP.NET Templates Could Allow Tampering - Version: 1.1
[10 Feb 2016 11:00am]

» 2871997 - Update to Improve Credentials Protection and Management - Version: 5.0
[09 Feb 2016 11:00am]

» 3109853 - Update to Improve TLS Session Resumption Interoperability - Version: 1.0
[12 Jan 2016 11:00am]

***


***
Network World Security

» Gravityscan, keeping WordPress sites safe
[24 May 2017 02:34pm]

» Hackers can use malicious subtitles to remotely take control of your device
[24 May 2017 07:48am]

» IDG Contributor Network: PureSec picks up investment because serverless is exciting
[24 May 2017 07:00am]

» Cisco: Secure IoT networks, not the devices
[23 May 2017 05:14pm]

» Network monitoring tools: Features users love and hate
[01 May 2017 04:51am]

» Fight firewall sprawl with AlgoSec, Tufin, Skybox suites
[10 Apr 2017 04:32am]

» Review: Canary Flex security camera lives up to its name
[24 Mar 2017 07:01am]

» Smackdown: Office 365 vs. G Suite management
[16 Mar 2017 07:01am]

» Zix wins 5-vendor email encryption shootout
[13 Mar 2017 04:00am]

» Review: vArmour flips security on its head
[06 Mar 2017 03:50am]

» 5 open source security tools too good to ignore
[21 Feb 2017 07:12am]

» Review: Samsung SmartCam PT network camera
[15 Feb 2017 07:00am]

» Review: Arlo Pro cameras offer true flexibility for home security
[09 Feb 2017 07:01am]

» Hackers can use malicious subtitles to remotely take control of your device
[24 May 2017 07:48am]

» IDG Contributor Network: PureSec picks up investment because serverless is exciting
[24 May 2017 07:00am]

***


More IT Security
News Feeds
More Sponsors

Advertise on this site
RSS Feeds
Our news can be syndicated by using these rss feeds.
rss1.0
rss2.0
rdf

NIST.org is in no way connected to the U.S. government site NIST.gov

This site is © John Herron, CISSP. All Rights Reserved.

Please visit daily to stay up to date on all your IT Security compliance issues.

http://www.nist.org -
Hosted by BlueHost. We've never had a better hosting company.
{THEMEDISCLAIMER}