do you know about smart uac replacement.

Discussion in 'other anti-malware software' started by acuariano, Jul 18, 2010.

Thread Status:
Not open for further replies.
  1. acuariano

    acuariano Registered Member

    Joined:
    Nov 4, 2005
    Posts:
    786
    do you guys ever read about this?..it says it can be use in xp systems too.
    -will this replace limited account or something like it.
    will this work with sandboxie?...or conflict with it..

    http://www.replaceuac.com/
     
  2. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    good find!
    I'll do some test on it on my Windows XP SP3 now :thumb:

    I'll see what I could find with my small brain :argh:
     
  3. Greg S

    Greg S Registered Member

    Joined:
    Mar 1, 2009
    Posts:
    1,039
    Location:
    A l a b a m a
    Got bad reviews here at Wilders. At the moment, I can't find that past topic for some reason. I gave it a try on XP way back. Liked the idea of it but not the way it's implemented. I tried the latest version in Win 7. It works better in Win 7 but still don't like some things that it does. Natuarlly it turns off Win 7 UAC since it's a replacement for it but with that you also lose IE 8 Protected Mode for whatever that's worth. It will also try to momentarily disable Win 7's Firewall and maybe others. I think it does this to add itself to the exception list for both directions. Been a while and can't remember for sure. Personally, I wouldn't use it. I only tested it for someone and rolled back after testing.

    Found the links
    https://www.wilderssecurity.com/showpost.php?p=1294291&postcount=14
    https://www.wilderssecurity.com/showthread.php?t=216856
    https://www.wilderssecurity.com/showthread.php?t=221547&highlight=smart replacement
     
    Last edited: Jul 18, 2010
  4. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    Virustotal Result: :thumb:

    ~Virus Total results removed per Policy.~
     
    Last edited by a moderator: Jul 18, 2010
  5. acuariano

    acuariano Registered Member

    Joined:
    Nov 4, 2005
    Posts:
    786
    well wot syas site is bad.
    also good links about the product Greg
     
  6. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    The vendor behind this program Security stronghold,was formerly on the SW rogue list for another of it's products Truesword.Not in itself sufficient reason to avoid this product,but personally I'd feel uncomfortable handing over control of my system to these people :doubt: .

    http://www.winvistaclub.com/s17.html
     
  7. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
  8. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,544
    :gack:
    • It needs a "manual" reboot during installation. It does not auto reboot.
    • It needs administrative access on first run.

    I don't know how Windows Vista/7 UAC works... so I can't compare.


    ReplaceUAC test:

    • I ran xp_Antispy = ReplaceUAC did not throw any popup on execution.
    • I ran a Warcraft III which is already installed = it did gave me an allow or deny popup
    • I tried to install a game which uses InstallShield Wizard = no popup during installation, however after installation... I executed the installed game that's when it gave me an allow or deny popup.
    • I launched a portable bootleg Photoshop = Allow/Deny popup showed.
    • I tried to install McAffee SiteAdvisor = it gave me a popup during installation

    o_O I'm confused. o_O

    McAffee SiteAdvisor Reports it: RED


    Stopping tests. Bye!
     
  9. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    Out of curiosity I installed this on an XP VM and in fairness it functioned very like the 'real' UAC.Also it intercepted the few pieces of malware I chucked at it.
     

    Attached Files:

  10. Greg S

    Greg S Registered Member

    Joined:
    Mar 1, 2009
    Posts:
    1,039
    Location:
    A l a b a m a
    No popup would indicate that it's already in their approved list of, it didn't need a UAC popup. <--- In testing, that was another feature I didn't like. It can be turned off but I found it didn't make any difference. Somehow it still compared against their so called database of legit elevated apps.
     
  11. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    i will give this one a try;)
     
  12. acr1965

    acr1965 Registered Member

    Joined:
    Oct 12, 2006
    Posts:
    4,954
    I have ran the Norton UAC tool for Vista and it is one of my favorite Vista tools, bar none. It does not replace UAC but can remember approved programs and allow their execution- I think it somehow intercepts the UAC prompt and sends a message to UAC to allow. If a program is changes, ie updated/upgraded, you will get a new prompt to decide to allow or not. Besides the convenience of not having to "allow" a known good program to run, the obvious plus of the Norton UAC took is that UAC is still active and as such, IE still runs in protected mode, etc.

    I wish Norton would have made this tool available for Windows 7. If anyone is using it on Windows 7 successfully please post.

    http://www.symantec.com/norton/theme.jsp?themeid=labs_uac&header=0&depthpath=0
     
  13. Greg S

    Greg S Registered Member

    Joined:
    Mar 1, 2009
    Posts:
    1,039
    Location:
    A l a b a m a
    Tried this one on two different family members Vista OS. In short it became buggy after a while. I know it's highly praised and rightfully so but I found it to be the opposite
     
  14. Kid Shamrock

    Kid Shamrock Registered Member

    Joined:
    Apr 3, 2007
    Posts:
    207
    I've been using a free program called UAC Controller. It allows you to shut off the UAC prompts without losing IE8 protected mode. It's available here: http://www.itknowledge24.com/. I've been using it for about three weeks, no conflicts or problems noted yet.
     
  15. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    this tool is very cool it is like mini hips:D
     
  16. acr1965

    acr1965 Registered Member

    Joined:
    Oct 12, 2006
    Posts:
    4,954
    does it work on a standard account in Windows 7?
     
  17. Kid Shamrock

    Kid Shamrock Registered Member

    Joined:
    Apr 3, 2007
    Posts:
    207
    I'm sure it would, I'm running Win 7 Ultimate 32-bit with an admin account. :D
     
  18. Sveta MRG

    Sveta MRG Registered Member

    Joined:
    Aug 16, 2009
    Posts:
    207
    Whilst we have not examined this particular application in our labs yet, we would advise extreme caution until it has been properly assessed. We spend a reasonable proportion of our time researching rogues and the organisations behind them and notice similarities between this product and the rogues.

    Firstly, the Replace UAC site uses the same graphics as the rogue Antispyware site:

    http://www.replaceuac.com/

    ~ Removed Link as per Policy - We don't want inexperienced users clicking over to a Malware site ~

    Secondly, the authors copyright holders name is suspiciously similar:

    Replace UAC = Roman Pavlov

    Rogue Antispyware = Igor Pavlov

    There is a strong focus on reselling / partnership programmes and the commission rates detailed are the same:

    http://www.replaceuac.com/company/

    ~ Removed Link as per Policy - We don't want inexperienced users clicking over to a Malware site ~

    The IP is blacklisted by MBAM and others.

    We will take a look at the application itself later today and post our conclusions.


    Regards,
    Sveta
     
    Last edited by a moderator: Jul 19, 2010
  19. acr1965

    acr1965 Registered Member

    Joined:
    Oct 12, 2006
    Posts:
    4,954
    Is a direct link to a malware site all that good of an idea?
     
Loading...
Thread Status:
Not open for further replies.