Trend Micro Anti-Spyware 3.11

Discussion in 'other anti-malware software' started by Macstorm, Nov 30, 2005.

Thread Status:
Not open for further replies.
  1. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,531
    Location:
    Sneffels volcano
    Hi,

    Does anyone here using this great program? I wonder how frequent are the definitions updates from the maker because current def. version 2.99 is dated from 11/16/2005o_O Competition releases def. updates almost daily...
    Thanks
     
  2. zapjb

    zapjb Registered Member

    Joined:
    Nov 15, 2005
    Posts:
    3,518
    Location:
    USA - Back in a real State in time for a real Pres
    I use it & like it. But I know what you mean.
     
  3. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,097
    Hi Macstorm,

    Recently, I discovered two false positives using TMAS 3.0. What I discovered was that the CWShredder version that was then packaged within TMAS 3.0 was version 2.15, while version 2.18 was the latest - which also could not handle the two false positives.

    The weekend before they released version 2.19 of CWShredder, I experimentally verified the two false positives, and transmitted them to Intermute, but apparently, they will have to wait for the next release as they did not make it into CWShredder v2.19.

    So, what you might do is find out the version of CWShredder that is packaged with TMAS 3.11 and verify that it is the latest version reported on the Trend Micro and Intermute CWShredder distribution websites.

    Note: Trend Micro bought Intermute, so TMAS is Spy Subtract (Intermute's product), and CWShredder in turn was bought out by Intermute before the TM purchase of Intermute.

    CWShredder distribution websites:
    http://www.trendmicro.com/cwshredder/
    http://www.intermute.com/products/cwshredder.html
    http://www.majorgeeks.com/Trend_Micro_CWShredder_d3019.html

    -- Tom
     
  4. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,531
    Location:
    Sneffels volcano
    Thanks for your inputs. I haven't experienced any falses positives using TMAS 3.11 yet, and yes, the CWShredder version wrapped within TMAS is the outdated 2.15. I already have CWShredder 2.19 since it was released with no problems so far; what are the two falses positives that you discovered?

    Also, I'm surprised about space in between releases of signatures/definitions from the maker vs. competitors, as I said earlier.

    Thanks
     
  5. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,097
    Hi Macstorm,

    The false positives are:
    64.91.226.241 www.wilderssecurity.com <- triggers CWS.SmartSearch
    216.239.37.147 news.google.com <- triggers CWS.Svchost32

    Both are additions I manually made to my Hosts file on WinXP in the path:
    C:\WINDOWS\system32\drivers\etc\Hosts

    Trend Micro's main focus is AV, and AS is an add-on for them. I also use PC-Cillin Internet Security 2005 and there is a minor component of AS with a Real-time Spyware Pattern. Yeah, the updates are not as frequent for AS as the AV updates - more than once a day sometimes, and most nearly every day.

    -- Tom
     
  6. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,531
    Location:
    Sneffels volcano
    Thanks Tom,

    Interesting, it is clear now that TMAS can detect any unknown changes on the system, even if they are legit as you did.
    I like TMAS because I find it very unobtrusive for my system, its real-time scanning uses minimal resources.:)

    Thanks
     
  7. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,097
    Hi Macstorm,

    I would not go as far as to say that TMAS can detect "any" unknown changes on the system - certainly not stealthed rootkits for instance.

    That said, do you plan to trial Microsoft AntiSpyware Beta 1 vs TMAS? It will be free after the Beta period is over from Microsoft! It too contains real-time agents.

    -- Tom
     
  8. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,531
    Location:
    Sneffels volcano
    Thanks Tom,

    I already tried MAS a couple months ago, just curious, it only found LimeWirePro as a threat:D so I uninstalled it. To be honest, I'd like to wait until the official release of MAS.

    Thanks for your inputs:)
     
  9. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,097
    Hi Macstorm,

    You might have quite a wait as the current release of MSAS Beta 1 expires as of July 31, 2006.

    If you decide to reuse it in the meantime and have trouble updating see my other posts about it here at Wilders for a solution for manually downloading the three definition files via web browser.

    -- Tom
     
  10. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,531
    Location:
    Sneffels volcano
    Thanks Tom, I'll follow your suggestions:)

    Regards
     
Loading...
Thread Status:
Not open for further replies.