Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

How do you scan your downloaded files on-demand for malware before using them?


  • Please log in to reply
6 replies to this topic

#1 midimusicman79

midimusicman79

  • Members
  • 728 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Norway
  • Local time:04:45 PM

Posted 16 March 2016 - 09:26 AM

Hi all!

 

Nowadays, of course by default you have your real-time multi-layered anti-virus, anti-malware and anti-exploit/anti-ransomware tools set to automatically scan your downloaded files for malware, as this is a security-wise imperative. :thumbup2:

 

Moreover, it is equally important to scan your downloaded files on-demand for malware before using them, as this could further help eliminate malware; BTW I speak from experience. :busy:

 

I myself scan all the files that I am about to download with VirusTotals's Vtzilla browser add-on before actually downloading them, and afterwards with my AV/AM (EAM Pro) and MBAM Free. If the files are big however, I use Metascan Online.

 

There are several reputable online file analyzers & services as well as on-demand scanners out there, and hence my question is as follows: How do you scan your downloaded files on-demand for malware before using them?

 

Please specify which tools and methods you use!

 

Thank you very much in advance!

 

Regards,

midimusicman79


MS Win 10 Pro 64-bit, EAM Pro/EEK, MB 3 Free, WPP, SWB Free, CryptoPrevent Free, NVT OSA and Unchecky, WFW, FFQ with CanDef, uBO, Ghostery, Grammarly Free and HTTPS Ew. Acronis TI 2018, K. Sw. Upd. AM-tools: 9-lab RT BETA, AdwCleaner, Auslogics AM, aswMBR, Avira PCC, BD ART, catchme, Cezurity AV, CCE, CKS, ClamWin P., Crystal Sec., DDS, DWCI, EMCO MD, eScan MWAV, ESS/EOS, FGP, FMTB, FRST, F-SOS, FSS, FreeFixer, GMP, GMER, hP BETA, HJT, Inherit, JRT, K. avz4, KVRT, K. TDSSKiller, LSP-Fix, MB 3 Free, MBAR BETA, MA Stinger, NMC, NoBot, NPE, NSS, NVT MRF (NMRF), OTL, PCC, QD, RCS, RSIT, RKill, Rs, SC, SR, SAP, SVRT, SAS, SL, TMHC, TSA ART, UHM, Vba32 AR, VRS, WR (AiO), Xvirus PG, ZAM, ZHPC, ZHPD and Zoek. I have 23 Years of PC Experience. Bold = effective.


BC AdBot (Login to Remove)

 


#2 Agouti

Agouti

  • Members
  • 1,548 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 16 March 2016 - 10:16 AM

How do you scan your downloaded files on-demand for malware before using them?

I don't.  I research programs I am interested in and download from either the home site or a reputable repository.



#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:45 AM

Posted 16 March 2016 - 11:41 AM

I don't.  I research programs I am interested in and download from either the home site or a reputable repository.

Same here.

I seldom use any of the online file analysis services unless I am investigation a suspicious file.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 midimusicman79

midimusicman79
  • Topic Starter

  • Members
  • 728 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Norway
  • Local time:04:45 PM

Posted 17 March 2016 - 09:14 AM

Hi, Agouti & quietman7!

 

Thank you for the prompt and clarifying replies! :)

 

Yes, of course I also research and download files just like both of you. :thumbsup:

 

Regards,

midimusicman79


Edited by midimusicman79, 18 March 2016 - 08:16 AM.

MS Win 10 Pro 64-bit, EAM Pro/EEK, MB 3 Free, WPP, SWB Free, CryptoPrevent Free, NVT OSA and Unchecky, WFW, FFQ with CanDef, uBO, Ghostery, Grammarly Free and HTTPS Ew. Acronis TI 2018, K. Sw. Upd. AM-tools: 9-lab RT BETA, AdwCleaner, Auslogics AM, aswMBR, Avira PCC, BD ART, catchme, Cezurity AV, CCE, CKS, ClamWin P., Crystal Sec., DDS, DWCI, EMCO MD, eScan MWAV, ESS/EOS, FGP, FMTB, FRST, F-SOS, FSS, FreeFixer, GMP, GMER, hP BETA, HJT, Inherit, JRT, K. avz4, KVRT, K. TDSSKiller, LSP-Fix, MB 3 Free, MBAR BETA, MA Stinger, NMC, NoBot, NPE, NSS, NVT MRF (NMRF), OTL, PCC, QD, RCS, RSIT, RKill, Rs, SC, SR, SAP, SVRT, SAS, SL, TMHC, TSA ART, UHM, Vba32 AR, VRS, WR (AiO), Xvirus PG, ZAM, ZHPC, ZHPD and Zoek. I have 23 Years of PC Experience. Bold = effective.


#5 midimusicman79

midimusicman79
  • Topic Starter

  • Members
  • 728 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Norway
  • Local time:04:45 PM

Posted 18 March 2016 - 08:27 AM

Hi again, Agouti & quietman7!

 

I do realize this is a bit late, but anyway I would really like to apologize for having forgotten to include an important sentence in my previous post, so here goes:

 

Thank you all very much for the help! :)

 

Regards,

midimusicman79


Edited by midimusicman79, 18 March 2016 - 09:41 AM.

MS Win 10 Pro 64-bit, EAM Pro/EEK, MB 3 Free, WPP, SWB Free, CryptoPrevent Free, NVT OSA and Unchecky, WFW, FFQ with CanDef, uBO, Ghostery, Grammarly Free and HTTPS Ew. Acronis TI 2018, K. Sw. Upd. AM-tools: 9-lab RT BETA, AdwCleaner, Auslogics AM, aswMBR, Avira PCC, BD ART, catchme, Cezurity AV, CCE, CKS, ClamWin P., Crystal Sec., DDS, DWCI, EMCO MD, eScan MWAV, ESS/EOS, FGP, FMTB, FRST, F-SOS, FSS, FreeFixer, GMP, GMER, hP BETA, HJT, Inherit, JRT, K. avz4, KVRT, K. TDSSKiller, LSP-Fix, MB 3 Free, MBAR BETA, MA Stinger, NMC, NoBot, NPE, NSS, NVT MRF (NMRF), OTL, PCC, QD, RCS, RSIT, RKill, Rs, SC, SR, SAP, SVRT, SAS, SL, TMHC, TSA ART, UHM, Vba32 AR, VRS, WR (AiO), Xvirus PG, ZAM, ZHPC, ZHPD and Zoek. I have 23 Years of PC Experience. Bold = effective.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:45 AM

Posted 18 March 2016 - 06:03 PM

You're welcome on behalf of the Bleeping Computer community.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,705 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 19 March 2016 - 05:53 AM

+1 for Agouti and quietman7

 

I also check for the presence of a digital signature, and if it is valid and who signed it.

 

If I have to check programs of a source that is untrusted, I'll test them in a VM.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users