Need a good enterprise solution!

[WANguy2k]

I'm currently looking at enterprise (not stand-alone) anti-spyware software. I'm currently evaluating Pest Patrol and Spy Sweeper. If anyone is using a network/server-based solution and has any recommendations I'd appreciate it.

I know there's plenty of free PC-based stuff out there like S&D but I specifically need a centrally managed solution.

TIA

 

[AnalogAnomaly]

I belive adaware offers an enterprise solution, pest patrol is alright, but i would stay away from spy sweeper. as for spybot search and destroy, you can force the automatic distribution of up-to-date-definitions but as great as spybot is (even better when run right before running adaware) i know not of any method that doesn't envolve scripting to force scans automaticly.

 

[crisc]

Some AV products have added anti-spyware functionality to their software. McAfee for one, and probably others.

 

[WANguy2k]

Thanks everyone.

Analog, I had NAV corporate edition on all our machines, and had to unload it. It caused GPFs, spool errors, etc. (I think they've fixed it since.) I ended up using CA ETrust, but CA has their own problems.

Since spyware has become so prevalent, I'm sure CA and others will develop an add-on program soon, or maybe someone will develop an online version that can be run as part of a logon script. In the mean time I just may load S&D and Ad-Aware on all the machines. What a pain.

 

[verplexd]

WANguy2k,

Did you device against PestPatrol? If so, why? It sounds like I'm in the same situation that you're in and I've been incredibly happy with the PP v5 solution.

I'll have to agree that I don't think that independant spyware/malware/parasite software firms will really have legs in the long term since anti-virus vendors will eventually get into the game. After speaking with several market analysts, the general concensus is that big AV corps are trying to figure out a way to make up additional research costs when providing anti-spyware solutions. What does that mean to us? We're left without an integrated AV/AP solution until they decide to commit to the market. Therefore, we wait. Hrmph.

HTH

 

[rrsub]

I've never had any problems with the Trend-Micro line of products. The only thing I find wrong with Trend-Micro is the crappy marketing they have with their product names.
I've had tons of issues with the rest.

Trend and Sophos seem to be the leader in AV tech anyway.

 

[bfralia]

McAfee has virusscan 8.0i coming out next month that's supposed to have desktop firewall support and spyware support built in. The current 7.1 (I'm talking about enterprise - not consumer versions, will tell you when Spyware is there but doesn't delete or stop it, unless it's considered malware.

You can probably still download an eval copy for testing but I haven't since I wont test with anyone's beta. I only test production software for production use.

For the moment, if I get reports back that someone is getting to much spyware, I call and have them run adaware.

Spyware is a real problem at my company but I'm waiting for version 8.0i since I'm already licensed for it anyway.
No point in spending money I don't have to.

 

[mattjurado]

I'll have to look at Pestpatrol. As a field engineer, all I see everyday is spyware. My experience is this:

1. If you are only using spybot or ad-aware, you're not clean, you need to use both. Basically saying there is no single tool that finds everything. And I don't care what anyone else says, if you scan with spybot, scan with ad-aware after and I'll bet money you find more junk, even if its only registry entries (and no, I'm not talking about stuff in either program's quarantine)

2. Spysweeper is nice, but I see it fail to load a lot on xp machines for some reason. I frequently see an error about failing to load software lists.

3. Even with all 3 tools, some spywares cannot be removed. I bumped into CWS_NS3 yesterday, did a google search, expecting I would have to edit registry keys in safe mode, nope, found nada.

There is no good enterprise solution, but I'll look at Pestpatrol. Right now we're relying on proxy to just kill web access for problem users.

Matt J.

Please always take the time to backup any and all data before performing any actions suggested for ANY problem, regardless of how minor a change it might seem. Also test the backup to make sure it is intact.

 

[bfralia]

We've found that using both AdAware and Spybot are needed to stay pretty clean. You always wonder if it takes two is there more being missed1

 

[WANguy2k]

Thanks for all the ideas guys. From my experience the best strategy seems to be loading Ad-Aware, Spybot, and SpywareBlaster, but this isn't feasible in our organization. I'm currently looking at an application called "Confidence Online" from Whole Security. It's mainly a protection against worms and other executables, but they're adding an adware component in January. This app looks like it might be the wave of the future. It's small, doesn't require signature updates, and their licensing policy is liberal, so you can install it on your network, allow your employees to load it at home, even business partners who connect to your network can load it.

Thanks again for all the suggestions, and keep 'em coming. I'll post again after I eval Confidence Online.