Arovax Software

SmartHide Release!!!

2007-08-29T02:39:00.000-07:00

Online Security and Privacy solutions company Arovax LLC is glad to announce the final release of its innovative and future-oriented software – Arovax SmartHide.
It was designed to provide you with the most important defence on the web – anonymity. SmartHide will keep your IP address hidden, encrypt and compress your traffic, secure all the protocols on your PC (E-mail, Web-browsing, IM, P2P, etc) and even more.
Great changes and upgrades have been made to its beta-version to adjust SmartHide to the needs of our main experts – our clients!
The hole program has been renewed and a few features have appeared.

Unique proposition!
Now each registered user can invite three friends to join SmartHide users’ community and try the program on their own. They can test and enjoy the program for free!
In SmartHide Release 433 (SSL) port has been closed to prevent Internet criminals from using it to cheat banks and processing services. Paid version of SmartHide won’t have this limitation.

Other modifications and add-ons are the following:

Accelerated network session authorization and startup.
Available individual authorization - now every user can get his/her personal copy of SmartHide.
News section has been added - follow the latest news of Arovax SmartHide changes and road-maps without going to the website. SmartHide official website also has been updated.
FAQ page has been added to help the beginners who only start using SmartHide as a security protection tool.
Also our support system has been modified. Now every registered user can contact our support team and ask any question he or she is interested with.

All beta-testers can enjoy free limited version of Arovax SmartHide by receiving an Invitation code upon request to the admin's PM on the forum.

If you have any questions or inquiries, please contact Arovax Company:
mailto:info@arovaxcompany.com

Product Page:
http://www.smarthide.com

Arovax Community:
http://forum.arovax.com

Arovax Antispyware Signature Database update from 08/22/2007:

2007-08-22T23:33:00.000-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about updates you can find at this forum thread>>>

How to Read Virus Names

2007-08-22T06:14:00.000-07:00

Antivirus vendors generally assign virus names consisting of a prefix, the name, and a suffix. Not all vendors follow this convention, however, and even those who do may sometimes use different designators. When attempting to find information about a particular virus, it can be helpful to understand how the names are formed.

The prefix
The prefix (when used) identifies the type of virus or malware it is. W32 or Win32, for example, denote that it is a Windows 32-bit infector and thus impacts Windows 95, 98, 2000, 2003, XP, Me, NT 4.0. Those that impact only Windows 95/98 often have prefixes of W95. Other vendors apply prefixes that are more indicative of the type of threat, rather than the platform it infects. For example, a TROJ prefix implies the file is a Trojan Horse, an I-Worm prefix indicates it is an Internet/email worm, and OM signifies that it is a Microsoft Office macro virus.
W97M, WM, X2KM are other examples of macro virus prefixes that denote both the fact that it is a macro virus and provides clues as to what versions of Office (or products within Office) are impacted. The prefix is usually separated from the name by an underscore, a period, or a slash.

The name
Following the prefix is the actual name of the malware. For example, W32/Bagle has a prefix of W32 and the worm itself is dubbed Bagle.

The suffix
Many viruses belong to the same family but are slightly different. To differentiate between these variants, antivirus vendors assign an alphabetical suffix. The original virus (or worm, Trojan, etc.) generally does not have a suffix assigned until after further variants of the same threat are discovered. For example, W32/Bagle became W32/Bagle.A after the 'B' variant was discovered. Subsequent variants are assigned descending letters of the alphabet, i.e. Bagle.A, Bagle.B, Bagle.C through to Bagle.Z. When the end of the alphabet has been reached, the count starts over. This will repeat as many times as necessary. As of October 2004, the prolific Gaobot variants had reached W32/Gaobot.BOW.

The modifier
Some vendors also add a modifier after the suffix that further describes what type of malware it is. For example, @mm signifies a mass-mailing email worm and @dl is used by some to designate a downloader. Using the above information, we can quickly see that W32/Bagle.BB@mm is a Bagle variant that is a mass-mailing email worm impacting Windows 32-bit systems.

Arovax Antispyware Signature Database update from 08/15/2007:

2007-08-16T04:32:00.000-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about this you can find at this forum thread>>>

One Virus - Different Names

2007-08-14T05:52:00.000-07:00

A group of security experts known as the Computer AntiVirus Researcher Organization (CARO) first attempted to develop a standard virus naming scheme in the form of the 1991 New Virus Naming Convention" (NVNC '91). But a great amount of new types of Internet infections had appeared since then and different AV laboratories began to name them creating criterias and categories on their own. This results in that different vendors assign different names to the same virus.

Costin Raiu illustrated this situation in a sipmle but popular way:
"If we were to name every new virus with some word derived from its payload, like "March6", "January Friday 13th" or "CrashWindows" the fictional exchange illustrated below could become commonplace:
(A1 - Analyst1, works for the respectable AV company C1)
(A2 - Analyst2, works for the most respectable AV company C2)
(A3 - Analyst3, works for the (even more) respectable AV company C3)

A1: "Hey A2, have you seen that new beast, the 'Newyork' virus?"
A2: "You mean the one which fills all the files on disk with 'New York'?"
A1: "No, that's the 'NYFiller' virus, I mean the one which shows a message box with the text 'New York New York'"
A2: "Could be, I remember having seen two of them, one was a macro virus and the other one infecting Linux ELF files"
A1: "Hm, the 'Newyork' I was thinking of actually infects Windows PE files"
A2: "Ah, but I think I know what you mean, however, the one I've seen shows a message box stating 'New Orleans New Orleans'. We are calling it 'NewOrleans', of course."
A1: "Hm, that must be a new version of our 'NewYork' virus with a modified message. I think you should rename your 'NewOrleans' virus to something like 'NewYork(version:Orleans)'."
A2: "Hey, wait a minute, why not rename _your_ virus to 'NewOrleans(York)'?"
A3: "Hey guys, have you seen the new virus which fills all the files on disk with 'New Delhi'? We're calling it 'NewDelhi', of course."
A1: "Arghhh..."
A2: "Who designed this stupid payload-based naming scheme anyway...?"

Keyloggers Know What You Have Written

2007-08-07T05:13:00.000-07:00

About keyloggers
Keylogger is a software program or hardware device that is used to monitor and log each of the keys a user types into a computer keyboard. The user who installed the program or hardware device can then view all keys typed in by that user. Because these programs and hardware devices monitor the keys typed in a user can easily find user passwords and other information a user may not wish others to know about.
Keyloggers, as a surveillance tool, are often used by employers to ensure employees use work computers for business purposes only. Unfortunately, keyloggers can also be embedded in spyware allowing your information to be transmitted to an unknown third party.

Once keystrokes are logged, they are hidden in the machine for later retrieval, or shipped raw to the attacker. A keylogger normally consists of two files: a DLL which does all the work and an EXE which loads the DLL and sets the hook. Therefore when you deploy the hooker on a system, two such files must be present in the same directory.

There are other approaches to capturing info about what you are doing.

Some keyloggers capture screens, rather than keystrokes.
Other keyloggers will secretly turn on video or audio recorders, and transmit what they capture over your internet connection.

Keyloggers types
1. Hardware Keyloggers. These are small inline devices placed between the keyboard and the computer. Because of their size they can often go undetected for long periods of time - however, they of course require physical access to the machine. These hardware devices have the power to capture hundreds of keystrokes including banking and email username and passwords.
2. Software using a hooking mechanism. This type logging is accomplished by using the Windows function SetWindowsHookExe that monitors all keystrokes. The spyware will typically come packaged as an executable file that initiates the hook function, plus a DLL file to handle the logging functions. An application that calls SetWindowsHookExe is capable of capturing even autocomplete passwords.
3. Kernel/driver keyloggers. This type of keylogger is at the kernel level and receives data directly from the input device (typically, a keyboard). It replaces the core software for interpreting keystrokes. It can be programmed to be virtually undetectable by taking advantage of the fact that it is executed on boot, before any user-level applications start.

Preventing keystroke capture

On the web application side, one method to avoid keystroke capture is to use a virtual keyboard for entering the username and password. A virtual keyboard is analogous to a graphical keypad where a user clicks on the characters rather than types them on the keyboard. This approach may not be practical for every user, for obvious reasons. However, it can be still be useful for very sensitive applications. Note however that even this approach is not completely secure, as some keyloggers are designed to capture screenshots on every mouse-click.
Another method of avoiding keystroke capture is to ask the user to enter the characters of the password randomly. For example, an application can ask the user to enter the 1st, 3rd and 5th (odd placed) characters of the password and then the characters in the even places. However this sequence has to change every time or else anyone capturing the password can easily reconstruct the original password - and additionally, the application must support this approach.

Arovax SmartHide Open Beta-Test and Wishlist

2007-08-02T05:17:00.000-07:00

Dear Arovax Community!

Before the upcoming release of new Beta-version of Arovax SmartHide we are starting an open beta-test of the previous version of Arovax SmartHide Beta.

Arovax SmartHide is a perfect solution for the biggest online problem - Complete Anonymity.
This unique program will keep your IP address (and your identity) hidden; secure all the protocols on your PC (E-mail, Web-browsing, Instant Messaging); provide full encryption of your traffic while working in Internet, and a lot more.

Being extremely user-friendly, Arovax SmartHide secures the data you send over Internet. You also get compression of all your traffic, so you can pay less to your internet providers!

Everyone who wants to test the previous version of Arovax SmartHide - please visit this thread of our forum for further instructions.

Arovax Antispyware Signature Database update from 08/01/2007:

2007-08-02T05:16:00.001-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about this you can find at this forum thread>>>

Botnets: What are They?

2007-08-01T05:43:00.000-07:00

A botnet (also known as a zombie army) is a number of Internet computers that, although their owners are unaware of it, have been set up to forward transmissions (including spam or viruses) to other computers on the Internet.
Any such computer is referred to as a zombie - in effect, a computer "robot" or "bot" that serves the wishes of some master spam or virus originator. Most computers compromised in this way are home-based.
According to a report from antivirus labs, botnets - not spam, viruses, or worms - currently pose the biggest threat to the Internet. An average of 57,000 active bots was observed per day over the six months of 2006.
An attacker usually gains control by infecting the computers with a virus or other malicious code that gives the attacker access. Your computer may be part of a botnet even though it appears to be operating normally. Botnets are often used to conduct a range of activities, from distributing spam and viruses to conducting denial-of-service attacks.
The main problem with botnets is that they are hidden and may stay undetected unless you are specifically looking for certain activity.

What can you do to protect yourself?

Use and maintain anti-virus software - Anti-virus software recognizes and protects your computer against most known viruses, so you may be able to detect and remove the virus before it can do any damage.
Install a firewall - Firewalls may be able to prevent some types of infection by blocking malicious traffic before it can enter your computer and limiting the traffic you send.
Use good passwords - Select passwords that will be difficult for attackers to guess, and use different passwords for different programs and devices.
Keep software up-to-date - Install software patches so that attackers can't take advantage of known problems or vulnerabilities.
Follow good security practices - Take appropriate precautions when using email and web browsers to reduce the risk that your actions will trigger an infection.

Arovax AntiSpyware Roadmap (Updated 30.07.2007)

2007-07-30T04:20:00.000-07:00

This roadmap lists features that are planned for the future. It is not complete and it is not final and it will change with time. We just would like to give you an overview of where Arovax AntiSpyware development is standing and what can you expect in the coming releases.

Current Version: 2.1.143 release!

Features on the Wall
These features get our attention right now and are planned for the nearest release.
Last edited: July 30, 2007

* Three scan modes: quick, full and optional
* Incremental database update
* Automatic software update
* Open format of the language file
* System scanning right after database update

Arovax Antispyware Signature Database update from 07/18/2007:

2007-07-19T02:10:00.000-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about this you can find at this forum thread>>>

How to Learn About the Penalties for Violating Computer Virus Laws

2007-07-18T07:14:00.000-07:00

Everyone involved in e-commerce and digital intellectual property should understand the penalties for violating Computer Virus Laws in order to gain a full appreciation of this new problem.

How To Do Just About Everything proposes a few steps to learn about the penalties for these violations:

Step One
Look over the Computer Fraud and Abuse Act of 1984 on the Department of Justice website (see Resources below). This piece of legislation makes it illegal to sell passwords, utilize computer systems without proper authorization and steal information from a financial institution's computers.

Step Two
Contact your state's consumer protection department in order to help stop computer viruses. Most states have a consumer protection organization that has a series of ongoing campaigns, including technology and intellectual property issues. A good example of a consumer protection agency on the state level is the New York State Consumer Protection Board (see Resources below).

Step Three
Learn about computer virus laws from a qualified criminal attorney. Contact the American Bar Association to get in touch with pro bono attorneys who deal with criminal and intellectual property law (see Resources below).

Step Four
Inquire about computer viruses and ways of violating computer systems from an information technology (IT) expert. A better understanding of computer viruses violating your computer can help you develop a larger picture of your legal case. Your local university will typically have an IT department that can answer public questions.

Warning: Somebody's Phishing You!

2007-07-10T04:51:00.000-07:00

Phishing is the term coined by hackers who imitate legitimate companies in e-mails to entice people to share passwords or credit-card numbers. Typically, the messages appear to come from well known and trustworthy Web sites. Web sites that are frequently spoofed by phishers include PayPal, eBay, MSN, Yahoo, BestBuy, and America Online. A phishing expedition, like the fishing expedition it's named for, is a speculative venture: the phisher puts the lure hoping to fool at least a few of the prey that encounter the bait.

Phishers use a number of different social engineering and e-mail spoofing ploys to try to trick their victims. In one fairly typical case before the Federal Trade Commission (FTC), a 17-year-old male sent out messages purporting to be from America Online that said there had been a billing problem with recipients' AOL accounts. The perpetrator's e-mail used AOL logos and contained legitimate links. If recipients clicked on the "AOL Billing Center" link, however, they were taken to a spoofed AOL Web page that asked for personal information, including credit card numbers, personal identification numbers (PINs), social security numbers, banking numbers, and passwords. This information was used for identity theft.

Potential uses of your information: Control of victim's financial accounts, open new bank accounts, transfer bank balances, apply for loans, credit cards and other goods/services, luxury purchases, hide criminal activities, receive government benefits or obtain a passport.

Tips on how to avoid phishing:

If you receive an unexpected e-mail saying your account will be shut down unless you confirm your billing information, do not reply or click any links in the e-mail body. For example, PayPal will never ask you in an email: Credit and debit card numbers, Bank account numbers, Driver's license numbers, Email addresses, Passwords, Your full name.
Look for misspellings and bad grammar. While an occasional typo can slip by any organization, more than one is a tip-off to beware.
Beware of the @ symbol in a URL. Most browsers will ignore all characters preceding the @ symbol, so this Web address -- http://www.respectedcompany.com@thisisascam.com -- may look to the unsuspecting user like a page of Respected Company's site. But it actually takes visitors to thisisascam.com.
Before submitting financial information through a Web site, look for the "lock" icon on the browser's status bar. It means your information is secure during transmission.
If you are uncertain about the information, contact the company through an address or telephone number you know to be genuine.

Arovax AntiSpyware 2.1.143 is released!!!

2007-07-07T02:13:00.000-07:00

New version of Arovax Antispyware became much better. Now database update and system scan can be scheduled. We also fixed some errors and improved user interface. These are the main changes in the version 2.1.143:

New: "Scheduler: scheduling database updates and scans"
New: "Arovax Company news panel"
New: "Full compatibility with Windows Vista"
Fixed: "Bug with sending reports with last scan log"
Fixed: "Bug with counter during files scan"
Fixed: "Bug with scanning files with restricted access"

Please download the latest version of Arovax Antispyware here>>>

Arovax Antispyware Signature Database update from 07/04/2007:

2007-07-06T05:37:00.000-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about this you can find here>>>

Internet Worms

2007-06-27T04:22:00.000-07:00

People use e-mail more than any other application on the internet, but it can be a frustrating experience, with spam and especially e-mail worms filling our inboxes.
Worms can spread rapidly over computer networks, the traffic they create bringing those networks to a crawl. And worms can cause other damage, such as allowing unauthorized access to a computer network, or deleting or copying files.

History
The first incarnations of internet worms weren't the malevolent threat they are today. These early worms (developed in 1982 at Xerox's Palo Alto Research Center by John Shock and Jon Hepps) were in fact, designed to perform useful tasks within a network.
Despite the evident usefulness of these programs it was also clear that, in the wrong hands they could quite easily be turned to malevolent uses.
The first true Internet worm (and probably the most famous) was released on 2nd November 1988 by Robert T. Morris. It attacked Sun and DEC UNIX systems attached to the Internet and within 24 hours had invaded 4,000-6,000 machines.
The Melissa Worm was first recognized on 26th March 1999, it was the first major mail worm - a form of worm which was to become hugely prevalent. Melissa was written by David L. Smith and named after a lap dancer he met in Florida.
Melissa contained a Word macro virus but unlike previous viruses of this type it could spread in a semi-active manner. It attacked Microsoft's Outlook and Word programs (Any time an infected user attached a Word document to an email, this email sent to the first 50 addresses in the recipients' address book if they use Outlook as the mail client).
In 2001 active worms made a return to prominence. The first of these worms to be noticed was called Code Red. Code Red was a relatively simple worm which affected computers running Microsoft's Internet Information Server (IIS) web server. It infected over 350,000 servers in just over 12 hours. Once it infected a system Code Red waited for 20-27 days to launch denial of service attacks on several fixed IP addresses. (Including the IP address of the White House).

How do they spread?
A worm is similar to a virus by its design, and is considered to be a sub-class of a virus. Worms spread from computer to computer, but unlike a virus, it has the capability to travel without any help from a person. When you receive a worm over e-mail, it will be in the form of an attachment, represented in most e-mail programs as a paper clip.
If you click on the attachment to open it, you'll activate the worm, but in some versions of Microsoft Outlook, you don't even have to click on the attachment to activate it if you have the program preview pane activated.
The biggest danger with a worm is its capability to replicate itself on your system, so rather than your computer sending out a single worm, it could send out hundreds or thousands of copies of itself, creating a huge devastating effect. One example would be for a worm to send a copy of itself to everyone listed in your e-mail address book. Then, the worm replicates and sends itself out to everyone listed in each of the receiver's address book, and the manifest continues on down the line. Due to the copying nature of a worm and its capability to travel across networks the end result in most cases is that the worm consumes too much system memory (or network bandwidth), causing Web servers, network servers and individual computers to stop responding.
Other worms can use multiple methods of spreading. The MyDoom worm, which started spreading in January 2004, attempted to copy infected files into the folder used by Kazaa, a file-sharing program. The Nimda worm, from September 2001, was a hybrid that had four different ways of spreading. According to Computer Economics, the associated damage from Code Red and Nimda came to $3.72 billion.

How to protect your computer?

Make sure you visit Windows Update site frequently.
Most antivirus programs also provide a feature that allows you to update their definitions automatically – make sure you enable that as well.
Remove Spyware and Adware.
Prevent Spam.
Basically there is no one absolute defense from anything – use a combination of software and hardware protection.
Don’t run files from unknown sources, and confirm with the sender the authenticity of any unexpected attachment, especially an executable file (*.exe, *.scr, *.bat, *.com, *.vbs, *.cmd, etc).

Strong Passwords: Tips

2007-06-21T01:29:00.000-07:00

One of the problems with passwords is that users forget them. Different networks, sites and applications have their own password requirements and more classified or personal information merits stronger, more unique authentication.
It is difficult when your employer requires a password of at least 8 characters that must include at least one number and one special character, but your bank requires a password of at least 6 characters that must include at least one uppercase, one lowercase and oner numerical character. Then, one web site you visit only allows a 4-character password, all numbers, and an application you use requires an 8-character password, but doesn't allow numbers or special characters.
In an effort to not forget them, users indicate simple things like their dog’s name, their son’s first name and birthdate, the name of the current month - anything that will give them a clue to remember what their password is.
For the curious hacker who has somehow gained access to your computer system this is the equivalent of locking your door and leaving the key under the doormat. Without even resorting to any specialized tools a hacker can discover your basic personal information- name, children’s names, birthdates, pets names, etc. and try all of those out as potential passwords.
To create a secure password that is easy for you to remember, follow these simple steps:

1. Do not use personal information.
You should never use personal information as a part of your password. It is very easy for someone to guess things like your last name, pet's name, child's birth date and other similar details.

2. Do not use real words. There are tools available to help attackers guess your password. With today's computing power, it doesn't take long to try every word in the dictionary and find your password, so it is best if you do not use real words for your password.

3. Mix different character types. You can make a password much more secure by mixing different types of characters. Use some uppercase letters along with lowercase letters, numbers and even special characters such as '&' or '%'.

4. Use a passphrase. Rather than trying to remember a password created using various character types which is also not a word from the dictionary, you can use a passphrase. Think up a sentence or a line from a song or poem that you like and create a password using the first letter from each word.
For example, rather than just having a password like 'yr$1Hes', you could take a sentence such as "I like to read the About.com Internet / Network Security web site" and convert it to a password like 'il2rtA!nsws". By substituting the number '2' for the word 'to' and using an exclamation point in place of the 'i' for 'Internet', you can use a variety of character types and create a secure password that is hard to crack, but much easier for you to remember.

5. Use a password management tool. Another way to store and remember passwords securely is to use some sort of password management tool. These tools maintain a list of usernames and passwords in encrypted form. Some will automatically fill in the username and password information on sites and applications.
Arovax TraySafe password manager was created specially to relieve computer users of headaches about lost passwords, typing usernames, passwords and storing securely valuable information.

Using the tips above will help you create passwords that are more secure, but you should still also follow the following tips:

Use different passwords. You should usea different username and password for each login or application you are trying to protect. That way if one gets compromised the others are still safe. Another approach which is less secure, but provides a fair tradeoff between security and convenience, is to use one username and password for sites and applications that don't need the extra security, but use unique usernames and more secure passwords on sites such as your bank or credit card companies.
Change your passwords. You should change your password at least every 30 to 60 days. You should also not re-use a password for at least a year.
Enforce stronger passwords: Rather than relying on every user of the computer to understand and follow the instructions above, you can configure Microsot Windows password policies so that Windows will not accept passwords that don't meet the minimum requirements.

Secure your Credit Card information

2007-06-06T06:22:00.000-07:00

Internet Fraudsters keep on finding new methods of using the Internet to scam innocent consumers and online users, which is said to be the common targets. This fraud is very popular because of its anonymity and less risk involved. Added to the fact that not so many countries are already ready to face this disaster and have strong policies and law to pursue the case against the suspected fraudster.
Fraud on the Internet includes, but is not limited to: fraudulent or fake web sites, untrustworthy websites, phishing (fishing) for personal information with fraudulent emails, Online auction frauds - buyers and sellers, increased Nigerian 419 Advance Fee Fraud, Lottery Advance Fee Scams, Business Opportunities & Work from Home Scams, International Modem Dialing and Cramming, and credit card fraud.

Take the first 8 digits of a standard 16-digit credit card number. Search for them on Google. Since the 8-digit prefix of a given card number is often shared with many other cards, about 1/4 of credit card numbers in my random test, turned up pages that included other credit card numbers, and about 1 in 10 turned up a "treasure trove" of card numbers that were exposed through someone's sloppily written Web app.

Protect from what?
The most common and most successful frauds are done through the use of stolen credit card information, which was obtained in many ways:

Worms that contains malicious code to extract information from the infected computers. In the past, worms were designed primarily to propagate. Now, many of the significant worms are designed to steal sensitive information such as credit card numbers, social security numbers, pin codes, and passwords and send the information to the attacker for nefarious purposes including identity theft. Unfortunately, attackers have become very adept at circumventing traditional defenses such as anti-virus software and firewalls. Arovax Shield detects and notifies you about all major online threats trying to penetrate your system, isolates & blocks them.
Frauds can get access to information about your online credit card payments through your PC in case you ever used online services for purchasing something from the sites that are not secured.
Installation of keyloggers and monitoring software of the users’ computers. Keyloggers are a form of spyware that tracks person's keystrokes and then sends the information to someone who can translate and exploit it. This can copy the keystrokes on e-mail, instant messenger, and any other Internet activity. The person collecting the information can get information such as credit card numbers, user names and passwords, and more. These handy little devices have been around for sometime but the increase of spyware has brought them out to the front and center. It is easy to infect a computer with this type of software and very common. A user can easily go to the wrong web site and get infected or someone can manually place this on the computer, as well.
Using privacy leaks in your system, frauds get such information about you as your name, your street address or your email, masquerade as a trustworthy person and send you an apparently official email trying to find out your credit card pin and number. Your IP address or "Internet Address" can be used to trace your location and personal information. With Arovax SmartHide whenever you visit websites, your real IP address is not provided to the other people involved in the transaction. Most hacking is based on using your real IP address, which the hacker won’t be able to get, without that they have no idea where to hack into.

Electronic mail (email) is also vulnerable. This is because, like the real post, it spends a lot of time being stored and awaiting delivery: for instance, if a telecommunications link fails, then email that would have used that link will stay, waiting, until the link is restored. It is in principle possible for someone to bribe a computer operator at one of the mail servers and thus somehow gain access to all undelivered mail. A sophisticated program might then be able to extract anything that looked like a credit card number.
Remember, the amount of risk in giving out a credit card number is limited by two important factors:

Anyone taking card numbers from that Web site and trying to use them before they were cancelled, would have put him/herself in a very difficult position. To use a card number and expiration date, without a physical card, to purchase tangible goods by phone or over the Web, you need to give an address to which the merchandise will be delivered, which makes the transaction very traceable. Cash advances require PIN numbers which you never give to online retailers. So the thief would be limited to paying for on-line memberships or buying "soft goods," such as software, content, and music, that can be dowloaded directly from a Web site; and companies in that business tend to take extra precautions to prevent credit card fraud because of their unique vulnerability.
The credit card company limits your liability. Federal law limits your liability to $50 if someone makes unauthorized charges to your account, and most credit card issuers will remove them completely if you report the problem promptly. There are new technologies, such as “substitute” credit card numbers and password programs, that can offer extra measures of protection from someone else using your credit card.

Your level of comfort in using your credit card on the World Wide Web is a personal matter.

How to decrease risks?

Know who you’re dealing with. If the seller or charity is unfamiliar, check with your state or local consumer protection agency and the Better Business Bureau. Some Web sites have feedback forums, which can provide useful information about other people’s experiences with particular sellers. Get the physical address and phone number in case there is a problem later.
Be aware that no complaints is no guarantee. Fraudulent operators open and close quickly, so the fact that no one has made a complaint yet doesn’t meant that the seller or charity is legitimate. You still need to look for other danger signs of fraud.
Don’t believe promises of easy money. If someone claims that you can earn money with little or no work, get a loan or credit card even if you have bad credit, or make money on an investment with little or no risk, it’s probably a scam.
Understand the offer. A legitimate seller will give you all the details about the products or services, the total price, the delivery time, the refund and cancellation policies, and the terms of any warranty.
Resist pressure. Legitimate companies and charities will be happy to give you time to make a decision. It’s probably a scam if they demand that you act immediately or won’t take “No” for an answer.
Be cautious about unsolicited emails. They are often fraudulent. If you are familiar with the company or charity that sent you the email and you don’t want to receive further messages, send a reply asking to be removed from the email list. However, responding to unknown senders may simply verify that yours is a working email address and result in even more unwanted messages from strangers. The best approach may simply be to delete the email.
Beware of imposters. Someone might send you an email pretending to be connected with a business or charity, or create a Web site that looks just like that of a well-known company or charitable organization. If you’re not sure that you’re dealing with the real thing, find another way to contact the legitimate business or charity and ask.
Guard your personal information. Don’t provide your credit card or bank account number unless you are actually paying for something. Your social security number should not be necessary unless you are applying for credit. Be especially suspicious if someone claiming to be from a company with whom you have an account asks for information that the business already has.
Beware of “dangerous downloads.” In downloading programs to see pictures, hear music, play games, etc., you could download a virus that wipes out your computer files or connects your modem to a foreign telephone number, resulting in expensive phone charges. Only download programs from Web sites you know and trust. Read all user agreements carefully.

Arovax AntiSpyware roadmap is updated!

2007-05-18T13:47:00.000-07:00

News Tab like the one in Arovax Shield;
Database download Scheduler;
Scan Scheduler;
All the files which are written to HDD should be written to the Application Data folder;
Windows Vista compatibility.

You can always stay up on all the latest news and updates visiting Arovax Community Forum.

Arovax Shield roadmap is updated!

2007-05-18T13:44:00.000-07:00

Current public version: 2.1.103

This roadmap lists features that are planned for the future. It is not complete and it is not final and it will change with time. We just would like to give you an overview of where Arovax Shield development is standing and what can you expect in the coming releases.

• New, completely remade Graphical User Interface;
• More reliable System Registry Monitoring level;
• Protection from modification of Executing files;
• Rules creation for access to Registry and File system for each separate application;
• Two levels of control over system activity: Normal and High;
• More advanced Events Log.

Arovax Antispyware Signature Database update from 05.05.2007:

2007-05-06T15:02:00.000-07:00

We would like to inform you that Arovax Antispyware Signature Database has been updated.
Full information about this you can find here>>>

Long-awaited Arovax AntiSpyware 2.0.113 is released!

2007-04-27T11:16:00.000-07:00

Dear friends!

The time has come and we have released the first big update among planned by Arovax Team on our softwares.

New Arovax Antispyware has become even more reliable and effective. Arovax Antispyware Spyware Database is completely updated, a lot of trusted applications and registry keys were added which allows to discover malicious software and to distinguish it from the legal software.
All found malicious software are now automatically checked for removing, and those items which will be marked as unknown can be sent to the Arovax lab for the further research and analysis.
Latest release of Arovax Shield is completely compatible with Windows Vista. New version includes fixes to the bugs which lead to AS failure. One of the most important features of the new update is the implemented regular Signature database update. Arovax AntiSpyware is now able to completely secure your system from the most latest viruses, trojans, spyware, etc.

These features were implemented in this release:

New: Full compatibility with Windows Vista.
New: Single package of installation for Windows 2000/XP/2003/Vista.
New: Database now contains records about “Good” programs (White list)
New: Automatical selection of malicious records
New: Much faster working with the registry and file system.
Fixed: Sometime Arovax Shield is crushed when user is installing ActiveX components or IE toolbars.
New: If Arovax Antispyware discovered unknown records during the scan – you can send them to the Arovax lab for the research
Fixed: Bug with counter during files scan

Please download the latest version of Arovax Antispyware here>>>

Arovax Shield v2.1.95 is released

2007-03-05T11:27:00.000-08:00

In this release startup folder monitoring problems and hosts file monitoring problems in automatic mode have been fixed. In addition much faster IE cookies scan has been implemented.

Arovax SmartHide 1.0.256 beta version!

2007-03-05T09:47:00.000-08:00

Dear Beta-testers!

A new version of Arovax SmartHide 1.0.256 has been uploaded to the Download section of your Beta-Tester Members Area.
SmartHide 1.0.256

Please download the latest version and test it thoroughly.

The cnages include complete re-writing of the program kernel and code, implementation of the new approach where all the traffic goes through anonymous server both UDP and TCP.
Right now you do not need to play with Ports, ALL your traffic is automatically encrypted, compressed and anonymous.

For the rest members of Arovax Community I want to remind, that you can still apply for Beta-testing registering here and waiting for our approvement.

Arovax Shield 2.1.90 beta version is released!

2007-02-13T21:25:00.000-08:00

New version has a number of features:

New: Much faster Firefox cookies scan.
New: Now Arovax Shield defines the process which tries to change the hosts file.
New system of monitoring files and folders. Now it works on kernel mode.
New: Now Arovax Shield is saving the settings after update.
New: New technology "SDT-Antipatch".
New: Arovax Shield is now fully compatible with Windows Server 2003 on the x86 platform.
Fixed: Startup folder monitoring problems in Windows 2000.
Fixed: "Problems with Terminal Service.
Fixed: "Crash while exiting Arovax Shield in Windows 2000.
Fixed: "Problems during moving the files to startup folder.

If your copy of Arovax Shield does load your CPU too much during work with Firefox - please try this version of AS.

Download Arovax Shield for Windows 2000/XP!
Download Arovax Shield for Windows Server 2003!