We know, most of you have been waiting expectantly for quite a long time for the successor of our hugely successful Phrozen VirusTotal Uploader. We are proud to announce that we can finally announce the news: Winja – short for Windows Ninja – is much more than an advanced uploader for a Multi-Antivirus Engine Scanner.
The program was recoded from scratch and applies VirusTotal API’s in a more optimized and sophisticated way to save network resources and time. The program now checks for a previous existence of a scan in the archives of VirusTotal before uploading the file itself. Naturally, we offer an option to rescan a file to get a more recent check of available Anti-virus databases.
The program is also completely redesigned to meet our highest standards and our novel Phrozen Material Component Set combines the style of Google Material and Windows 10 graphical trends.
The program now offers crispy clean and very user-friendly design that operates also very smooth, effective and efficient even on older computers.
The program is designed so that even inexperienced computer users can effortlessly operate Winja.
But we also offer an advanced panel called “Extra Tools” for more expert users. It offers a lot of native system functionalities that allows you to dig deeper into your system and unearth malware from their favorite locations.
This advanced panel was specifically designed and coded to be plugin-ready which means it is ready to be progressively updated via our new Live Update System with any number of functionalities .
It gives you the possibility to send and report any process that looks suspicious using a parent to child hierarchical model view. Combined to the Active Monitoring view (see below in this article) it offer more precision to anticipate malware moves / signatures in your system. (The Active Monitoring currently have only two features but dozen of others will come progressively on future updates)
This function will list any application registered to the Microsoft Windows Task Scheduler system and gives you the possibility to scan, disable:enable or delete any task you find suspicious.
Since many types of common malware use the default Windows Startup Location to trigger a startup, Winja offers the possibility to list any Startup Entry with the same visual style of the latest Microsoft Windows (even on older Windows System starting from Windows XP). The module is therefore very useful to track malware activity.
One unavoidable function is of course the Microsoft Services listing. This is also a very common place used by malware to register their services/drivers to hide their location or activities or even register themselves at Windows Startup.
Malware often uses networks to provide sensitive information to the remote hacker and wait for new tasks to operate on the infected machine. Because of this almost systematic behaviour we implement in version 2 of Winja the Networking Process Monitoring with real time updating support. You can easily identify which processes are communicating with which IP Address in which country to potentiality reveal the presence of a malicious program. As for Process Explorer it also supports the Active Monitoring.
Note: we also developed a plugin-ready (a future development) palette mode to go deeper into the analysis of each process/files.
Like the Mozilla Firefox (F12 Feature) Developer Panel you can open a palette to check for more information about any given item.
It lists the libraries (DLL’s) opened and used by the target process. A good way to check whether or not some suspect libraries are attached to a process. It supports our Live Update System.
Another great feature is one that lists which files are currently attached/used by a running process. It also supports our Live Update System.
As for extra tools plugins, we already have in mind a lot of ideas for future add-ons for this palette, but we want to keep these confidential at this point in time.
As you can see, even in this very first release candidate we already offer you a very complex and soon inevitable program. The future of this program is even bigger and more complex. So stay tuned and keep an eye on available updates (or activate our Live Update Checking System to directly update from the program itself).
BUT you must notice this very IMPORTANT point: Winja is not an Anti-virus software or a replacement BUT a very powerful COMPLEMENT.
We decided not to implement any removal technique in order to not to interfere or compete with existing Anti-virus programs.
Winja was coded to give you an extra layer of security for your system and to hunt for malware that is hiding on your system by offering you the advice from most Anti-virus programs via the possibility of the VirusTotal Google Service.
Also by submitting a file you find suspicious you participate in helping Anti-virus companies to collect samples that you have decided to send for further analysis.
The program is compiled for both 32bit and 64bit systems. The setup file automatically chooses for the executable architecture. Do not attempt to use 32bit version on a 64bit system. This should make some system functions lacking details.