The comparison currently covers the following software packages:
| Package | BCWipe | BCWipe | BCWipe | Burn-it! | Clean Disk Security | Disk CleanUp | East-Tec Eraser | Eraser | Eraser | Eraser | File Destroyer | File Shredder 98 | Invincible Shred | Kremlin Encryption Suite | McAfee Shredder | Mutilate File Wiper & Swapfile Overwriter | PeekBoo | PGP Wipe | Puffer | Reflex Data Shredder | SAFE Erase | Scorch | Scorch & Scour | ScramDisk | SecureShred | Shiva, Destroyer of Files | Shredder95 | Shredder Lite | Skratchit Secure Delete | Terminus | WipeClean | WipeInfo | WipeInfo |
| Version reviewed | v2.25 | v2.27.2 | v2.28 | v1.0.1 | v4.1 | v3.5 | v2.0, build 2.0.0.154 | v3.00.2308 | v3.60.3339 | v4.00.3543 | v1.00 | v3.3.0 | v1.0.0.1 | v2.21 | Nuts'n'Bolts 98 (Explorer reports product version 2,0,0,0 on SHRED32.exe and SHRED32.dll) | v2.33, build 211 | v2.01a | v6.0.2i | v3.0c | v1.2 Ref (120) | v1.01 | v1.01 | Scorch: v1.02
Scour: v1.00 |
v2.02h | v1.0 (SR-2) | v2.05 | v1.16 | v2.0 | v1.0 | v4.0, build 39 | v2.0 | Norton Utilities v8.0 | Norton Utilities 2000 v4.5 |
| From | Jetico, Inc | Jetico, Inc | Jetico, Inc | Syncronys Softcorp | Kevin Solway | Gregory Braun | East Technologies | Sami Tolvanen | Sami Tolvanen | Sami Tolvanen | Net Services | Lushann Technologies | Invincible Data Systems, Inc. | Mach5 Software | McAfee/Network Associates | Craig Christensen | Tom St Denis | Network Associates, Inc. | Briggs Software | Reflex Magnetics | GTC | Iolo Davidson | Iolo Davidson | Aman | Pro-Creative Systems | Isis Software | Gale-Force | Infraworks Corporation | Micro Logic Consultants | Electronic Fantasy World | JCL Developments | Norton (Symantec) | Norton (Symantec) |
| Screenshots | Here | Here (GUI appearss unchanged from v2.25) | Here (GUI appearss unchanged from v2.25) | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here (GUI appears unchanged from v1.01) | Here | Here | Here | Here | Here | Here | Here | Here | Here | Here |
| OS Supported | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95 (Appears to work with 98, although not "officially") | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 3.x/95/98 | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98 | Windows 95/98/NT | Windows 95/98 | DOS, Windows 95/98. Possibly NT also? | DOS, Windows 95/98. Possibly NT also? | Windows 95/98 (NT version under development (June 1999)) | Windows 95/98/NT | Windows 95/98 | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | Windows 95/98/NT | DOS, Windows 95/98 | Windows 95/98 |
| NTFS | Yes | Yes | Yes | ? | ? | ? | Yes | Yes | Yes | Yes | No | ? | ? | ? | ? | Yes | ? | Yes | ? | ? | No | ? | ? | ? | ? | No | ? | Yes | ? | Yes | ? | No | No |
| Shell Support | Yes | Yes | Yes | Yes | Yes | No | Yes (fully configurable) | Yes | Yes | Yes | No | No | Yes | Yes | Only "Send To" entry | Only "Send To" entry | No | Minimal; see notes | No | Yes | Yes | No | No | No | Only "Send To" entry | No | Only "Send To" entry | No | No | Yes; but very badly done | No | No | Minimal; only for shredding free space |
| Command line support | Yes; but does display a window while it is deleting. Does not ask for confirmation. | Yes; but does display a window while it is deleting. Does not ask for confirmation. | Yes; but does display a window while it is deleting. Does not ask for confirmation. | No | Yes; but only to display windows dialog initialised with the command line options. Dialog disappears after the shred operation is completed. | Yes | Yes; but only to display windows dialog initialised with the command line options, which doesn't go away after the shred operation is completed | Yes | Yes | Yes | Yes, but only to initialize the main dialog with the command line parameters supplied | No | No | Yes (use secdel.exe), displays progress dialog while wiping | Yes. Displays dialog asking for confirmation. | Yes. Displays dialog asking for confirmation.
Swapfile overwriter (optionally) does not ask for confirmation |
No | No | No | No | No | Yes (DOS based program) | Yes (DOS based program) | No (not for shredding, anyway) | Yes, but only to specify file(s) to delete | Yes, but only to initialize the main dialog's list of files to be deleted | Yes | No | No | Yes, but only to display a dialog initialised with the files for shredding. Dialog stays on screen even after shredding | No | Yes (DOS based program) | No |
| Silent operation (with no dialogs or confirmation messages) | No | No | No | No | No | No | No | Yes | Yes | Yes | No | No | No | No | No | Yes, but only for the swapfile overwriter | No | No | No | No | No | N/A | N/A | No | No | No | No | No | No | No | No | No; screen flickers when /BATCH specified on command line | No |
| Overwrite algorithm | DoD 5200.28-STD
User defined number of passes of random chars |
DoD 5200.28-STD
User defined number of passes of random chars |
DoD 5200.28-STD
User defined number of passes of random chars |
DoD
When shredding freespace, this is fixed to 8 passes (but can be cancelled halfway through) |
User defined number of passes of random chars
NIS (aka DoD) Gutmann |
Overwrite with 0xF6
DoD |
Many, incl DoD and Gutmann. Also has a 100% user configurable option | DoD
Gutmann (default) User defined number of passes of random chars |
DoD
Gutmann (default) User defined number of passes of random chars |
DoD
Gutmann (default) User defined number of passes of random chars Or any user defined pattern of pseudorandom and set chars |
10 passes of random chars | Up to 1000 passes of ramdom chars (up to 250 passes with 4 "levels") | Not specified anywhere; see WARNING in note below | A variation on DoD, writes alternate 0's, 1's, random and the binary
complement to the file
Repeats this a user defined number of times |
One pass of 0's
DoD |
One pass of 0's
One pass of random chars, 1's, then 0's Three times the above option User defined number of passes of random, 0's and 1's Swapfile overwriter only uses just one pass of 0's |
Not specified, but appears to be one pass of 0x55 | Free space: User defined number (1-32) of passes
Modified Gutmann Files: Not specified |
User defined number (0-10) of passes of random chars | 3 different overwrite methods supported:
"High" - unknown method "Medium" - DoD 5220.22-M "Low" - unknown; appears to be one pass of 0xAA |
Unknown; appers to be one pass of 0's | User defined number of passes (0-7) of random chars, plus an optional pass in which the original data is inverted | Scorch: User defined number of passes (0-7) of random chars, plus an
optional pass in which the original data is inverted
Scour: A single pass of random chars. |
User defined number of passes of random chars | Overwrite with all 0's
DoD (two different versions) User defined number of passes with user defined chars |
DoD
Invert the data stored being shredded (1->0, 0->1) User defined number of passes of random chars Overwrite with all 0's Overwrite with all 1's - or any combination of the above |
Overwrite twice
DoD 2xDoD |
One pass, overwriting with 0's | Not specified; see notes below | 1 pass of all 1
3 pass random 8 pass "bit level" (all 0, all 1, alternate 0/1) 3 pass random/8 pass "bit level" combined User can specify how many repititions of the above should be carried out. |
Not specified | Pass of a user defined character
DoD 5220.22-M Can repeat either of the above a user defined number of times |
Pass of a user defined character
DoD 5220.22-M Can repeat either of the above a user defined number of times |
| Destroys files | Yes - see WARNING in notes below | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Yes | Yes | Yes - see WARNING in notes below | Yes; see WARNING in note below | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes (Scorch) | No | Yes | Yes; but only if they have a file extension | Yes | Yes, but only after being moved to the recycle bin and it is emptied | Yes - see WARNING in notes below | Yes | Yes | Yes - see WARNING below | Yes |
| Filenames destroyed | Yes; overwritten with random chars | Yes | Yes; overwritten with random chars | No | No | N/A | Yes | Yes, but only under NT, not 95/98 | Yes, but only under NT, not 95/98 | Yes, but only under NT, not 95/98 | Partially - after deleting a file, the short version of the filename remains, but all old directory entries in the same directory as the file just deleted, and the LFN of the file are overwritten. | Yes; seems that the files are renamed to another filename with the same number of chars | No | No | Yes | No | No | Yes, but only under NT; fails under 95/98 | No | No | No | No | No | n/a | No | No | Yes; filename is overwritten with "shredder95 shredder95" | No | No | Only destroys part of the filenames; the LFN entries, but not the short filenames | No | Short filenames are destroyed, but not LFNs | Yes - see notes below |
| Destroys directories | Yes | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Yes | No | No | Yes; see WARNING in note below | Yes | Yes | Yes | No | Yes | No | Yes | Yes | No | No | No | Yes | No | No | Yes, but only after being moved to the recycle bin and it is emptied | No | Yes | No | Yes, but only the files in directories; the directory structure remains | Yes |
| Destroys free space | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | No | Yes - see WARNING in notes below | No | Yes | Yes | Yes | No | Yes | Yes | Yes | No | No | Yes (Scour) | Yes | No | Yes; registered version only | Yes; registered version only | Yes | Yes - see WARNING in notes below | Yes | No | Yes | Yes |
| When destroying free space, old filenames are overwritten | Sometimes; old filenames overwritten with random data, but this is unreliable | Yes(?) | Sometimes; old filenames overwritten with random data, but this is unreliable | No | No | No | No | Yes; directory entries are zeroed | Yes; directory entries are zeroed | Yes | N/A | No | N/A | No | Yes; directory entries are zeroed | No | n/a | Yes; directory entries are zeroed | No | No | N/A | N/A | No | No | N/A | No | No | No | No | No | N/A | No | Yes |
| Destroys slack space when destroying free space | Yes | Yes | Yes | No | Yes (registered version only) | No | Yes | Yes | Yes | Yes | No | No | N/A | Yes | Yes | No | n/a | Yes | Yes | No | N/A | No | Yes (Scour) | No | No | Yes, but only for files you specify (i.e. there is no option to overwrite the slack space on all the files on your HDD, unless you specify each file individually) | No | No | No | No | No | Yes; done in a separate operation though | Yes |
| Wipe Windows swapfile option | Yes, but runs under windows | Yes, but runs under windows | Yes, but runs under windows | No | Yes; restarts the computer in DOS mode before shredding the swapfile | No | No | Yes; but only works under NT | Yes; but only works under NT | Yes; but only works under NT | No | No | No | Yes, but runs under Windows | No | Yes, runs in DOS, comes as a separate utility | No | No | Yes, but must restart in DOS mode before running the DOS swap file overwriter | No | No | Yes, but you must restart in DOS to do this | Yes, but you must restart in DOS to do this (Scorch) | Sortof; wipes swapfile "slack"(?!) | No | No | No | Automatically wiped on system shutdown. If your swapfile is not fixed, then whenever it shrinks, that disk area no longer used with be overwritten. | Yes - see WARNING in notes below | No | No | No | No |
| Licence and pricing | Free for non-commercial use | Free for non-commercial use | Free for non-commercial use | Shareware; 14 days evaluation. No longer sold or officially supported by syncronys, although you may still be able to purchase it from them store | Shareware version with no expiry, but does have nag screens. Registered version is $25 | Shareware; 30 day evaluation. Registration is $20.00 | 30 day shareware evaluation. Registration is $39.95 | Freeware | Freeware | Freeware | Freeware | Shareware version can only destoy 100 files; registration is $20 | Data Lock for keyboard is freeware.
A 60 day trial version of Invincible Disk is available for download. Full version costs $39.95. See WARNING in notes below re the 60 day trial. |
30 day shareware evaluation. Registration is $35 | Commercial package; part of Nuts'n' Bolts 98 | 12 day shareware evaluation. Registration is $20 | Freeware | Commercial and Freeware versions | Shareware; 30 days evaluation. Registration is $29 | Shareware; indefinate trial version (although there are limitations to Reflex Data Vault which it is a part of). Full version costs $75 | Evaluation version available with no time limit (encryption system is has a fixed password), $59 for the full version | Shareware; 30 days evaluation. Registration is 1 UK pound, or $2. | Shareware; 30 days evaluation. Registration is 1 UK pound, or $2 for each of Scorch and Scour. | Freeware; not for commercial use | Shareware; 21 days evaluation. Registration is $25 | Shareware version can only be used 13 times, though it can't count properly, so you'll probably only be able to use it about 7 times. Registration costs $19.95 and also allows free space to be wiped. | Shareware version will only shred 20 files and will not wipe free space. Registration costs $49.50 | Demo version is freeware; full version is $35 | Shareware; 30 day evaluation. Registration is 10 UK pounds. | Shareware with 15 day evaluation period after which some functionality is disabled.Registration is $29.95 | Shareware version can only be run 10 times. Registration is $24.95 | Commercial package; part of the Norton Utilities (v8.0) | Commercial package; part of the Norton Utilities 2000 (v4.5) |
| Homepage | No longer available; see BCWipe (v2.27.2) instead | No longer available; see BCWipe (v2.28) instead | http://www.jetico.com/products.htm | http://www.syncronys.com/ftp/ | http://www.ozemail.com.au/~ksolway/clndisk.html | http://www.execpc.com/~sbd/CleanUp.html | http://www.east-tec.com/eraser/ | http://www.tolvanen.com/eraser/ | http://www.tolvanen.com/eraser/ | http://www.tolvanen.com/eraser/ | http://www.compulink.co.uk/~net-services/fd/ | http://www.lushanntechnologies.com/fs.htm | http://www.incrypt.com/idisk01.html | http://www.mach5.com/kremlin/ | http://download.mcafee.com/prod_info/nuts_bolts.asp | http://home.att.net/~craigchr/mutilate.html | http://peekboo.dasoft.org/ | http://www.pgpi.com/ | http://www.briggsoft.com/puffer.htm | http://www.reflex-magnetics.co.uk/products/dv_1.htm | http://www.globetech.se/safe/ | http://www.bonaventura.free-online.co.uk/realdelete/ | http://www.bonaventura.free-online.co.uk/realdelete/ | http://www.scramdisk.clara.net/ | http://procreativesystems.com/shred/ | http://www.isis-software.com | http://www.gale-force.com/shredder95/ | http://www.infraworks.com/products/shredder_lite/ | http://www.fermi.demon.co.uk/prod01.htm | http://www.gnt.net/~dmaster/terminus/ | http://www.jcldev.com/wipecln.htm | http://www.symantec.com | http://www.symantec.com |
| Direct download | No longer available; see BCWipe (v2.27.2) instead | No longer available; see BCWipe (v2.28) instead | bcwipe.exe | BurnItDemo.exe | clndisk.exe | CLEANUP.ZIP | eteras20.exe | eraser30.zip
mfcdlls.zip (MFC DLLs, if needed) 401comupd.exe (Common control dialogs upgrade, if needed) |
eraser36.zip
secure-move-patch.zip (Patch to enable rightclick secure move) (DO LONGER AVAILABLE - download latest version of Eraser; see other column) mfcdlls.zip (MFC DLLs, if needed) 401comupd.exe (Common control dialogs upgrade, if needed) |
eraser40.zip
(to download the various DLLs , if required, see Common libraries) |
fd100.exe(with
VBRUN300.DLL)
fdl100.exe ("Lite" version, without VBRUN300.DLL) |
FS98.zip (includes VB6 runtimes) | None; check their download page | None; check download page | None - commercial only | mut233rt.zip
(with VB5 runtimes)
mutil233.zip(without VB5 runtimes) mutswap.zip (the Mutilate Swapfile Overwriter) |
peekboo.exe | Check at http://www.pgpi.com/ for details | puf1630c.zip
(16 bit version)
puf3230c.zip (32 bit version) |
DV9x_1r6.zip (95/98 version; there is no NT eval version) | None; check download page | No longer available; use Scorch v1.02 instead | scorch.zip
scour.zip |
sdisk202h.zip | See download.htm for download and optional random template | shiva.zip | setup.exe | ShredderLiteDemo.exe | skratchit95.exe | It's 8MB! Check download.htm for your nearest download site | wpclean.exe | None - commercial only | None - commercial only |
| MD5 hash of downloaded file | DFC37B8003A4AC45336FFEB7EDE94AD9 | 58AAE8AA92A8FA6CD980A4FC30F5C6DE | 4C8521ECA09F43F2CF144B9634F0B8AA | 0932D5FF2FC6519B92E9A05A5B536060 | 2F16981030CB55E16BD935A32150B91E | 530E3371EB7619A4126F46BE9713A4C7 | B70650187A6B208603826F701155E948 | 6D66FB2243C56B2A38AA5194F898DBA8 | 4768D62007253BC500411248ABFAFAB4 | 943710BC26CEB3780D5C908A623F14FB | C7DB5B856A5ECB001DFEFF7DCF7A74AA (fdl100.exe) | 7DFA8EF1EF9182449B98CBAB082BD86E | IDISK.EXE: 122DE7D98F62A2B7A1721684E035885F
KBDWDOG.EXE: AD70697082FA1513010C75562E7FF064 |
9EA6CAF0BEE876E598B53EFF7F55B899 | ???????????????????????????????? (N/A) | F1005CE0FC449801946C5B51399358D6
(mutil233.zip) 92986D556E6E28C94C4E0D1F49CDF51A (mutswap.zip) |
DCFE2E6FAA6408A2215A187388A16658 | 7F567514CF49531D5D631F1D6A8E51B7 (PGPfreeware602i.exe) | B2A26112E1F381E8B4291AACBA7EF284 (puf3230c.zip) | C39AD0AE0D63A8B3331FF339529374D7
(DV9x_Install.zip) |
C27324BCE507DE462D2814BBDDE0F058 | A0B5FDA7C7D4F2CBD3A22A3438D470FF | B7D9A65B4FE017BEAC7926DFB305D85B
(scorch.zip) B99503C2F769CAE50FE0C79BAC3B7357 (scour.zip) |
E46FAA1AF3BF604423D93F3638A2F953 | BC5475550600D93A8C0D3356957E4CB0 (shred10.zip) | 084BF3155F124EC9A2EAA151F6CDB3D2 | 600BC295F4D64361484DC8B1B293D877 | BA64AC619CED48A40532AA3D72A7AD2B | 31BCC079AB968287AB5DBEAAB4B0C7EF | F4B56EADB990F2500E30748DFC6C57BE (terminus_4.exe) | B4B326CDF64D9F91291CB44BAC165DAF | ???????????????????????????????? (N/A) | ???????????????????????????????? (N/A) |
| Size of download (approx) | 530K | 571K | 574K | 860K | 550K | 130K | 1.3MB | 340K (just for eraser30.zip) | 420K (just for eraser36.zip) | 525K | 280K (fd100.exe)
93K (fdl100.exe) |
2.2MB | IDISK.EXE: 1.1MB
KBDWDOG.EXE: 1.0MB |
1.2MB | N/A | 660K (mutil233.zip)
44K (mutswap.zip) |
47K | 6.7MB (for the whole PGP package) | 540K (32bit version) | 3.5MB | 500K | 15K | 16K (scorch.zip)
20K (scour.zip) |
130K | 750K | 960K | 1.3MB | 1.1MB | 1.9MB | 8MB | 3.1MB | N/A | N/A |
| Contact | support@jetico.com | support@jetico.com | support@jetico.com | Burnit@Syncronys.com | ksolway@poboxes.com | Gregory_Braun@CompuServe.com | webmaster@east-tec.com | eraser@tolvanen.com | eraser@tolvanen.com | eraser@tolvanen.com | steveha@net-services.compulink.co.uk | angelo99@erols.com | ids@InCrypt.com | kremlin@mach5.com | ? | craigchr@att.net | tom@dasoft.org | pgpsupport@pgp.com | kbriggs@briggsoft.com | enquiries@reflex-magnetics.com | info@globetech.se | iolo@iname.com | iolo@iname.com | scramdisk@hotmail.com | support@procreativesystems.com | support@isis-software.com | webmaster@Gale-Force.com | info@infraworks.com | mlc@fermi.demon.co.uk | dmaster@gnt.net | sales@jcldev.com | ? | ? |
| Additional notes/comments | WARNING: One version of this software had a serious bug; when deleting
files or directories with a user defined number of passes set to 1, data
was not being overwritten. This appears to have been fixed in in
the latest relase.
The current version (tested) is v2.25 which comes in a self extracting file "bcwipe.exe" which I downloaded 19th June 1999, file size 536520 bytes. This contains (among other files) "BCWipe.exe" (displays v2.01 when run from the command line, Windows reports v2.03); MD5 hash: 1067554F1ADF81905E44465D501EBFF9 and BCWipe.dll (Windows reports v2.25) MD5 hash: 51E49D090CDB3EE34365DACECC0CDD49 AFAIR, the bugged version of BCWipe.exe also reported v2.01/v2.03? ANOTHER WARNING: When purging free space (two passes), on one test run, it appeared to function correctly, but data could often be recovered. On another test run, some of the filenames of deleted files were recoverable, but their contents had been overwritten with random data in one case, on another, the word "wipexxxx.tmp" appeared frequently in one of the overwritten files, making it obvious that it had been wiped. In another test run, many of the old filenames had not been destroyed, and data could be recovered from some of the files. BCWipe is available on it's own as a freeware package and is also supplied with BestCrypt, although the copy that is supplied with this package does not come with the full help file that is comes with the standalone package. |
Includes BCWipePD - a command line shredder intended to shred the contents
of whole hard drives, including system data areas (not tested in this review)
Appears to function correctly, unlike it's predecessor, with many of
the tests that previously failed seeming to pass correctly. This package
has not been rated as "recommended" yet as v2.25 (see the previous column
on the left) seemed to function correctly some of the time, but not always
(intermittant problems).
|
Appears to the same as v2.27.2 but with a bugfix to fix problem causing
BCWipe to hang when shredding NTFS volumes, and also to fix incorrect wiping
of directory entries on compressed volumes.
One thing I noticed when testing free space shredding; on the test system, it estimated 34mins to complete the operation, in practive it only took 8.5. What the estimate is based on, I'm not quite sure... The fact that filenames were not always correctly overwritten using this version of BCWipe does, IMHO cast some doubt as to v2.27.2's ability to do this correctly, as this was one of the faults with it's predecessor, v2.25... |
No longer supported by the makers.
Shredding free space can be performed under Windows or under DOS (which is recommended) Basic and not very flexible package. Comes with "KeyDisk" for Widnows 95, a file encryption package (which will not work under Windows 98) |
Has options to change the size of the disk buffer used during shredding,
and ability to alter the program's priority.
Displays splashscreen on startup. Does not automatically install a shortcut icon on start menu; this can be set as an option though. Has a nice interface... (Really cute animated icon displayed while running!)
|
100% user configurable shred algorithm | Includes scheduler - but this needs tasktray icon; the app minimised
to a tasktray icon, but needs to be running for this to work; just use
the scheduler that comes with Windows. Having said that, Eraser's inbuild
scheduler does allow you to keep a log and statistics of it's activity
Needs mfc42.dll and msvcrt.dll (check your computer; you've probably got them installed already) Needs v4.70 of common control library - you need to download this separately for 95 or NT (without MSIE v4), but 98 has this already. |
v3.5 not reviewed; v3.6 fixes some problems in v3.5, but does not add
any new functionality.
v3.6 improves on v3.0 in several ways:
2) Adding "Eraser Explorer" - a "mini windows explorer" into it's GUI (which looks a little unusual IMHO, when compared to MS explorer) 3) The ability to queue overlapping tasks in it's scheduler 4) Minor GUI improvements and code optimisation Needs mfc42.dll and msvcrt.dll (v6.0 or latesr) (check your computer; you've probably got them installed already) Needs v4.72 of common control library - you need to download this
separately for 95 or NT (without MSIE v4), but 98 has this already.
|
The most significant change from v3.6 is the ability to allow the user
total freedom in specifying the overwrite algorithm
The source code to Eraser v4.0 has also been released under the GNU General Public License (GPL), and can be downloaded from here |
A 16 bit package that just shreds files one at a time. Wildcards are
not supported, and it can't erase whole directories, which makes it fairly
"klunky" to use.
Looks a bit dated by todays standards as well; it only displays short filename, as you might expect from 16 bit software... |
Displays an annoying splash screen on startup
WARNING: After shredding a file, File Shredder 98 does not appear to actually do the final step of deleting it! This means that you can end up with a whole load of shredded files containing junk on your HDD, all with junk filenames! WARNING: Shredding free space does NOT sppear to work with this software; from using Directory Snoop, it seems that nothing is actually overwritten! When shredding freespace, it sppears to display how far it is though the operation as a percentage to 4 decimal places(!), but it gets it wrong! In tests run, it had finished the operation after it was "0.5319%" of the way though! It's pretty easy to crash as well; I got a "Runtime error 61: Disk full"(!!!) error while shredding free space with more than one pass. Also, it crashed when I doubleclicked on it's tasktray icon while the options dialog was displayed ("Can't show non-modal form when a modal form is displayed"). Does have a couple of nice features though; like an icon that's always on top of all other windows, onto which you can drag'n'drop files to shred them (the "drop pad"), and a "Favorites" function for shredding certain sets of files regularly (although why is it called "Favorites" if you're shredding them?!)
|
Invincible Shred is part of the Invincible dik/Data Lock OTFE package;
see
On-The-Fly Encryption: A Comparison WARNING: This package DOES NOT WORK; instead of shredding files, it just deletes them in the same way as you might by selecting a file in Windows Explorer and pressing <SHIFT+DELETE>. Nothing is actually overwritten on the disk! This shredder should be avoided; it DOES NOT do what it claims to do,
and offers NO SECURITY.
|
Kremlin Wipe is part of the Kremlin package, including a "secure notepad",
and encryption software
Includes the "Kremlin Secure Recycle Bin" which appears to just be an icon on the desktop which you can drag'n'drop files to shred them Also includes a scheduler ("Kremlin Sentry") that allows you to purge free space/user specified directories at specified times, or whenever you shutdown your computer. To use the auto-shred on shutdown option, however, you are forced to specify the type of shutdown you use (reboot/restart/logoff), and that's effectively the only shutdown you can use, regardless of what you tell Windows to do. Has an option to "wipe memory". Well that should be useful if your computer
doesn't have a POWER OFF button... On a more serious note, I'm a little
skeptical of the usefulness of this option, although Gutmann's paper (see
notes below) does mention the possibility of recovering information from
a computer's memory by examining the memory hardware, but I doubt that
this is that high a security risk...
|
McAfee Shredder is part of Nuts'n'Bolts 98
When shredding free diskspace on the test system, the progress bar displayed by this shredder appeared to shoot 85% of the way across, before stopping for a significant amount of time while a disproportionate amount of time was spend shredding the remaining 15 This looks like a pretty nice shredder, but is let down by it's lack
of proper shell support.
|
The main dialog doesn't resize properly.
Requires the VB5 runtimes, which can be downloaded with the package,
or the package is available without the runtimes if you already have them.
|
PeekBoo is a piece of encryption software that allows (among other
things): file encryption/decryption with several different ciphers, public/private
key encryption and "encrypted chat" over the Internet.
Source code is available for download |
PGP Wipe is part of the PGP package.
The source code for PGP Wipe (part of PGP Tools) is freely available for download See also Tom McCune's PGP Questions & Answers for a review of the shredding capabilities of different versions of PGP Shell support is minimal; if you rightclick on a folder you will see a "PGP" menuitem right at the bottom of the context menu. This submenu has a "Wipe" option. This is the only way you can delete entire folders and their contents. Using PGPWipe via PGPTools, you may only wipe files. |
From the same person who write "Directory Snoop"
This package also features encryption using the Blowfish algorithm Interface not too good - in the "add files" dialog, you can't just name a directory to goto it as you can with (for example) a standard Windows File Open dialog. |
Part of the "Reflex Data Vault" OTFE package. See On-The-Fly
Encryption: A Comparison
Only the Windows 95/98 version was reviewed; there is no evaluation version for Windows NT. Reflex Data Shredder installs a shell extension that looks very much like the recycle bin when viewed in explorer (i.e. it adds a new icon on the left pane). This shredder is purely a shell extension
|
Part of the "SAFE Folder" OTFE package. See On-The-Fly
Encryption: A Comparison
Displays a warning if the files the user has selected for shredding include one or more system/hidden/readonly files, and asks for confirmation that the shredding should proceed. |
For wiping your swapfile under Windows 95/98, a program called "Swap
File Overwriter" that uses Scorch is available from http://www.kagi.com/vfstudio/sfo.htm
to automate this process for you.
Uses standard DOS calls to perform overwrite. Has information about "Propeller-head issues" and how many overwrite
passes are really needed (it says one will suffice, even for commercial
data recovery services) (dated 1997).
|
Scorch overwrites files, etc
Scour overwrites free disk space. For wiping your swapfile under Windows 95/98, a program called "Swap File Overwriter" that uses Scorch is available from http://www.kagi.com/vfstudio/sfo.htm to automate this process for you. Uses standard DOS calls to perform overwrites. Scorch v1.02 differs from v1.01 in that it reflects a new WWW address, and the /win3 switch now sets the /nodel switch as well. Scour will not wipe the slack space of readonly/system/hidden files, handle directories nested more than 16 deep or drives greater than 4GB. One thing that I noticed while testing Scour - it's slow! (Or at least that was certainly my impression while it was shredding slack space) Has information about "Propeller-head issues" and how many overwrite passes are really needed (it says one will suffice, even for commercial data recovery services) (dated 1997). |
Part of the "ScramDisk" OTFE package. See On-The-Fly
Encryption: A Comparison
The source code to ScramDisk is freely available for download |
Can be set up to shred recycle bin contents and any user specified directories on shutdown. | Not very good, has few features
Has nonstandard interface in places Crashed a couple of times during testing. It appears that you can only shred files that have a filename extension (e.g. ".txt") - files without a filename extension don't appear in the "files to be shredded" selection dialog! |
Overwrites the filename of shredded files with "shredder95 shredder95", making it pretty obvious what's happened to the file. | Installed into C:\shredder, and did allow this to be changed.
Monitors recycle bin, and whenever it is emptied, the files it stored are shredded |
User interface looks amateurish and badly done
WARNING: When I ran this program to delete my set of test files, it looked as though it was deleting them, but didn't actually overwrite the files. WARNING: When shredding the free space on a test drive, it appeared to be overwriting with "random" data. Closer examination of this "random" data revealed far too many 0x00 characters for the overwrite to be considered random, or even pseudorandom. This is suspicous to say the least. WARNING: "Overwrite the disk area used for swpping programs and data between memory and disk." That sounds like a reasonable description of a swapfile shredder to me. I have a >100MB swapfile on my test machine. When selecting Skratchit's "overwrite swapfile" option, it took about half a second to "wipe" my swapfile. I don't think so somehow - my HDD's not that fast! So this appears to be non functional as well...
|
The shareware package comes as an 8MB download. Yes, you read that
correctly, 8MB
It's buggy; when I tried to delete a directory, it crashed with an "error 53" message. Also, when I selected multiple files in explorer and clicked the context menuitem to destroy them, it launched several copies of Terminus! The GUI is animation-heavy and slow, it uses a non-standard GUI with an ugly font. Has "recycle bin monitor". Basically all it does is tell you if you have any files in the recycle bin when you shutdown/restart/logoff and ask you if you want them destroyed... Ermmm... that's all, it seems! Oh - almost forgot, using this facility puts an icon on your taskbar to give access to all Terminus's functions When asking you to review the list of files to be destroyed, it gives you the short filename versions, not the long filenames, making it harder to check you've got the right files selected. Good points? Well, it does display a pretty dialog while it's shredding... |
Norton Utilities v8.0 was the last 16 bit version of the Norton Utilities.
Superceeded by the 32 bit versions which AFAIK do not include a copy of
WipeInfo.
When tested in a DOS box under Widnows 98, the operation of this program appeard unreliable - sometimes deleting the first 64 bytes or so, sometimes not, but always leaving the majority of the file on the disk. One thing I really didn't like about this program was that when you go to wipe unused diskspace, it's default is to wipe all space (i.e. all the files and all the free space on your HDD) which is a little dangerous... |
Before shredding freespace, WipeInfo performs a quick check of the
drive's integrity
From the readme.txt file: 1) When shredding files, slack space will not be overwritten when shredding files on network or shared drives. 2) Directory entries will be shredded if WipeInfo can get a drive lock on the relevant drive (i.e. if no other software is accessing the drive) Shredding is performed via a "Wizard" WipeInfo displays an annoying splashscreen while it loads When shredding directories, filenames are not overwritten in subdirectories. |
||
| Overall rating | NOT recommended. This may surprise some people, as it seems quite popular. It is however (IMHO), unreliable. | Recommended for swap file overwriting | Not recommended; why bother? Other packages have much more functionality | Recommended | Recommended | Recommended | Recommended | Not recommended. If you use a 16 bit OS, "Scorch" is probably a better option as it can support wildcards | NOT recommended; at 2.2MB, it's way to big, it crashes to easily and doesn't do what it's supposed to do. | NOT recommended; avoid this shredder | DOS based, and fairly old now (1997), but still seems pretty popular (June 1999) | DOS based, and fairly old now (1997), but still seems pretty popular (June 1999) | Not recommended | Not recommended | NOT recommended; not functional and does not work as claimed. IMHO wins snakeoil prize for shredders. | Don't waste your time downloading this bloatware; not recommend at all |
With respect to the Windows swap file, I would recommend not using one! Memory is continuously coming down in price, and I would highly recommend buying a couple of hundred MB or so, such that you do not need a swapfile; this would also lead to performance improvements. However, for those who do not wish to do this for any reason, and since "Eraser" does not have adequate provision for overwriting the Windows swap file (at least, not under Windows 95/98), it is therefore necessary to recommend another package for this purpose. "Clean Disk Security" by Kevin Solway looks like the candidate for this operation, with multiple pass options and operation from DOS. At $25 this is pretty expensive, and users may prefer to opt for "Scorch" combined with "Swap File Overwriter"
"Eraser" and "Clean Disk Security" allow the use of Gutmann overwriting.
For those who are really paranoid, it is also suggested that
you overwrite sensitive data, not only using the maximum security settings
provided by a shredder, but to also use several different shredders.
This
is for the same reasons that it is recommended when using anonymous remailers,
you chain more than one of them together to ensure that any weaknesses
in system are compensated for in the others.
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| file2 | 200 | 200 | (sensitive file) |
| file3 | 100 | 400 | |
| <blank> | |||
| ... |
You delete file2, and your FAT looks something like this:
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| <blank> | |||
| file3 | 100 | 400 | |
| <blank> | |||
| ... |
You now defrag.
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| file3 | 100 | 200 | |
| <blank> | |||
| ... | |||
| ... |
file3 overwrites the area where file2 (containing sensitive information) was. Since it is possible to recover data that has been overwritten (this is why many shredders have the ability to overwrite many times), it is theoretically possible for file2 to be recovered from under file3, since it was only overwritten once.
OK, now having said this, let's think about the downside of wiping free space before you defrag.
We'll take a slightly different scenario here. This time, we delete our sensitive file after we have defragged the drive.
To begin with, we have:
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| file2 | 200 | 200 | (sensitive file) |
| file3 | 100 | 400 | |
| <blank> | |||
| ... |
as before.
Then we defrag. But! The defrag program decides that the optimum order
for your files is: file1, file3, file2 (in this example, the defrag software
positions your files on your HDD in order of size)
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| file3 | 100 | 200 | |
| file2 | 200 | 300 | (sensitive file) |
| <blank> | |||
| ... |
However, while defragging the drive, the defrag software needs to move
file2 out of the way somewhere, so that it wouldn't get overwritten by
file3:
| Filename | Size | Start location | Comment |
| file1 | 100 | 100 | |
| file3 | 100 | 400 | |
| <blank> | |||
| ... | |||
| file2 | 200 | 3000 | (sensitive file) |
| ... |
As a result of this, as well as having a copy of file2 between clusters 300-499, you also have a copy of this file's contents on the disk between clusters 3000-3199.
If you then decide to shred file2, using even the most secure shredder available, you will still have that 2nd copy of file2 on clusters 3000+!
Best solution: Wipe your free space both before and after defragging.
REGEDIT.EXEand export your whole registry to a file (export everything)
REGEDIT /c <filename of exported registry>(this can take awhile; about 20mins on my test system)
This is just a simple summary of the process; if you would like further information, or more detailed instructions (though it is pretty easy!) on how to rebuild your registry, please check on the WWW.
NT's registry is implemented as a database.
It shares many of the characteristics including fragmentation as items are added, removed, or changed. In particular, when items are removed from the registry, there is no cleanup mechanism to recover the now unused space in the database. Microsoft released RegClean to clean up some of the debris. A alternative to Microsoft's RegClean is the freeware Regcleaner.
Fragmentation can become significant over time on a busy system. Use either tool with caution. There is no tool to compress the registry, to recover lost space and reindex the fundamental database. But there is a method to achieve this result. Backup the registry and be prepared to get back to where you started if things go wrong.
Update the "%systemroot\repair" directory using the command:
rdisk /s-
"rdisk" will update repair data including the default, software
and system hives. The repair version of the hives is compressed and reorganized.
It is not an image copy. Adding the "/s" parameter gets the sam and security
hives. The dash ("-") instructs rdisk to not make a floppy disk copy.
Expand the registry hives to a temporary location:
expand %systemroot%\repair\default._ C:\temp\reg\default
expand %systemroot%\repair\sam._ C:\temp\reg\sam
expand %systemroot%\repair\security._ C:\temp\reg\security
expand %systemroot%\repair\software._ C:\temp\reg\software
expand %systemroot%\repair\system._ C:\temp\reg\system
A comparison of the files sizes in "%temp%" and "%systemroot%\system32\config"
can reveal significant differences in size. If the sizes are close, the
hive in question did not have much lost space to recover. Usually the software
hive has the greatest space recovery.
Replace the version in %systemroot%\system32\config with the newly reindexed version in %temp%. NT keeps the hives open and locked.
You can not simply copy the new version over the old versions. To get around this problem, you need to make the copy when NT is not loaded. For a FAT-based installation, bootup using DOS and make the copy using the DOS COPY command. For NTFS-based installations, I recommend using a recovery or backdoor copy of NT. Install NT on the PC in a different directory. Boot under the secondary NT and copy the hives for the inactive primary NT installation.
There is some risk in this procedure. But as the hives get large with
a high amount of dead space, performance suffers. If your server or
workstations gets slower and slower for no apparent reason, you may
get the performance back using this approach.
Do not attempt if you are not in a position to recover back to the starting point.
An alternative is the freeware Regcleaner.
Another alternative is the donationware RegCompact.
The method described above for Windows NT is not possible as Microsoft removed "rdisk" on the basis that the Windows 2000 environment is too large to fit on a floppy disk
However, if you try to create an Emergency Recovery Disk (ERD) by going to "Start|Programs|Accessories|System Tools|Backup|Emergency Repair Disk", the registry hives should be copied to the "%system32%\repair\Regback". From this point it may be possible to continue, as per the Windows NT instructions above.
| OS Supported | Taken from documentation (test system used Windows 98) |
| NTFS | Taken from documentation (untested; Windows 98 doesn't support NTFS!) |
| Shell support | Observed while viewing Windows Explorer's rightclick context menu |
| Command line support | Checked from command line and/or seeing the addition of an item in the "Send To" menu of Windows Explorer's rightclick context menu |
| Silent operation (with no dialogs or confirmation messages) | Observed while using the package |
| Overwrite algorithm | Taken from documentation (I was unable to verify this, for obvious reasons) |
| Destroys files | Observed while using the package |
| Filenames destroyed | Checked with File Rescue and/or Directory Snoop |
| Destroys directories | Observed while using the package |
| Destroys free space | Observed while using the package and/or verified with Directory Snoop |
| When destroying free space, old filenames are overwritten | Verified with File Rescue and/or Directory Snoop |
| Destroys slack space | Taken from documentation |
| Wipe swapfile option | Taken from documentation and/or observed while using the package |
| MD5 hash of downloaded file | Obtained from running MD5.exe on the package that was downloaded and tested |
This MD5 information can be used to verify that the package you download is the same one that was used during testing. The MD5 utility can be obtained from http://www.fourmilab.ch/md5/ (or download direct)
Directory Snoop is a freeware disk examination tool (works with 95/98 and FAT12/FAT16/FAT32, not NT) which is useful for checking the contents of individual clusters on your HDD and can be found at Briggs Softworks. I used v2.1 for running the above tests to ensure that data was being overwritten correctly. v2.1 was used as it was the last freeware version; the latest version, which is shareware, can be downloaded direct from here
File Rescue is a shareware undelete utility, and can be downloaded from http://www.file-rescue.com/. The demo version of this software will only permit you to recover up to 5 files, but even after expiring, will still show you a list of all files that have been deleted and may be recoverable.
Email me at: sdean12@sdean12.org
Return to the main page