Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

OK..now that I have upgraded my protection


  • Please log in to reply
15 replies to this topic

#1 ethelsfred

ethelsfred

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 29 May 2009 - 11:08 AM

Is there a way to TEST my system to make sure it is defending me against attacks of all kinds?

ESET NOD32 V4, ZoneAlarm firewall

BC AdBot (Login to Remove)

 


#2 FiOS Dan

FiOS Dan

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Location:Redondo Beach, CA
  • Local time:12:02 AM

Posted 29 May 2009 - 12:19 PM

There's a relevant thread over at Wilders.
Courage is being scared to death but saddling up anyway.

#3 RedDawn

RedDawn

  • Members
  • 454 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:02 AM

Posted 29 May 2009 - 12:22 PM

ShieldsUP! - To test Firewall

EICAR - To test Antivirus.

#4 ethelsfred

ethelsfred
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 29 May 2009 - 06:48 PM

Thanks Red Dawn.....I ran the Eicar test and ESET NOD32 identified/quarantined them all, but a test with a virus that has not been updated since Sep 2006? Of course if you dont catch them all then you have REAL problems.

Anyone know of any NON MALICIOUS tests that can be run with more up to date code/attack variations?

#5 TallyHo

TallyHo

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:OZTRALIA
  • Local time:06:02 PM

Posted 29 May 2009 - 07:10 PM

hi.

FiOS Dan's link is good.

be careful what you find searching for.

YOU MAY FIND something you didn't want!! :thumbsup:

#6 Someones

Someones

  • Members
  • 184 posts
  • OFFLINE
  •  
  • Local time:03:02 AM

Posted 29 May 2009 - 09:40 PM

Thanks Red Dawn.....I ran the Eicar test and ESET NOD32 identified/quarantined them all, but a test with a virus that has not been updated since Sep 2006? Of course if you dont catch them all then you have REAL problems.

Anyone know of any NON MALICIOUS tests that can be run with more up to date code/attack variations?

The Eicar file shows that Nod32 is functioning properly, if you want to see how well it protects check out test results from AV-Comparatives.

#7 ethelsfred

ethelsfred
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 30 May 2009 - 08:36 AM

Thanks Someones......good resource and thankfully it made me feel good about my decision to buy ESET. Do you know of another group that tests firewalls?

#8 x43

x43

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 30 May 2009 - 09:33 AM

Just wanted to say, I trust ESET 100% and have been with them for 2 years and never had a problem with security.
x43

Hoping to become a malware fighter Posted Image

#9 ethelsfred

ethelsfred
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 30 May 2009 - 03:40 PM

OK guys and girls........I have read the reviews and run some tests, now I really confused regarding firewalls. I decided to try the Comodo Leak Test on two firewalls......Zone Alarm Extreme Security (free for 15 days) with AV/AS disabled (I have ESET) and Comodo Internet Security (free, with AV disabled). Each was installed, tested then removed and Zone scored 260/340 and Comodo scored 200/340. Comodo states that their program will score 340/340........I thought I set both programs to be as "paranoid" as possible, what did I do wrong???? Also if I set the Comodo up improperly, could I improve the settings on the Zone Alarm as well???

Based upon the scores I left the Zone Alarm installed.

PS - I have seen that many people use Sandboxie to assist their firewall, but it doesnt work with Vista 64 bit.........oh well

Edited by ethelsfred, 30 May 2009 - 04:07 PM.


#10 x43

x43

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 30 May 2009 - 07:11 PM

ESET Nod32 is firewall & anti-virus combined. :thumbsup:
x43

Hoping to become a malware fighter Posted Image

#11 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,962 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:04:02 AM

Posted 30 May 2009 - 07:48 PM

That depends on what you have installed. ESET Smart Security does include the firewall, but ESET Nod32 Antivirus does not. I have separate applications for Firewall and AV as you can see in my signature below.

As for the comparison tests, different companies have different definitions of what "leak tests" are and therefore test for them in different ways.

I should also point out, that no security system is 100% fool-proof.

Keep in mind that no single product is 100% foolproof and can detect and remove all threats at any given time. The security community is in a constant state of change as new infections appear. Each vendor has its own definition of what constitutes malware and scanning your computer using different criteria will yield different results. The fact that each program has its own definition files means that some malware may be picked up by one that could be missed by another. Thus, a multi-layered defense using several anti-spyware products (including an effective firewall) to supplement your anti-virus combined with common sense and safe surfing habits provides the most complete protection.

However, you can overkill your system with resource heavy security programs that will drain your resources and slow down performance. Sometimes you just have to experiment to get the right combo for your particular system as there is no universal solution that works for everyone.


Orange Blossom :thumbsup:


Orange Blossom :flowers:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

#12 ethelsfred

ethelsfred
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 30 May 2009 - 08:12 PM

Thank you Orange Blossom.......ESET currently has TWO products in their home/home office line http://www.eset.com/products/index.php ESET Smart Security 4 and ESET NOD 32 ANTIVIRUS 4..... so if you have NOD 32 version 4 and think you also have firewall protection....OOOOPS!!!! Back to school for you. In your defense, I do not know about older versions of NOD 32 which may or may not also have firewall protection.........

P.S. I just looked up Version 3.0 of NOD 32......strike 2


But back to my most recent post regarding Comodo passing its own test with a score of 340/340. I installed it, set it to paranoid and it did terribly (200/340). You get in trouble when your advertising is false....besides it has been confirmed in places like this for quite a while, so the only explanation is I did not set it up properly.............(that was tough to admit!!! :thumbsup: )


ESET NOD 32 V4, Superantispyware free, MBAM free, Zone Alarm Extreme Security (demo AV/AS disabled), Process Explorer

Edited by ethelsfred, 30 May 2009 - 08:23 PM.


#13 Someones

Someones

  • Members
  • 184 posts
  • OFFLINE
  •  
  • Local time:03:02 AM

Posted 30 May 2009 - 10:37 PM

Thanks Someones......good resource and thankfully it made me feel good about my decision to buy ESET. Do you know of another group that tests firewalls?

Unfortunately there is no reliable group that tests firewalls. Some people will point you to Matousec but their tests are designed for firewall+HIPS applications, and both Nod32 AV/SS doesn't have a HIPS. There's also TestMyPC Security but considering it's sponsored by Comodo I would take their results with a grain of salt at best. Also the developer of Online Armor had this to say about TestMyPC Security.

If I were you I would just trust ESET. If you're feeling a bit paranoid then you could consider adding a user-friendly HIPS/behavioural blocker such as ThreatFire or Prevx.

Edited by Someones, 30 May 2009 - 10:37 PM.


#14 Infinite_Vision

Infinite_Vision

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 30 May 2009 - 10:49 PM

Thank you Orange Blossom.......ESET currently has TWO products in their home/home office line http://www.eset.com/products/index.php ESET Smart Security 4 and ESET NOD 32 ANTIVIRUS 4..... so if you have NOD 32 version 4 and think you also have firewall protection....OOOOPS!!!! Back to school for you. In your defense, I do not know about older versions of NOD 32 which may or may not also have firewall protection.........

P.S. I just looked up Version 3.0 of NOD 32......strike 2


But back to my most recent post regarding Comodo passing its own test with a score of 340/340. I installed it, set it to paranoid and it did terribly (200/340). You get in trouble when your advertising is false....besides it has been confirmed in places like this for quite a while, so the only explanation is I did not set it up properly.............(that was tough to admit!!! :thumbsup: )


ESET NOD 32 V4, Superantispyware free, MBAM free, Zone Alarm Extreme Security (demo AV/AS disabled), Process Explorer



Currently, Sandboxie is not available for the 64-bit version. At the moment, I am evaluating Defensewall to see if it is compatible with my current setup. For as for your firewall dilemma, did you evaluate Outpost yet? I'm using the Pro version at the moment.

#15 ethelsfred

ethelsfred
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 31 May 2009 - 09:37 AM

Invinite Vision, Someones.......thanks. Regarding ThreatFire.....32bit only (I have Vista 64), I have sent a message to Prevx tech support asking if it is compatable with NOD 32 if both are running in real time. I had found the Matousec site and even posted their link on another post in here, I like it and think the vendors responses lend credibility to the report.

I did try outpost (free) and it scored 200 as well (I must be doing something wrong)....please let me know what you find out about Defensewall.

I think I am OVER ENGINEERING this problem, I should just K.I.S.S. it and move on. I may just go with Online Armor and call it a day. EDIT UPDATE - Online Armor DOES NOT support 64 bit systems - cant get ahead here.....

Orange Blossom......Your quote copied from Quietman7 can be easily misunderstood. He is not advocating the use of multiple antivirus programs running in real time. Below are exerpts from a closed forum (Avira, Avaast, AVG or Kapersky Anti Virus'? Which one is the best? Apr 27, 2009) in which on May 8, 2009, Quietmen7 states;


QUOTE
Having just one AV Scanner just isn't enough anymore. (comment made by Koolkat 8 May 2009)

No its not but so that no one reading that statement gets the wrong impression...

Using more than one anti-virus program is not advisable. The primary concern with doing so is due to conflicts that can arise when they are running in real-time mode simultaneously. However, even when one of them is disabled for use as a stand-alone scanner, it can affect the other. Anti-virus software components insert themselves into the operating systems core and using more than one can cause instability, crash your computer, slow performance and waste system resources. When actively running in the background while connected to the Internet, they both may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.

Each anti-virus will often interpret the activity of the other as a virus and there is a greater chance of them alerting you to a "False Positive". If one finds a virus and then the other also finds the same virus, both programs will be competing over exclusive rights on dealing with that virus. Each anti-virus will attempt to remove the offending file and quarantine it. If one finds and quarantines the file before the other one does, then you encounter the problem of both wanting to scan each other's zipped or archived files and each reporting the other's quarantined contents. This can lead to a repetitive cycle of endless alerts that continually warn you that a virus has been found when that is not the case.

Anti-virus scanners use virus definitions to check for viruses and these can include a fragment of the virus code which may be recognized by other anti-virus programs as the virus itself. Because of this, most anti-virus programs encrypt their definitions so that they do not trigger a false alarm when scanned by other security programs. Other vendors do not encrypt their definitions and they can trigger false alarms when detected by the resident anti-virus.

Keep in mind that dual installation is not always possible because most of the newer anti-virus programs will detect the presence of others and may insist they be removed prior to download and installation of another. Nonetheless, to avoid these problems, use only one anti-virus solution. Deciding which one to remove is your choice. Be aware that you may lose your subscription to that anti-virus program's virus definitions once you uninstall that software.


Thanks to all of you for your help.

Edited by ethelsfred, 31 May 2009 - 11:06 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users