Why popular mainstream anti-virus apps don't work

Anything created by Bill Gates falls under this category. Having problems with your windows operating system? Here ya go.

Moderators: EatMoreLead, Suck.

User avatar
K2
Administrator
Posts: 7110
Joined: Sep 14th, 2002 at 6:33 am

Why popular mainstream anti-virus apps don't work

Postby K2 » Jul 24th, 2006 at 2:45 am

Saw a link to this on HardOCP - http://www.zdnet.com.au/blogs/securifyt ... 249,00.htm

And the [H] news reporter goes on to say how all of the HardOCP staff use NOD32 and so on and so forth.

So besides Oreo, how many of ya got a lil smarter and switched over to NOD32 yet? ;)

User avatar
Oreo
l33t scr1pt0r
Posts: 1191
Joined: Jan 1st, 2005 at 3:49 pm

Postby Oreo » Jul 24th, 2006 at 3:12 am

I DID BECAUSE IM SMART!

lol, but seriously. I haven't had a virus yet, and I loaded a website I KNEW had a webpage trojan on it, NOD blocked it and didn't say anything (I have silent mode on). I had to go back and check the log and it found 1 virus and cleaned it. my kind of protection right there. not to mention it takes up like 25MB of ram to run.

User avatar
Campsalot
Senior Member
Posts: 911
Joined: Jul 20th, 2003 at 7:17 pm

Postby Campsalot » Jul 24th, 2006 at 11:11 am

Antivirus software should only be used as a secondary or tertiary means of protection anyway. NOD32 may be a little better than the main 3, but it is still worthless in detecting many of the viruses and trojans out there. I saw a demo where a guy took a collection of viruses and trojans on a laptop (he had more than 20,000 viruses and almost 1,000 trojans) and about 10 different A/V apps and a number of other spyware/adware apps against the computer to see what it would detect. Sadly, more than 40% weren't even detected.

So, proper web browsing and email habits will do more to protect you than running any antivirus app.

Camps

User avatar
Phoenix
Elite Member
Posts: 1980
Joined: Nov 24th, 2004 at 3:13 pm

Postby Phoenix » Jul 24th, 2006 at 12:41 pm

I have no security, I just don't do stupid shit, not once have I ever gotten a virus, other than ms blaster which seems to come preinstalled on the windows CD.
Former HF clan member, server admin, all around troll

"You don't do things right once-in-a-while. You do them right all the time."- Vince Lombardi

User avatar
Burzum
Benefactor
Posts: 4291
Joined: Oct 21st, 2004 at 1:05 pm

Postby Burzum » Jul 24th, 2006 at 1:27 pm

How do you know if you have a virus? I'll bet if you did a scan you'd have 17 pieces of spyware and 4 viruses.
Do not meddle in the affairs of dragons for you are crunchy and taste good with ketchup.

User avatar
Deleted User
*poof*
Posts: 7507
Joined: Jul 13th, 2006 at 3:41 am

Postby Deleted User » Jul 24th, 2006 at 2:01 pm

kaspersky FTW :)
I've been deleted!!

User avatar
K2
Administrator
Posts: 7110
Joined: Sep 14th, 2002 at 6:33 am

Postby K2 » Jul 24th, 2006 at 2:50 pm

I would hardly call NOD32 worthless Camps. It's caught every virus and spyware/adware crap that's tried to sneak it's way onto my system.

NOD32 > all

User avatar
Dylan
Senior Member
Posts: 399
Joined: Apr 3rd, 2005 at 1:54 am

Postby Dylan » Jul 24th, 2006 at 3:06 pm

AVG has managed to catch every stupid thing I've done. I'm just not concerned enough to switch over to something new.
Servers gone and all of a sudden people have opinions of K2, weird

User avatar
Burzum
Benefactor
Posts: 4291
Joined: Oct 21st, 2004 at 1:05 pm

Postby Burzum » Jul 24th, 2006 at 3:18 pm

Chuck Norris uses NOD32.
Do not meddle in the affairs of dragons for you are crunchy and taste good with ketchup.

User avatar
EatMoreLead
Benefactor
Posts: 4406
Joined: Sep 17th, 2002 at 11:59 pm

Postby EatMoreLead » Oct 12th, 2006 at 1:54 am

NOD32 rocks - no stupid popups like McAfee, no spam to renew. Im loving it.
EatMoreLead aka EML

User avatar
Catharsys
Senior Member
Posts: 566
Joined: Mar 2nd, 2005 at 12:57 am

Postby Catharsys » Oct 12th, 2006 at 2:11 am

NOD32 uses Chuck Norris is more like it.

User avatar
K2
Administrator
Posts: 7110
Joined: Sep 14th, 2002 at 6:33 am

Postby K2 » Nov 13th, 2006 at 7:35 pm

Well, I just had a 'dee dee dee' moment, and by not heeding what NOD32 was trying to tell me, I got my system infected with a trojan malware virus last night :( I tried my best to remove it, but in the end I wound up having to format/reinstall. Luckily, I've done that so many times, it was no big deal. Plus I backup all my shit on a seperate drive, so no real permanent damage was done.

FYI - set NOD32 so that it doesnt prompt you on what to do with an infected file. Just let it quarantine it, submit it to ESET for examination, and let it block/disbale/etc the virus/trojan/spyware in question. My dumb ass was trying to find a keygen for 3Dmark06 (hah), and I came across a site I knew could be bad news, and sure enough NOD32 was showing me warnings about malicious files it was finding, and I clicked thru the warnings too quickly, and didnt take action on a particular one called trojan.backdoor.small.cml or something like it, and let it get thru. Next thing I know, pop-ups galore, and a fake app called 'virusbuster' was screaming at me for a credit card # for an update. Heh ;) It embedded a file called winhoo32.dll in windows/system32 that would just not let go, kept re-writing registry entries and trying to access the 'net to pull down other malicious files. NOD32 saw it, but since it was already in, couldnt completely remove it (nor could some top spyware apps I downloaded and tried, to no avail).

I could have just booted up the system with DR-DOS (it can read NTFS partitions), and could have deleted the bad .dll's that way, but along with the several markers left in the registry... I didnt feel like doin that much work. Format/reinstall 4tw.

Anyways - lesson learned. Set your anti-viri software so it removes as much human intervention as possible (but still have it notify you when a harmful file is found).

User avatar
Suck.
Benefactor
Posts: 3146
Joined: Nov 13th, 2004 at 8:36 pm

Postby Suck. » May 1st, 2007 at 6:16 pm

I went NOD32 after my complete backdoor. My Norton (fully updated) had .bak'd the real main files, and created new ones to give you some idea of the scope. :shock: Anyhow, I've got my shit set to full paranoid or so, scanning every day. It auto quarantines then deletes or the next best thing everything it finds. All files submitted to Eset ASAP. But yeah, NOD32 owns. Try DC'ing on a Hyperthreading machine running Norton. :lol:

The only thing I do want a lot of control over is my personal firewall... well, hardware too, but.... Hardware, I've got an Asus SL500 (actually have a 2nd, but can't see any way to benefit my current setup with it). It's a Gestapo router w/ manual everthing -- great control over ACL in/out/groups, VPN everything (fast too), NAT & IP assignments/pools/etc, time ranges, and more, which then all tie back into the ACL rules. Very slick. It is lacking in ability to allow exceptions to its DoS rules, which are harsh sometimes, and also its Application Filter... which is where my personal firewall comes in.

After ditching Norton, I went with the full (purchased) version of Kerio Personal Firewall. Like NOD32, it's generally very discrete, and uses comparable CPU time and resources. Although I did find it a bit awkward at first, I'm very happy with it now.

Aside from the other usual suspects (SpyBot S&D/TeaTimer, Win Defender, HJT, (still on the fence about buying TrojanHunter), etc.), I run the full (read: $) version of AVG Anti-Spyware (formerly eWidow). Unlike the others above, it is a bit greedier with the system resources. It's scanning eveything coming in, going out, running, thinking about running, and flying though. In addition to being quite vigilant against malware and company, it's got some nice utilities that, although most can be found elsewhere, are consolidated for your convenience.


-Grant.

User avatar
Mouser
Elite Member
Posts: 1633
Joined: Dec 12th, 2004 at 8:34 pm

Postby Mouser » May 1st, 2007 at 6:35 pm

:shock: Holy fuck Grant. Long time no see. How goes it?

User avatar
JayPhat
Elite Member
Posts: 2701
Joined: Feb 24th, 2005 at 7:35 pm

Postby JayPhat » May 1st, 2007 at 7:46 pm

Suck. wrote:I went NOD32 after my complete backdoor. My Norton (fully updated) had .bak'd the real main files, and created new ones to give you some idea of the scope. :shock: Anyhow, I've got my shit set to full paranoid or so, scanning every day. It auto quarantines then deletes or the next best thing everything it finds. All files submitted to Eset ASAP. But yeah, NOD32 owns. Try DC'ing on a Hyperthreading machine running Norton. :lol:

The only thing I do want a lot of control over is my personal firewall... well, hardware too, but.... Hardware, I've got an Asus SL500 (actually have a 2nd, but can't see any way to benefit my current setup with it). It's a Gestapo router w/ manual everthing -- great control over ACL in/out/groups, VPN everything (fast too), NAT & IP assignments/pools/etc, time ranges, and more, which then all tie back into the ACL rules. Very slick. It is lacking in ability to allow exceptions to its DoS rules, which are harsh sometimes, and also its Application Filter... which is where my personal firewall comes in.

After ditching Norton, I went with the full (purchased) version of Kerio Personal Firewall. Like NOD32, it's generally very discrete, and uses comparable CPU time and resources. Although I did find it a bit awkward at first, I'm very happy with it now.

Aside from the other usual suspects (SpyBot S&D/TeaTimer, Win Defender, HJT, (still on the fence about buying TrojanHunter), etc.), I run the full (read: $) version of AVG Anti-Spyware (formerly eWidow). Unlike the others above, it is a bit greedier with the system resources. It's scanning eveything coming in, going out, running, thinking about running, and flying though. In addition to being quite vigilant against malware and company, it's got some nice utilities that, although most can be found elsewhere, are consolidated for your convenience.


-Grant.


We thought you were dead.
Image

User avatar
EatMoreLead
Benefactor
Posts: 4406
Joined: Sep 17th, 2002 at 11:59 pm

Postby EatMoreLead » May 1st, 2007 at 10:13 pm

welcome back G
EatMoreLead aka EML


Return to “win32/64”

Who is online

Users browsing this forum: No registered users and 2 guests