wajdi gary
|  kaspersky did not detect autorun virus but nod32 did!!
hi i was using the original kaspersky to delete autorun virus that closing my yahoo messenger and slowing my pc, but kaspersky did not detected and its too slow on scanning, but i installed nod32 and scanned with it gosh it detected all! after restarting my pc became faster! by the way i updated the both antivirus's before scanning, thanks to nod32. WOW  |
|
tempnexus
Premium
join:1999-08-11
Boston, MA
| And Vice-Versa on another case then Vice-Versa on yet another case back and forth.
Somtimes NOD32 gets lucky somtimes KAV...Hence the need to multi-layered protection and a schedule once every week to few weeks free Online AV scan to supplement your scan. |
|
Cudni
La Merma - La Guerrilla
Premium,MVM
join:2003-12-20
Someshire | reply to wajdi gary
and what was the name the Nod32 gave to malware and what was the file or files it was found in?
Cudni |
|
Oleg
Bellsouth Fastaccess
Premium
join:2003-12-08
Birmingham, AL | Here is all about it: »muneeronline.blogspot.com/2007/0···jan.html |
|
Cudni
La Merma - La Guerrilla
Premium,MVM
join:2003-12-20
Someshire | Thanks. No mention of Kaspersky not being able to detect it
Cudni |
|
Mem
join:2002-01-03
USA
 ·AT&T Southeast
edit:
March 18th, @04:20PM
| reply to Oleg
Trojan Win32.Hider.I was in the sigs on Feb 14, 2007 for Kaspersky
»www.viruslist.com/en/viruses/enc···d=151779
Maybe a different one or just that Kaspersky doesn't check a flash drive? |
|
saffron
@anonymouse.org
| reply to wajdi gary
said by wajdi gary :hi i was using the original kaspersky to delete autorun virus that closing my yahoo messenger and slowing my pc, but kaspersky did not detected and its too slow on scanning, but i installed nod32 and scanned with it gosh it detected all! after restarting my pc became faster! by the way i updated the both antivirus's before scanning, thanks to nod32. WOW Don't get too excited about it Gary.
More often than not, NOD32 is first with detection of new malware (the anti-ESET gang will scream in protest, but the proof is in independent historical statistics) but there are no certainties. NOD32 misses a few new ones, but as a general rule of thumb, everything else misses more. Sometimes Kaspersky is first. Sometimes Norton is first. Sometimes Trend is first. Nobody is first every time.
I've used NOD32 for years but I'm a long way from being a fanboi. I gave ESET a rough ride for months over v3 and ESS, but my problems were with program bugs and slow fixes, not detection. I've never seen NOD32 fail to detect anything important enough to bitch about. |
|
GuruGuy
join:2002-12-16
Atlanta, GA
| I've never seen NOD32 fail to detect anything important enough to bitch about.
Really??? Go to Wilders, the official NOD support forum. There are hundreds of threads there where it doesn't detect something and of course, you're asked to submit it password protected and zipped to support. Which usually has the response that it already has been without so much as a response.
I used NOD for over 6 years. Support sucks, the official forum sucks, and the program sucks after going to Ver 3.
--
GuruGuy |
|
Bubba1
Less is More
Premium
join:2006-09-21
edit:
March 20th, @10:13PM
| You really need to overcome that shyness.
Just go ahead and tell us what you really think .. ok?  |
|
tempnexus
Premium
join:1999-08-11
Boston, MA
| reply to wajdi gary
I must admit that GuruGuy is partially right.
I never fully trust any security Solution and I for hell don't trust NOD32, it has missed more strains on my test box then I can count (nothing gets them all, but the ratio of misses is increasing with the current new malware). The only reason I use it on my box is due to it's low resource impact (I am still using 2.7). However I supplement it with weekly scans of KAV, BIT, SAS and Outpost Firewall scan. |
|
m0d
join:2005-03-02
ireland
edit:
March 21st, @01:41AM
| reply to wajdi gary
And after 2 years of promising myself I would do it .. I have a 6GB VM of my main dev environment...
1) no more hardware failures that cost me dev time
2) I wont care what AV misses what (rare concern for me)
3) up and running in minutes on totally different hardware..
4) not just "backed up" but ready to "hit the ground running".
No one AV catches all or could be realistically expected to either .. that is a "marketing myth" .. "buy this product and your good for life".. they would like to sell it that way .. in practice it does not work.
Virtualisation is the future .. for development at least .. not so much maybe for malware testing.. unless its a custom VM and TOTALLY undetectable to the malware
Back to topic..
I really don't think people should measure AVs in terms of 0-day.. Its a turkey shoot .. one will win one week .. another next .. it does not mean all are not totally compent and add some safe hex and you are fine.
Personally what I cant stand is when the "solution" / "protection" is worse than the "problem". Some AVs and or firewalls just do not behave well .. and better they were not so widely known... That is the power of marketing for you. That also creates the fanboi problem.
As a dev I must always REMIND myself .. the customer is NOT MAD .. there is a reason for this (however rare) and well its DOWN TO ME .. to RECREATE his issue.. NOT down to him to like PROVE to me.. there is a problem ..
So yeah .. take care .. no AV/Firewall is bullet proof.
My words of advice to ALL vendors would be:
1) The customer is ALWAYS right.. the "perceived problem" is probably re-creatable.. if you put enough time into it.
2) We do not expect "perfection" .. but hmm fire your Marketing Dept..
3) Everything is a work in progress .. and what was true yesterday is not necessarily true today. But when your caught out? You gain more respect for admitting that.
This was a "vendor independent" post |
|
Bubba1
Less is More
Premium
join:2006-09-21
| said by m0d  :Virtualisation is the future .. VMWare? .. not to change the subject. |
|
m0d
join:2005-03-02
ireland
edit:
March 21st, @01:11AM
| reply to wajdi gary
VMWare is up there in my ranking yes.. but there are others that deserve credit too
Accept this .. NO AV will be perfect vs 0-day.. that is the point. Lets name one .. any one .. nothing is perfect.. so you take other steps.. to protect what really matters .. like the stuff you work on!
Add a terabyte raid mirrored NAS to that + regular backups .. and I doubt anyone needs to worry about "undetected 0-day" threats.. which was the point of OP. Personally .. I don't sweat about it.
.. the product we should "buy and we are good for life" = VM .. lets give the marketing dept something to work with |
|
Mele20
Premium
join:2001-06-05
Hilo, HI
| said by m0d :VMWare is up there in my ranking yes.. but there are others that deserve credit too . the product we should "buy and we are good for life" = VM .. lets give the marketing dept something to work with I love my VMWare virtual machines but what happens on a virtual machine can very adversely affect the host. It is neat that you can take the virtual machine and run it on quite different hardware from the hardware where it was created. But being able to do that, and being able to run virtual machines in general, does not mean that problems on the virtual machine will necessarily be isolated to the VM. VM's are great but they are not paneceas.
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason |
|
m0d
join:2005-03-02
ireland
edit:
March 21st, @03:07AM
| reply to wajdi gary
"I love my VMWare virtual machines but what happens on a virtual machine can very adversely affect the host."
Hi Mele .. and that would be my point too .. VM is great .. but not a "magic bullet" .. in the hands of those aware of security issues though? Its far better "recoverability" than we had before.
Here is another tip .. DON'T use VM for malware detection .. unless its custom .. cos that is totally detectable lol
I have seen some "host exploits" .. not really tested them .. but they exist for sure. Nothing is perfect.. just a lot better than before for my scenario + the NAS + backups etc
Some one "open source a VM" and make us "subscribe" for source code updates we can compile and trust ourselves? .. Now that is a "marketing model that works"
But you always back that up with the NAS etc..
VM is a useful tool .. once you understand its limits .. and yes I agree Mele .. host exploits are possible .. so is a very different behaviour by any malware that detected its in a VM "sandbox".
Also .. for me .. the host? can be nuked tomorrow .. like what if that comp died of hardware failure .. that is why I move to VMs for dev.. I can work on regardless.. For example I have some hardware failure? Blah .. I spent so many hrs on this .. and LOL .. VM = my solution
For some scenarios? VM has clear value .. just yeah .. backup to NAS too .. "layered" is old but works
Interesting discussion though .. probably the most interesting one I have see here in a while .. so thumbs up to all
What interests me is that I think 0-day is like DEAD.. and no longer a threat .. if you do this right.. I wont care if my OS is hosed.. or my comp had hardware failure.. and that to me is worth looking into
So the AV wars are over .. and replaced with "VM Wars" LOL |
|
Wajdi Gary
| reply to wajdi gary
yah i'm not using nod32 right now, because it killed the viruses and killed some system files too, now i'm reinstalled all 12 pc's i have in my netcafe, i'm using original kaspersky now, i thank you guys for replying. hope we can stick together further. laterz.. |
|
Killer Max
@rr.com
 from:
m0d
| said by Wajdi Gary :
.. now i'm reinstalled all 12 pc's i have in my netcafe.. You are crazy to pay yearly subscriptions for any AV, all of which will be eaten for lunch in a netcafe. Get DeepFreeze for half the cost. It is not for one year, but for the life of the machine. Re-booting is all it takes to erase all changes, including root-kit viruses. I have my public machines programmed to re-boot twice a day. |
|
m0d
join:2005-03-02
ireland
| reply to wajdi gary
Killer Max..
good point .. like this .. in the netcafe scenario you just need something like acronis imaging and backed up to NAS and well .. no matter what happened to you its recoverable within minutes.
That is how the paradigm shifts.. AWAY from "unproven/false" 0-day protection and towards total and easy recoverability ..
Add to this .. dont be dumb and store your credit card on there or personal info .. and well the PC becomes a home appliance like your average microwave. There will be nothing more special about it than that ever again.
That is the "shift" in thinking that I see gaining ground.
And well you can call me wrong to my face in 2020 .. I'll even throw a party for you do to it at |
|
m0d
join:2005-03-02
ireland
edit:
March 23rd, @12:26AM
| reply to wajdi gary
.. sry duped.. posting does not work well round here at moment. |
|
SAFFR0N
@anonymouse.org
| reply to GuruGuy
said by GuruGuy :I've never seen NOD32 fail to detect anything important enough to bitch about. Really??? Go to Wilders, the official NOD support forum. There are hundreds of threads there where it doesn't detect something And how many of those hundreds of threads refer to "something" detected as malicious by another AV that turns out to have been a harmless false alarm? (No need to go to Wilders, you can find examples right here.)
said by GuruGuy :and of course, you're asked to submit it password protected and zipped to support. Which usually has the response that it already has been without so much as a response. Wilders ESET Forum is where NOD32 fanbois do battle with the fanbois of other AVS and anti-NOD32 lamers. 5% useful information and 95% useless crapola IMO.
said by GuruGuy :I used NOD for over 6 years. Support sucks, the official forum sucks, and the program sucks after going to Ver 3. If everything about NOD32 sucks, why did you keep using it for over 6 years? Masochistic?
I went back to using v2.7 and kicked ESET around the forums for months because bugs and instability made the early v3 almost unusable. Now it's stable and vastly improved.
Constructive comments prod vendors into improving their products.
"Everything abut it sucks" comments do nothing except waste bandwidth. |
|
