I said norton but I'll use anything that I own at the time.
0
KwitkoSheriff of Banning (Retired)By the thing near the stuffIcrontian
edited April 2004
eTrust and AVG. I hate Norton. I think it's the biggest piece of bloated crapware evar! I use AVG at home and eTrust at the office.
0
Straight_ManGeeky, in my own wayNaples, FLIcrontian
edited April 2004
Of THOSE, I would have to say Norton 2004 now that the rereg mess has been stomped on by Symantec. HOWEVER, F-Prot has kept my box from having things that Adaware, SpyBotS&D, Cwshredder, and HijackThis remove. I still scan once a week to ten days, but since I have put F-Prot on, scan results are mostly "nothing." Been a month plus, now-- exception was 2 tracking cookies and Alexa.
N-Prot autoscans nightly, and autoupdates nightly. I get on average, 2-3 updates of defs a week from US-Based servers via pure SFTP. Tech support has always been within 24 hours, but in my case it was, where's the newest version of the program-- repsonse time, one hour. I bought a ten-pack license. COST??? $5.00 per box per year. I heard from F-Prot about the Sober.F virus before it hit eWeek's headlines, by two days.
These folks co-operate with Kaspersky and F-Secure as far as sharing new-outbreak info with each other. Kaspersky LICENSES F-Prot's heuristics base. Me, I am not using Symantec's AV right now, and do not need it-- but I support it actively now that the rereg thing has been handled. BUT, after rebate, I saw Norton Antivirus 2004 at $29.99 plus shipping recently. F-Prot give me one heck of a lot more bang for the buck. I have captured its basic summary screen on XP box, and it will show up below. Right now it knows 113805 viruses, trojans, and worms.
It can unzip zip and cab files, dig into Java Jars, and untar tar, tar.gz, and bz2 files. I do not know if it can unRAR tings and scan without opening and activatiing malware. Average runtime for about 90,000 files and objects (it calls archived files objects) is less than 15 minutes while I am folding at 97% rate on my Barton\XP box. This is in all files scan mode, all directories, all drives. Simple, clean, very low impact as far as resources.
BitDefender is quite good-- in fact, their product is better on a Linux box than the F-Prot Linux version. I just like to encourage vendors to continue to work actively, where my box's security is concerned-- so am willing to pay reasonable amounts.
Single computer license is $29.95 per year. 10-pack license is $50.00 USD per year. This ten-pack is not a pure site license, it is a pure ten computer license. Choice is Windows or Linux, not a mix.
It is distributed in US through http://www.raeinternet.com/ which also distributes lots of mail server AV-- F-Prot and BitDefender among them, and an AV\Security appliance also. You folks will mostly want the workstation version. What you get from RAEInternet is a customer number for F-Prot, and F-Prot typically has that up and active on their site within 36 hours max. Then you can get a licensed version with defs for same day you download from F-Prot.com and it will be preregistered.
Burn your download to CD, keep it, this is pure internet distribution unless you use the toll free in US number and call RAEInternet in which case as soon as the charge goes through they will immediately email it to Frisk Software in Reykjavik Iceland. I had my registered pack in three hours from time of talking to Michael Danziger to download-- had customer number, and site knew that number was valid and who I was. ON A SATURDAY! I'd run the trial for about 4 days before that, and had thrown a bunch of AV test files at it, from several sources. It happily deleted them all for me. I have it set to:
Disinfect while notifying, and then delete if cannot disinfect.
I protect right now, 5 Windows instances. Legally. One other trick and this is legal if you are licensed-- remember the folder the AV gets stuck in. If your box is infected and windows cannot load, boot from XP CD and get into the recovery console. Go to the folder that has F-Prot in it. Run this command:
fpcmd /? and it will show you the command switches to run it in NT-DOS mode, from a CD-to-recovery console boot. It comes with a builtin DOS scanner that knows where the latest defs are. I can and have run the DOS mode version from a CD itself, in Safe Mode in a Command Prompt, in Windows 98 SE-- worked fine.
Oh, 99.9% of viruses do NOT know how to disable it. It uses a scheduler submodule to know when to run itself, and when to update, you can choose time and interval. US servers get defs about 2:00 PM Eastern time is any, and the updater will check and grab if needed or tell you are up to date. F-Prot will email you when new defs are available. They will tell you about major outbreaks, in plain text email. you can get as many versions of program as they issue in year, and they have updated the program itself 4 times so far in two months.
Fair disclosure, sorry to take so long for some folks' tired reading eyes. Anyone who gets it, I can help you figure out how to configure it-- with illustations like the attachment, as PSP8 lets me grab and convert client areas, screen dragged rectangles, and lets me delay-time the capture so I can customize the capture. Defaults, with latest version, are fine for normal AV use, and are stronger and more aggressive than NAV uses-- by default.
I consider Symantec Corporate to be the best. I would consider SAV Corporate to be a totally different product from their general consumer edition (Norton AntiVirus)..
The server edition is very flexible, and the client agent is small and light. Much lighter than the bloated NAV thing that they sell on store shelves.
We have been using SAV CE for a couple of years now, on several dozen client computers, and have had minimal virus issues.
Everthing Norton I have ever installed has caused me more problems than it fixed, won't go near it now.
I have pc-cillin because it was free with my online banking, then I bought a newer version. It works a treat for me.
I use SAV Corporate (7.61 and 8.1) on my own PCs, and AVG (because it's free) on systems I build for other folks. Anybody care to enlighten me on the Avast vs. AVG debate here? I might switch if Avast really is better...
None. I don't download anything that ever requires scanning. The only time I ever use one is to check other peoples files or machines, in which case I use Avast! because frankly all the others piss me off. You can't even exit the damn things, you have to stop the services and manually terminate the program, which doesn't make them any better than the virii themselves (sepecially thinking of Norton in this case). AVG is just useless as it doesn't give you any control over anything unless you register it. You can't even turn the other damn features off without registering it, so I think it is a waste of time. Another reason I now refuse to go with companies like Norton is the fast I have to PAY to "resubscribe" to virus updates after a year. Wow, a whole year, you're so generous.
I expect £50 to last more than a year, it used to... It isn't like the software was free to install in the first place.
0
Straight_ManGeeky, in my own wayNaples, FLIcrontian
edited April 2004
People do not realize how much work and study goes into getting specimen viruses so that they do not infect the collection computers, then literally unarchiving them in ways that do not RUN them, then disassmbling the code, then studying them, then finding a unique set of the code in hex that defines that virus or IDs it as part of one virus family, then making that ID string as tiny as possible without getting other things that are not viruses falsely ID'd, then distributing them over expensive bandwidth once you figure in the MANY folks that all need defs. some of this is done by software, but the RESULTS have to be checked and rechecked beofre tings get sent out that are not right for some unforseen reason.
Problem with the degree of knowledge needed for just the checking is that the qualifications include:
VERY good skills including recognition of compression types, and how to decrypt things that are both compressed or archived AND encrypted.
Very good machine language skils. The defs can be hex that is MD5'd or shadow encryopted, to save space in def files and therefore bandwidth used by the many folks who all need these things on their boxes ASAP.
Very good skills at securing computers themselves, to accept definitions or specimens of suspected viruses, worms, or trojans.
This means a team, not just one or two people, especially with the number and frequency of new combos of exisiting viruses and uniquely new variants as viruses morph. Lead software engineers are needed to ahve good team. A very good lead engineer can demand the same rates as lawyers with 10-15 years experience in an area that is in demand-- say 100 to 200 dollars US per hour. Symantec has some of the best, F-Prot has a small group of very good folks, Network Assciates has a good team, and Kaspersky and F-Secure have very good teams also. These AV companies intercommunicate info about viruses to a degree, as no one company can track ALL the new viruses worldwide. They use tracable email that is encrypted to do so. It is digitally signed, and the signature is tracable back to real sender. Some companies do the same with the customer notify emails. F-Prot sends SHA hashed and PGP 1.2 signed emails to me, I know the sig and my Linux box also does.
I will leave program and heuristics corellaries for other threads, this is just the tip of the iceberg. Think of AV software as software that has to be as reliable as medical software for your patients, the computers.
The AV companies can only justify this set of VERY large expenses by having MANY customers who each give money to the AV company they want subscriptions from. Little tiny companies, unless they are staffed by folks who are hyper-good, cannot survive and offer 2-3 times a week defs whihc are distributed securely and automatically. Free software is a snapshot made at time of creation of that download package. Some trial AV lets you get subscriptions.
Thanks for being fellow subscribers, you folks who pay for AV. You are letting those companies survive.
John D.
0
Straight_ManGeeky, in my own wayNaples, FLIcrontian
edited April 2004
I am going to stick this here for you people who use NAV and pay for subscriptions for it. Lots of you,. proportionately, are running NAV, of those who have voted. Voters tend to watch the voting thread, that is really why this is here.
NAV has a way to bulk-update defs built into it to close to current day (at worst), if you have a good subscription that has not expired. Symantec offers for download a package called the Intelllgent Updater. When they update the defs for Enterprise NAV or Symantec software, or within usually 24 hours of that, they put a new snapshot of Intelligent Updater on thier site. The archive has both the program and the full def set, in compressed form, and will both self-extract and update defs after checking your AV subscription validity. NAV cannot be running when you run this updater, in fact if it is the updater will will tell you to close NAV first. This is good, as NAV protects it defs also.
You get to download and run this updater, or accept weekly updates if you have consumer grade NAV or Norton SystemWork Pro or Norton Internet Security. Not too many folks do download this package at any one time. If you get a strong feeling from this area that new malware things are hitting suddenly, might be a very good idea to then get and run the Intelligent Updater. This is especially true with NAV 2004 customers, as Symantec is implementing the blending of trojan and other malware detection into traditional AV.
Enverex: If they released the software and then never updated it, a one time charge is fair. However, there are many labor hours and many people involved with constantly staying on top of the game.
I dont mind paying for updates i mean how much haven't you payed for your computer or other software that wouldn't work if there where viruses in it. It's an investment just as hardware is.
Comments
N-Prot autoscans nightly, and autoupdates nightly. I get on average, 2-3 updates of defs a week from US-Based servers via pure SFTP. Tech support has always been within 24 hours, but in my case it was, where's the newest version of the program-- repsonse time, one hour. I bought a ten-pack license. COST??? $5.00 per box per year. I heard from F-Prot about the Sober.F virus before it hit eWeek's headlines, by two days.
These folks co-operate with Kaspersky and F-Secure as far as sharing new-outbreak info with each other. Kaspersky LICENSES F-Prot's heuristics base. Me, I am not using Symantec's AV right now, and do not need it-- but I support it actively now that the rereg thing has been handled. BUT, after rebate, I saw Norton Antivirus 2004 at $29.99 plus shipping recently. F-Prot give me one heck of a lot more bang for the buck. I have captured its basic summary screen on XP box, and it will show up below. Right now it knows 113805 viruses, trojans, and worms.
It can unzip zip and cab files, dig into Java Jars, and untar tar, tar.gz, and bz2 files. I do not know if it can unRAR tings and scan without opening and activatiing malware. Average runtime for about 90,000 files and objects (it calls archived files objects) is less than 15 minutes while I am folding at 97% rate on my Barton\XP box. This is in all files scan mode, all directories, all drives. Simple, clean, very low impact as far as resources.
John D.
BitDefender is quite good-- in fact, their product is better on a Linux box than the F-Prot Linux version. I just like to encourage vendors to continue to work actively, where my box's security is concerned-- so am willing to pay reasonable amounts.
John D.
http://www.f-prot.com/
Actually, the window is stretchable.
15 day, fixed defs trials are available at http://www.f-prot.com/
A couple things foplks should know about this:
Single computer license is $29.95 per year. 10-pack license is $50.00 USD per year. This ten-pack is not a pure site license, it is a pure ten computer license. Choice is Windows or Linux, not a mix.
It is distributed in US through http://www.raeinternet.com/ which also distributes lots of mail server AV-- F-Prot and BitDefender among them, and an AV\Security appliance also. You folks will mostly want the workstation version. What you get from RAEInternet is a customer number for F-Prot, and F-Prot typically has that up and active on their site within 36 hours max. Then you can get a licensed version with defs for same day you download from F-Prot.com and it will be preregistered.
Burn your download to CD, keep it, this is pure internet distribution unless you use the toll free in US number and call RAEInternet in which case as soon as the charge goes through they will immediately email it to Frisk Software in Reykjavik Iceland. I had my registered pack in three hours from time of talking to Michael Danziger to download-- had customer number, and site knew that number was valid and who I was. ON A SATURDAY! I'd run the trial for about 4 days before that, and had thrown a bunch of AV test files at it, from several sources. It happily deleted them all for me. I have it set to:
Disinfect while notifying, and then delete if cannot disinfect.
I protect right now, 5 Windows instances. Legally. One other trick and this is legal if you are licensed-- remember the folder the AV gets stuck in. If your box is infected and windows cannot load, boot from XP CD and get into the recovery console. Go to the folder that has F-Prot in it. Run this command:
fpcmd /? and it will show you the command switches to run it in NT-DOS mode, from a CD-to-recovery console boot. It comes with a builtin DOS scanner that knows where the latest defs are. I can and have run the DOS mode version from a CD itself, in Safe Mode in a Command Prompt, in Windows 98 SE-- worked fine.
Oh, 99.9% of viruses do NOT know how to disable it. It uses a scheduler submodule to know when to run itself, and when to update, you can choose time and interval. US servers get defs about 2:00 PM Eastern time is any, and the updater will check and grab if needed or tell you are up to date. F-Prot will email you when new defs are available. They will tell you about major outbreaks, in plain text email. you can get as many versions of program as they issue in year, and they have updated the program itself 4 times so far in two months.
Fair disclosure, sorry to take so long for some folks' tired reading eyes. Anyone who gets it, I can help you figure out how to configure it-- with illustations like the attachment, as PSP8 lets me grab and convert client areas, screen dragged rectangles, and lets me delay-time the capture so I can customize the capture. Defaults, with latest version, are fine for normal AV use, and are stronger and more aggressive than NAV uses-- by default.
John D.
The server edition is very flexible, and the client agent is small and light. Much lighter than the bloated NAV thing that they sell on store shelves.
We have been using SAV CE for a couple of years now, on several dozen client computers, and have had minimal virus issues.
I agree, I haven't used anything else in years!
//EDIT: feel free to split NAV/SAV into two categories, though it might mess up the vote count
I have pc-cillin because it was free with my online banking, then I bought a newer version. It works a treat for me.
So basically, Avast! or bust.
Problem with the degree of knowledge needed for just the checking is that the qualifications include:
VERY good skills including recognition of compression types, and how to decrypt things that are both compressed or archived AND encrypted.
Very good machine language skils. The defs can be hex that is MD5'd or shadow encryopted, to save space in def files and therefore bandwidth used by the many folks who all need these things on their boxes ASAP.
Very good skills at securing computers themselves, to accept definitions or specimens of suspected viruses, worms, or trojans.
This means a team, not just one or two people, especially with the number and frequency of new combos of exisiting viruses and uniquely new variants as viruses morph. Lead software engineers are needed to ahve good team. A very good lead engineer can demand the same rates as lawyers with 10-15 years experience in an area that is in demand-- say 100 to 200 dollars US per hour. Symantec has some of the best, F-Prot has a small group of very good folks, Network Assciates has a good team, and Kaspersky and F-Secure have very good teams also. These AV companies intercommunicate info about viruses to a degree, as no one company can track ALL the new viruses worldwide. They use tracable email that is encrypted to do so. It is digitally signed, and the signature is tracable back to real sender. Some companies do the same with the customer notify emails. F-Prot sends SHA hashed and PGP 1.2 signed emails to me, I know the sig and my Linux box also does.
I will leave program and heuristics corellaries for other threads, this is just the tip of the iceberg. Think of AV software as software that has to be as reliable as medical software for your patients, the computers.
The AV companies can only justify this set of VERY large expenses by having MANY customers who each give money to the AV company they want subscriptions from. Little tiny companies, unless they are staffed by folks who are hyper-good, cannot survive and offer 2-3 times a week defs whihc are distributed securely and automatically. Free software is a snapshot made at time of creation of that download package. Some trial AV lets you get subscriptions.
Thanks for being fellow subscribers, you folks who pay for AV. You are letting those companies survive.
John D.
NAV has a way to bulk-update defs built into it to close to current day (at worst), if you have a good subscription that has not expired. Symantec offers for download a package called the Intelllgent Updater. When they update the defs for Enterprise NAV or Symantec software, or within usually 24 hours of that, they put a new snapshot of Intelligent Updater on thier site. The archive has both the program and the full def set, in compressed form, and will both self-extract and update defs after checking your AV subscription validity. NAV cannot be running when you run this updater, in fact if it is the updater will will tell you to close NAV first. This is good, as NAV protects it defs also.
You get to download and run this updater, or accept weekly updates if you have consumer grade NAV or Norton SystemWork Pro or Norton Internet Security. Not too many folks do download this package at any one time. If you get a strong feeling from this area that new malware things are hitting suddenly, might be a very good idea to then get and run the Intelligent Updater. This is especially true with NAV 2004 customers, as Symantec is implementing the blending of trojan and other malware detection into traditional AV.
John D.
So does mine, but thankfully, my mom's employer has site-licensing of SAV.
Just curious, are you running ePO?