Does NOD32 protect against and/or remove trojans and worms!

Thank You!

 

Yes. As well as anybody.

 

hi,

i personally run NOD32 on all my PCs and have NOD32 on my GF's laptop.

The problem is that we still occasionally get spyware/trojan infections...i just had to clean my GF's notebook *today* w/ a whole array of spyware cleaners - she got infected by visiting one of those dumb spammer sites.

NOD32 is running 24/7

I never understand why there is a differnce made between trojans, spyware, viruses...i personally dont care whether its called "virus" or "spyware" or "trojan". i should NOT need 5 programs to get rid of all the badware.

Otherwise (as said) i prefer NOD32.

 

A flu shot doesn't prevent you from getting diabetes does it.

 

Every 3 months or so I scan with a-squared and Ewido Micro (pc-cillin before those 2).
I've been doing that forever, even before I started using NOD32.
Switching to Firefox a few years ago dramatically reduced the amount of spy/ad/troj/trackers I kept getting.

And to answer the topic question: Yes it does.

 

i use FF 2.0 99% of the time and IE7 i need to use *occasionally* for developing web pages.

I remember i got infected once *by just leaving FF open* over night - i mean i am not *that* dumb that i click on .exes or similiar offered on dubious chinese web sites.....but there must be ways that you get infected by just leaving a browser open.

And yes it was FF, and no ActiveX in Firefox and w/ NOD32 running and whatelese. I remember, THO, that NOD32 popped up like crazy and warned me about multiple infection attempts.

I clicked all them to quarantine or delete, but still i got me a whole bunch of
infections and it took some time to get rid of them.

Wehen they come, they come in hordes...and they're TOUGH.

--> Safe-mode.....whole bunch of cleaners/sweapers/hijckthis etc..etc....

 

Bad example - a flu shot would be equivalent of signature. Anti-malware programs could be rather referred to as vaccine or antibiotic

 

Unfortunately, you probably need 3 antispyware programs if you want to remove ALL spyware. There are just so many different spyware programs and variants of those programs that no program can get 'em all. The field of spyware is so expansive that we need specialty programs to cure our PCs from all infections.

Kind of like your doctor. You can go to your general doctor for a lot of common problems, but if you need surgery, I bet you consult a specialist. Nobody can do it all.

However, I bet most of your spyware problems would diappear if you started running your browser in a sandbox application like Sanboxie (it's free).

 

The thing people don't understand is that even if you don't use Internet Explorer, if you have it installed on your system and it is not locked down, spyware can still install with ActiveX if given the opportunity. One main reason is that IE is not just a browser, but part of the entire Windows Operating Sytem. That is one reason I use Spywareblaster to cover IE vulnerability holes and disable all ActiveX permissions in Internet Options. Even this is not fullproof. Also, Firefox is not totally immune to ActiveX as many believe. There are plenty of technical articles available that show this is really a fallacy and more legend than fact. Sure, Firefox maybe doesn't have the same vulnerabilitities as IE and may not be as wide open to attack via ActiveX, but it is not immune. Just today my Online Armor program blocked an ActiveX attempt while I was running Firefox. I would suggest you check your settings in Internet Options and make sure IE is set to full security with all ActiveX and possibly even Javascript disabled. If you don't have Spywareblaster, I would install it and have it enable all protection for both IE and Firefox. Also, if you don't run NoScript with Firefox I would add that extension and use it also.

 

Unless you install ActiveX plugin for Firefox it is immune to ActiveX. Plugin main purpose is only to allow WMP for embedded media but probably open up a few doors, perhaps confusing malware? My ISP recommend I install that plugin, to let me hear their radio.

Would be nice with some details on sites and programs used - not likely any Firefox security bug is not already documented on Bugzilla. I would guess whatever became active would have done so no matter what - not related to having Firefox open. Malware can activate itself based on date/time, other triggers perhaps. How it got there in the first place is good question.

I think those flyby infections are very rare (definitely with Firefox) but that is what Imon deals with. Only reason to use it. Stuff like No Script is overkill unless you find it cool to whitelist! The tool is great as such but saying every script is guilty until proven innocent is giving up. Internet not that bad. Part of internet might be but we dont go there?

Actually I think I tried a flyby attack may be 2 years ago, SpywareWarrior site had a direct link and I ignored warnings. Perhaps I had to accept a fake popup box or something so not a genuine flyby but all went very fast, and I do remember having to download and install a whole bunch of Antispyware programs to get disinfected. I believe Webroot Spy Sweeper was big winner. Some other popular tools failed completely. This one based on IE6 hole naturally.

Just with moderate/default browser (IE7 not 6) security setup and NOD32 I think you will find it hard to get infected - unless some user of computer have very unhealthy browsing, perhaps even installation, habits. Perhaps visiting some sites included in Spywareblasters block list? Infections dont just happen.

Be careful that whatever did infect is not only halfdead and will pop up again. How well X program removes crap is a very good one. Best to look evil up on the big internet and confirm success following manual removal/troubleshooting guides. Make use of Hijackthis or similar. Sometimes you do need special tools, do things in right order etc. Depends but assume the worst.

http://www.morgud.com/interests/security/dfk-threat-simulator-v2.asp I dont know how effectively it takes out NOD32 but much is possible. Starts by clicking exe-file of course... I remember version 1 was no picnic to run - depressing. Must not forget good practices no matter number of tools - no reason not to use S&D host blocking list or Spywareblaster or even have Windows Defender in background though. Anyway, be sure to read information should you feel a test coming up.