bought an ASUS AC-87U Router, do I still need an AV?

Discussion in 'other anti-virus software' started by Mortal Raptor, Dec 25, 2014.

  1. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    It comes with Trend Micro protection built in to protect against viruses and maicious website in the router itself, so can I run my computer without an AV now or do I still need one?
     
  2. Brocke

    Brocke Registered Member

    Joined:
    Mar 16, 2008
    Posts:
    2,190
    Location:
    USA,IA
    Is the trend micro lifetime subscription?
     
  3. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    it doesn't state anything really, it's built into the router so I assume yes?
     
  4. Brocke

    Brocke Registered Member

    Joined:
    Mar 16, 2008
    Posts:
    2,190
    Location:
    USA,IA
    I'm thinking so
     
  5. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    4,085
    &
    ASUS Implements Trend Micro Smart Home Network Solution into Wireless Router Products


    That's all........and definitely not an AV, IMHO.......
     
  6. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Trend is build into it for life, but it's more of the Trend Deep Security, which is primarily a URL filtration, and Malware fingerprinting type of system. It's not a true AV in the traditional sense. Although it's an exceptionally good gateway protection, and first layer defense, I do not feel any UTM current offers good enough protection to totally ditch desktop AV's. Fortinet for example has great hardware protection, but still integrates clients into the hardware. Bit Defender Box works in a similar manner apparently. Indicating these companies also feel a desktop/device solution is needed. It's actually pretty difficult to get true malware, and malware delivery sites past the ASUS. You can try it on various malware links and see for yourself. But a bundled malware inside of a packer from an undocumented domain would probably slip through it. Also it won't help too much with PUP/PUA. One thing not well documented, the ASUS is capable of reactionary IPS. If it detects a potential leak it can repair it. Also it can detect potential 'leaking' data from a computer, and block it.

    It's a very powerful router, and the equivalent of a lower layer UTM for the home. (but not NGFW). Trend's DS is very potent for malware URL blocking, which means ALL appliances/devices in your home take advantage of potent scanning of 80/443 traffic. I wouldn't even consider not running one on my network, it blocks too much to go without it.

    ASUS RT-AC87 has 4 phases of protection, and a very powerful parental control system.
     

    Attached Files:

  7. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    This is just URL blocking. It does no file scanning...
     
  8. FOXP2

    FOXP2 Guest

    Only if you don't attach any media device, smartphone or USB stick or insert a disc in your optical drive. Because all those are known to be safe. :isay:
     
  9. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Please stop spreading FUD. Yuki already explained how this works in detail in another thread. It's easy to verify yourself that it isn't just a 'URL scanner', even though it is one of the most powerful URL scanners in the world, there are other technologies behind it. A good example was where I showed how this product 'learned'. For example I could get through to around 30-40% of CleanMX links. But AFTER clicking them, the next few days, even different links, I was prevented from accessing them because the links, websites, and programs were then recognized by their fingerprints in the Trend Deep Security architecture, thus preventing infection from any clickable link OR downloadable malware on CleanMX. As more people(and enterprise) deploy TDS, the database grows, and the fingerprinting becomes more advanced.
     
    Last edited: Dec 25, 2014
  10. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Mortal, go to CleanMX and try to click any link with that ASUS running Trend.

    The reason why none of them are reachable, and never will be reachable is because they are fingerprinted on the TDS system the second they arrive. I was the first person to start fingerprinting on all of the malware link/distribution websites I could find, and as a result those become unable to download/push malware for anyone running Trend OR an Asus router. This method of malware delivery is effectively terminated for anyone running the ASUS AC series, which removes millions of pieces of malware from the risk table. (not just the URL specific) Try them with IE as well. Granted it's not an AV scanner, but it has different technologies behind it other than a simple URL scanner, and it's part of the reason Trend 2015 is scoring 100% on many of the new tests.
     
  11. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    4,085
    In our view, the star of the show is the new AirProtection feature powered by Trend Micro, which includes two modules: Network Protection and Parental Controls.
    ------------

    Trend Micro Deep Security Platform
     
  12. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,515
    If you're tech-savvy enough, you don't need an AV in the first place. But then again, there are other infection vectors like USB and AV's are pretty much idiot-resistant.
     
  13. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Indeed. I actually LOVE the parental controls on the ASUS/Trend routers. Second to none.

    “It’s more important than ever to secure diversified Internet-connected devices," said Dr. Terence Liu, vice president of Network Threat Defense Technology Group at Trend Micro. “Once a home network is hacked, personal information is susceptible to being compromised. The home network is now becoming another new hot zone for hackers. In deploying Smart Home Network on ASUS wireless home router products, malicious exploits can be blocked efficiently and protect all devices at home to promote home security in the frontier. We are proud that the collaboration between ASUS, the leading company in the nnetworking communications industry, and Trend Micro will now be extended from professional data security protection into home networks."

    Separate from ordinary security functions in home routers, Trend Micro’s Smart Home Network Solution helps users create a complete, systematic security protection process including three stages: prevention, protection and mitigation. The home router is no longer just an Internet sharing machine. By intelligently monitoring and tracking security events while combining intelligent bandwidth management and parental control system, it immensely enhances network experiences and becomes the most reliable home gateway security keeper.
     
  14. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    4,085
    The new AirProtection feature powered by Trend Micro, which includes two modules: Network Protection and Parental Controls it's totally different from Deep Security platform.
    Simple as that.

    Merry Christmas to all.
     
    Last edited: Dec 25, 2014
  15. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    It's easy to test that it's more than a simple malware scanning. Go to some little known malware sites, or malware downloaders with the ASUS-Trend router. Then try again after it has been fingerprinted. A good example is how hard it is to pull anything off any link posted to CleanMX now that those things are fingerprinted. Go to Malware Domain List, and hit every one. Those are perpetually fingerprinted. This also works for botnet and C&C since C&C servers are fingerprinted, so even if your box is compromised, the outbound stuff is going to be stopped. You don't realize the power of this until you own one.. Mortal is going to have some fun.

    Mortal, hit all of the malware domain listing sites AND file links, and prepare to be amazed. ;-)
     
    Last edited: Dec 25, 2014
  16. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    sounds great bro! I will need to test this more! sounded too good to be true at first but you are convincing me! what a hidden Gem! I invested in this router to get low ping rates and the best WLAN connectivity, then this comes as an added bonus! Heck you can even configure it to download your torrent files even if no PC is on, it downloads to an external USB drive if properly configured with it

    so to sum up my question, I don't put any USB drives from other people, only mine, and my system is clean, I don't use any cracks, I have an adblocker (ABP), so do I need to install an AV?
     
  17. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Given those conditions, I see no need to run an AV at all. At the most, maybe a quick on-demand of stuff you download. Otherwise? Why bother. Pick a good on-demand, and be done with it. Even then, that's probably not even needed. I am REALLY curious to see you test the power of it, and post your findings here. Remember, it's power grows exponentially as more people deploy these, and install Trend 2015. I purposely run automated scripts sometimes to help fingerprint. You made a GREAT investment in my opinion.
     
  18. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    Right, I just took a whole day formatting and installing all my stuff, so I really don't wanna mess this up. Is there any real risk running the stuff on that CleanMX site? or is it just for testing and does no real harm if something wasn't caught?

    Also, I went to the CleanMX site, but what to do next? I'm confused
     
  19. Yuki2718

    Yuki2718 Registered Member

    Joined:
    Aug 15, 2014
    Posts:
    1,257
    Be careful to recommend such thing for anyone, as it can hurt his PC unless he take proper measure.

    Oh, and don't do too much, as CleanMX includes many non-mlicious sites, which many of Youtube amateur tester don't aware of that. Some links even have 1-5 VT detection, but after further research I found part of them were actually FP. If those links are also blocked by TM, they're FPs.
    To be honest, I still sometimes come across FP by TM InterScan.

    Anon is partly right, as actuall Deep Security includes many more advanced features. At the same time, it's sad some people are not aware of the importance of NIPS included in AC-87U. IMO, many Wilders people tend to be 0day entusiast and disregard the fact that most threats are still blocked by traditional AV scan, and NIPS comes next. One of Symantec source says 44% of detection are by AV engine, 42% for IPS, Insight 9%, and SONAR 5% (see this). Actually though, NIPS can block even 0day exploit as long as it's known for the vendor.

    If you follow best practice, and have good IPS on network perimeter, you won't be infected. However, I still recommend to use desktop AV/IS or equivalent (or even more strong) setup such as HIPS or anti-exe.
    One reason is, AC-87U don't scan SSL traffic AFAIK, and recently many threats comes from those paths (real Deep Security can scan SSL traffic). Also if exploit is highly obfuscated, IPS may fail.
    In those case, only endpoint security products can stop it 'cause even encrypted/obfuscated exploit have to be finally decrypted/de-obfuscated.

    Also while Trend's web reputation is quite strong, (pardon me for nitpicking: it can block even undocumented or unknown domains by calculating its reputation. I'm aware Mayahana said "would probably" with caution, but still wanted to point out) it's not perfect. By having any form of endpoint security, you will be able to sleep with more ease.
     
  20. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    971
    Location:
    Paris
    Raptor- Do NOT even consider (never, ever) doing any malware testing of any type on your system unless you have a VM setup (without network shares) in which you can play.

    Malware testing on your actual computer is like checking the sharpness of a knife by stabbing yourself in the chest.
     
  21. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,121
    Location:
    USA
  22. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Mortal this is by no means a plugNplay router... Turn on adaptive QOS, then tick the dropdown to the right, and drag and drop priorities. It makes a huge difference.

    I have Streaming1, Gaming2, Surfing3, Voip/SIP4, Other5, FileTransfer6. Then the adaptive takes over, modulating for priorities. Also make sure to use exact figures for your connection. If you have any dropouts, lower it slightly to leave 3-10Mbps outside of the QOS for stability. This fixed a clients network today by leaving a few mbps outside of QOS as a sort of failover.

    Some other settings;

    Disable b/g protection.
    Turn off WPS, USB Modem, Ping from WAN, UPnP.
    Turn ON DDOS prevention/blocking.
    Disable URL, Keyword under Firewall.
    Turn ON all AiProtection features.

    Go into each radio under 'professional' settings. Turn OFF Scheduling for Radio, it can cause issues in my experience.
     
    Last edited: Dec 26, 2014
  23. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    When I turn on QOS, the download speed for apps like Steam or Origin or even regular downloads drops down to 1 MB/S whereas my connection is 50 MB/S, I'd appreciate if you can help me over TeamViewer set things right for the router.

    Please PM me if you can spare a few moments.

    Thanks
     
  24. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Adaptive or Regular QOS? Your speed should never drop that low, so it's a setting.

    I can do a teamviewer session right now if you want.. I will probably be disconnected 4-5 times while working on it, but it shouldn't take long.
     
  25. Mortal Raptor

    Mortal Raptor Banned

    Joined:
    Oct 6, 2014
    Posts:
    1,013
    both bro, TeamViewer credentials sent. I appreciate it
     
Loading...