64 replies to this topic

[kewlceo]

Every so often it's good to test your computer for open ports, and to also test your antivirus software for effectiveness. The first test I use is done from a safe website that will check to make sure that their are no holes that will allow hackers into your PC remotely:

http://probe.hackerw...probe/probe.asp

^ Run this and then post the final results in this thread.

The next test challenges your antivirus program. Fsimfan posted this a long while back, and I've found it to be a useful way of making sure that my antivirus program is configured on its tightest settings.

http://www.eicar.org...s_test_file.htm

^ Go to this page and scroll down to the links. Click each of the four links to make sure that your antivirus program rejects them. Again, this is a safe test and will not infect your computer. If your AV program's live protection is set on high, then it should warn you of a virus and abort the connection.

Post your results with this one, too.

[Mul.]

Quote

Secure
21 (FTP)

This port is completely invisible to the outside world.


Secure
23 (Telnet)

This port is completely invisible to the outside world.


Secure
25 (SMTP Mail Server Port)

This port is completely invisible to the outside world.

 
Secure
79 (Finger)

This port is completely invisible to the outside world.

 
 
Secure
80 (HTTP)

This port is completely invisible to the outside world.


Secure
110 (POP3 Mail Server Port)

This port is completely invisible to the outside world.


Secure
139 (Net BIOS)

This port is completely invisible to the outside world.


Secure
143 (IMAP)

This port is completely invisible to the outside world.

 
Secure
443 (HTTPS)

This port is completely invisible to the outside world.

The virus scan wasn't quite so successul. "Eicar.com" file was detected as a virus and subsequently deleted but the latter 3 went undetected. My Virus scan is only set to normal however, which probably explains this.

Mul

[flyhalf]

Ports all passed (Zone Alarm)

I right clicked and "Saved As..." all 4 files and got nothing from my Anti Virus (AVG). Am I meant to run these ?

[Mul.]

No need to run them. I downloaded them all to a folder, then asked my antivirus to can the folder.

Mul

[flyhalf]

Yeah got 4 threats ONLY when I asked AV to scan them. So it happened by my action. That can't be good can it ?

[SwitchFX]

Quote

 
 

Secure
21 (FTP)

This port is completely invisible to the outside world.

 
 
 

Secure
23 (Telnet)

This port is completely invisible to the outside world.

 
 
 

Secure
25 (SMTP Mail Server Port)

This port is completely invisible to the outside world.

 
 
 

Secure
79 (Finger)

This port is completely invisible to the outside world.

 
 
 

Secure
80 (HTTP)

This port is completely invisible to the outside world.

 
 
 

Secure
110 (POP3 Mail Server Port)

This port is completely invisible to the outside world.

 
 
 

Secure
139 (Net BIOS)

This port is completely invisible to the outside world.

 
 
 

Secure
143 (IMAP)

This port is completely invisible to the outside world.

 
 
 

Secure
443 (HTTPS)

This port is completely invisible to the outside world.

Caught all 4 files

[Antimod]

Every port is invisible and all of the four packages were rejected.
Just as I expected.

[Capt. Bulb]

Secure
21 (FTP)

This port is completely invisible to the outside world.





Secure
23 (Telnet)

This port is completely invisible to the outside world.





Secure
25 (SMTP Mail Server Port)

This port is completely invisible to the outside world.





Secure
79 (Finger)

This port is completely invisible to the outside world.





Secure
80 (HTTP)

This port is completely invisible to the outside world.





Secure
110 (POP3 Mail Server Port)

This port is completely invisible to the outside world.





Secure
139 (Net BIOS)

This port is completely invisible to the outside world.





Secure
143 (IMAP)

This port is completely invisible to the outside world.





Secure
443 (HTTPS)

This port is completely invisible to the outside world.



Test complete.

No open ports were found.

---

[Highlander.]

Quote

 
 

Secure
21 (FTP)

This port is completely invisible to the outside world.

 
 
 

Secure
23 (Telnet)

This port is completely invisible to the outside world.

 
 
 

Secure
25 (SMTP Mail Server Port)

This port is completely invisible to the outside world.

 
 
 

Secure
79 (Finger)

This port is completely invisible to the outside world.

 
 
 

Secure
80 (HTTP)

This port is completely invisible to the outside world.

 
 
 

Secure
110 (POP3 Mail Server Port)

This port is completely invisible to the outside world.

 
 
 

Secure
139 (Net BIOS)

This port is completely invisible to the outside world.

 
 
 

Secure
143 (IMAP)

This port is completely invisible to the outside world.

 
 
 

Secure
443 (HTTPS)

This port is completely invisible to the outside world.

All four links where caught by avast

[kewlceo]

flyhalf, on Feb 3 2007, 08:26 AM, said:

Yeah got 4 threats ONLY when I asked AV to scan them. So it happened by my action. That can't be good can it ?

No, your AV should catch it just as soon as you click the link so that it never gets on to your computer. If you set your resident protection to high then it should take care of it.

[Alex6714]

All ports invisible (Zonealarm firewall must have stopped these) and all 4 files detected as soon as I clicked on them with Nod32.

[diluted]

kewlceo, on Feb 3 2007, 12:19 PM, said:

flyhalf, on Feb 3 2007, 08:26 AM, said:

Yeah got 4 threats ONLY when I asked AV to scan them. So it happened by my action. That can't be good can it ?

No, your AV should catch it just as soon as you click the link so that it never gets on to your computer. If you set your resident protection to high then it should take care of it.

I don't AVG Free does that, it didn't say anything when I tried to download the files either.

[SwitchFX]

Rick what program do you use? NOD32?

[kewlceo]

SwitchFX, on Feb 3 2007, 11:04 AM, said:

Rick what program do you use? NOD32?

I used to, but when it came time to renew I decided to use Avast! which works great and is totally free. They have free 64bit versions, and set on High Avast! catches all four of those links.

[Mango]

kewlceo, on Feb 4 2007, 02:10 AM, said:

SwitchFX, on Feb 3 2007, 11:04 AM, said:

Rick what program do you use? NOD32?

I used to, but when it came time to renew I decided to use Avast! which works great and is totally free. They have free 64bit versions, and set on High Avast! catches all four of those links.

My free firewall blocked all attempts. Free Avast  found the first two issues but would let me download the last two at both settings normal and high...  

[h.V]

Mul, what firewall are you using?

[SwitchFX]

Mango, on Feb 3 2007, 11:17 AM, said:

kewlceo, on Feb 4 2007, 02:10 AM, said:

SwitchFX, on Feb 3 2007, 11:04 AM, said:

Rick what program do you use? NOD32?

I used to, but when it came time to renew I decided to use Avast! which works great and is totally free. They have free 64bit versions, and set on High Avast! catches all four of those links.

My free firewall blocked all attempts. Free Avast  found the first two issues but would let me download the last two at both settings normal and high...  

I got the same thing with the ZIP files. I don't get it.


I would use avast but it's never liked me. And I really don't like the interface. Too flashy.

When I upgrade to Vista 64bit I might have to use it. Since I don't feel like paying for AVG's 64bit which is a ripoff.

[h.V]

My results:

Closed but Unsecure
21 (FTP)

This port is not being blocked, but there is no program currently accepting connections on this port.
  
  
  
  Closed but Unsecure
23 (Telnet)

This port is not being blocked, but there is no program currently accepting connections on this port.
  
  
  
  Secure
25 (SMTP Mail Server Port)

This port is completely invisible to the outside world.
  
  
  
  Closed but Unsecure
79 (Finger)

This port is not being blocked, but there is no program currently accepting connections on this port.
  
  
  
  Secure
80 (HTTP)

This port is completely invisible to the outside world.
  
  
  
  Closed but Unsecure
110 (POP3 Mail Server Port)

This port is not being blocked, but there is no program currently accepting connections on this port.
  
  
  
  Secure
139 (Net BIOS)

This port is completely invisible to the outside world.
  
  
  
  Closed but Unsecure
143 (IMAP)

This port is not being blocked, but there is no program currently accepting connections on this port.
  
  
  
  Closed but Unsecure
443 (HTTPS)

This port is not being blocked, but there is no program currently accepting connections on this port.


don't forget, I have a router which has firewall, so it is double protection

[SwitchFX]

Still a good idea to have software firewalls as well.

Edited by SwitchFX, 03 February 2007 - 02:26 PM.

[h.V]

I do I have ZoneAlarm and Avast Anti-virus...

Full protected against virus with Avast