刚刚试了一下ERNT,实在是比国内某些山寨杀软更山寨
首先要声明的是,这个东东是收费的,29.99美金,不过有可用的ke: PO091-JW11M-64VB5-JKCH393
官网应该是http://fozisoft.com/,我打不开,无法证实。
安装需要97.2M,没有安装选项,直接就是完全安装。
安装完了不用重启,直接就能用,一开始要求填写个人信息,不过貌似没用
一下是几个下载站点给的截图,需要说明的是,中文操作系统下字体很难看
这几个界面其实已经接近全部了,他几乎没有更详尽的界面了,例如,点击升级后的界面如图
由于升级结束了没有任何提示,我也不能确定升级成功了没有。
这个东东貌似没有实时监控,或者实时监控很迟钝。我把卡饭上的16个样本打的包解压,它无视。
由于没有右键扫描菜单,必须在“run scans system virus"里面手动添加文件夹扫描
扫描时它会启动一个antivius.exe的进程,有时不能退出,下次就有两个了。
它扫描同样的文件夹会有出现灵异现象,就是间歇性的不扫指定的文件夹而是扫U盘。以下是扫描有16个样本的文件夹的结果
它说删除了其实根本没有,文件还在哪里,由于没有详细的说明,我也没法知道它扫出了哪几个。这个可能是由于它和中文操作系统兼容性有问题。
由于xp不能识别它,我只有手动关闭系统防火墙来测试ernt的防火墙
这是PC Flank上的测试结果
 The results of Stealth Test
We have sent following packets to TCP:1 port of your machine:
- TCP ping packet
- TCP NULL packet
- TCP FIN packet
- TCP XMAS packet
- UDP packet
Here is the description of possible results on each sent packet:
"Stealthed" - Means that your system (firewall) has successfuly passed the test by not responding to the packet we have sent to it.
"Non-stealthed"- Means that your system (firewall) responded to the packet we havesent to it. What is more important, is that it also means that yourcomputer is visible to others on the Internet that can be potentiallydangerous.
| | Packet' type |  | Status |
| | | TCP "ping" | | non-stealthed |
| | | TCP NULL | | non-stealthed |
| | | TCP FIN | | non-stealthed |
| | | TCP XMAS | | non-stealthed |
| | | UDP | | non-stealthed |
|
Check for vulnerabilities of your computer system to remote attacks Wehave scanned your system for open ports and for ports visible to otherson the Internet. As a rule an open port means your computer isvulnerable to attacks by crackers. They gain access to your computerand its files through these open ports.
 | |
| Danger!
The test found open port(s) on your system: 135
The test also found visible port(s) on your system: 21, 23, 80, 137, 138, 139, 1080, 3128
|
Recommendation:
It is urgent that you install personal firewall software. PC Flank recommends Outpost Firewall Pro.
Ifyou have already installed and are using a firewall, check if it is setto make all the ports of your computer closed and invisible (hidden).If you have any problems adjusting your firewall, get help from thefirewall developer. If the firewall is correctly set but fails thistest, replace the firewall software and redo this test.
Trojan horse check Thetest scanned your system to find signs of a Trojan. If a Trojan horseis on your computer a cracker can access your system's files and yourpersonal data.
 | |
| Warning!
The test found visible ports on your system: 27374, 12345, 1243, 31337, 12348.
The following Trojans use these ports: SubSeven, NetBus, SubSeven, Back Orifice, BioNet
Althoughthese ports are visible, they are not open, so your system is notinfected. However, having visible ports on your system means yourcomputer can be "seen" over the Internet. This makes it very easy forskillful intruders to explore your system.
|
Recommendation:
Install personal firewall software and use an anti-Trojan program. Anti-trojans to consider are: The Cleaner, PestPatrol or Tauscan.
Ifyou have a firewall, check if it is set to make all your computer portsinvisible (hidden). If it is, then it failed miserably. Replace it andredo this test.
Browser privacy check Thetest checked if your web browser reveals any private information whileyou visit Web sites. Usually such information is: the last sitevisited, your locale and who your Internet Service Provider is.
| | Danger!
Whilevisiting web sites your browser reveals private information about youand your computer. It sends information about previous sites you havevisited. It may also save special cookies on your hard drive that havethe purpose of directing advertising or finding out your habits whileweb surfing.
|
Recommendation:
Weadvise you to get personal firewall software. If you already have afirewall program adjust it to block the distribution of suchinformation.
To compare your results to results of other users click on "Overall Stats".
看上去就是连系统自带的防火墙都不如,同时我开任何程序上网它都没有提示。就是说这个东东连基本的程序控制功能都没有,可能只有简单的防外的功能,就这功能还没做好。
它还有几个简单的清理系统的功能,我实在是懒得试了,就算要用也用360不会用它了。
总结:ERNT System Antivirus 2009是一款几乎没有监控,查杀率极低,防火墙是个空壳的国外山寨杀软。
我刚刚删了这个稀烂的东西,它再次把我雷到了,点击删除并提示成功以后,它的主窗口仍在,我检查了安装文件夹,就那个主文件和一个字体文件还在,果然很山寨呀。
[ 本帖最后由 cidwu 于 2009-7-9 18:06 编辑 ] |
发表于 2009-7-9 18:00:11
楼主
没必要。