瑞星卡卡安全论坛

首页 » 技术交流区 » 系统软件 » 对四种防火墙测评::瑞星、天网、费尔、KFW
馒头山工兵营 - 2006-1-6 17:15:00
1--系统WIN98
2--IE5.0
3--测评共27项
AAA-----正版瑞星2006+卡卡规则包---BLOCKED-有4项-------135-139-445-8
        CLOSED---------有23项-------27-4=23
BBB-----免费版费尔----BLOCKED-有27项
CCC-----免费版KFW-----BLOCKED-有27项
DDD-----D版天网2.50----BLOCKED-有27项

SYGATE的安全检测站点:
http://scan.sygate.com/prequickscan.html

原帖:
http://forum.ikaka.com/topic.asp?board=33&artid=7631995

图为瑞星的:



附件: 99389200616171558.jpg
馒头山工兵营 - 2006-1-6 17:24:00
免费版费尔

附件: 99389200616172402.jpg
馒头山工兵营 - 2006-1-6 17:26:00
免费版KFW


附件: 99389200616172619.jpg
馒头山工兵营 - 2006-1-6 17:27:00
D版天网2.50

附件: 99389200616172735.jpg
馒头山工兵营 - 2006-1-6 17:29:00
正版瑞星2006+卡卡规则包

附件: 99389200616172944.jpg
taylor05771 - 2006-1-6 17:32:00
瑞星墙+规则包


附件: 243425200616173209.JPG
taylor05771 - 2006-1-6 17:33:00
全部blocked
馒头山工兵营 - 2006-1-6 17:39:00
再次测评瑞星:CLOSED--15个
Service  Ports  Status  Additional Information
FTP DATA 20 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
FTP 21 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
SSH 22 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
TELNET 23 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
SMTP 25 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
DNS 53 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
DCC 59 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
FINGER 79 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
WEB 80 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
POP3 110 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
IDENT 113 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
Location Service 135 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
NetBIOS 139 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
HTTPS 443 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
Server Message Block 445 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
SOCKS PROXY 1080 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
UPnP 5000 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
WEB PROXY 8080 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.

Results from scan of commonly used trojans at TCP/IP address:

Service  Ports  Status  Possible Trojans
Trojan 1243 BLOCKED This port has not responded to any of our probes. It appears to be completely stealthed.
Trojan 1999 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 6776 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 7789 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 12345 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 31337 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 54320 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.
Trojan 54321 CLOSED This port has responded to our probes. This means that you are not running any application on this port, but it is still possible for someone to crash your computer through known TCP/IP stack vulnerabilities.

Results from scan of ICMP at TCP/IP address:


Protocol  Type  Status  Additional Information
ICMP  8  BLOCKED An ICMP ping request is usually used to test Internet access. However, an attacker can use it to determine if your computer is available and what OS you are running. This gives him valuable information when he is determining what type of attack to use against you.
馒头山工兵营 - 2006-1-6 17:47:00
再次测评瑞星:CLOSED--23个

FTP DATA 20 CLOSED
FTP 21 CLOSED
SSH 22 CLOSED
TELNET 23 CLOSED
SMTP 25 CLOSED
DNS 53 CLOSED
DCC 59 CLOSED
FINGER 79 CLOSED
WEB 80 CLOSED
POP3 110 CLOSED
IDENT 113 CLOSED
Location Service 135 BLOCKED
NetBIOS 139 BLOCKED
HTTPS 443 CLOSED
Server Message Block 445 BLOCKED
SOCKS PROXY 1080 CLOSED .
UPnP 5000 CLOSED .
WEB PROXY 8080 CLOSED
Trojan 1243 CLOSED
Trojan 1999 CLOSED
Trojan 6776 CLOSED
Trojan 7789 CLOSED .
Trojan 12345 CLOSED

Trojan 31337 CLOSED
Trojan 54320 CLOSED
Trojan 54321 CLOSED



ICMP  8  BLOCKED
taylor05771 - 2006-1-6 17:59:00
因为你装了多款 防火墙
数据接管错误
所以非常正常的
我们也可以看到 在线检测的不稳定性
金凯明 - 2006-1-6 18:06:00
没有什么实际意义,不稳定的检测
阳儿绝版 - 2006-1-6 18:55:00
只要开了windows xp自带的防火墙都能通过检测
rufeng0920 - 2006-1-6 18:55:00
有意义吗?
我是天才陈叙 - 2006-1-6 20:11:00
???[img][/img]

附件: 390330200616201103.jpg
馒头山工兵营 - 2006-1-6 20:38:00
请:系统WIN98的测试一下瑞星墙
馒头山工兵营 - 2006-1-6 22:14:00
免费的(KEY)黑冰3.6-cow-----BLOCKED 26个
另一个(最后一项):<table width="633" border="2" cellspacing="2" cellpadding="2" bgcolor="#EEEEEE


附件: 99389200616221459.jpg
馒头山工兵营 - 2006-1-7 13:07:00
请:系统WIN98的测试一下-----瑞星墙+规则包
fnklmg009 - 2006-1-7 15:41:00
偶的98用瑞星加规则You have blocked all of our probes! We still recommend running this test both with
and without Sygate Personal Firewall enabled... so turn it off and try the test again.
sunwei5337 - 2006-1-7 16:04:00
木马检测
端口    服务                  检测结果          安全含义
16661  Backdoor.Haxdor.o    隐形!      没有任何方法探测到任何信息!
20168  爱情后门II            隐形!      没有任何方法探测到任何信息!
1092    爱情后门II            隐形!      没有任何方法探测到任何信息!
9996    Worm.Sasser.E        隐形!      没有任何方法探测到任何信息!
5554    Worm.Sasser.E        隐形!      没有任何方法探测到任何信息!
445    Worm.Sasser.E        隐形!      没有任何方法探测到任何信息!
31337  Backdoor.BO.a        隐形!      没有任何方法探测到任何信息!
133    Backdoor.Farnaz      隐形!      没有任何方法探测到任何信息!
139    netbios              隐形!      没有任何方法探测到任何信息!
6713    SubSeven              隐形!      没有任何方法探测到任何信息!
6711    SubSeven              隐形!      没有任何方法探测到任何信息!
31339  NetSpy                隐形!      没有任何方法探测到任何信息!
31337  BackOriffice          隐形!      没有任何方法探测到任何信息!
20034  NetBus Pro            隐形!      没有任何方法探测到任何信息!
12346  NetBus 1.x            隐形!      没有任何方法探测到任何信息!
12345  NetBus 1.x            隐形!      没有任何方法探测到任何信息!
7306    NetMonitor (NetSpy)  隐形!      没有任何方法探测到任何信息!
7308    X Spy                隐形!      没有任何方法探测到任何信息!
7626    冰河                  隐形!      没有任何方法探测到任何信息!


端口检查
端口    服务          检测结果      安全含义 
21      文件传输      隐形!      没有任何方法探测到任何信息!
23      远程登录      隐形!      没有任何方法探测到任何信息!
25      电子邮件      隐形!      没有任何方法探测到任何信息!
79      用户查询      隐形!      没有任何方法探测到任何信息!
80      超文本服务器  隐形!      没有任何方法探测到任何信息!
110    电子邮件      隐形!      没有任何方法探测到任何信息!
113    身份查询      隐形!      没有任何方法探测到任何信息!
119    新闻服务器    隐形!      没有任何方法探测到任何信息!
139    微软网络      隐形!      没有任何方法探测到任何信息!
143    IMAP电子邮件  隐形!      没有任何方法探测到任何信息!
443    安全服务      隐形!      没有任何方法探测到任何信息!


信息泄漏检查
无法连接到您的计算机

嘿嘿,安全呀~
馒头山工兵营 - 2006-1-9 16:23:00
今天测试:
系统WIN2000
IE6.0-SP1
瑞星2006+规则包68号------------------仍23个closed
奇怪中....


附件: 99389200619162301.jpg
sunrui - 2006-1-9 16:59:00
引用:
【馒头山工兵营的贴子】今天测试:
系统WIN2000
IE6.0-SP1
瑞星2006+规则包68号------------------仍23个closed
奇怪中....

...........................


网警说装多个防火墙会造成瑞星工作不正常,你是不是单独装瑞星再测一下?
taylor05771 - 2006-1-9 17:22:00
很简单 新做 的 系统
单独 瑞星+规则包
关闭路由 即可知道结果
sunrui - 2006-1-9 17:39:00
怎么关闭路由 啊?
馒头山工兵营 - 2006-1-9 18:06:00
引用:
【馒头山工兵营的贴子】今天测试:
系统WIN2000
IE6.0-SP1
瑞星2006+规则包68号------------------仍23个closed
奇怪中....

...........................


这是别人的机子:WIN2K+IE6.0+SP1-----------23个 closed
本人机:win98+IE5.0-----------------23个 closed
下次在winXP试一下-----------???? closed
左摆拳 - 2006-1-9 18:53:00
我用18.08+1月8日规则居然有2个OPEN 期于全部是CLOSED
昏啊
1
查看完整版本: 对四种防火墙测评::瑞星、天网、费尔、KFW
© 2000 - 2026 Rising Corp. Ltd.