Evorim Free Firewall - Have you tried it?

Status
Not open for further replies.
N

Noxx

Been using EVORIM Firewall since yesterday, and I actually kind of like it. It's a lot like WFC, which is good because it doesn't come with all the extra nuts and bolts which are already covered by other programs I use, thus there's no fear of confliction. I don't like that it came with anti-win10 telemetry options, which makes me wonder what else is under the hood which may sacrifice security in exchange for user privacy. That's probably not the case, but you can't be too careful. It's really easy to block/allow programs. I also find it very attractive that I'm not feeling any performance impact (~30mb). Very simple layout, more so than WFC, but I don't really consider that a con. It provides the option to disable Win firewall in favor of its own, which for some might be a bad thing, but I don't really put too much dependency on my firewall for security anyway. An interesting experience, considering I thought it'd be trash.
 

dJim

Level 5
Verified
Well-known
Mar 12, 2016
250
Been using EVORIM Firewall since yesterday, and I actually kind of like it. It's a lot like WFC, which is good because it doesn't come with all the extra nuts and bolts which are already covered by other programs I use, thus there's no fear of confliction. I don't like that it came with anti-win10 telemetry options, which makes me wonder what else is under the hood which may sacrifice security in exchange for user privacy. That's probably not the case, but you can't be too careful. It's really easy to block/allow programs. I also find it very attractive that I'm not feeling any performance impact (~30mb). Very simple layout, more so than WFC, but I don't really consider that a con. It provides the option to disable Win firewall in favor of its own, which for some might be a bad thing, but I don't really put too much dependency on my firewall for security anyway. An interesting experience, considering I thought it'd be trash.

what? really ? thats is what most users asking for.. dont have to use any 3 rd program to supose block those telemetry.. a firewall should block it anyway. i like so much how this firewall come blocking that
 
N

Noxx

Not going to debate the "is it right or wrong" about Microsoft telemetry, but as I said, it's provided as an option, so I'm just assuming that there aren't any integrated anti-win 10 telemetry/"spying" features that I have no control over.
 
  • Like
Reactions: AtlBo

Callender

Level 1
Verified
Aug 16, 2014
17
I've been using Comodo Firewall for a few years. I installed Evorim today and it works just fine alongside Comodo FW.

That seems pointless - right? Well consider the following:

Once installed Evorim's startup entry can be removed. Also the firewallsvce can be stopped (when Evorim FW is not running) and set to demand start.

firewallsvce Properties.jpg


That takes care of memory usage issues especially if you use Evorim FW as "run on demand" only.

Run On Demand is the way that I'd use it.

It displays a list of firewall rules of what is currently blocked/ allowed/ not configured.

It also displays a list of active connections.

Inspecting the list of allowed entries (easy to read and understand) it became clear that there were a few items that I needed to block.

I blocked desired entries using Comodo FW then refreshed Evorim FW listing as a double check.

When happy - I shut down Evorim.

I'd say it's actually a very useful way to double check your existing firewall.

RE: Telemetry blocking.

Personally I avoided any Windows 7 telemetry related updates. Also:

Open Task Scheduler. Under Task Scheduler Library > Microsoft delete the following items:
Everything under “Application Experience”
Everything under “Autochk”
Everything under “Customer Experience Improvement Program”
Under “Disk Diagnostic” delete only the “Microsoft-Windows-DiskDiagnosticDataCollector”
Under “Maintenance” “WinSAT”
“Media Center” and click the “status” column, then select all non-disabled entries and disable them.

I don't use Defender and keep it disabled. I also disable Spynet.

Spynet.jpg


As for the hosts file "block telemetry" methods - well I implemented those but they don't work where MS might have coded telemetry to bypass host file blocking.

So I remapped routing table to re-route MS telemetry related packets to a non-existent ip address.

Persistent Routes.jpg


Use Elevated Command Prompt > Powershell.

route -p add 8.254.209.254 MASK 255.255.255.255 0.0.0.0
route -p add 68.232.34.200 MASK 255.255.255.255 0.0.0.0
route -p add 66.119.144.190 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.39.10 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.252.93 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.252.92 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.252.71 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.252.63 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.252.43 MASK 255.255.255.255 0.0.0.0
route -p add 65.55.108.23 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.108.29 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.94 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.93 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.92 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.91 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.9 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.7 MASK 255.255.255.255 0.0.0.0
route -p add 65.52.100.11 MASK 255.255.255.255 0.0.0.0
route -p add 64.4.6.100 MASK 255.255.255.255 0.0.0.0
route -p add 64.4.54.32 MASK 255.255.255.255 0.0.0.0
route -p add 64.4.54.22 MASK 255.255.255.255 0.0.0.0
route -p add 23.99.10.11 MASK 255.255.255.255 0.0.0.0
route -p add 23.218.212.69 MASK 255.255.255.255 0.0.0.0
route -p add 23.102.21.4 MASK 255.255.255.255 0.0.0.0
route -p add 216.58.209.166 MASK 255.255.255.255 0.0.0.0
route -p add 207.68.166.254 MASK 255.255.255.255 0.0.0.0
route -p add 207.46.223.94 MASK 255.255.255.255 0.0.0.0
route -p add 207.46.194.25 MASK 255.255.255.255 0.0.0.0
route -p add 207.46.101.29 MASK 255.255.255.255 0.0.0.0
route -p add 207.123.56.252 MASK 255.255.255.255 0.0.0.0
route -p add 204.79.197.200 MASK 255.255.255.255 0.0.0.0
route -p add 198.78.208.254 MASK 255.255.255.255 0.0.0.0
route -p add 194.44.4.208 MASK 255.255.255.255 0.0.0.0
route -p add 194.44.4.200 MASK 255.255.255.255 0.0.0.0
route -p add 185.13.160.61 MASK 255.255.255.255 0.0.0.0
route -p add 173.194.113.220 MASK 255.255.255.255 0.0.0.0
route -p add 173.194.113.219 MASK 255.255.255.255 0.0.0.0
route -p add 168.63.108.233 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.91.82 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.91.77 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.77.139 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.74.250 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.23.91 MASK 255.255.255.255 0.0.0.0
route -p add 157.56.121.89 MASK 255.255.255.255 0.0.0.0
route -p add 157.55.129.21 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.58.189 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.58.123 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.58.121 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.58.118 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.53.30 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.53.29 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.51.190 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.185.70 MASK 255.255.255.255 0.0.0.0
route -p add 134.170.115.60 MASK 255.255.255.255 0.0.0.0
route -p add 131.107.113.238 MASK 255.255.255.255 0.0.0.0
route -p add 111.221.29.177 MASK 255.255.255.255 0.0.0.0
route -p add 104.82.22.249 MASK 255.255.255.255 0.0.0.0
route -p add 104.82.14.146 MASK 255.255.255.255 0.0.0.0

Note: May block Bing search.
 
  • Like
Reactions: AtlBo and dJim

dJim

Level 5
Verified
Well-known
Mar 12, 2016
250
so if u using both.. u think this evorim can be used as main firewall ? it work like how supose to be ?
 
  • Like
Reactions: AtlBo

Callender

Level 1
Verified
Aug 16, 2014
17
so if u using both.. u think this evorim can be used as main firewall ? it work like how supose to be ?

No I'm using Comodo Firewall. I was just pointing out that Evorim FW can be run on demand if you want to double check outbound connections.

The information on Evorim's website seems to suggest that it works better if used alongside another firewall like Windows Firewall.
 
  • Like
Reactions: AtlBo and dJim

asn1

Level 1
Verified
Aug 25, 2015
15
This program is cool

There are a few problems
- There are problems with explorer.exe ;when you restart explorer.
* Sometimes not response
* It does not appear in taskbar
* Sometimes the program does not work with a warning message.

- Automatic update does not work



win 8.1 /64bit
 

_CyberGhosT_

Level 53
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Aug 2, 2015
4,286
Gonna check this out now, looks interesting ;)
I too would like to see a leak test if anyone has
one they could link me to, or if someone does one
could you post it on MT ? Thanks.
PeAcE
 

Rengar

Level 17
Verified
Top Poster
Well-known
Jan 6, 2017
835
Screenshots attached running in VBox Windows 8.1 64-bit.

View attachment 96816 View attachment 96817 View attachment 96818 View attachment 96819 View attachment 96820 View attachment 96821

You will need to run shortcut after installation to enable Evorim's Firewall.

Windows Firewall will be disabled, but you must enable Evorim's Firewall to On. Otherwise, you won't be protected by any software firewall.

Set to Paranoid mode and launched Internet Explorer for the Firewall Alert prompt.

I have not tested Evorim Free Firewall extensively and, personally, will not be using the software again. :)
why you wont use that again?
 
A

antreas

wow a firewall focused on privacy + security i will give it a try! But i will search for review online first.
I can use this with voodooshield?
 
  • Like
Reactions: AtlBo and Polygon
A

antreas

Not many reviews online.
but on the website they have mobile number and hours of work.
 
  • Like
Reactions: AtlBo
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top