F
ForgottenSeer 94654
I understand. But if throwing a bunch of things at the protection service made it crash, then that is a bad thing, obviously.Hi, I think looking through the test the protection agent must of crashed from the amount of work it was trying to do... I didn't even look into the system, after the amount of stuff that had been running, the only thing any sane person should do at that point is format/reinstall windows.
(also note that that the IDS is detecting but actually blocking that traffic automatically) So whilst norton let the malware run and try to talk, my gateway stopped it & warned me of it (which would of prevented the system communicating to get the payloads)
If there was no IDS there.... the system likely would of been part of a botnet.
my tests are pretty simple & crude....
hammer an av with 1000 fresh malware
anything that blocks it running 100% is a pass (so far defender/avast free/mbam & f-secure safe are the only ones out of what ive tested)
bit def free/kaspaerky free/sophos/norton etc all fail
but dont forget to take my tests with a grain of salt.... they are not realistic.... you are not going to get hit with 1000 malwares one after the other in the space of 10 minutes.... under normal usage norton is probably fine!
If you search your system for *.dmp files, then you might find Norton process memory dumps (*.dmp) which would indicate the process crashed. You can also search through the Event Viewer Application logs (tedious). But you get the idea.