Ending Soon ZoneAlarm Extreme Security NextGen - Free License

[simmerskool]

It's not a bad product at all but the downloads take very long i actually like zonealarm due to it being different from the rest and in todays world that's hard to accomplish for an AV

I did not experience a long download, but my cable is pretty good at 550 mbps down, although with vpn it's 250. Download seemed about average to me... fwiw...
EDIT at first I thought you meant to DL the installation, ... I have not downloaded enough other files to come any conclusion about downloading yet.

 

[kev7]

hello, can someone help me please by explaining how Zone Alarm extreme security NextGen works with emails i see there is a plugin ? thank you

 

[Trident]

hello, can someone help me please by explaining how Zone Alarm extreme security NextGen works with emails i see there is a plugin ? thank you

Hi Kev, the plug-in activates parser (reader) that goes through the email looking for attachments and also, if password protected, it tries to find the password so they can be emulated. It also plugs into the forensic recorder so when attack is detected, on the report you will see it originates from an email. I haven’t had the chance to test all that still.

 

[kev7]

thank you Trident please may i ask with it also look for phishing links ? thank you

 

[simmerskool]

Hi Kev, the plug-in activates parser (reader) that goes through the email looking for attachments and also, if password protected, it tries to find the password so they can be emulated. It also plugs into the forensic recorder so when attack is detected, on the report you will see it originates from an email. I haven’t had the chance to test all that still.

I was not aware of email plug-in. Is the link for that in the app or on their website? Also does this email plug-in work for webmail, email read from browser, or do you need an email client for this plug-in to work, if you know. thanks!

 

[Trident]

I was not aware of email plug-in. Is the link for that in the app or on their website? Also does this email plug-in work for webmail, email read from browser, or do you need an email client for this plug-in to work, if you know. thanks!

The plug-in is necessary only for local clients such as Outlook and Thunderbird. Web mail will be handled by the browser plug-in and on the forensic report you will see the browser (Chrome, Edge, Brave, Firefox are supported) and the website (no restrictions there) as origin.

If it comes from a local client, on the forensic report you will see the email sender, subject and body as well that contained the malware.

 

[Trident]

thank you Trident please may i ask with it also look for phishing links ? thank you

I am not entirely certain if it looks for phishing links, according to the threat emulation release notes, documents are inspected for phishing links as well. In addition, the Sophos engine includes heuristics that handle phishing in documents.

Once you click on any link, it will be searched in the blacklist first and then when you click on a field to type, additional just-in-time analysis is performed to handle phishing. I can test that plug-in soon and find out if it pre-emptively analyses links (I doubt it does). Such serious email protection requires Check Point Harmony Email/Email and Collaboration.

 

[kev7]

thank you Trident and for any testing look forward to it

 

[Bushman]

Merci [ UTILISATEUR = 67091 ] @ Decopi [ / UTILISATEUR ], [ UTILISATEUR = 61091 ] @ simmerskool [ 65.
Je pense que je devrais commencer un nouveau fil avec certains hacks ZoneAlarm tels que la façon de désactiver l'extension et d'accepter aux rapports d'ADN médico-légal et d'émulation de menace +.

[ UTILISATEUR = 101216 ] @ kev7 [ / UTILISATEUR ] il est possible d'utiliser le filtrage DNS, j'utilise Control D et ZoneAlarm mais à l'échelle du système, pas seulement dans le. Ils travaillent bien ensemble.

With ZA Extreme Security Next Gen I installed ProtonVPN. For now the two products work harmoniously without finding any particular conflicts

 

[simmerskool]

With ZA Extreme Security Next Gen I installed ProtonVPN. For now the two products work harmoniously without finding any particular conflicts

I'm running ZA with Mullvad, and seems aok here too.

 

[Trident]

I spoke to ZA contact today again and asked again for Program Control (the part of the firewall that automatically allows and blocks connectivity of programmes based on their reputation).
The feature is on the roadmap. It was supposed to be released with “the next build” (that was before version 4) but the build 4 was only an emergency one to include Anti-Bot (after I requested it).
Also in build 4 (again after my test and discussions with them), they included the full Sophos database and not just the cloud. The full Sophos database is divided in 2 parts.
VDL (Virus Description Language): this is a permanent database updated once a month (about 250 MB).
IDE: this is a database that is updated constantly over the course of one month. Viruses that are not significant are placed in few generic files, whilst viruses that have loads of variants are placed in a separate file, for example tesl.ide for Agent Tesla.
After one month the IDE updates are merged with the VDL, deleted and the cycle repeats. The Sophos full database provides offline protection, together with static analysis.

 

[kev7]

thank you Trident for your feed back from ZA look forward to future versions soon

 

[I Walk MY Way]

I am waiting for the Program Control to use this again .

 

[piquiteco]

For me, the key point with regards to ZA, is to confirm its protection capabilities.

Its protection features are poor and I would not recommend it to anyone. I installed it again yesterday and yesterday to see it in action and unfortunately ZoneAlarm Extreme Security NextGen was not able to detect is stealer malware.

 

[Trident]

Its protection features are poor and I would not recommend it to anyone. I installed it again yesterday and yesterday to see it in action and unfortunately ZoneAlarm Extreme Security NextGen was not able to detect is stealer malware.

Not sure what the stealer was, if it was a script these are detected through emulation and their emulation also blocks java-based stealers that all others miss as well. I can find stealers not detected by anyone, including Kaspersky, Bitdefender and others that crown themselves kings.

 

[Decopi]

Its protection features are poor and I would not recommend it to anyone. I installed it again yesterday and yesterday to see it in action and unfortunately ZoneAlarm Extreme Security NextGen was not able to detect is stealer malware.

Thank you!

Here in this thread and also in articles and reviews on the web, I found divergent opinions about ZA. So, for me ZA protection is an interrogation.
In the other hand, @Trident seems to me to be enthusiastic about ZA. And he gained my respect, therefore also ZA gained my attention.

I hope @Trident will open a new ZA thread, uploading more videos with tests. And who knows, perhaps @Shadowra and @cruelsister also do the same. It would be great if you can make a video with the stealer malware.
With a new ZA thread and few videos (tests), there will be no more doubts about ZA's protection capabilities.

 

[Trident]

Thank you!

Here in this thread and also in articles and reviews on the web, I found divergent opinions about ZA. So, for me ZA protection is an interrogation.
In the other hand, @Trident seems to me to be enthusiastic about ZA. And he gained my respect, therefore also ZA gained my attention.

I hope @Trident will open a new ZA thread, uploading more videos with tests. And who knows, perhaps @Shadowra and @cruelsister also do the same. It would be great if you can make a video with the malware stealer.
With a new ZA thread and few videos (tests), there will be no more doubts about ZA's protection capabilities.

I’ve found compromises of protection, but I always have to disable threat emulation for that to work. Otherwise if you leave it on, it captures the archive with the password for it (they use dictionary of common passwords and parsers to extract it) and they delete the whole password-protected archive and don’t even allow you to open it. Over 100 incidents already I’ve generated

I tried to test with fake inflated crack, but that just terminates if you have ZoneAlarm installed. It may be because it is Israeli software (and a lot of Russians work and live there) or it may be because the process contains “Forensics”. I only managed to get one to work and it was blocked by behavioural guard. Others don’t do anything.

You will see on the new thread, we will explore the forensic reports as well in great detail.

 

[piquiteco]

Not sure what the stealer was, if it was a script these are detected through emulation and their emulation also blocks java-based stealers that all others miss as well. I can find stealers not detected by anyone, including Kaspersky, Bitdefender and others that crown themselves kings.

I am writing and explaining, calmly we will get there, it is recommended to create a thread or ask a moderator to move these posts to another post is a disrespect to @BigWrench post

Here in this thread and also in articles and reviews on the web, I found divergent opinions about ZA. So, for me ZA protection is an interrogation.
In the other hand, @Trident seems to me to be enthusiastic about ZA. And he gained my respect, therefore also ZA gained my attention.

I hope @Trident will open a new ZA thread, uploading more videos with tests. And who knows, perhaps @Shadowra and @cruelsister also do the same. It would be great if you can make a video with the malware stealer.
With a new ZA thread and few videos (tests), there will be no more doubts about ZA's protection capabilities.

I also have respect for @Trident and admiration for his character as a person even though I don't know him personally, I am writing about the test and in a little while you will read it first hand.

 

[Trident]

I am shortly going to create a thread and post some information there. It will be updated at a later stage with the test.

 

[Shadowra]

Thank you!

Here in this thread and also in articles and reviews on the web, I found divergent opinions about ZA. So, for me ZA protection is an interrogation.
In the other hand, @Trident seems to me to be enthusiastic about ZA. And he gained my respect, therefore also ZA gained my attention.

I hope @Trident will open a new ZA thread, uploading more videos with tests. And who knows, perhaps @Shadowra and @cruelsister also do the same. It would be great if you can make a video with the stealer malware.
With a new ZA thread and few videos (tests), there will be no more doubts about ZA's protection capabilities.

Normally scheduled for next week