Sophos antivirus 9.5 end point protection

by admin on February 16, 2012

Sophos recently released their new 9.5 endpoint protection which includes cloud integration and a firewall.Jointly may know, I have tried personally Sophos antivirus programs for 8 years, and I have been previously generally satisfied with the performance. I already have got one installation protecting a windows server and appreciate taking care free capability when compared with competitors.I also appreciate the company is usually on the forefront of combating the most recent viruses and exploits (essentially pushing the boundaries in the marketplace). Also new in this version, is tamper and web protection,Sophos Live real-time updating, and much more.Setting up Sophos 9.5 was easy. There’s two versions with the endpoint protection, the 70 megabyte standard, and also the 75 megabyte edition having a firewall.What%u2019s nice is always that both setup files support 32 and 64 bit systems completely time for Windows 2000, in a single compact executable. The installer prompted to install the optional firewall component and also has an alternative to eliminate alternative party security software that will conflict with program. After the installation completed, a restart was required to install the firewall driver. After the reboot, it took Windows a different 20 seconds to end booting towards the desktop. The Sophos 9.5 scanning options stay with all the %u201CScan my computer%u201D and also the %u201Cset up a new scan%u201D. However, inside customize scan option you’ll find new settings to configure. In the advanced area one can specifically set to decompress which types of archives and which sort files to skip.This appears to be probably the most advanced exclusion type listing of all free antivirus tested. Sophos 9.5 scans at approximately 6 megabytes per second putting it slightly above the benchmark antivirus.

This system immediately detected a computer virus on the test system which ironically is Blue Atom Antivirus (Antivirus.exe along with a Sus/Com-Pack-C).This is clearly an incorrect positive and which I believe is attributed to a completely sensitive HIPS engine.I have also received a false positive from Webex PcNow by Cisco with a Reg-Mon alert.NirCmd.exe seemed to be on the test system which is actually malicious.The scan takes a long time to complete (speed hasn%u2019t changed significantly from previous versions and after 20 mins was still on 2% presumably due to the rootkit scan which is separate and slow).If a person wants the scan to get faster disable the rootkit option.Together with an antivirus engine, Sophos 9.5 features a firewall.The problem is that this firewall prompts for every network /application protection.For instance, simply opening a typical browser such as Web Browser or FireFox, one is prompted to permit or disallow.The tradeoff is for a small company or organization a big firewall rule set might be beneficial in keeping unwanted connections in and out of a method, however, for someone, this may be extremely tedious to classify almost every firewall rule (not forgetting radio stations boxes come in some other order from tuned in to alert).I do think the firewall should at least include some auto learning rules for common applications. However, some advantages to the firewall are its advanced handling of ICMP traffic (a frequently abused protocol),a LAN exclusion list for local networked computers, location based rule sets for roaming and wireless users, and an improved logging system which shows active connections and hidden processes.Some additional intriguing features will be the tamper protection in which a user a must enter defined password to uninstall or modify the program, and a secondary update server if the first failed.

Resource usage is about the same with Sophos 9.5. The programs uses about 160 megabytes across 9 process while idle. When scanning, the memory usage remains on the same and uses about 10 percent CPU power, which is more than the typical free antivirus. Some things that I must see improved can be a simpler to use interface (probably won%u2019t matter in a business setting), more effective resource usage, possibly a memory scan, and specifics of scans (a separate progress bar many different scanners).

{ 0 comments }

History of Sophos antivirus

by admin on February 16, 2012

Started in 1985 in Abingdon, England and Burlington, USA, by Dr. Jan Hruska and Dr. Peter Lammer, Sophos is a company that provides complete and extremely effective security solutions to a host of platforms, devices and networks. Their services include antivirus and anti-malware programs for computers, data protection and web security services, network and data access control and also email and file protection for PCs and phones. One of their main products remains to be the sophos antivirus program which is extremely flexible and can fit the needs of individual users and business owners alike. The program, christened as Endpoint, offers flexible and reliable virus and malware protection and is also integrated with data encryption and protection systems.
Any good antivirus can clean and secure hard drives, but the sophos antivirus strives to deliver a complete protection package which can cater to individual and multiple computer needs in a very clean and professional manner. As such, these programs are equipped with various protection packages which make them ideal for use in small and large businesses. The data protection and encryption packages go even further in accentuating the security of vital personal and financial data and also the operations data of any business.

As such, the sophos antivirus is also available in bundled packages with other products of the company such as mobile sharing and control and also data protection of network shared files, data recovery and network access and also mail protection. Such clean and end to end integration makes the package extremely powerful in battling any number of external threats and makes for a safe computing environment.
Data loss and theft due to virus, spyware and malware attacks and hacking, is largely common these days and may leave several disastrous consequences for the individual or the business owner. Especially in commercial sectors, data and work computer protection against all external threats becomes increasingly essential as stakes are high and they may involve large sums of personal information and financial data. The sophos antivirus comes with anti-spyware and anti-malware programs that make for a very effective boundary and also come with anti hacking packages which can successfully stave off any external attacks on the PC or the network of shared data. The sophos antivirus, when used in conjunction with the network security package makes for a terrific blanket over the network which is highly useful and effective in data protection regardless of the quantity of the files being shared.
The sophos antivirus protection package comes in two main forms basically. The first package is perfect for small businesses which have lesser that 50 users. There are three sub packages offered for small business owners and they all include the basic sophos antivirus package along with a host of other protection packages such as folder and file encryption, spam protection, device control and so on. They also have features which include application control and firewalls. The other form in the endpoint protections solutions which come with the sophos antivirus. This solutions package comes with fully integrated network, data protection and network access and control features. Apart from the basic sophos antivirus, they also include web security packages for online protection of data and identity, device and application control which can control the use of the removable storage devices and also the access of illegitimate applications, complete and overall management of patches, network access and data sharing and also protection for the shared files over the network. The sophos antivirus offers protection packages to Windows and Mac users and can be easily controlled through the use of a single console, regardless of the package in place.

{ 0 comments }