AVLab.pl Advanced In-The-Wild Malware Test – January 2025

[Gandalf_The_Grey]

We start the new year with the first edition of the six Advanced In-The-Wild Malware Test, where we will identify the best security solutions for Windows 11 at the end of 2025, as we did for last year. In this new edition of long-term tests, in which we check the comprehensive effectiveness of security against threats from the Internet, we have included solutions from vendors and their flagship products: Acronic Cyber Protect, Check Point with ZoneAlarm Extreme Security NextGen software, Cisco Secure Endpoint Advantage and WatchGuard EPDR (Endpoint Protection + Detection and Response).

In this series of tests, we regularly test the effectiveness of early detection and blocking of malware. We automate the actions users perform during their daily use of email programs, web browsers and instant messaging to realistically deliver messages to the system, followed by clicking on links, downloading and running files, and installing software. Technical details are available in the survey methodology, and if you want to know more, just ask in the comments.

What solutions did we test in January 2025?

What settings do we use?

Although we avoid using potentially unwanted samples (PUPs and PUAs) in the test, it’s always a good idea to activate such a protection feature, and we do that too.

We always configure the protection solution to have a dedicated extension for the Firefox browser we use in the test (if the extension is available). In addition, we set up the entire software to automatically block, remove and fix incidents that occur.

Based on a series of tests already carried out, our opinion is that the predefined settings are good, but not always the best. Therefore, for the sake of full transparency, we list the ones we have implemented for better protection or if required by the manufacturer.

1. Acronis Cyber Protect – default settings + EDR + browser protection.
2. Avast Free Antivirus – default settings + automatic PUP repair + browser protection.
3. Bitdefender Total Security – default settings + browser protection.
4. Cisco Secure Endpoint Advantage – default settings + Exploit Prevention (Block) + Enable Event Tracing for Windows + Orbital Enabled + Block and report malicious network connections + Terminate and quarantine unknown applications connected to malicious hosts.
5. Comodo Internet Security 2025 – browser protection + block automatically for sandbox (block).
6. Emsisoft Enterprise Security – default settings + automatic PUP repair + EDR + Rollback + browser protection.
7. F-Secure Total – default settings + browser protection.
8. K7 Total Security – default settings + browser protection.
9. Malwarebytes Premium – default settings + browser protection.
10. ThreatDown Endpoint Protection – default settings + EDR + browser protection.
11. WatchGuard EPDR (Endpoint Protection + Detection and Response) – default settings + EDR + browser protection.
12. Webroot Antivirus – default settings + browser protection.
13. Xcitium ZeroThreat Advanced – preset policy “Windows – Secure Profile v.8.1” + HIPS default action on “Block requests” + EDR enabled.
14. ZoneAlarm Extreme Security – default settings + Anti-Keylogger enabled + browser protection.

We are already going to test other popular solutions from the next edition.

Results: Recent Results » AVLab Cybersecurity Foundation
Publication: WatchGuard Tops The Advanced In-The-Wild Malware Test - January 2025 » AVLab Cybersecurity Foundation

 

[nickstar1]

They will all protect you but i personally like Malwarebytes due to it's web filtering best one on the market

 

[Sorrento]

Can't help still being drawn to Emsisoft, mainly due to its simplicity, good scores when tested & better than average privacy - I will be renewing again in a couple of months when due & use it though I have an ESET license (and a few others as well)

 

[oldschool]

Good to see K7 doing well.