App Review Avast, Avira, BD Boot Protection Test

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
cruelsister

cruelsister

Level 42
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,147
A simple run of a zero day package that will drop a Tesla encryptor. Note that all three of the products tested would detect this Tesla on direct run. The question is if the AV's will load on boot prior to the malware and thus stop it.

 
  • Like
Reactions: Daniel Hidalgo, Rishi, mal1 and 28 others
DracusNarcrym

DracusNarcrym

Level 20
Verified
Top Poster
Well-known
Oct 16, 2015
970
Only BitDefender succeeded... this is quite alarming for me, since I have recommended Avast as a relatively full-featured free antivirus to many friends and other people who have asked my opinion.
I will definitely be reconsidering that recommendation. :p
It's not that this is a rare threat either... it can actually be quite common.
Lack of boot time protection in major free AVs such as Avira and Avast sure is a letdown.
 
  • Like
Reactions: mal1, Butterfly, Moose and 1 other person
SloppyMcFloppy

SloppyMcFloppy

Level 13
Verified
Sep 12, 2015
617
DracusNarcrym said:
Only BitDefender succeeded... this is quite alarming for me, since I have recommended Avast as a relatively full-featured free antivirus to many friends and other people who have asked my opinion.
I will definitely be reconsidering that recommendation. :p
It's not that this is a rare threat either... it can actually be quite common.
Lack of boot time protection in major free AVs such as Avira and Avast sure is a letdown.
Click to expand...
bunchuu said:
because getting BD paid giveaway is easy, BD offers extended trial up to 6 months. So if you can get their premium product, why bother with their free product? ;)
Click to expand...

True, but one issue I had with BitDefender is the RAM usage because last week i clear extensions of MBAM on BitDefender Total Security 2016, and guess what happened after that? 500MB of RAM usage while idle on the desktop with nothing open. So yeah, i uninstalled BitDefender after that because heck i won't give BitDefender that 500MB of RAM usage run on my PC.
 
  • Like
Reactions: Moose and DracusNarcrym
R

Rod McCarthy

Now I know you guys are gonna laugh, but I'm serious. I would love to see someone test PC Matic... Have you seen their TV adds. They make some incredible claims... No one has tested it, all other AV, and IS software's get tested...Would love to see if they are as good as they claim.

Concerning BD and Ram... It runs great on my PC...Now Dr. Web brought my pc and internet to a stand still?
 
Last edited by a moderator:
  • Like
Reactions: Moose and DracusNarcrym
Exterminator

Exterminator

Community Manager
Verified
Staff Member
Well-known
Oct 23, 2012
12,527
Rod McCarthy said:
Now I know you guys are gonna laugh, but I'm serious. I would love to see someone test PC Matic...
Click to expand...

Someone already did a test on youtube.I think it was on My Clean PC though
They essentially did a clean install of Windows with nothing on it but the brand new virgin OS
They installed PCMatic or MyClean PC and ran the scan which found something like 1,300 problems.
They then called the number for help in fixing the problems and you can figure the rest from there.
I don't think it would be worth anyone's time in testing it because we already now what the outcome will be.
PcMatic = Stay Away PC Matic | Complaints List

It is essentially a virus and once installed they will basically extort you for money to get your PC back or worse ruin your PC
 
Last edited:
  • Like
Reactions: Rishi, Moose, Der.Reisende and 2 others
Kate_L

Kate_L

in memoriam
Verified
Top Poster
Well-known
Jun 21, 2014
1,044
This is not new. This issue was in 2010-2011 with FakeAVs (back then FakeAVs installed on boot and some of them worked in Safe Mode).

What interests me is how the script works, where it adds to start up and why it bypassed Avira's Cloud Protection and Avast's Hardened Mode.
 
Last edited:
  • Like
Reactions: Moose, DracusNarcrym and cruelsister
cruelsister

cruelsister

Level 42
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,147
Glad you guys liked the video. Thanks for watching!

A few things:
OpenSecLabs said:
This is not new
Click to expand...

1). That is precisely the issue. One could let a company slide if a new POC bypass is presented, but it is inexcusable when a known problem is being ignored (like lack of Worm protection in MB).

2). For Avast and Avira- the Paid product yielded the same result. I went with the Free versions as they are more commonly used.

3). As the malware was freshly coded (and unreleased) getting by either local or Cloud AV's is no big thing. And regarding Avast's "Hardened" mode- I've never found this setting to be even an annoyance. The terms Hardened and Aggressive certainly are impressive, but personally I'm still waiting to see what they actually do.

4). I'll be doing two more video's on this topic- my issue is that the next one up does have nice Boot Time protection, so I'll have to spend some time to see if I can get around it. Hopefully within a week.
 
  • Like
Reactions: done, Moose, DracusNarcrym and 4 others
RmG152

RmG152

Level 12
Verified
Jan 22, 2014
577
Great video, as always.

Avast was disappointed me, I use it in some computers because Hardened mode, but looks absolutely useless...

Simply put, the Hardened Mode is a means of “parental control” for executable files.

When enabled, it is always running in the background and checking every process launched on the machine. The evaluation of files is based on their reputation coming from the cloud (controlled by the VLab).

  • In the Aggressive Hardened Mode, only chosen executable files with known high ratings are allowed; the rest gets prevented from running.
Click to expand...
 
  • Like
Reactions: Moose and DracusNarcrym

Similar threads

RoxasDev
    • Like
    • Applause
    • +Reputation
App Review Avast Free 2023 - Test
Replies
1
Views
1,049
Video Reviews - Security and Privacy
Seandc33
S
Gandalf_The_Grey
    • Like
    • Wow
Avira now freezing Windows at boot with 100% CPU / RAM usage
Replies
8
Views
1,063
Avira
AlexCa
A
Gandalf_The_Grey
    • Like
AV-Comparatives Advanced Threat Protection Test 2023 – Enterprise
Replies
0
Views
621
Security Statistics and Reports
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top