App Review Avast One Essential Free Antivirus 2021

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Content created by
Shadowra
Shadowra

Shadowra

Level 36
Thread author
Verified
Top Poster
Content Creator
Malware Tester
Well-known
Sep 2, 2021
2,586
Content source
https://www.youtube.com/watch?v=O4YszAWrFKA
Hello to all!
Today we will see how Avast pprotects our computer.
Avast is an antivirus from the Czech Republic, very well known and appreciated by novices due to its popularity and especially because it is user-friendly.
At the beginning of September, and due to the acquisition of Avast by NortonLifeLock, Avast released a ONE version that contains Antivirus, Firewall and VPN included!
On the Web, Avast is doing very well except on phishing where it still has a lot of trouble...
On the files of the pack, Avast achieves a very good score.
On the other hand, no security on unknown viruses!
My home-made Ransomware passed without reaction destroying the computer...
Another point that disappointed me, Avast CyberCapture is useless!
It analyzes to finally tell you that the file is healthy... while it is a malware.
Avast is recommendable, but it can do better.

RAM Usage : Light
Phishing Test : 1/3 (many dead or undetected phishing)
Malware URL test : 10/10 (all detected)
Fake crack : 1/1 (detected by Avast database)
Malware Pack : Remaining 27 files. Avast does not catch any files. CyberCapture is useless
Home Malware : 0/1 => MBR Blocked by my malware. End of the test

 
  • Like
  • +Reputation
  • Thanks
Reactions: Mercenary, Gandalf_The_Grey, MegenM and 10 others
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Shadowra said:
CyberCapture is useless
Click to expand...
hi, cybercapture only works when we download the file from internet browser and run it. It's similar to windows defeder's smartscreen
in previous version, Avast has hardened mode aggressive (renamed in avast one) which can easily block these types of malware
avast without hardened mode enabled is not as strong as other AVs. With hardened mode, it's kind of a beast
 
  • Like
  • +Reputation
  • HaHa
Reactions: Mercenary, SeriousHoax, oldschool and 9 others
Shadowra

Shadowra

Level 36
Thread author
Verified
Top Poster
Content Creator
Malware Tester
Well-known
Sep 2, 2021
2,586
Evjl's Rain said:
hi, cybercapture only works when we download the file from internet browser and run it. It's similar to windows defeder's smartscreen
in previous version, Avast has hardened mode aggressive (renamed in avast one) which can easily block these types of malware
avast without hardened mode enabled is not as strong as other AVs. With hardened mode, it's kind of a beast
Click to expand...

The problem with the enhanced mode is that it blocks unsigned files, malware or not.
It reminds me of Trend Micro's blocking mode, so a bit of a cheat....
 
  • Like
Reactions: Mercenary, SeriousHoax, Gandalf_The_Grey and 5 others
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Shadowra said:
The problem with the enhanced mode is that it blocks unsigned files, malware or not.
It reminds me of Trend Micro's blocking mode, so a bit of a cheat....
Click to expand...
the moderate mode blocks unsigned file while aggressive mode blocks files that are not/not yet verified to be safe according to avast's cloud
aggressive works similarly to windows smartscreen while moderate mode seems to be more aggressive ironically

my experience shows a file is blocked today but when it has enough time on the cloud and has enough reputation rating, it will be unblocked, just wait
 
  • Like
  • +Reputation
Reactions: Mercenary, SeriousHoax, oldschool and 7 others
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Anthony Qian said:
Totally agree. CyberCapture is a cloud-based scan that takes 60 seconds to complete, including uploading and analysis time. I believe that 60 seconds is insufficient to determine whether or not a program is safe. CyberCapture, in my experience, flags a lot of dangerous samples as safe.
Click to expand...
actually, cybercapture takes hours to complete when it is triggered (file must be downloaded by your internet browser). During that time, the file is locked. Very few times, it can be triggered so it's basically useless

the one you see is avast's deepscreen/sandbox, which only takes 15 seconds to analyze and most of the times, the results are safe -> another weak feature. If we enable Hardened mode moderate, the file supposed to be analyzed by deepscreen is ignored by deepscreen and is blocked by hardened mode moderate instead
 
  • Like
  • +Reputation
Reactions: Mercenary, SeriousHoax, oldschool and 6 others
Anthony Qian

Anthony Qian

Level 10
Verified
Well-known
Apr 17, 2021
454
Evjl's Rain said:
actually, cybercapture takes hours to complete when it is triggered. During that time, the file is locked. Very few times, it can be triggered so it's basically useless

the one you see is avast's deepscreen/sandbox, which only takes 15 seconds to analyze and most of the times, the results are safe -> another weak feature. If we enable Hardened mode moderate, the file supposed to be analyzed by deepscreen is ignored by deepscreen and is blocked by hardened mode moderate instead
Click to expand...
I think CyberCapture (CC) has been updated. In the past, CC took hours to make a decision. But now, CC only scans for 60 secs.
Maybe, Deepscreen has been integrated into CC? I'm not sure.
 
  • Like
Reactions: Mercenary, Shadowra and KonradPL
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Anthony Qian said:
I think CyberCapture (CC) has been updated. In the past, CC took hours to make a decision. But now, CC only scans for 60 secs.
Maybe, Deepscreen has been integrated into CC? I'm not sure.
Click to expand...
by the way, those features are virtually useless if hardened mode aggressive is enabled. I've ditched avast for almost 2 years so I'm no longer updated
HM aggressive + a script blocker (syshardener or hard_configurator): almost a default-deny approach, similarly to voodooshield in auto mode
I used this combo for almost 2 years and confirmed, almost nothing can bypass it. Safe, reputable files were allowed to run automatically
 
  • Like
  • +Reputation
Reactions: HarborFront, Mercenary, SeriousHoax and 7 others

Similar threads

Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Avira Pro Antivirus
Replies
5
Views
772
Video Reviews - Security and Privacy
Khushal
Khushal
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Old Norton vs New Norton - Engine Comparatif
Replies
50
Views
2,439
Video Reviews - Security and Privacy
Smoke
Smoke
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Norton 360 Standard v24 (Avast Engine)
Replies
77
Views
6,169
Video Reviews - Security and Privacy
nickstar1
nickstar1

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top