- Content source
- https://youtu.be/UXxCikwej8Q
AVG vs Symantec Antivirus: This One Cleaned Better
- Thread starter Khushal
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Symantec is the winner?
As usual, no clear view of the final block rate in CMD window.
As usual, no clear view of the final block rate in CMD window.
Symantec found a few more malwares than AVg , but AVG is much more lite. . . almost same protection.
Impressive detection by Symantec; the last time was tested, missed several JS samples.
A malicious code of classic clickfix attack, copied and pasted into notepad, saved as cmd file, checked by VT: only Symantec could detect.
A malicious code of classic clickfix attack, copied and pasted into notepad, saved as cmd file, checked by VT: only Symantec could detect.
View attachment 295197
Detected by K dynamic analysis
Kaspersky Threat Intelligence Portal
Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, viruses
A malicious code of classic clickfix attack, copied and pasted into notepad, saved as cmd file, checked by VT: only Symantec could detect.
View attachment 295197
K added it to its signatures later
No .a at end so no signature just uds detection.
What uds stands for?
Is not VT is signature-based? Which explains why it was not detected by K on VT, meanwhile it was detected by K on KTIP.
Malware Hashes (UDS) - a set of file hashes detected by Kaspersky Lab cloud technologies (UDS stands for Urgent Detection System) based on a file's metadata and statistics (without having the object itself). This enables the identification of new and emerging (zero-day) malicious objects that are not detected by other methods.
Is not hashes part of signature detection?
If not signature, how can explain absence of detection on VT by K, while it was detected on KTIP by dynamic analysis?
dynamic analysis environment in vt and opentip might not be same. KOTIP dynamic analysis min. takes 3 minutes
Symantec detection on VT was heuristic detection (just as the one of K which appeared later on); Symantec detection on VT appeared long before VT behavioral analysis finishes which by the way detected nothing.
Currently, Symantec removed its detection, while QuickHeal is detecting it 
A malicious code of classic clickfix attack, copied and pasted into notepad, saved as cmd file, checked by VT: only Symantec could detect.
View attachment 295197
It is likely to be detected by the likes of Bitdefender at runtime, ESET via memory scan, etc.
They are much of a sameness really from the original video, swings & roundabouts I reckon.
If I have VM, I would try running it to find out if MD can detect post-execution.
I'll try checking later at night but by that time MD would probably create a signature.
I will follow the its VT timeline to see if things are going to change again.
A malicious code of classic clickfix attack, copied and pasted into notepad, saved as cmd file, checked by VT: only Symantec could detect.
View attachment 295197
Can you please DM the sample?
You may also like...
-
-
Kaspersky Premium vs McAfee Advanced
- Started by Shadowra
- Replies: 87
-
Battle: Bitdefender Free Antivirus vs AVG Free Antivirus | Test and Review | 2025- Started by NB InfoTech
- Replies: 1
-
AVG Antivirus – Solid Free Option or Premium Upsell Trap?- Started by Bot
- Replies: 1
-
The one thing i have found different from in Norton from AVG and Avast.- Started by nickstar1
- Replies: 66