Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Security Statistics and Reports
[CheckLab.pl] - Test of free antivirus
Message
<blockquote data-quote="Andy Ful" data-source="post: 847446" data-attributes="member: 32260"><p>Why should he complain if Avast scored 100%. Simply, CyberCapture was not needed.</p><p>Here is the fragment from Avast FAQ:</p><p>"<span style="font-size: 18px"><strong>What conditions lead to a file being locked and uploaded by CyberCapture?</strong></span></p><p></p><p>Currently, CyberCapture triggers when you run or download suspicious files from the Internet that CyberCapture has not previously encountered. We plan to expand this condition in the future to cover more sources."</p><p>[URL unfurl="true"]https://support.avast.com/en-en/article/150/[/URL]</p><p>I tested this feature recently and confirmed that it works only if the file has MOTW with the information about the Internet zone, similarly to WD "Block at First Sight". </p><p></p><p></p><p>I think that SmartScreen integrated with Explorer can be disabled in the test (most AV Labs do it). But, disabling SmartScreen in the web browser (IE, Edge, Edge Chromium) or using another web browser without WDBP, would be controversial to me in the real-world test. </p><p>In my opinion, it is natural to use the web browser extension if such an extension was intentionally prepared by the vendor for users who do not like IE or Edge. Microsoft would like much to force installing WDBP in Chrome-based web browsers, if this would not be forbidden by the Anti-Monopoly Law. </p><p></p><p>The second problem can be the "Block at First Sight" feature which works only when the files are downloaded from the Internet, or originate from the Internet zone (files with MOTW). Normally such files are checked via the cloud backend (heuristics, machine learning, and automated analysis). If the file is recognized as malicious, then it is automatically quarantined. This is the strongest detection feature of WD and it obviously does not work with CheckLab's methodology, because the malicious files could be executed in the test.</p><p></p><p><strong>Finally, the most appropriate would be contacting with Microsoft to see what is their opinion. </strong>Maybe they will accept the methodology as it is (like in the case of Avast).<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite130" alt="(y)" title="Thumbs up (y)" loading="lazy" data-shortname="(y)" /></p></blockquote><p></p>
[QUOTE="Andy Ful, post: 847446, member: 32260"] Why should he complain if Avast scored 100%. Simply, CyberCapture was not needed. Here is the fragment from Avast FAQ: "[SIZE=5][B]What conditions lead to a file being locked and uploaded by CyberCapture?[/B][/SIZE] Currently, CyberCapture triggers when you run or download suspicious files from the Internet that CyberCapture has not previously encountered. We plan to expand this condition in the future to cover more sources." [URL unfurl="true"]https://support.avast.com/en-en/article/150/[/URL] I tested this feature recently and confirmed that it works only if the file has MOTW with the information about the Internet zone, similarly to WD "Block at First Sight". I think that SmartScreen integrated with Explorer can be disabled in the test (most AV Labs do it). But, disabling SmartScreen in the web browser (IE, Edge, Edge Chromium) or using another web browser without WDBP, would be controversial to me in the real-world test. In my opinion, it is natural to use the web browser extension if such an extension was intentionally prepared by the vendor for users who do not like IE or Edge. Microsoft would like much to force installing WDBP in Chrome-based web browsers, if this would not be forbidden by the Anti-Monopoly Law. The second problem can be the "Block at First Sight" feature which works only when the files are downloaded from the Internet, or originate from the Internet zone (files with MOTW). Normally such files are checked via the cloud backend (heuristics, machine learning, and automated analysis). If the file is recognized as malicious, then it is automatically quarantined. This is the strongest detection feature of WD and it obviously does not work with CheckLab's methodology, because the malicious files could be executed in the test. [B]Finally, the most appropriate would be contacting with Microsoft to see what is their opinion. [/B]Maybe they will accept the methodology as it is (like in the case of Avast).(y) [/QUOTE]
Insert quotes…
Verification
Post reply
Top
