Free download from Avira.com - How much crap gets installed?

Discussion in 'Avira' started by Spawn, May 11, 2017.

  1. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    i replaced the VM to Vipre, I dont see a point in testing Avira. Any fresh malware will bypass it since there are no sigs on it
    and ransomware...
     
    Der.Reisende likes this.
  2. Arequire

    Arequire Level 18

    Feb 10, 2017
    898
    2,803
    United Kingdom
    Windows 7
    Default-Deny
    Behavioural analysis (suspicious application behaviour) and cloud analysis (suspicious patterns). It does have behavioural analysis it's just incredibly weak from what I've seen:
    [​IMG]
     
    novocaine, mekelek and Xsjx like this.
  3. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    but there is no way to test a ransomware that has already a signature, since you can't disable realtime protection and there is no option to ignore sigs, that is my issue here.

    enabling realtime will instantly delete the executable i want to test during execution..
     
  4. Xsjx

    Xsjx Level 13

    Feb 21, 2017
    610
    1,227
    Netherlands
    Windows 10
    Avira
    A.I in cloud + heur + bb
     
  5. Arequire

    Arequire Level 18

    Feb 10, 2017
    898
    2,803
    United Kingdom
    Windows 7
    Default-Deny
    Yeah, as far as I'm aware all the modules are linked to real-time protection so you're screwed if you just wanted to test its proactive components.
     
    mekelek likes this.
  6. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    if there is gonna be posted some low VT detected ransomware sample here, i will clone my VM and try it with Avira.
    but i'm not gonna try old samples that every AV has signatures for.

    so far I could disable signature based modules in every AV i tested, except Avira.
     
    rockstarrocks and Xsjx like this.
  7. Arequire

    Arequire Level 18

    Feb 10, 2017
    898
    2,803
    United Kingdom
    Windows 7
    Default-Deny
    You'll have to wait for the next batch of samples and check the VT results to see how many of them are detected by Avira's sigs. Then you'll have to judge whether you feel it's worth your time or not to test it.
     
    rockstarrocks, Xsjx and mekelek like this.
  8. Xsjx

    Xsjx Level 13

    Feb 21, 2017
    610
    1,227
    Netherlands
    Windows 10
    Avira
    #88 Xsjx, Jun 12, 2017
    Last edited by a moderator: Jun 12, 2017
    This one avira doesn't have sigs for https://malwaretips.com/threads/2-ransomware.72510/
     
  9. Arrabida Rock

    Arrabida Rock Level 3

    Apr 2, 2016
    104
    187
    Portinho da Arrábida
    Windows 10
    Is this happen in avira free ?
     
    Xsjx likes this.
  10. Arequire

    Arequire Level 18

    Feb 10, 2017
    898
    2,803
    United Kingdom
    Windows 7
    Default-Deny
    #90 Arequire, Jun 13, 2017
    Last edited: Jun 13, 2017
    Apparently the detection came from Avira Antivirus Pro. I can't say if it works the same in the free version or not.
     
Loading...