App Review Kaspersky vs Avast: THE SHOCKING Truth Revealed! Don't Buy Antivirus Until You See This!

[Parkinsond]

The title would certainly prevent any further investigation as its ridiculous.

commercial-ware

 

[SeriousHoax]

Even NextDNS is blocking it; layered security measures is more efficient than any AV regardless of its name and reputation.
View attachment 290687View attachment 290688View attachment 290689

It's present even in Hagezi TIF which adds suspicious NRD to it.

I didn't bother watching the video because of the clickbaiting title

 

[Andy Ful]

Does allowing outbound connection to svchost exe only per service can overcome malicious dll injection and connection to c2 servers?

The injection can be done in the service.

 

[Parkinsond]

It's present even in Hagezi TIF which adds suspicious NRD to it.

I didn't bother watching the video because of the clickbaiting title

I do not know if Hagezi TIF is included inside Hagezi multi ultimate or not.

 

[Andy Ful]

I think the title because a free AV performed equal to a paid one.

The author of the video tries to find out which of the two people is higher by looking from one kilometer, and finally concludes that there is no visible difference.
Accidentally, he/she can be right, although the reason for that does not follow from the correctness of the looking.

 

[Parkinsond]

The author of the video tries to find out which of the two people is higher by looking from one kilometer, and finally concludes that there is no visible difference.
Accidentally, he/she is probably right, although the reason for that does not follow from the correctness of looking.

NB InfoTech was creating threads on MT, but I have noticed stopped for a while; looks like feedback was unencouraging

 

[Parkinsond]

Weeks ago i found one fresh malware sample, that actually, in the first place, did not do anythin but deletes itself. After 10 minutes or so...my software firewall alerted that control.exe(control panel) wants to connect to the internet.
My GData did not reacted. Avira did not reacted and no Avira firewall prompt, because control.exe is a legit windows program. However, when i tested it against Sophos Home, it detected it as a hollow process/defense evasion Mitre T1055 or somethin like that.
I noticed that this malware actually activates, when your system is idle more than 10 min or so(it assumes that a user is away, lets do some dirty work meanwhile).

What is your security setup these days?

Comodo FW, Brave with ublock and plenty of image backups, nothing else...

www.wilderssecurity.com

That is why automated script execution of malware samples is not suitable for evaluating behavioral blocking

 

[Andy Ful]

NB InfoTech was creating threads on MT, but I have noticed stopped for a while; looks like feedback was unencouraging

Anyone can make a mistake in good faith. Those tests can have some value after applying some necessary improvements.

 

[ForgottenSeer 123960]

That is why automated script execution of malware samples is not suitable for evaluating behavioral blocking

This is a perfect example of why focusing on behavior and triggers is so critical in security testing, and it's the reason 'true route of infection' testing is so valuable. Even if a brand-new piece of malware is designed to be invisible to a signature scan, it doesn't get a free pass. It still has to get through several other checkpoints, the website's reputation, the security software's intelligent analysis of its code, and the extra-strong scans that Windows applies to downloaded files via the Mark of the Web. For the attacker to win, every defense has to fail, for you to be safe, only one has to work.

 

[nickstar1]

I have said this before and will say it again if you truly want the best uninterrupted protection by avast go for avg ultimate it's cheap and a quality product. you can find 3 year keys for $20. The VPN is also unlimited data as well.

 

[Parkinsond]

I have said this before and will say it again if you truly want the best uninterrupted protection by avast go for avg ultimate it's cheap and a quality product. you can find 3 year keys for $20

Actually when using AVG free, I remove several components during installation.

 

[nickstar1]

Actually when using AVG free, I remove several components during installation.

AVG free is diffrent and will display advertisments as it's the free product with AVG ultimate you can choose what to install it wont nag you.

 

[Parkinsond]

AVG free is diffrent and will display advertisments as it's the free product with AVG ultimate you can choose what to install it wont nag you.

Unless I block avgui.exe connection by firewall.

 

[stonjean633]

This is a perfect example of why focusing on behavior and triggers is so critical in security testing, and it's the reason 'true route of infection' testing is so valuable. Even if a brand-new piece of malware is designed to be invisible to a signature scan, it doesn't get a free pass. It still has to get through several other checkpoints, the website's reputation, the security software's intelligent analysis of its code, and the extra-strong scans that Windows applies to downloaded files via the Mark of the Web. For the attacker to win, every defense has to fail, for you to be safe, only one has to work.

Multilayer Security and if possible using different security vendors.

 

[ForgottenSeer 114717]

The title would certainly prevent any further investigation as its ridiculous.

AVs want the focus to be on what they do well. It's good marketing. Hoomans are, unfortunately, easily influenced by good marketing - or at least a significant portion are disinclined to research and figure out what is fact and what is not, determine quality for themselves.

However, it is trivial to expose all the stuff that AV do not do well.

Security Software + Hooman = Deeply Flawed-Easily Bypassed Protection Model

There is only one model that has been proven to not fail to protect - managed absolute default deny where the user can only use what they are given and do what permissions are granted to them. The user must never have the ability to make a decision or to turn off the security solution. Why is this? Because, generally within the digital realm, hoomans need to be protected from themselves.

 

[Trident]

I can only say from technical point of view, Kaspersky can be tweaked to avoid these issues and Avast has insanely efficient telemetry pipe (just like Kaspersky), with reaction in minutes. So comparisons between the two and beating around the bush are not necessary, they will both do their job.

You really gotta be begging for trouble in the most touching way possible for one of the two to fail.

It’s the same with a few others.

 

[Parkinsond]

I can only say from technical point of view, Kaspersky can be tweaked to avoid these issues and Avast has insanely efficient telemetry pipe (just like Kaspersky), with reaction in minutes. So comparisons between the two and beating around the bush are not necessary, they will both do their job.

You really gotta be begging for trouble in the most touching way possible for one of the two to fail.

It’s the same with a few others.

I like K and Avas-AVG too; the only one I could not love is B.

 

[nickstar1]

I can only say from technical point of view, Kaspersky can be tweaked to avoid these issues and Avast has insanely efficient telemetry pipe (just like Kaspersky), with reaction in minutes. So comparisons between the two and beating around the bush are not necessary, they will both do their job.

You really gotta be begging for trouble in the most touching way possible for one of the two to fail.

It’s the same with a few others.

Trident was the one back in 2020 that showed me how good AVG was it really still is a hidden gem!

 

[nickstar1]

Malwarebytes at least blocks access to the site.

 

[Parkinsond]

Trident was the one back in 2020 that showed me how good AVG was it really still is a hidden gem!

My favorite 3rd party AV inspite of some negative points.