Questions about Malware Testing

[jackuars]

Hey everyone. I just wanted to test out the efficiency of various antiviruses with respect to malware (detection, removal etc). I wanted to know how you guys do it, after collecting the samples.

Do you guys test it on a virtual machine? It is okay to test the same on Toolwiz Time Freeze, and then reboot to prevent the after-effects?

What are your set-up's while testing an antivirus.

 

[MalwareT]

VirtualBox with set shared folders to read - only (if you use it), no updates at all, set classic theme for better performance, always take a snapshot of clean OS, disable Defender and stop it's service. And make sure that Guest Additions are installed as well

 

[OneDay]

My experience with VMs hasn't been very good lately, so mostly before testing malware I take a complete system snapshot in case something bad happens to return my PC to its working state. So far so good. Testing in a 'real' system always feels better!

 

[hjlbx]

Hey everyone. I just wanted to test out the efficiency of various antiviruses with respect to malware (detection, removal etc). I wanted to know how you guys do it, after collecting the samples.

Do you guys test it on a virtual machine? It is okay to test the same on Toolwiz Time Freeze, and then reboot to prevent the after-effects?

What are your set-up's while testing an antivirus.

@jackuars

I use Shadow Defender because it has given me virtually no problems on all my machines.

Virtual Machines can be problematic on some systems in my experience.

The simplicity of Shadow Defender - ease of installation and use - makes it the best light virtualization solution for me.

 

[Chromatinfish 123]

I just take my chances on the system. No shadow defender, no restore, no snapshots. After all one AV has to remove it right

No lol just kidding I take snapshots when I test which is not very often (actually not in a year in that matter)

 

[frogboy]

I test with Shadow Defender it lets nothing through in my experience.

 

[LabZero]

Well, if you're using a PC designed ONLY for malware testing then you can use Toolwiz or rather Shadow Defender that also protects the MBR from overwriting.

If your PC contains personal data and sensitive information, I suggest you to use a VM with Guest/Host sharing disable.
This is because Shadow Defender does not prevent from malware transmitting data via the internet unless you log off the network.

 

[Deleted member 178]

Testing malwares? Use a spare machine for best results. Everything less will be not 100% accurate.

 

[cruelsister]

Listen well to the above two posts! Never Ever test malware on your actual production system (Never).