Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Review Collection #2 (AVG, ESET, Kaspersky)
Message
<blockquote data-quote="FrankS" data-source="post: 535070" data-attributes="member: 47144"><p>Hey there, round two of my review collections. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p><p>Facts to the tests:</p><p><strong>Virtualization Software:</strong> Oracle VM VirtualBox</p><p><strong>Operating System:</strong> Windows 10 Pro x64 Anniversary (Version 1607)</p><p><strong>Sample-Set:</strong> 140 Samples, consisting of ransomware, self-extractors, windows/java script files and some ad-/riskware.</p><p><strong>HitmanPro.Alert:</strong> Custom Setup - I enabled the BadUSB, which was disabled by default</p><p><strong>Testing method: </strong>I extracted the malware samples to the desktop on running real time-protection of the antivirus-solution. After detecting and deleting by the anti-virus I scanned it manually by using the context-scan. After checking the detection-ratio I executed the rest of samples for checking the realtime-protection. Finally I scanned the system with HitmanPro and Zemana AntiMalware for checking if there are any rests of malware in the system folders.</p><p></p><p><span style="font-size: 18px"><strong>AVG Antivirus 2016</strong></span></p><p><span style="font-size: 15px">[MEDIA=youtube]2O-P0Fg4sss[/MEDIA]</span></p><p><span style="font-size: 15px"><strong>Detection Ratio (On-Demand and On-Access):</strong> 135/140 - 96,4% (129 d, 6 b)</span></p><p><span style="font-size: 15px"><strong>HitmanPro.Alert (not detected by AVG):</strong> 1</span></p><p><span style="font-size: 15px"><strong>Total blocked (AVG + HMP.Alert):</strong> 136/140 - 97,1%</span></p><p><span style="font-size: 15px"><strong>HitmanPro + Zemana Scanning Result after executing:</strong> <span style="color: #b30000">Infected</span> - HitmanPro cleaned up a system folder and registry and needed a restart for it.</span></p><p><span style="font-size: 15px"><strong>Any picture, text or excel document infected/encrypted:</strong> <span style="color: #00b300">No</span></span></p><p><span style="font-size: 15px"><strong>Was the system usable after testing (reboot)?:</strong> <span style="color: #00b300">Yes</span></span></p><p><span style="font-size: 15px"><strong>Attempts to repair the system:</strong> <span style="color: #000000">Not needed</span></span></p><p><span style="font-size: 15px"><strong>Would I recommend it?:</strong> Only for experienced users - for beginners it might be a bit too complicated</span></p><p><span style="font-size: 15px">If I would know a beginner which is using AVG, I would recommend him to use a second opinion scanner.</span></p><p><span style="font-size: 15px"><strong>AVG Antivirus Setup: Custom</strong></span></p><p><span style="font-size: 15px">Enabled "Report enhanced set of potentially unwanted applications"</span></p><p><span style="font-size: 15px">Enabled "Scan inside archives" and changed the file type selection to "All"</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"><strong><span style="font-size: 18px">ESET NOD32 Antivirus</span></strong></span></p><p>[MEDIA=youtube]Pa7EJ_zX4w0[/MEDIA]</p><p><strong>Detection Ratio (On-Demand and On-Access):</strong> 135/140 - 96,4% (135 d)</p><p><strong>HitmanPro.Alert (not detected by ESET):</strong> 1</p><p><strong>Total blocked (ESET + HMP.Alert):</strong> 136/140 - 97,1%</p><p><strong>HitmanPro + Zemana Scanning Result after executing:</strong> <span style="color: #00b300">Clean system folders</span>, found threats in samples folder</p><p><strong>Any picture, text or excel document infected/encrypted:</strong> <span style="color: #00b300">No</span></p><p><strong>Was the system usable after testing (reboot)?:</strong> <span style="color: #00b300">Yes</span></p><p><strong>Attempts to repair the system:</strong> Not needed</p><p><strong>Would I recommend it?:</strong> Yes - solid protection and very fast on removing threats</p><p><strong>ESET NOD32 Antivirus-Setup: Custom</strong></p><p>Enabled detection of potentially unwanted and unsafe applications</p><p>Enabled Device control</p><p>Activated "Advanced Heuristics/DNA signatures" (Real-Time)</p><p>Set the Cleaning level to Strict cleaning (Real-Time and Scan)</p><p>Enabled the document protection</p><p></p><p><span style="font-size: 18px"><strong>Kaspersky Anti-Virus 2017</strong></span></p><p><span style="font-size: 15px">[MEDIA=youtube]vmONHN6DqBw[/MEDIA]</span></p><p><span style="font-size: 15px"><strong>Detection Ratio (On-Demand and On-Access):</strong> 137/140 - 97,9% (132 d, 3 b, 2 b and d)</span></p><p><span style="font-size: 15px"><strong>HitmanPro.Alert (not detected by Kaspersky):</strong> 1</span></p><p><span style="font-size: 15px"><strong>Total blocked (Kaspersky + HMP.Alert):</strong> 138/140 - 98,6%</span></p><p><span style="font-size: 15px"><strong>HitmanPro + Zemana Scanning Result after executing:</strong> <span style="color: #00b300">Clean System folders</span>, found threats in samples folder</span></p><p><span style="font-size: 15px"><strong>Any picture, text or excel document infected/encrypted:</strong> <span style="color: #00b300">No</span></span></p><p><span style="font-size: 15px"><strong>Was the system usable after testing (reboot)?:</strong> <span style="color: #00b300">Yes</span></span></p><p><span style="font-size: 15px"><strong>Attempts to repair the system:</strong> Not needed</span></p><p><span style="font-size: 15px"><strong>Would I recommend it?:</strong> Yes, a solid protection, but high consumption of resources when deleting malware. A bit annoying: Instead of blocking the malicious/malware links after executing the windows script files, Kaspersky should block the whole script. That would be better and would prevent 3000 upcoming notifications about bad links. Closing the "wscript.exe" will prevent further hits to bad links by the windows script file like seen on the video. But not every User knows it.</span></p><p><span style="font-size: 15px"><strong>Kaspersky Anti-Virus Setup: Custom</strong></span></p><p><span style="font-size: 15px">set the Action on threat detection to "Delete" (File Anti-Virus)</span></p><p><span style="font-size: 15px">set the Heuristic Analysis to "Medium Scan" (File Anti-Virus)</span></p><p><span style="font-size: 15px">enabled "Scan installation packages" (File Anti-Virus)</span></p><p><span style="font-size: 15px">disabled "Release resources to the operating system when the computer starts" (Performance)</span></p><p><span style="font-size: 15px">set the security level to "High" (Scan)</span></p><p><span style="font-size: 15px">enabled "Detect other software that can be used by criminals to damage your computer or personal data" (Threats and Exclusions)</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"><strong>d=deleted, b=blocked</strong></span></p></blockquote><p></p>
[QUOTE="FrankS, post: 535070, member: 47144"] Hey there, round two of my review collections. :) Facts to the tests: [B]Virtualization Software:[/B] Oracle VM VirtualBox [B]Operating System:[/B] Windows 10 Pro x64 Anniversary (Version 1607) [B]Sample-Set:[/B] 140 Samples, consisting of ransomware, self-extractors, windows/java script files and some ad-/riskware. [B]HitmanPro.Alert:[/B] Custom Setup - I enabled the BadUSB, which was disabled by default [B]Testing method: [/B]I extracted the malware samples to the desktop on running real time-protection of the antivirus-solution. After detecting and deleting by the anti-virus I scanned it manually by using the context-scan. After checking the detection-ratio I executed the rest of samples for checking the realtime-protection. Finally I scanned the system with HitmanPro and Zemana AntiMalware for checking if there are any rests of malware in the system folders. [SIZE=5][B]AVG Antivirus 2016[/B][/SIZE] [SIZE=4][MEDIA=youtube]2O-P0Fg4sss[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 135/140 - 96,4% (129 d, 6 b) [B]HitmanPro.Alert (not detected by AVG):[/B] 1 [B]Total blocked (AVG + HMP.Alert):[/B] 136/140 - 97,1% [B]HitmanPro + Zemana Scanning Result after executing:[/B] [COLOR=#b30000]Infected[/COLOR] - HitmanPro cleaned up a system folder and registry and needed a restart for it. [B]Any picture, text or excel document infected/encrypted:[/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?:[/B] [COLOR=#00b300]Yes[/COLOR] [B]Attempts to repair the system:[/B] [COLOR=#000000]Not needed[/COLOR] [B]Would I recommend it?:[/B] Only for experienced users - for beginners it might be a bit too complicated If I would know a beginner which is using AVG, I would recommend him to use a second opinion scanner. [B]AVG Antivirus Setup: Custom[/B] Enabled "Report enhanced set of potentially unwanted applications" Enabled "Scan inside archives" and changed the file type selection to "All" [B][SIZE=5]ESET NOD32 Antivirus[/SIZE][/B][/SIZE] [MEDIA=youtube]Pa7EJ_zX4w0[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 135/140 - 96,4% (135 d) [B]HitmanPro.Alert (not detected by ESET):[/B] 1 [B]Total blocked (ESET + HMP.Alert):[/B] 136/140 - 97,1% [B]HitmanPro + Zemana Scanning Result after executing:[/B] [COLOR=#00b300]Clean system folders[/COLOR], found threats in samples folder [B]Any picture, text or excel document infected/encrypted:[/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?:[/B] [COLOR=#00b300]Yes[/COLOR] [B]Attempts to repair the system:[/B] Not needed [B]Would I recommend it?:[/B] Yes - solid protection and very fast on removing threats [B]ESET NOD32 Antivirus-Setup: Custom[/B] Enabled detection of potentially unwanted and unsafe applications Enabled Device control Activated "Advanced Heuristics/DNA signatures" (Real-Time) Set the Cleaning level to Strict cleaning (Real-Time and Scan) Enabled the document protection [SIZE=5][B]Kaspersky Anti-Virus 2017[/B][/SIZE] [SIZE=4][MEDIA=youtube]vmONHN6DqBw[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 137/140 - 97,9% (132 d, 3 b, 2 b and d) [B]HitmanPro.Alert (not detected by Kaspersky):[/B] 1 [B]Total blocked (Kaspersky + HMP.Alert):[/B] 138/140 - 98,6% [B]HitmanPro + Zemana Scanning Result after executing:[/B] [COLOR=#00b300]Clean System folders[/COLOR], found threats in samples folder [B]Any picture, text or excel document infected/encrypted:[/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?:[/B] [COLOR=#00b300]Yes[/COLOR] [B]Attempts to repair the system:[/B] Not needed [B]Would I recommend it?:[/B] Yes, a solid protection, but high consumption of resources when deleting malware. A bit annoying: Instead of blocking the malicious/malware links after executing the windows script files, Kaspersky should block the whole script. That would be better and would prevent 3000 upcoming notifications about bad links. Closing the "wscript.exe" will prevent further hits to bad links by the windows script file like seen on the video. But not every User knows it. [B]Kaspersky Anti-Virus Setup: Custom[/B] set the Action on threat detection to "Delete" (File Anti-Virus) set the Heuristic Analysis to "Medium Scan" (File Anti-Virus) enabled "Scan installation packages" (File Anti-Virus) disabled "Release resources to the operating system when the computer starts" (Performance) set the security level to "High" (Scan) enabled "Detect other software that can be used by criminals to damage your computer or personal data" (Threats and Exclusions) [B]d=deleted, b=blocked[/B][/SIZE] [/QUOTE]
Insert quotes…
Verification
Post reply
Top