Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Review Collection (BitDefender, Dr.Web, Emsisoft)
Message
<blockquote data-quote="FrankS" data-source="post: 534923" data-attributes="member: 47144"><p>Hey there, I tested some Antivirus-Solutions which were running together with HitmanPro.Alert. Have fun! <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p><p>Facts to the tests:</p><p><strong>Virtualization Software:</strong> Oracle VM VirtualBox</p><p><strong>Operating System:</strong> Windows 10 Pro x64 Anniversary (Version 1607)</p><p><strong>Sample-Set:</strong> 140 Samples, consisting of ransomware, self-extractors, windows/java script files and some ad-/riskware.</p><p><strong>HitmanPro.Alert:</strong> Custom Setup - I enabled the BadUSB, which was disabled by default</p><p><strong>Testing method: </strong>I extracted the malware samples to the desktop on running real time-protection of the antivirus-solution. After detecting and deleting by the anti-virus I scanned it manually by using the context-scan. After checking the detection-ratio I executed the rest of samples for checking the realtime-protection. Finally I scanned the system with HitmanPro and Zemana AntiMalware for checking if there are any rests of malware in the system folders.</p><p></p><p><span style="font-size: 18px"><strong>BitDefender Antivirus Plus 2016 + HMP.Alert</strong></span></p><p>[MEDIA=youtube]gOugDBJJSBI[/MEDIA]</p><p><strong>Detection Ratio (On-Demand and On-Access):</strong> 139*/140 - 99,3% (136 d, 2 b, 1 b and d)</p><p><strong>HitmanPro.Alert (not detected/blocked by BitDefender):</strong> 0</p><p><strong>Total blocked (BD + HMP.Alert): </strong> 139/140 - 99,3%</p><p></p><p><strong>HitmanPro + Zemana Scanning Result after Realtime-Check:</strong> <span style="color: #00b300">Clean</span></p><p><strong>Any picture, text or excel document infected/encrypted: </strong> <span style="color: #00b300">No</span></p><p><strong>Was the system usable after testing (reboot)?: </strong> <span style="color: #00b300">Yes</span></p><p><strong>Attempts to repair the system:</strong> Not needed</p><p><strong>Would I recommend it?:</strong> <span style="color: #00b300"> Yes</span>, a solid protection and small resource consumption</p><p><strong>BitDefender Setup:</strong> <strong>Custom</strong></p><p>Disabled the Security Widget (shown on Desktop)</p><p>Disabled the autopilot mode</p><p>Enabled Archive Scanning at On-Access</p><p>Changed the Action to "Move files to quarantine"</p><p>Enabled the Ransomware Protection (why the hell it's disabled on default?)</p><p></p><p><span style="font-size: 18px"><strong>Dr.Web Antivirus 11 + HMP.Alert</strong></span></p><p>[MEDIA=youtube]74StnQN1tGM[/MEDIA]</p><p><strong>Detection Ratio (On-Demand and On-Access):</strong> 112*/140 - 80,0% (110 d, 2 b)</p><p><strong>HitmanPro.Alert (not detected/blocked by Dr.Web):</strong> 1</p><p><strong>Total blocked (Dr.Web + HMP.Alert):</strong> 113/140 - 80,7%</p><p><strong>HitmanPro + Zemana Scanning Result after executing:</strong> <span style="color: #b30000">Infected</span> (ran in safe mode)</p><p><strong>Any picture, text or excel document infected/encrypted:</strong> <span style="color: #00b300">No</span></p><p><strong>Was the system usable after testing (reboot)?:</strong> <span style="color: #b30000">No</span> - One of these executed Samples seems to be able to restart my computer without any Block by Dr.Web or HitmanPro.Alert. After restarting the System, my Logon Screen was frozen. So I was unable to login.</p><p><strong>Attempts to repair the system:</strong></p><p>Tried to fix the Windows MBR by using the Windows Installation disc and command prompt - failed</p><p>Tried to clean the system by using HitmanPro and Emsisoft Emergency Kit in Windows Safe Mode - cleaned but was still frozen after restart</p><p>Checked the Autorun folder on Windows Registry - no unusual entries</p><p><strong>Would I recommend it?:</strong> <span style="color: #b30000">No</span> - It seems to me that Dr.Web's real time protection is not strong enough.</p><p>Well, I used Dr.Web + HitmanPro.Alert + HitmanPro + Zemana. Maybe the frozen logon screen after rebooting could also be an compatibility issue. But after installing Dr.Web it also needed a restart of the system and there was everything fine. No issues and no frozen screens. So my feeling is that the frozen login screen came from a malware attack.</p><p><strong>Dr.Web Setup:</strong> <strong>Custom</strong></p><p>Enabled the Scanning of installation packages on SplDer Guard</p><p>Set the action for all kinds of threats to "Delete"</p><p></p><p><span style="font-size: 18px"><strong>Emsisoft Anti-Malware 11 + HMP.Alert</strong></span></p><p>[MEDIA=youtube]9XsGc2gCj48[/MEDIA]</p><p><strong>Detection Ratio (On-Demand and On-Access):</strong> 137*/140 - 97,9% (136 d, 1 b and d)</p><p><strong>HitmanPro.Alert (not detected/blocked by Emsisoft):</strong> 1</p><p><strong>Total blocked (EAM + HMP.Alert):</strong> 138/140 - 98,6%</p><p><strong>HitmanPro + Zemana Scanning Result after executing:</strong> <span style="color: #00b300">Clean System folders</span>. Zemana detected 1 Sample in Samples folder by Heuristics. But maybe it's a false positive (0 detections on Virustotal)</p><p><strong>Any picture, text or excel document infected/encrypted:</strong> <span style="color: #00b300">No</span></p><p><strong>Was the system usable after testing (reboot)?:</strong> <span style="color: #00b300">Yes</span></p><p><strong>Attempts to repair the system:</strong> Not needed</p><p><strong>Would I recommend it?:</strong> <span style="color: #00b300">Yes</span>, a solid protection and small resource consumption</p><p></p><p><strong>Emsisoft Setup: Custom</strong></p><p>Enabled Detection of PUP</p><p>Changed the action for Privacy risks to "Block and notify"</p><p>Changed the action for PUP detections to "Quarantine with notification"</p><p></p><p><strong>*1 file seems to be a false positive or for an older version of ms word (.rtf-file)</strong></p><p><strong>d=deleted, b=blocked</strong></p></blockquote><p></p>
[QUOTE="FrankS, post: 534923, member: 47144"] Hey there, I tested some Antivirus-Solutions which were running together with HitmanPro.Alert. Have fun! :) Facts to the tests: [B]Virtualization Software:[/B] Oracle VM VirtualBox [B]Operating System:[/B] Windows 10 Pro x64 Anniversary (Version 1607) [B]Sample-Set:[/B] 140 Samples, consisting of ransomware, self-extractors, windows/java script files and some ad-/riskware. [B]HitmanPro.Alert:[/B] Custom Setup - I enabled the BadUSB, which was disabled by default [B]Testing method: [/B]I extracted the malware samples to the desktop on running real time-protection of the antivirus-solution. After detecting and deleting by the anti-virus I scanned it manually by using the context-scan. After checking the detection-ratio I executed the rest of samples for checking the realtime-protection. Finally I scanned the system with HitmanPro and Zemana AntiMalware for checking if there are any rests of malware in the system folders. [SIZE=5][B]BitDefender Antivirus Plus 2016 + HMP.Alert[/B][/SIZE] [MEDIA=youtube]gOugDBJJSBI[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 139*/140 - 99,3% (136 d, 2 b, 1 b and d) [B]HitmanPro.Alert (not detected/blocked by BitDefender):[/B] 0 [B]Total blocked (BD + HMP.Alert): [/B] 139/140 - 99,3% [B]HitmanPro + Zemana Scanning Result after Realtime-Check:[/B] [COLOR=#00b300]Clean[/COLOR] [B]Any picture, text or excel document infected/encrypted: [/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?: [/B] [COLOR=#00b300]Yes[/COLOR] [B]Attempts to repair the system:[/B] Not needed [B]Would I recommend it?:[/B] [COLOR=#00b300] Yes[/COLOR], a solid protection and small resource consumption [B]BitDefender Setup:[/B] [B]Custom[/B] Disabled the Security Widget (shown on Desktop) Disabled the autopilot mode Enabled Archive Scanning at On-Access Changed the Action to "Move files to quarantine" Enabled the Ransomware Protection (why the hell it's disabled on default?) [SIZE=5][B]Dr.Web Antivirus 11 + HMP.Alert[/B][/SIZE] [MEDIA=youtube]74StnQN1tGM[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 112*/140 - 80,0% (110 d, 2 b) [B]HitmanPro.Alert (not detected/blocked by Dr.Web):[/B] 1 [B]Total blocked (Dr.Web + HMP.Alert):[/B] 113/140 - 80,7% [B]HitmanPro + Zemana Scanning Result after executing:[/B] [COLOR=#b30000]Infected[/COLOR] (ran in safe mode) [B]Any picture, text or excel document infected/encrypted:[/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?:[/B] [COLOR=#b30000]No[/COLOR] - One of these executed Samples seems to be able to restart my computer without any Block by Dr.Web or HitmanPro.Alert. After restarting the System, my Logon Screen was frozen. So I was unable to login. [B]Attempts to repair the system:[/B] Tried to fix the Windows MBR by using the Windows Installation disc and command prompt - failed Tried to clean the system by using HitmanPro and Emsisoft Emergency Kit in Windows Safe Mode - cleaned but was still frozen after restart Checked the Autorun folder on Windows Registry - no unusual entries [B]Would I recommend it?:[/B] [COLOR=#b30000]No[/COLOR] - It seems to me that Dr.Web's real time protection is not strong enough. Well, I used Dr.Web + HitmanPro.Alert + HitmanPro + Zemana. Maybe the frozen logon screen after rebooting could also be an compatibility issue. But after installing Dr.Web it also needed a restart of the system and there was everything fine. No issues and no frozen screens. So my feeling is that the frozen login screen came from a malware attack. [B]Dr.Web Setup:[/B] [B]Custom[/B] Enabled the Scanning of installation packages on SplDer Guard Set the action for all kinds of threats to "Delete" [SIZE=5][B]Emsisoft Anti-Malware 11 + HMP.Alert[/B][/SIZE] [MEDIA=youtube]9XsGc2gCj48[/MEDIA] [B]Detection Ratio (On-Demand and On-Access):[/B] 137*/140 - 97,9% (136 d, 1 b and d) [B]HitmanPro.Alert (not detected/blocked by Emsisoft):[/B] 1 [B]Total blocked (EAM + HMP.Alert):[/B] 138/140 - 98,6% [B]HitmanPro + Zemana Scanning Result after executing:[/B] [COLOR=#00b300]Clean System folders[/COLOR]. Zemana detected 1 Sample in Samples folder by Heuristics. But maybe it's a false positive (0 detections on Virustotal) [B]Any picture, text or excel document infected/encrypted:[/B] [COLOR=#00b300]No[/COLOR] [B]Was the system usable after testing (reboot)?:[/B] [COLOR=#00b300]Yes[/COLOR] [B]Attempts to repair the system:[/B] Not needed [B]Would I recommend it?:[/B] [COLOR=#00b300]Yes[/COLOR], a solid protection and small resource consumption [B]Emsisoft Setup: Custom[/B] Enabled Detection of PUP Changed the action for Privacy risks to "Block and notify" Changed the action for PUP detections to "Quarantine with notification" [B]*1 file seems to be a false positive or for an older version of ms word (.rtf-file) d=deleted, b=blocked[/B] [/QUOTE]
Insert quotes…
Verification
Post reply
Top