Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Testing security software in a rush with some samples - what do you think?
Message
<blockquote data-quote="Nikos751" data-source="post: 1036649" data-attributes="member: 5403"><p>I did some malware testing (VM) in a rush using a malicious document, some stealers and a precracked software (office 2010) with malware inside the installer. I tested (all defaults) Eset, Kaspersky, Norton, Avast, McAfee, BitDefender, while the malicious installer was tested two times. I have no evidence of the test results for you to see as did not take any video or screenshots, just observed and now I want to share my observations with you, so I posted this here just for gossip, talk and comments, not as a test having a high value.</p><ul> <li data-xf-list-type="ul"><strong>Norton </strong>really has some problems with Stealers, mainly using IPS for detecting them while it only showed some Data Protector warning & blocked activity while installing the cracked software.<strong>Kaspersky IS & Eset IS</strong> did not appear very consistent as they could not detect the malware inside the office installer when it was running, they both needed right click & scan. Even then, Eset IS did not always detect the threat (I tested 2 times, the first one ended up with a detection, second ended up with no detection - no idea why). Other threats were detected quickly with no infection apparent.</li> <li data-xf-list-type="ul"><strong>McAfee IS </strong>is not very effective when right clicking & scanning but when malware is being run it detects it. It also detects most unknown threats, but it leaves files as it detects payloads & spawned files malware create, while it's already running. Also, I liked that in 2nd test with the malicious installed (some hours difference from the first), it stopped the installation and deleted the installer as an unknown threat - the first time it detected some vbs here and there. </li> <li data-xf-list-type="ul"><strong>BitDefender IS</strong> was very good with it's signatures and BB but I was surprised but it did not detect the malicious installer, neither by scanning or by running it. </li> <li data-xf-list-type="ul">Lastly <strong>Avast Free</strong>, produced the most clean results, no need to run anything, all detections were pre execution, every single time. well done, i was surprised.<br /> *Samples were not carefully chosen, there was no serious methodology involved, as my free time is limited these days, I just wanted to do some testing and see how it gones with all those vendors. </li> </ul></blockquote><p></p>
[QUOTE="Nikos751, post: 1036649, member: 5403"] I did some malware testing (VM) in a rush using a malicious document, some stealers and a precracked software (office 2010) with malware inside the installer. I tested (all defaults) Eset, Kaspersky, Norton, Avast, McAfee, BitDefender, while the malicious installer was tested two times. I have no evidence of the test results for you to see as did not take any video or screenshots, just observed and now I want to share my observations with you, so I posted this here just for gossip, talk and comments, not as a test having a high value. [LIST] [*][B]Norton [/B]really has some problems with Stealers, mainly using IPS for detecting them while it only showed some Data Protector warning & blocked activity while installing the cracked software.[B]Kaspersky IS & Eset IS[/B] did not appear very consistent as they could not detect the malware inside the office installer when it was running, they both needed right click & scan. Even then, Eset IS did not always detect the threat (I tested 2 times, the first one ended up with a detection, second ended up with no detection - no idea why). Other threats were detected quickly with no infection apparent. [*][B]McAfee IS [/B]is not very effective when right clicking & scanning but when malware is being run it detects it. It also detects most unknown threats, but it leaves files as it detects payloads & spawned files malware create, while it's already running. Also, I liked that in 2nd test with the malicious installed (some hours difference from the first), it stopped the installation and deleted the installer as an unknown threat - the first time it detected some vbs here and there. [*][B]BitDefender IS[/B] was very good with it's signatures and BB but I was surprised but it did not detect the malicious installer, neither by scanning or by running it. [*]Lastly [B]Avast Free[/B], produced the most clean results, no need to run anything, all detections were pre execution, every single time. well done, i was surprised. *Samples were not carefully chosen, there was no serious methodology involved, as my free time is limited these days, I just wanted to do some testing and see how it gones with all those vendors. [/LIST] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
