App Review Zemana AntiMalware vs Ransomware (Juan Diaz)

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
hlopets

hlopets

Level 1
Jan 7, 2019
13
Thanks for video. I am not surprised by the test results. Zemana - is just an multi engine antivirus using signatures from antivirus vendors. One unknown cryptographer is enough. For example, Emsisoft AntiMalware has a behavioral analyzer in the cloud, and even with disabled file protection shows excellent results.
 
Last edited:
  • Like
Reactions: brambedkar59, Andrew999, Sunshine-boy and 5 others
oldschool

oldschool

Level 85
Verified
Top Poster
Well-known
Mar 29, 2018
7,613
hlopets said:
Thanks for video. I am not surprised by the test results. Zemana - is just an multi engine antivirus using signatures from antivirus vendors. One unknown cryptographer is enough. For example, Emsisoft AntiMalware has a behavioral analyzer in the cloud, and even with disabled file protection shows excellent results.
Click to expand...

Thanks for the explanation as I was not aware of this. I wonder if there will be BB in Version 3?
 
  • Like
Reactions: bribon77, hlopets, vtqhtr413 and 2 others
Mahesh Sudula

Mahesh Sudula

Level 17
Verified
Top Poster
Well-known
Sep 3, 2017
825
hlopets said:
Thanks for video. I am not surprised by the test results. Zemana - is just an multi engine antivirus using signatures from antivirus vendors. One unknown cryptographer is enough. For example, Emsisoft AntiMalware has a behavioral analyzer in the cloud, and even with disabled file protection shows excellent results.
Click to expand...
Emsisoft has BB complete offline.
However :
If you are connected to inet , it queries their cloud for suspicious pattern behaviours.
If not it pops up the decision to the user hands with different flags : yellow (PUP), RED ( Ransom, Crypto lockers, Stealers).
Unfortunately the downside here in offline a lot of safe programs get the same warrant.
Better be online and make the process automated.
 
  • Like
Reactions: erreale, Andrew999, Sunshine-boy and 3 others
A

AlanOstaszewski

Level 16
Verified
Top Poster
Malware Hunter
Jul 27, 2017
775
oldschool said:
Thanks for the explanation as I was not aware of this. I wonder if there will be BB in Version 3?
Click to expand...
Well... The last sample in the video edits the file "C:\Users\UpdatusUser\NTUSER.DAT" (can be seen in the CMD window), which causes Zemana to classify this change as dangerous and to recognize and block the sample (4:05). So I'd say that Zemana has something in that sense.

Also, I wouldn't say that Zemana is a bad product. Paired with OSArmor or Hard_Configurator it would work fine.
 
  • Like
Reactions: bribon77, hlopets, vtqhtr413 and 3 others
A

AlanOstaszewski

Level 16
Verified
Top Poster
Malware Hunter
Jul 27, 2017
775
davisd said:
And what would be the point exactly running Zemana with H_C?
Click to expand...
Hard_Configurator (or Windows Smartscreen) can only block files, but does not delete them. Zemana would then be able to recognize and delete them a few days later using signatures, which can be an advantage for many.

In addition, Hard_Configurator is much more a backup for an antivirus (emphasizes @Andy Ful several times). In the Malware Hub I test H_C in a VM without any support from an AV. But on my "real" system I would prefer a combination of WD (or something else [@Andy Ful recommends Avast]) and H_C.
 
  • Like
Reactions: RoboMan, brambedkar59, hlopets and 5 others
D

Deleted Member 3a5v73x

askalan said:
Hard_Configurator (or Windows Smartscreen) can only block files, but does not delete them. Zemana would then be able to recognize and delete them a few days later using signatures, which can be an advantage for many.

In addition, Hard_Configurator is much more a backup for an antivirus (emphasizes @Andy Ful several times). In the Malware Hub I test H_C in a VM without any support from an AV. But on my "real" system I would prefer a combination of WD (or something else [@Andy Ful recommends Avast]) and H_C.
Click to expand...
Oh please spare me the self-importance. Your testing in the Malware Hub is a moot point because the testing methodology over there is far from realistic compared to real-world scenarios and the results are far from credible when whole layers of protection are being bypassed.
 
  • Like
Reactions: hlopets, Sunshine-boy, Andy Ful and 1 other person
D

Deleted member 178

askalan said:
Hard_Configurator (or Windows Smartscreen) can only block files, but does not delete them. Zemana would then be able to recognize and delete them a few days later using signatures, which can be an advantage for many.

In addition, Hard_Configurator is much more a backup for an antivirus (emphasizes @Andy Ful several times). In the Malware Hub I test H_C in a VM without any support from an AV. But on my "real" system I would prefer a combination of WD (or something else [@Andy Ful recommends Avast]) and H_C.
Click to expand...
Hard Configurator isn't a AV backup, it is SRP.
Comparing SRP vs AV is nonsense, it is like comparing which between a bunker and a house is more comfortable...
 
  • Like
Reactions: bribon77, Sunshine-boy, harlan4096 and 1 other person
hlopets

hlopets

Level 1
Jan 7, 2019
13
askalan said:
Well... The last sample in the video edits the file "C:\Users\UpdatusUser\NTUSER.DAT" (can be seen in the CMD window), which causes Zemana to classify this change as dangerous and to recognize and block the sample (4:05). So I'd say that Zemana has something in that sense.

Also, I wouldn't say that Zemana is a bad product. Paired with OSArmor or Hard_Configurator it would work fine.
Click to expand...
I agree. I would like to believe that Zamana is a promising security solution. But it all depends on the technology used in the product. Technologies that go beyond simple anti-virus detection are not easy to implement.
 
  • Like
Reactions: Andrew999
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,513
Umbra said:
Hard Configurator isn't a AV backup, it is SRP.
Comparing SRP vs AV is nonsense, it is like comparing which between a bunker and a house is more comfortable...
Click to expand...
The bunker and the house is the right naming.:giggle:
I think that @askalan has in mind that a recommended way of using H_C (for most users) is supporting the AV (back up ~ support).
 
Last edited:
  • Like
Reactions: RoboMan, AlanOstaszewski, hlopets and 2 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,513
davisd said:
Oh please spare me the self-importance. Your testing in the Malware Hub is a moot point because the testing methodology over there is far from realistic compared to real-world scenarios and the results are far from credible when whole layers of protection are being bypassed.
Click to expand...
There is an important difference in what is really tested. The @askalan tests can show the preventive capabilities of SmartScreen and script blocking, which are not tested in most MH tests. So, those tests cannot be directly compared, because they are rather complementary.
Of course some users can adopt the setup which is tested by @askalan and add ZAM as on demand scanner, but there are only a few cases, when this could be advantageous (as compared to any free AV):
AV-Test - Hard_Configurator - January 2019 Report
Update - Hard_Configurator - Windows Hardening Configurator

P.S.
I put here the above links for the other readers, because you probably know those posts already.:giggle:
 
Last edited:
  • Like
  • Applause
Reactions: RoboMan, brambedkar59, bribon77 and 8 others
silversurfer

silversurfer

Super Moderator
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,112
davisd said:
Oh please spare me the self-importance. Your testing in the Malware Hub is a moot point because the testing methodology over there is far from realistic compared to real-world scenarios and the results are far from credible when whole layers of protection are being bypassed.
Click to expand...
Your latest comments are provocatively, another example here: Update - WiseVector Free AI Driven Security
 
  • Like
Reactions: brambedkar59, Solarquest, Burrito and 6 others
D

Deleted Member 3a5v73x

silversurfer said:
Your latest comments are provocatively, another example here: Update - WiseVector Free AI Driven Security
Click to expand...
You know where is the report button if for some reason you feel offended by my posts. I for sure know you'll be more happy if I wouldn't be here anymore, it'll just prove the point what's been a hot debate over last months in the MT and why people were banned over defending their own opinions.
 
  • Like
Reactions: Deleted member 178
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,513
davisd,

silversurfer is right - those two posts were slightly provocative.:giggle:
But, I also noticed many your posts on MT, which were really helpful.(y)
I do not think that silversurfer felt especially offended or wanted to offend you.
Let's do not fight (there is no reason for that) and go back to the topic, please.(y)
 
  • Like
  • +Reputation
Reactions: RoboMan, brambedkar59, vtqhtr413 and 4 others

Similar threads

NB InfoTech
    • Like
App Review Want to try? | Comodo Antivirus Test & Review | Comodo Internet Security vs Ransomware | 2024
Replies
4
Views
407
Video Reviews - Security and Privacy
bazang
bazang
L
    • Like
App Review Windows Defender Controlled Folders bypassed by ransomware
Replies
1
Views
366
Video Reviews - Security and Privacy
oldschool
oldschool
NB InfoTech
    • Like
App Review Trend Micro Maximum Security Antivirus Review | Trend Micro vs Ransomware Test | [TESTED]
Replies
1
Views
735
Video Reviews - Security and Privacy
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top