Jump to content
Login new information ×
Login new information

Test your AV with latest risks!

morteza

By morteza
in Security & Privacy Center

Recommended Posts

  • Replies 82
  • Views 11.3k
  • Created
  • Last Reply
morteza

morteza

Posted
  • Author
Posted

NIS 2012: online

5 of 9 detected normaly and 1 sample detected with Norton SONAR.

So 6 of 9.

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted

My brain detected all of them. :D

My friend,this kind of risks"like exploit,backdoors,..." can not detected with brain because these are invisible and do their job secretly.These are inject to your OS when you surfing the web or any kind of daily works.

Note that Only brain can not detect all of risks . You need a working group, which specialize in cybercrime like AV companies. ;)

Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

I'd like to know how many threats Symantec's SONAR blocked. I were testing with live malware samples the other day, SONAR blocked a few but the malware still penetrated the system. Kaspersky block many threats, thanks to its HIPS. When tried to run an undetected malware, Kaspersky asked whether to trust the program or assign it to a low/high restricted group. If the program is trusted, the system becomes vulernable, if low trusted is selected, the malware is stopped in it's tracked and will not be allowed to make any harmful changes to system. However, in some cases, Kaspersky might not request your permission while assigning the program's trust, but you can change it on Application Control settings and set the Kaspersky to automatically assign suspicious files on lower trust. This way your computer is safe. This is what I loved most about Kaspersky. Avast performed very well on my tests, but still few malware samples were left and could be run without any issues, but the issues were fixed immediately after I moved the samples to the virus chest and submitted them to Avast, and the following day, the file was detected as a virus and deleted accurately. Malwarebytes detected the most malwares, but it performs poor on proactive protection.

Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

Sample 5:

18 hours later.

NIS 2012 online: 8 of 11 detected with download insight

Could you test Malwarebytes? I'd like to see how it performs on your test.

Link to comment
Share on other sites
Nima

Nima

Posted
Posted

My brain detected all of them. :D

My friend,this kind of risks"like exploit,backdoors,..." can not detected with brain because these are invisible and do their job secretly.These are inject to your OS when you surfing the web or any kind of daily works.

Note that Only brain can not detect all of risks . You need a working group, which specialize in cybercrime like AV companies. ;)

But if you open your eyes and see what you are doing, you will not be infected with any of these malwares. ;)

You just need to check the websites you go, links you open, files you get and other things. ;)

It has been almost 2 years since I uninstalled real-time antivirus and from then I don't remember I have been infected from anything, but I also keep Hitman Pro portable everywhere I go just to be sure everything goes fine. ;)

Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

My brain detected all of them. :D

My friend,this kind of risks"like exploit,backdoors,..." can not detected with brain because these are invisible and do their job secretly.These are inject to your OS when you surfing the web or any kind of daily works.

Note that Only brain can not detect all of risks . You need a working group, which specialize in cybercrime like AV companies. ;)

But if you open your eyes and see what you are doing, you will not be infected with any of these malwares. ;)

You just need to check the websites you go, links you open, files you get and other things. ;)

It has been almost 2 years since I uninstalled real-time antivirus and from then I don't remember I have been infected from anything, but I also keep Hitman Pro portable everywhere I go just to be sure everything goes fine. ;)

This is true, but I need proactive protection just in case. I have bad memories of being infected few years back.

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted

Sample 5:

Site: http://tinypaste.com

Sharecode: /0d3aa6b6 [?]

pass: nsane+morteza

This is 9 malicious website.test your AV web protection.test it on VM (important)

another samples : 6 hours later

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted

Hello! :)

one my sample...very tricky.

If you run the .exe file, do soonly within the sandbox

Download:

http://www.datafilehost.com

Sharecode: /download-6764d066.html

Password archive: flaubert

Please number your samples and join me in this thread.Every one wants to have a sample posts can number their posts.We don't want to busy this thread and users confuse here.We want to conclude from this post and announce a report monthly.

For example dear flaubert samples can be edit with this method:

samples 6: ....

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted

@ morteza: message deleted...... :)

do you delete your post?why?I'm sorry if you upset.I mean only add a subject like "samples 6" to your samples post.I'm so so so sorry.please don't leave me alone in this thread bro. :)
Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

Morteza, could you please test Malwarebytes too? My computer is currently messed up and I'm running Ubuntu so I cannot perform any tests. Once I get back on Windows, I'll join you in testing.

Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

All so far defeated by Geswall and MVPS hosts , no AV used.

But I believe the scope of the test is limited to AV suites only. Naturally HIPS would defeat any of such threats.

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted

Morteza, could you please test Malwarebytes too? My computer is currently messed up and I'm running Ubuntu so I cannot perform any tests. Once I get back on Windows, I'll join you in testing.

I want to prepare my thesis in MA course and have not enough time for test another products.excuse me bro.another friends can test MBA? :)
Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

Morteza, could you please test Malwarebytes too? My computer is currently messed up and I'm running Ubuntu so I cannot perform any tests. Once I get back on Windows, I'll join you in testing.

I want to prepare my thesis in MA course and have not enough time for test another products.excuse me bro.another friends can test MBA? :)

It's alright, just wanted to see how it performs on your tests. Based on my tests, it had the highest detection rate, even better than Symantec, Kaspersky, and Avast.

Link to comment
Share on other sites
morteza

morteza

Posted
  • Author
Posted
I want to prepare my thesis in MA course and have not enough time.please help me for next samples. :)
Link to comment
Share on other sites
Tweety.Abd

Tweety.Abd

Posted
Posted

So I just happened to install McAfee Total Protection 2012 on my computer to see if it's any good. Then I tested it with the malware samples on here, and it amazed me. Here are the test results:

Sample 1: Completely removed

Sample 2: Removed all except two (payroll & Fr-WinPalace)

Sample 3: Completely removed

Sample 4: Completely removed

Sample 5: Completely removed (Flaubert's sample)

Note: Some of the samples were detected as PUPs and was prompted whether to remove them or not. Most of the detection were either Artemis! or Generic! All were detected in real-time, On-Demand scanning was not necessary. Default settings were used.

I even further tested by downloading malware samples from the internet, and it detected them and removed them all at once. Malwares can be downloaded form here.

Link to comment
Share on other sites
Morphius

Morphius

Posted
Posted

AV: G Data 2012 TC (virus signatures as of @ 14/01/2012 (actually, they are of 12th :)). The settings were by default, without getting anything tuned up.

On/off were always equal:

1st: 6 out of 8

2nd: 5 out of 7 *I couldn't make it out where 8th file in .zip was, perhaps it was just very invisible xD*

3rd: 5 out of 9

4th: 8 out of 11

5th: 3 pages opened (2 with .jar and one .co.uk), other were unavailable (already shutdown, I guess)

;) Kinda frustrated, thought those guys had improved their product..or it has really something to do with the settings....anyway, that was fun, and if time allows, gonna test some other products (i.e Panda, F-secure, Malwarebytes :) )

Link to comment
Share on other sites
didialdi

didialdi

Posted
Posted

So I just happened to install McAfee Total Protection 2012 on my computer to see if it's any good. Then I tested it with the malware samples on here, and it amazed me. Here are the test results:

Sample 1: Completely removed

Sample 2: Removed all except two (payroll & Fr-WinPalace)

Sample 3: Completely removed

Sample 4: Completely removed

Sample 5: Completely removed (Flaubert's sample)

Note: Some of the samples were detected as PUPs and was prompted whether to remove them or not. Most of the detection were either Artemis! or Generic! All were detected in real-time, On-Demand scanning was not necessary. Default settings were used.

I even further tested by downloading malware samples from the internet, and it detected them and removed them all at once. Malwares can be downloaded form here.

sometimes mcafee`s artemis could not fuction well. In virustotal, mcafee detects by artemis, but in my laptop, mcafee didn`t detect it

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...