Chris_MRG

Hi guys. In terms of the Avira AntiVir result, all our tests are conducted with applications installed with their default settings. With AntiVir, the detection of rogues / fakes / scareware is a user selected option and not part of the standard configuration. Best regards, Chris

Will this new logo be applied to the MBAM application, or just on the website? Having it on the website only could be a way to differentiate the Malwarebytes

Hi exile360, For the infected system rescue test the infections were live. The test is in two sections. There is the On Demand Scan test AND Infected System Rescue test. The methodology for each is displayed at the start of each section (possibly a bit confusing as both tests are in the same post) For reference, I have pasted the methodology used below: 1. Windows XP Professional Service Pack 3 is installed and updated with all important updates. An image of the Operating System is created with internet access. 2. A clone of the Imaged system is made for each program to be used in the test. 3. An individual program is installed with default settings on each of the Cloned systems. 4. A Snapshot is taken of each cloned system. 5. Any real time protection is disabled. 6. On each Cloned system the folder containing the fifteen samples of malware is placed. 7. All the programs are fully updated. 8. Each malware sample is executed individually, with the system being rebooted after each execution, until all fifteen samples have been executed. 9. A second snapshot of the cloned system is taken, allowing us to know all changes / infections. 10. All differences between the first and second snapshots are noted. 11. Real Time protection and other default methods of detection/prevention used by the applications are turned on. 12. The test is conducted by performing a full system scan and allowing the application to perform its detection and removal activities. 13. Once the application finds no malware / reports a clean system, the cloned system is compared to the first snapshot so an assessment of cleanup effectiveness can be made. Best regads, Chris

Hi exile360 and Firefox. We conducted a similar test here: (see Infected System Rescue test section) http://malwareresearchgroup.com/forum/view...?f=20&t=206 The infections were not directly from live URLs, but did make use of samples gathered from these a day or so before testing. We will be conducting new infection prevention tests and system rescue tests over the coming weeks and months. Best regards, Chris

I would like to say hello as well We welcome feedback and from Malwarebytes

Hi Ade, No, we don

I am a director / administrator of the Malware Research Group. For some time now, we have conducted research in to malware and worked in support of a number of security vendors