Jump to content
Sign in to follow this  
ddamm

Am i dooing something wrong

Recommended Posts

Hello, this is my 1st post here an i hope i didnt missed the forum about this. I decided to write here and ask if im dooing something wrong with this product since i was looking for a good remover tool and have read a lot nice things about malwarebytes and some not so good... but since i dont belive everythign people are saying, i had to try for my own..

here are the results:

Avira AntiVir Personal

Report file date: 18. januar 2009 10:38

Scanning for 1220145 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 3, v.3264) [5.1.2600]

Boot mode: Normally booted

Username: xxxxxx

Computer name: xxxxxxx

Version information:

BUILD.DAT : 8.2.0.337 16934 Bytes 18.11.2008 13:05:00

AVSCAN.EXE : 8.1.4.10 315649 Bytes 18.11.2008 08:21:26

AVSCAN.DLL : 8.1.4.0 40705 Bytes 26.5.2008 07:56:40

LUKE.DLL : 8.1.4.5 164097 Bytes 12.6.2008 12:44:19

LUKERES.DLL : 8.1.4.0 12033 Bytes 26.5.2008 07:58:52

ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27.10.2008 11:30:36

ANTIVIR1.VDF : 7.1.1.113 2817536 Bytes 14.1.2009 15:21:57

ANTIVIR2.VDF : 7.1.1.114 2048 Bytes 14.1.2009 15:21:59

ANTIVIR3.VDF : 7.1.1.134 244736 Bytes 16.1.2009 15:22:05

Engineversion : 8.2.0.57

AEVDF.DLL : 8.1.0.6 102772 Bytes 14.10.2008 10:05:56

AESCRIPT.DLL : 8.1.1.26 340347 Bytes 17.1.2009 15:23:00

AESCN.DLL : 8.1.1.5 123251 Bytes 7.11.2008 15:06:41

AERDL.DLL : 8.1.1.3 438645 Bytes 4.11.2008 13:58:38

AEPACK.DLL : 8.1.3.5 393588 Bytes 17.1.2009 15:22:56

AEOFFICE.DLL : 8.1.0.33 196987 Bytes 17.1.2009 15:22:50

AEHEUR.DLL : 8.1.0.84 1540471 Bytes 17.1.2009 15:22:37

AEHELP.DLL : 8.1.2.0 119159 Bytes 17.1.2009 15:22:25

AEGEN.DLL : 8.1.1.10 323957 Bytes 17.1.2009 15:22:22

AEEMU.DLL : 8.1.0.9 393588 Bytes 14.10.2008 10:05:56

AECORE.DLL : 8.1.5.2 172405 Bytes 17.1.2009 15:22:17

AEBB.DLL : 8.1.0.3 53618 Bytes 14.10.2008 10:05:56

AVWINLL.DLL : 1.0.0.12 15105 Bytes 9.7.2008 08:40:05

AVPREF.DLL : 8.0.2.0 38657 Bytes 16.5.2008 09:28:01

AVREP.DLL : 8.0.0.2 98344 Bytes 31.7.2008 12:02:15

AVREG.DLL : 8.0.0.1 33537 Bytes 9.5.2008 11:26:40

AVARKT.DLL : 1.0.0.23 307457 Bytes 12.2.2008 08:29:23

AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12.6.2008 12:27:49

SQLITE3.DLL : 3.3.17.1 339968 Bytes 22.1.2008 17:28:02

SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12.6.2008 12:49:40

NETNT.DLL : 8.0.0.1 7937 Bytes 25.1.2008 12:05:10

RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12.6.2008 13:48:07

RCTEXT.DLL : 8.0.52.0 86273 Bytes 27.6.2008 13:34:37

Configuration settings for the scan:

Jobname..........................: ShlExt

Configuration file...............: C:\DOCUME~1\xxxxxx\LOCALS~1\Temp\286e7b53.avp

Logging..........................: low

Primary action...................: ignore

Secondary action.................: ignore

Scan master boot sector..........: on

Scan boot sector.................: on

Boot sectors.....................: C:,

Process scan.....................: off

Scan registry....................: off

Search for rootkits..............: off

Scan all files...................: Intelligent file selection

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Macro heuristic..................: on

File heuristic...................: medium

Start of the scan: 18. januar 2009 10:38

End of the scan: 18. januar 2009 10:39

Used time: 01:05 Minute(s)

The scan has been done completely.

8 Scanning directories

6095 Files were scanned

4250 viruses and/or unwanted programs were found

137 Files were classified as suspicious:

0 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

0 Files cannot be scanned

1708 Files not concerned

98 Archives were scanned

4277 Warnings

134 Notes

a-squared Free - Version 4.0

Last update: 18.1.2009 10:53:55

Scan settings:

Objects: C:\0

Scan archives: On

Heuristics: Off

ADS Scan: On

Scan start: 18.1.2009 10:55:25

Scanned

Files: 5713

Traces: 0

Cookies: 0

Processes: 0

Found

Files: 5441

Traces: 0

Cookies: 0

Processes: 0

Registry keys: 0

Scan end: 18.1.2009 11:00:09

Scan time: 0:04:44

SUPERAntiSpyware Scan Log

http://www.superantispyware.com

Generated 11/18/2008 at 06:03 PM

Application Version : 4.22.1014

Core Rules Database Version : 3641

Trace Rules Database Version: 1624

Scan type : Quick Scan

Total Scan Time : 00:16:11

Memory items scanned : 360

Memory threats detected : 0

Registry items scanned : 295

Registry threats detected : 0

File items scanned : 10946

File threats detected : 26 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! what the hell ??????

IKARUS.virus.utilities most recent version

18:01:2009 11:36:08 SEARCHTASK "Scanprofile_2009_1_18" started...

18:01:2009 11:38:32 SEARCHTASK "Scanprofile_2009_1_18" FINISHED...

----------------------------------------------------

Directories scanned: 8

Files scanned: 5500

Virus found: 5433

----------------------------------------------------

Malwarebytes' Anti-Malware 1.33

Database version: 1664

Windows 5.1.2600 Service Pack 3, v.3264

18.1.2009 11:44:35

mbam-log-2009-01-18 (11-44-21).txt

Scan type: Quick Scan

Objects scanned: 5500

Time elapsed: 1 minute(s), 6 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 29 !!!!!!!!!!!!!!!!!!!!!!!! Oh my GOD !!!!????!!!!!????

Please tell me am i dooing something wrong here or what. Why is there such a low detection in your product ? Am i completely mistaken in including this product in my test ? Maybe it is not ment to be tested in that way beu it actualy removes malware from realy infected computer ?

Please clarify this for me and fo other potential users.

Thank you.

Share this post


Link to post
Share on other sites

Greetings ddamm, and welcome to the forum.

First off, if you're doing you're test on threats that are just sitting in a folder and not active on a system, MBAM will most likely not detect them (it's because of the way it's detection algorithm works).

Second, many files that would be detected by a typical antivirus (especially somewhat older infections) will not get picked up by MBAM because it is designed to catch the difficult threats that most AV's miss.

Share this post


Link to post
Share on other sites

Ah so i am dooing something wrong.... well that explain a low detecting rate of SuperAntySpyware and MalwareBytes that are somewhat similar in terms of what they actualy do.

I just dont understand why a-squared had so high detection rate...

In any case thanks for clarification, howerver im still a little bit concerned with low detection rate...

Oh well, seams i will just have to make a mess of my virtual machine and see how it goes then ;)

Share this post


Link to post
Share on other sites

Yeah, you'll get more hits with a-squared because (as I recall) it uses the same detection methods as a typical antivirus (md5's, file signatures etc) so it ignores the fact that the file is inactive and disregards the file's location.

Share this post


Link to post
Share on other sites
Ah so i am dooing something wrong.... well that explain a low detecting rate of SuperAntySpyware and MalwareBytes that are somewhat similar in terms of what they actualy do.

Both are making their mark for rapid updating and abilities to rip out infections that traditional AV/AT/ASW are sucking at ;)

I just dont understand why a-squared had so high detection rate...

IIRC a2 have incorperated Ikarus AV engine into their engine recently

In any case thanks for clarification, howerver im still a little bit concerned with low detection rate...

Oh well, seams i will just have to make a mess of my virtual machine and see how it goes then :)

Thats the best way to test these softwares in real life infection scenario if you have the capabilities to do so.

May i suggest you go grab yourself some Vundo,Z-lob or fake alert trash current infections and then put MBAM head to head with a2 or any other software you care to throw into the equation.

I already know the outcome and you will find out for yourself why MBAM is held in such high reguard by a lot of professionals as the star player in their toolkits for ripping current infections of pc's.

Share this post


Link to post
Share on other sites
Oh well, seams i will just have to make a mess of my virtual machine and see how it goes then ;)

Please remember that most modern malware won't install in a virtual machine, and that you will need a physical test box to fully test all of those security applications.

I recommend building a cheap little $400 test box, creating an image of the install of Windows with something like Ghost or Acronis, and then just reimage the test box after each test.

Also, if you need some real LIVE malware that's going to stress the detection capabilities of the security applications you are testing, I can PM you some advise for searching for it on Google.

Share this post


Link to post
Share on other sites

Hi, sorry that i didnt replayed for so long, as i was building my site that is describing among others how to remove malware and other similar stuff. That was the main reason why i started my tests.

Building a test machine was not the problem since i have a some P3 motherboard with some 850MHz processor and failing 20 or 40 gig hdd (cant remember since i had to remove parts of it from active sistem because he start acting up and clicking when he raches a point...)

In any case i have tested it now and i can say im impressed with results, but still one tool is just not enough to clean everything... not to say had gone realy far on this and in one moment HDD started clicking and i had to shut down computer and all test were lost... and sinc i dont whanna stress hdd more that it can handle i just put the image back...

So right now i cant say exact numbers but it was way better then in my previous tests with just a bunch files staying in one folder...

So im pleased with results and i have recomended the program to my visitors.

Thanks for all helps and advices.

Keep it up..

Share this post


Link to post
Share on other sites

Well done, and I absolutely agree that no single tool gets everything. And so do the developers, they just try to keep up with the newer and nastier stuff as MBAM is a pretty specialized tool, which is why it does what it does so well, it's not trying to be a "jack of all trades" like all the suites out there.

Anyways, good luck with your site, your future tests, and thanks for recommending MBAM.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.