Posted by: devnullius
« on: 30. December 2013., 18:26:42 »
Members
Total Members: 14197- Latest: Levine
Stats
- Total Posts: 43431
- Total Topics: 16526
- Online today: 2962
- Online ever: 51419
- (01. January 2010., 10:27:49)
Users Online
Posted by: Samker
« on: 30. December 2013., 18:02:43 »I guess this has to rely on the level of Detection Convergence? :p
What we can see here is that some unknown products have a very bad database/detection algorithms :p
Indeed!
Posted by: jheysen
« on: 29. December 2013., 21:58:13 »I guess this has to rely on the level of Detection Convergence? :p
What we can see here is that some unknown products have a very bad database/detection algorithms :p
What we can see here is that some unknown products have a very bad database/detection algorithms :p
Posted by: Samker
« on: 29. December 2013., 20:41:15 »Are you posting the "unknown" list?
...
This is log from my lap... insane.I understand... But as what were they flagged?? Possibles? Certains? Unknowns? Makes a difference in my appreciation!
;p D
Almost all "suspicious" files are well known, for example: McAfee's, Microsoft's even Google's files are flagged by some "unknown" Antiviruses: Bkav, The Hacker, Reason, CMC, ByteHero, Ikarus etc.
Posted by: devnullius
« on: 29. December 2013., 15:53:28 »Are you posting the "unknown" list?
...
This is log from my lap... insane.
I understand... But as what were they flagged?? Possibles? Certains? Unknowns? Makes a difference in my appreciation!;p D
Posted by: Samker
« on: 29. December 2013., 11:31:26 »Are you posting the "unknown" list?
...
This is log from my lap... insane.
Posted by: devnullius
« on: 29. December 2013., 10:27:24 »Are you posting the "unknown" list?
For I did not get any FALSE positives... A lot of warnings / unknowns but further correct...
Let me know
devnullius
For I did not get any FALSE positives... A lot of warnings / unknowns but further correct...
Let me know
devnullius
Posted by: Samker
« on: 29. December 2013., 09:50:22 »Tested!
IMO, this is real crap with totally illogical results
:
IMO, this is real crap with totally illogical results
:Quote
Saved date: 29.12.2013 08:40:29
Files detected: 15
Files scanned: 1.165
Processes scanned: 38
Modules scanned: 416
ASEPs scanned: 384
Downloads scanned: 0
Deep analysis: 196
---------------------------------------------------------------------------------
Files
---------------------------------------------------------------------------------
File path: c:\program files\mcafee\common framework\naprdmgr.exe
MD5: 39f313773ad1ed4c4e345a90e5666086
SHA-1: 5dfbbc0d44d9d43573fd2fe3d2aa75f12f7ae761
Created: 12.1.2011 16:05:00
Detections: 1
Determination: Ignore
- Clam AntiVirus as Win.Trojan.Agent-533853 (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\windows\system32\mfc71.dll
MD5: f35a584e947a5b401feb0fe01db4a0d7
SHA-1: 664dc99e78261a43d876311931694b6ef87cc8b9
Created: 2.11.2010 8:30:21
Detections: 1
Determination: Ignore
- Bkav FE as W32.Clod867.Trojan (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\program files\common files\network associates\talkback\tbmon.exe
MD5: 78915c3ad0024bacd46f41bf02ee4415
SHA-1: bcf959f4e2570b61cd6ff08bca880f0d78eaa6ce
Created: 18.10.2010 16:10:43
Detections: 1
Determination: Ignore
- Comodo Security as Heur.Suspicious (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\program files\google\update\googleupdate.exe
MD5: f02a533f517eb38333cb12a9e8963773
SHA-1: 258810d71436c5157cd0752bd13ce1de20f27eb2
Created: 25.10.2010 16:42:21
Detections: 1
Determination: Ignore
- F-Prot as W32/Ransom.AD2.gen (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\program files\real\realupgrade\realupgrade.exe
MD5: fd8dcae8aae888d8bad0e6c2daaafb6d
SHA-1: 2e30bec55c6fdc78768f570306b3c8477bd67830
Created: 29.3.2011 10:47:46
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.Task.RealNetworks.L (Adware)
---------------------------------------------------------------------------------
File path: c:\program files\utorrent\utorrent.exe
MD5: a232c210b4bcac6fdba0d4c990d9a1a7
SHA-1: f4dacada8286795589f51dae06e1b4522a1baaf0
Created: 2.12.2011 10:17:48
Detections: 2
Determination: Ignore
- Antiy Labs AVL as Trojan/Win32.Patched.gen (Undefined malware)
- Emsisoft Anti-Malware as Gen:Variant.Strictor.46875 (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\program files\webteh\bsplayerpro\bsplayer.exe
MD5: 9975886dbec4c53642536bbb8a75c0e0
SHA-1: c4c1c7b544245234294a0e551d037075d769f2d5
Created: 8.6.2006 0:34:22
Detections: 5
Determination: Ignore
- The Hacker as W32/Behav-Heuristic-066 (Undefined malware)
- ByteHero BDV as Trojan.Win32.Heur.087 (Undefined malware)
- Clam AntiVirus as PUA.Packed.TeLock (Ignore)
- Emsisoft Anti-Malware as Riskware.Crack.BSPlayer!IK (Adware)
- IKARUS anti.virus as not-a-virus.Crack.BSPlayer (Ignore)
---------------------------------------------------------------------------------
File path: c:\windows\system32\mswinsck.ocx
MD5: 9484c04258830aa3c2f2a70eb041414c
SHA-1: b242a4fb0e9dcf14cb51dc36027baff9a79cb823
Created: 24.6.1998 0:00:00
Detections: 1
Determination: Ignore
- CMC Antivirus as Malware.Win32.CMCRadar!O (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\documents and settings\samir\local settings\temp\ct1123817\plugins\tbverifier.dll
MD5: 88f395ec3145bf31786738261f0c373f
SHA-1: ee890b6675e68c2826eec6bbcfb838ae946dfb67
Created: 28.11.1617 12:38:25
Detections: 4
Determination: Adware
- VIPRE Antivirus as Conduit (fs) (not malicious) (Adware)
- Boost by Reason as Adware.Startup.Conduit.K (Adware)
- Reason Anti.Crapware as PUP.Startup.Conduit.K (Adware)
- STOPzilla AVM as PotentiallyUnwantedProgram.Optional.Conduit (Undefined malware)
---------------------------------------------------------------------------------
File path: c:\windows\alcmtr.exe
MD5: 8b4cbba1ea526830c7f97e7822e2493a
SHA-1: e519f493e42694c564aaa347745bab035bbcb3d9
Created: 18.10.2010 13:56:49
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.Startup.RealtekSemiconductorCorp.G (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\alcwzrd.exe
MD5: ec05e964058693d1f71d1b5506b5cf09
SHA-1: 015c2f0f39130c2139dc9520158ea14019c9d510
Created: 18.10.2010 13:56:48
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.RealTekSemicoductorCorp.H (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\soundman.exe
MD5: 0d034e8c4f88c5b2b0c1af3cf438cc4f
SHA-1: 4ec36b2ed506af0927e5a25154d4177e2a83dafb
Created: 18.10.2010 13:56:58
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.RealtekSemiconductorCorp.I (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\system32\dumprep.exe
MD5: 8e16bf5600797e678ea97051cf93e6bf
SHA-1: 81519b60563721bd5e9369502b7c3f04eed9b25f
Created: 14.4.2008 15:00:00
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.MicrosoftCorporation.H (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\system32\dwwin.exe
MD5: 86042f6f6a5287eaf9379c91d0bf72b6
SHA-1: 532bf74e6aead7438aa7264d01759a065410ee68
Created: 14.4.2008 15:00:00
Detections: 1
Determination: Ignore
- Boost by Reason as UnneededApp.MicrosoftCorporation.F (Adware)
---------------------------------------------------------------------------------
File path: c:\windows\system32\spnpinst.exe
MD5: 245e2dc2aa48f07eceab28a3fbdbc41b
SHA-1: 0575bb92e9bda3c8b15999a11e79dc219ee2ac89
Created: 14.4.2008 15:00:00
Detections: 1
Determination: Ignore
- ByteHero BDV as Trojan.Win32.Heur (Undefined malware)
Posted by: Samker
« on: 26. December 2013., 20:16:01 »Well, I'll try him on my laptop... I use them for net-banking.
Thanks for recommendation
,
S.
Thanks for recommendation
,S.
Posted by: devnullius
« on: 26. December 2013., 19:27:05 »With "68 anti-malware engines" it must be "heavy" (if that is true?)...
D., did you try it?
Yeah, it actually works pretty good. Only found a few things, and told me intelligently what was wrong. Installers with toolbars, stuff like that. Also a rather large (20 to 30) items it did not recognize. O&O services, Paragon servcies, stuff like that
All in all - might be interesting to install on a PC you suspect you cleaned, but you're not quite sure yet...
devnullius
Posted by: Samker
« on: 26. December 2013., 19:24:17 »With "68 anti-malware engines" it must be "heavy" (if that is true?)...
D., did you try it?
D., did you try it?
Posted by: devnullius
« on: 26. December 2013., 13:02:59 »SOURCE: http://geekiest.net/post/herdProtect-Anti-Malware-cloud-scanner.aspx
Copy Paste:
herdProtect- Cloud based malware scanning platform
Posted on Wednesday, December 25, 2013 by grr
Tags: herdProtect, Anti-Malware, cloud, Free
Category: Free, Security, Anti-Malware, Cloud
herdProtect
It’s quite common these days to have a basic protection such as an anti-virus installed on our PC or even a Smartphone as the first layer of defense. Some of us might even have a firewall installed. Few other may have another layer of defense installed in the form of anti-malware, commonly known as second layer of defense.
While traditional first layer of defense, aka anti-virus, are not that good enough to protect us 24x7- as the virus definitions need to be update before it can catch the infection. So it’s a bit slow on defense. Firewalls on the other hand are very static in nature and can just manage the network traffic in-and-out of your system. So again not so effective. So now comes the role of second layer of defense, aka anti-malware.
What is herdProtect?
herdProtect is a second line of defense malware, an Anti-Malware Scanner, powered by 68 anti-malware engines in the cloud. Its a 'herd' of multiple engines that guarantees the widest defense coverage and the earliest possible detection ever feasible.
Since no single anti-malware program is perfect 100% of the time against malware, herdProtect’s multi-engines leaves no room for you to worry.
Below is pictorial representation of the kind of protection you get on the right with herdProtect’s engines compared to a single one.
herddiagram
How does herdProtect work?
herdProtect Anti-Malware Scanner comes as a free Windows desktop program available for windows 8/7/Vista/XP (32 and 64 bit). It’s quite fast to scan and is light weight on your system resources.
herdProtect takes a snapshot of all the 'active' files on a user’s system. After stripping any personally identifiable details these files are anonymous and securely sent to the herdProtect servers to be analyzed. Post analysis, the reports are sent back to the user and displayed.
Therefore, having 68 anti-malware scanners at your disposal will make sure that no known threat goes under your nose undetected. So why wait any further. Head over to the link below and download a copy of scanner get started.
http://www.herdprotect.com/downloads.aspx
PS: As herdProtect is in Beta stage it will not remove any malware, but will identify all malware(s) on your system as well as provide you detailed information.
.. Karma!
Devvie
~~~ notemail@facebook.com ~~~
Conare nullius momenti videri fortasse missilibus careant
——
All spelling mistakes are my own and may only be distributed under the GNU General Public License! – (© 95-1 by Coredump; 2-013 by DevNullius)
Copy Paste:
herdProtect- Cloud based malware scanning platform
Posted on Wednesday, December 25, 2013 by grr
Tags: herdProtect, Anti-Malware, cloud, Free
Category: Free, Security, Anti-Malware, Cloud
herdProtect
It’s quite common these days to have a basic protection such as an anti-virus installed on our PC or even a Smartphone as the first layer of defense. Some of us might even have a firewall installed. Few other may have another layer of defense installed in the form of anti-malware, commonly known as second layer of defense.
While traditional first layer of defense, aka anti-virus, are not that good enough to protect us 24x7- as the virus definitions need to be update before it can catch the infection. So it’s a bit slow on defense. Firewalls on the other hand are very static in nature and can just manage the network traffic in-and-out of your system. So again not so effective. So now comes the role of second layer of defense, aka anti-malware.
What is herdProtect?
herdProtect is a second line of defense malware, an Anti-Malware Scanner, powered by 68 anti-malware engines in the cloud. Its a 'herd' of multiple engines that guarantees the widest defense coverage and the earliest possible detection ever feasible.
Since no single anti-malware program is perfect 100% of the time against malware, herdProtect’s multi-engines leaves no room for you to worry.
Below is pictorial representation of the kind of protection you get on the right with herdProtect’s engines compared to a single one.
herddiagram
How does herdProtect work?
herdProtect Anti-Malware Scanner comes as a free Windows desktop program available for windows 8/7/Vista/XP (32 and 64 bit). It’s quite fast to scan and is light weight on your system resources.
herdProtect takes a snapshot of all the 'active' files on a user’s system. After stripping any personally identifiable details these files are anonymous and securely sent to the herdProtect servers to be analyzed. Post analysis, the reports are sent back to the user and displayed.
Therefore, having 68 anti-malware scanners at your disposal will make sure that no known threat goes under your nose undetected. So why wait any further. Head over to the link below and download a copy of scanner get started.
http://www.herdprotect.com/downloads.aspx
PS: As herdProtect is in Beta stage it will not remove any malware, but will identify all malware(s) on your system as well as provide you detailed information.
.. Karma!
Devvie
~~~ notemail@facebook.com ~~~
Conare nullius momenti videri fortasse missilibus careant
——
All spelling mistakes are my own and may only be distributed under the GNU General Public License! – (© 95-1 by Coredump; 2-013 by DevNullius)