Saturday, February 13, 2010

Malwarebytes Missed detection

There is a lot of buzz about how MalwareBytes is able to detect threats that other large vendors including Norton miss. That is a joke. Here is the fact: MalwareBytes detects 2000 odd threats that other vendors miss. Norton and other vendors detect MILLIONs of threats that MalwareBytes miss. So if you to do away with your Norton product and rely on a free product like Malwarebytes, you are taking your life into your own hands.

I started looking into these so called reports of threats missed by Norton that malware-bytes detected. The first thing to realize is there is no one product called "Norton". Every Norton product is different, and when discussing the protection capabilities of Norton products you must look at the latest version of the consumer product Norton Internet Security 2010.

In this series of posts I will look at various samples posted on the MalwareBytes forum that their product missed, and test how those samples will fair against NIS 2010 ON THE SAME DAY that they were posted. This is important in order to provide a level playing field; we dont want to give Norton even a day's time in order to add a definition for it. We are looking solely for SONAR aka heuristic detections.

Here is the first one.


Norton detection:




No comments: