Zemana Antilogger Tests

Discussion in 'other anti-malware software' started by CloneRanger, Sep 9, 2016.

  1. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    Zemana v2.30.204.75 on XP/SP2 with FirefoxPortable_27.0.1_English.paf.exe

    Visited https://www.mail.live.com login page for the test. Other login www's get the same result.

    AKLT v3.0

    Keylog 3 - Partial Fail
    Keylog 7 - Partial Fail
    Screenshot 1 - Fail
    Screenshot 2 - Fail

    *

    Zemana Spy Simulation Leak Tests v1.0.0.33

    Screenshot - Fail

    *

    SpyShelter AntiTest.exe v1.4

    Screenshots 1 to 8 - All Fail
    Clipboard capture - Fail
    RegTest 1 - Fail
    RegTest 2 - Fail

    *

    This is a Completely Dreadful result. I could have thrown even more tests at it, but they were more than enough to Prove it's downfall.

    The previous versions, eg v1.9 were a Lot better, & if i recall correctly, when i tested on those versions they passed. Plus i was often alerted by the intervention of the included HIPS etc of various events Before they happened, so i choose to allow or not = Exactly what i required & very useful.

    What's gone wrong with the new versions, & when will they be fixed ? If not Very soon, make it possible for us licence the previous versions again, SOON !

    Also many of us do NOT want an Antilogger to be an Antimalware too, we already have those. Keep ZAL as ZAL & ZAM as ZAM, Don't mix them together.

    EXTREMELY dissapointed
     
  2. guest

    guest Guest

    Can you report this post (link) to the developers through the Zemana button in the interface.

    The new zemana doesn't protect against screenshots or clipboard capture, I guess they will add it eventually. Anyway I think this is not a really important feature because the av component is really powerful, and is not very common to find malware that does screen or clipboard capture.

    In the Banking test done by MRG the new version would still score the same
     
  3. trott3r

    trott3r Registered Member

    Joined:
    Jan 21, 2010
    Posts:
    1,283
    Location:
    UK
    Agreed with the separation of anti virus and HIPS/antilogger.
    There are enough do it all suites already.

    Hopefully they will be supported as separate programs.
     
  4. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    I've already asked about ZAM and it will still be available as just the anti-malware.
     
  5. Azure Phoenix

    Azure Phoenix Registered Member

    Joined:
    Nov 22, 2014
    Posts:
    1,556
    ZAL 2.0 seems more like ZAM Premium + ZAL Free
    I don't think it has many of the features of the previous version of ZAL Pro.

    Btw @CloneRanger , is Zemana still compatible with Windows XP? Perhaps that was the problem.
     
  6. pling_man

    pling_man Registered Member

    Joined:
    Feb 11, 2010
    Posts:
    599
    Location:
    UK
    Zemana Antilogger 1.9 always had anti-malware (IntelliGuard and Virus Total API) and anti-logging features.

    The way I see it is that Zemana Antimalware was created out of the anti-malware protection in Antilogger and has taken more than 1 year to get to this point. During the development of Antimalware the Antilogger has not been developed at all. Now they have added some of the Antilogger features to create ZAL 2.3.

    The most important features for me are the SSL protection and the Anti key-logging. It is disappointing that the anti-key-logging isn't working. It should be encrypting key-strokes even when the run-time (anti-malware) protection is disabled.

    The other features from 1.9 don't seem to have been implemented, or else the implementation doesn't work. It isn't clear whether these will be implemented or fixed eventually.

    There is a tendency for Zemana staff on these boards to join in the ZAM discussions but ignore the ZAL ones, which is also disappointing.
     
  7. Dark Star 72

    Dark Star 72 Registered Member

    Joined:
    May 27, 2007
    Posts:
    778
    The anti key-logging is working and has worked since ZAL v2 was released.
    Ran the SpyShelter test tool and ZAL detected it - clicked to allow it to run. Shut it down and reopened it and opened a PayPal login page in FF. All typed characters were encrypted as shown. Same result with HMP.A keylogging test tool.
     

    Attached Files:

  8. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    @ guest

    Will do, but i would have thought they should have noticed it by now !

    Well naturally i expected it would do, & should !

    Why eventually, when they already have the code from the previous versions. They should have automatically included it the new versions !

    Even if that's true, i don't give a flying fig about the AV stuff. After all, it IS called Zemana Antilogger, so people Expect to get an Antilogger, not AV. I paid for an Antilogger so that's what i want ! If they can't sort it out quickly, or allow me/us to licence v1.9 i want my £ back ! Which would be a shame as i've recommended ZAL to Lots of people over the years, as it Used to be Very good !

    I don't think that's correct. And anyway, even if it wasn/t common, who wants Ever to be logged etc, not me. So having prevention is KEY.

    @ trott3r

    Glad you agree

    @ Overkill

    So they should be able to keep ZAL as a ZAL then.

    @ Azure Phoenix

    Yes it seems that way.

    Which is crazy ! Why downgrade protection ?

    According to their www it is compatible with XP/SP2

    @ pling_man

    Glad you feel the same too.

    .

    Outrageous attitude to Paying users !
     
  9. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    Zemana AntiLogger Prevention and Detection Test on windows 10 64bit.
    Hope you enjoy the test!
     
  10. haakon

    haakon Guest

    ZAL 1.9 is a completely different animal. ZAL 2 is really "ZAM Plus" - ZAM with a single-setting on/off AntiLogger with whatever protection one can glean from Zemana's quaint Web site. Which makes no mention of either version's enslavement to the WAN particularly banging OpenDNS every 2-3 seconds 100% of the time (unless they came up with something else - I don't see that in the changelogs).

    IntelliGuard/VirusTotal was to populate a detection alert with more relevant details. The System Defense (behavior/HIPS) module is not network dependent so if disabled by the user or offline an alert would be a generic. i.e. keylogger vs zingzipah.keylogger.82 or code injector vs "booger.exe is attempting to inject code."

    I've got 1.9 running on two Win7 systems. When the licenses expire next year I'll see if they're renewable. If not, bye bye. It would be nice if Zemana would release a "forever" license so I could keep running it until I pull those two systems from service.

    I was really wanting a ZAL 1.9-like ZAL 2 for Windows 10. Not gonna happen. How disappointing.

    As it is, 1.9 is still getting zbd threats files several times a day (for local known-lookup vs cloud) from Zemana servers. That's good.
     
  11. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    I have ZAL 1.9.3 with the old GUI. I don't know why i don't have the new GUI. Maybe because i don't have the ZAM app with it.
     
  12. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    You might want to switch to SpyShelter, if a fully functional HIPS is important to you.
     
  13. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    ZAL 2.30 on the website has the new GUI. I have not been updated to ZAL 2.30 but still have 1.9.3
     
  14. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    I have ZA Firewall free that has a hips.
     
  15. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    It's not impossible to stop screenshots on Win 10 x64 Redstone so I expect Zemana to add it ASAP. Right now it's just scrambling keystrokes and gives you SSL protection.
     
  16. pling_man

    pling_man Registered Member

    Joined:
    Feb 11, 2010
    Posts:
    599
    Location:
    UK
    Dragon32, It didn't auto update to 2.3 for me. I had to uninstall 1.9 then manually install 2.3. But there is no need to do this if you are happy with 1.9 like haakon. If you like the antimalware features of ZAL, you should be able to run ZAM and ZAL 1.9 side by side.

    I would not expect it to auto-update until 2.3 has all the features of 1.9, otherwise they would upset a lot of paying customers.

    I think shadek is right and I would expect the screenshot protection to be added at some point. Likewise I think anti clipboard logging and anti-webcam are possible and will be added. People need to send feedback if they are not happy or else Zemana won't make improvements.

    They want paying customers so at some point they will want to commission some sort of test of ZAL's abilities. They won't do this if it is failing on important tests.

    On the web page for ZAL is the list of features plus "and more". The "more" is to come I hope.
     
  17. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    I wish
     
  18. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    A few days ago i uninstalled 1.9 and installed 2.3 because i was not updating to 2.3 for some reason. I did not like the GUI of 2.3 so i uninstalled it and fired up the 1.9 exe from 2013. It soon auto updated with a security fix and i am back to 1.9 again which has a GUI that i like.
     
  19. haakon

    haakon Guest

    How unfortunate it is that Zemana has absolutely zero marketing ability. Trying to explain that AntiLogger 1.9 has absolutely nothing to do with 2.3 is an exercise in futility.

    I cite as marketing ineptitude the long ago discontinued AntiLogger Free. It wasn't anti-logger anything. Upon infection with a key logger, ZALF protection was encryption. Period. (Later SSL intrusion protection was added.) It should have been named Zemana Something Else. Zemana AntiLogger Premium from day one had protection which shut down keyloggers (among a multitude of protections not present in Free). Encryption was added much later and could be disabled.

    It is painfully obvious from the postings here and other forums (Malware Tips, etc.) how much Zemana mucked up the situation for not just the many confounded by the feature sets of the two products (as they are near mirror images of each other) but for users of the previous ZAL 1.9. Like the member here whose understanding is limited to the "old GUI" vs the "new GUI." And expecting 1.9 to upgrade itself to 2.3.

    Now with AntiLogger 2.3 which is AntiMalware with what seems to be keystroke encryption and their SSL intrusion protection, the latter two being what AntiLogger Free was.

    To further illustrate Zemana's marketing incompetence, more astute forum members who installed ZAL on systems running ZAM noticed they ended up with a dysfunctional ZAM installation. With ZAL installed and running or not when they opening ZAM an "already running ZAM" message appeared. On systems with or without ZAM when ZAL was installed and run, ZAM.exe showed up in Task Manger. That's some rocket science.

    Zemana should have announced an End of Life for AntiLogger with support ending upon the user's license expiration.

    And then with fanfare and celebration the announcement of a newly added feature set for ZAM named anthing but AntiLogger. With an installer/updater which would present the option to deselect it and later re-select with a re-install. Except Zemana has absolutely zero marketing ability.

    I would finalize by pointing out that Zemana's technology is a marvel and up there with the best.

    Well, except now for it's incessant banging of OpenDNS on port 53 every two-three seconds 100% of the time.

    In 20+ years of hands-on mutli-platform networking/security experience and countless anti-whatever programs, I have never seen anything like that.

    That this atrocious idiotic connectivity hasn't met with throngs of pitchfork and torch mobs from the forum community is truly an enigma. More likely ignorance. How sad.

    [/soapbox]
     
    Last edited by a moderator: Sep 10, 2016
  20. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    I've PM'd Emre TINAZTEPE & asked him to respond in here.

    @ Rasheed187

    SpyShelter needs .NET which i don't have, or want.

    @ Dragon1952

    So v1.9 is still licenced on your pc then ! When i tried to put a new licence into v1.9, it said it couldn't connect to Z www, socket error ? If there is a way for me to reinstall v1.9 & get it work, then fine !

    Hopefully Emre TINAZTEPE etc can explain the problem i had, & offer a working solution ?

    But the new ZAL is NOT an Anti/logging/screenshot Hips etc as v1.9 was/is. I paid for an Antilogger, which is what the A in ZAL means & it's advertised & sold as an Antilogger, but it's NOT. This is fraud & more !
     
  21. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    When i uninstalled 1.9, installed 2.3, uninstalled 2.3, then installed 1.9 again it held my license so i did not have to put a new license in it.
     
  22. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    @ Dragon1952

    Well that's interesting, as i guess it would probaly need to phone home to verify the licence. Unless it was not deleted when you uninstalled ? Hopefully Zemana can clarify the situation, & enable me & others to continue using v1.9

    *

    Way back in 2008 they had All this included in ZAL https://web.archive.org/web/20080520111701/http://www.zemana.com I'm not sure when they added microphone blocking as well, but i think it was not long after.

    That's EXACTLY what i & others want. NOT an AV or suite etc or Firewall included etc.!
     
  23. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    Well, still NO reply from Zemana in this thread, or by PM ? :mad: Why not ?
     
  24. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    2,499
  25. haakon

    haakon Guest

    Let us know how that works out.

    I have an August 2 email from Zemana Support Engineer, Armagan Tugsal, regarding new and renewal licensing of v1.9:
    "Once a stable version of V2.0 is released, we will stop providing V1.9."
    (The stable v2 was released on 8/1. I think he was just pasting in a reply he no doubt made many times prior to my inquiry.)

    Anyhow...

    As I mentioned in #19 above, one's licensed v1.9 will continue to provide complete protection in Windows 8.1 and down until license expiration, optional cloud services enabled or not.

    As of this posting, threats.zdb and samples.zdb were updated 15 minutes ago and in the past month I've logged 5.6MB (avg 191KB/day) of traffic between my system and Zemana's server network. So, IntelliGuard Cloud support is still active.

    Although the last time it had to do any work over here was on July 27:
    [MD5-583B34B8D0608947101596BE0C5A2909]
    Decision=true
    Path=C:\Program Files (x86)\redacted\redacted.exe
    Description=redacted
    MD5=583B34B8D0608947101596BE0C5A2909
    Publisher=(Verified) redacted
    Activity=6
    RuleType=1
    TimeStamp=27/7/2016 3:33:26 PM
    CreatedBy=1


    As to any doubts about v1.9.3.602 efficacy, refer to this report using v.19 in Windows 7:

    https://www.mrg-effitas.com/wp-content/uploads/2016/08/MRG-Effitas-Online-Banking-Certification-Q2-2016.pdf

    In a nutshell, 100% pass in all tests.
     
    Last edited by a moderator: Sep 16, 2016
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.