G-Data 2015 >> Official Thread

Discussion in 'other anti-virus software' started by Frank the Perv, Jan 13, 2015.

  1. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Exploits are bad.

    Great software is being developed to fight exploits. NVT-EXE, MBAE, HitmanPro.Alert3.... and others.

    What's still limited about the above software packages -- there is still a lot of work associated with them, You have to understand what to whitelist and understand the sometimes frequent pop-ups. Not good. Wives, girlfriends, kids, and us... don't know how to respond to every alert.

    So some AVs are integrating exploit protection capabilities into their products.

    Norton and G-Data are two notable AVs pursuing this -- in a more user friendly way.

    G-Data understands exploits.

    This is a white-paper they published on exploits last year. This short paper will help you understand exploits if you are not up to speed on them:
    https://public.gdatasoftware.com/Pr...14_GDATA_Exploit_Protection_Whitepaper_EN.pdf


    G-Data specifically focused on exploits in their current product, G-Data 2015.
    New in this version of Antivirus is comprehensive exploit protection. This also safeguards your PC against malware that targets and exploits security vulnerabilities in your installed software.

    Here it what the guy at techinews said about G-Data and exploit protection in the current version:

    G Data renews its line of products for the user with a new version of its basic solution G Data Antivirus. This solution uses technologies G Data CloseGap to protect users from threats both known and those that have not been made public yet. It also has a specific module to protect the user against dangerous banking Trojans. This module has been enhanced with a supplement that protects against attacks that spy keystrokes to steal information and access to banking and other sensitive information. But probably the most interesting development of this platform is a tool designed to avoid known exploits. These threats take advantage of security gaps found both in the operating system and various programs to serve as a gateway to malware...... The most important is the anti-exploit module. This is a specific tool that protects against threats that attempt to exploit security holes in operating systems and programs. Very often, these holes remain, either because users have not installed the latest security patches, because the company has not yet released an effective solution or because we are using an outdated version of the system or a program.

    http://techinews24.com/new-g-data-antivirus-incorporates-features-enhance-performance-program/


    Here is a test commissioned by Symantec Corporation and performed by AV-Test. Often, the test sponsor gets to choose the other tested products. It appears that Symantec underestimated G-Data and did not adequately design their own sponsored test so that they could win it.

    From the test:

    Summary From the different tests there is no clear number one product. G Data was the only product with a perfect score for remediation, real-world protection and exploit protection but adds more overhead in the performance testing.

    http://now-static.norton.com/now/en...Protection_Performance_Remediation_Report.pdf

    Norton & G-Data were the best of test.


    Here is another exploit test -- in which G-Data was not included. The test was commissioned by MBAE (Malwarebytes Anti-Exploit) and was supposed to show how MBAE is superior to all other anti-exploit capabilities.

    MBAE did in fact win the test, but the thing I noticed --- Norton is close to MBAE at the top... and Norton blocks exploits in a much more elegant way, without the hassle for the end user.

    http://static-cdn.malwarebytes.org/assets/datasheets/2015-03-03/RCEMitigations.pdf

    MBAE, HitmanPro.Alert3, NVT-EXE and the other developing anti-exploit capabilities don't need to focus on each other, they need to focus on AVs like G-Data and Norton who may be able to get the job done is a much smoother, easier, and better way.


    That is all.

    Your Welcome.

    -Frank
     
    Last edited: Mar 8, 2015
  2. Rompin Raider

    Rompin Raider Registered Member

    Joined:
    May 6, 2010
    Posts:
    1,254
    Location:
    Texas
    Thanks Frank!
     
  3. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    You're Welcome Rompin.

    And you hava good day!

    ---------

    And.... we are standing by for Stupendous Dude to roll in.

    He's an expert on G-Data & Exploits.
     
  4. Nightwalker

    Nightwalker Registered Member

    Joined:
    Nov 7, 2008
    Posts:
    1,387
    G-Data has been improving day by day, it is now a top tier antivirus.
    In the past I thought G-Data was just a generic dual engine software, not anymore.
     
  5. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    As usual, Nightwalker is right.

    And, more improvements are coming in a few weeks.

    (From a Translation)

    G Data updated their solutions with more protection against banking Trojans

    G Data updated during April their security tools G Data Antivirus, G Data Internet Security and G Data Protection. The German company will introduce further improvements in these platforms will be directed mainly to better protection against dangerous banking Trojans. In addition, it has also updated its technology G Data CloseGap, which combines traditional protection through virus signature with proactive technologies that react to suspicious behavior of the system. This update of security solutions G Data arrive in the coming weeks and will be available for free to all users with an active license. We tell you the details.

    A key differentiates programs G Data is the use of technology G Data CloseGap. This set of technologies is worth one side of the traditional protection through databases of virus signatures. In addition, it also uses a series of proactive tools used to address the threat even when it is not yet known. This protection analyzes the system behavior for suspicious changes and blocks the processes before they can cause damage to the user. The new update of G Data Keys CloseGap performance and improves your reaction to threats. Another point that has been touched is the modulus G Data BankGuard . This technology is designed to protect the victim from dangerous banking Trojans, which are becoming more sophisticated.The protection is done in the browser, the most common door to such attacks that intercept the communication between you and the bank.

    This protection is combined with an anti-exploit tool that analyzes potential vulnerabilities of the system and programs before cybercriminals can use them with a tool against so-called keyloggers , which are capable of spying keystrokes made by the user on the keyboard . G Data has also sought to highlight its new technology to meet handled USB devices. These accessories include secret key functions that allow the cibercrminal take control of the victim's computer. Another point that users will appreciate much is a specific solution to cleaning the browser. Ons that are installed without our permission and annoying search bars replacing Google and we fill the screen ad ran.

    http://www.tuexperto.com/2015/03/20...con-mas-proteccion-contra-troyanos-bancarios/



    As always, Stay Sicher My Friends.

    -Frank

    .
     
    Last edited: Mar 22, 2015
  6. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    And... G-Data just continues to be a top-dog in tests.

    In this test, the results are:


    Excellent or Good:
    1. Kaspersky
    2. G-Data
    G Data can compete with the protection performance test winner with Kaspersky and sometimes beat it... G-Data was the undisputed number 1 for protection for online banking and in the detection of current prevalent malicious software.
    3. Norton
    4. McAfee

    Just OK or not so good:
    5. ESET
    6. Avira
    7. Avast
    8. Bitdefender


    http://www.welt.de/wirtschaft/webwe...n-Sie-wirklich-anonym-durch-das-Internet.html
    http://www.bild.de/digital/computer...cherheitsprogramme-im-test-39892662.bild.html
    http://www.pcwelt.de/news/Antiviren-Software-von-G-Data-mit-neuen-Funktionen-Sicherheit-9598999.html

    ============

    And, here is some other test that G-Data won of 18 tested products.

    G DATA INTERNET SECURITY rated "Best in Test"

    http://www.persberichten.com/persbe...g-G-DATA-in-vergelijkende-test-bij-VARA-Kassa

    https://www.gdata.be/newsroom/nieuws/artikel/overwinning-g-data-in-vergelijkende-test-bij-vara-kassa

    This may be related to the above test, or this may be some other test that G-Data won. I dunno.

    https://www.bdesign.nl/content/gdata-wint-kassa-antivirus-test
    (Maybe somebody can tell us what this video is saying..)

    There you have it. G-Data just continues to kick-butt on the lesser security solutions.

    In case you have not figured it out yet, G-Data is Da Shiz.

    As always, Stay Sicher My Friends.



    Your Pal,

    -Frank
     
  7. chrlshlmn

    chrlshlmn Registered Member

    Joined:
    Aug 1, 2014
    Posts:
    10
    Thank you very much.
     
  8. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Afternoon! Stay Sicher...fellow Wilderites...and as G-Data states...you can take it too the bank...Lol! Go Habs...Go! Sincerely...Securon
     
  9. chrlshlmn

    chrlshlmn Registered Member

    Joined:
    Aug 1, 2014
    Posts:
    10
    Yes,and thank you too
     
  10. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    Took a look at some user screenshots and got interested... For 2015 version it still provides options to choose from the components so that I can exclude things like anti-spam, parental-control during installation. Last time when I see this, it was Avast. Also, it has Chinese version and now official Chinese website + update + cloud servers, and really cheap price in China.

    But it doesn't seem to provide "restore and exlcude" function in quarantine...
     
  11. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,839
    Location:
    the Netherlands
    That is correct.
    In the quarantine area you can choose "Move back" (restore), but there is no "exclude" option in the quarantine area.
    Exclusions can be made in Settings\AntiVirus\Real-time protection\Exceptions and in Settings\AntiVirus\Manual virus check\Exceptions.

    (Besides that you are also able to make general exceptions via Settings\AntiVirus\Real-time protection\Advanced and Settings\AntiVirus\Manual virus check\Advanced, where for instance you could choose not to check for adware, to prevent G Data blocking download, access to, and executing of adware supported installers.)
     
  12. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    But it would allow me to choose what to do when a threat is detected, right?

    The engine A provider's own product has good real-time monitoring + fully auto actions + no exclude from quarantine, which is totally stupid IMO.
     
  13. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,839
    Location:
    the Netherlands
    The standard action to be taken when a threat (or false positive!) is detected can be set in Settings\AntiVirus\Real-time protection and in Settings\AntiVirus\Manual virus check.
    But anyway, the moment a threat (or false positive!) is detected the program offers you an option to choose a different action than the standard action, if you want to or need to.
    However, when a threat (or false positive!) is detected by Real-time protection there is no option to ignore and only register in logs. In case of a false positive, I allow G Data to put the file in Quarantine, after which I make an exclusion or a temporal exception in Settings as I mentioned before, after which I restore (Move Back) the quarantined file. It is a bit of a hassle!

    Engine A is the Bitdefender engine, engine B is the G Data engine.
    With both engines, in case of a detection by Real-time protection, there is no option to ignore and only register in logs, as I mentioned above. There is a way to handle it, as I explained, but it is a hassle, as I said.
    I think you are right, that situation is quite stupid.

    By the way, I think G Data's policy of detecting all adware supported installers as "Virus" (which is G Data's policy since last year) is even more stupid. In combination with the fact that in case of a detection by Real-time protection there is no option to option to ignore and only register in logs, that is quite annoying, in my opinion.
    When I know I need to download, or access, or execute an adware supported installer of which I anticipate that G Data will detect it as "Virus", I disable G Data's Real-time protection adware checking, until I downloaded, accessed, and/or executed my adware supported installer of choice, after which I can re-enable G Data's Real-time protection adware checking.
    I hope this will be better with this year's new G Data edition. Well, one can only hope ...
     
  14. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    That's exactly the approach of BitDefender AV -- auto actions and no exclude in quarantine.

    Yeah I'm referring to BD's own product. I had experience that a file was quarantined again as soon as I restore it from quarantine.

    I think it's better to alert than auto-remove/quarantine.
     
  15. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA

    Is the Chinese version the same as far as you can tell? (of course the language being different)
     
  16. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    The installation process looks the same with non-chinese versions. Actually the installer still provides English and Deutsch, but it's not multiple choice box -- you can choose only one of the four.

    Although providing multiple languages doesn't necessarily mean everything to be same (Eset is an example -- choosing Chinese and you lose the ability to detect PUPs and new threats coded and compiled by Yi Language), currently there's no clue of Chinese version using different virus def.

    The cloud server in China should also be just a mirror of the main server, to optimize speed.

    Here's some screenshots of the installation, in Chinese:

    gdata-install-languages.png gdata-install-options1.png gdata-install-options2.png

    EDIT1:

    Running first update now. The virus def of the installation package is Nov 16, 2014... So it's a large download....

    EDIT2:

    Hmmmmmmmmmmmmmmmmmmm, I remember there should be another option like "anti-exploit" on this window, below "behavior monitoring". Is that checkbox also removed in English version?

    gdata-real-time-protection-settings.png
     
    Last edited: Mar 26, 2015
  17. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    After installing it I see it more clearly. It doesn't provide an exlcude action when detected, but does ask the user which action is wanted.

    On the other hand, BD never asks.
     
  18. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,839
    Location:
    the Netherlands
    That is the same with G Data.
    To prevent a file from being quarantined again, first you need to make an exclusion in Settings\AntiVirus\Real-time protection\Exceptions.

    It is still there in the Dutch version.
    I suppose the same applies to the English version.
    It's odd that option is missing in the Chinese version.

    G Data asks the user which action is wanted in case of a detection by Real-time protection or in case of a detection when doing a Manual virus check, but I'm not sure you are offered any choice in case of a detection with Automatic virus checks. (As there may be no user present to make a choice.)
     
  19. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Interesting. Thanks for the screen shots.

    I find it surprising when AV software has different versions for different regions.. I would think it would be more economical for them to only deal with one version. But I guess they gain some advantage from it. What.... I dunno.

    https://public.gdatasoftware.com/Products/Screenshots/Retail/2015/EN/AV/4.PNG


    I remember when I downloaded G-Data, it asks you if you want the trial version or the full version (or wording something like that). Did you specify the full version?

    But you need to figure out how to get the exploit protection. To me, that is a key piece of what makes G-Data better than others.
     
    Last edited: Mar 27, 2015
  20. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    One example is Eset (I mentioned it before), which provides different virus defs in Chinese version -- because the international virus def reports Yi Language (a programming language to code in Chinese) programs as "pup.flystudio", which causes some FPs in China (though it makes the Chinese version lack the ability to detect new malwares written with Yi).

    But for G-Data, I'm not sure. Anti-exploit shouldn't be a feature that could bring in lots of false positives...

    Installation package was downloaded from their official Chinese website. Only at the end of the installation, there was options to choose from 30-day trial or activate with product key.

    But I also asked on kafan forum, and people who use the activated version confirmed it -- no anti-exploit checkbox.

    Also, anti-keylogger is missing in online banking protection section in Chinese version, as users confirmed.
     
  21. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Something I've never thought about before. That's pretty interesting.


    Disappointing. Without those modules, G-Data comes closer to being just another generic Bitdefender based duel-engine AV.

    I guess in this instance, you should dump it.

    ==========

    So that's it. To all consumers in the G-Data China market footprint, I hereby retract Frank's Official Endorsement for G-Data. You cannot Stay Sicher with that version. I advise those affected parties to look at Trend, Symantec, or any AV that has scored in the top tier of AV Comparatives last three 'Real World' tests. ~ Removed Off Topic AV Comparison Remark ~


    That is all.

    -Frank
     
    Last edited by a moderator: Mar 27, 2015
  22. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    Well I'll continue with it on the windows vm to see how it performs.

    By the way, as I mentioned, I downloaded the package from official chinese website, but I didn't try choosing "English" during installation. I can stay with the english version if it has these modules :p

    For the price here: the China branch authourizes a store on taobao to sell the keys.

    1year 3pc: CNY 117.6
    2year 2pc: CNY 99

    Pretty cheap for a "heavy weapon".

    ~ Removed Off Topic AV Comparison Remark ~
     
    Last edited by a moderator: Mar 27, 2015
  23. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Well... you are right. Great price. And G-Data is pretty darn good even without those modules. But hopefully the English version will get you the modules.

    Additionally, an advanced user like yourself can get the benefits of those modules from other products and procedures.

    ~ Removed Off Topic AV Comparison Remarks ~
     
    Last edited by a moderator: Mar 27, 2015
  24. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    And.... G-Data places 1st in yet another test.

    Stiftung Warentest -- An independent consumer advocate organization

    Here are the final results:

    Ranking
    1. G DATA INTERNET SECURITY
    2. Avira Internet Security 2015
    3 BullGuard Internet Security 2015
    4. AVG Internet Security 2015 4.
    5. Eset Smart Security 8
    6. F-Secure Internet Security 2015 Safe
    7. Avira Free Antivirus 2015
    8. AVG AntiVirus Free 2015
    9. Kaspersky Internet Security 2015
    10 . Avast! Free Antivirus 2015

    Best Protection: G DATA INTERNET SECURITY
    G DATA INTERNET SECURITY reliably ensures the security of your PC and personal data - with the best protection against viruses and Trojans as well as a powerful firewall.

    German consumer organization Stiftung Warentest has been analyzing security suites since 2005. For those in the USA/Canada, it appears to be much like Consumer's Reports. It's an independent consumer based testing and evaluation organization.

    http://www.t-online.de/computer/sic...i-viren-programme-bei-stiftung-warentest.html
    http://www.pressebox.de/pressemitte...T-SECURITY-ist-erneut-Testsieger/boxid/732515
     
  25. coolcfan

    coolcfan Registered Member

    Joined:
    Nov 1, 2008
    Posts:
    130
    Sent the chinese customer support an email to ask about this. Will update when I get their reply.

    Edit1: choosing English when using the official chinese installer doesn't give me the anti-exploit option.
     
    Last edited: Mar 29, 2015
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.