Here is a interesting one on Beta 5.

Whenever I get ready to delete a snapshot I always go and grab some malware just to test the product I am getting ready to dump.

The other night, I had Prevx loaded and installed a new fake av, dont ask me the name because I honestly dont remember. But it came from malware domain list.

Prevx detected it but could not clean it. I then tried my offline scanner, old MBAM and it detected it but could not get rid of it. That shocked me. Hitman Pro failed to detect it.

I was getting ready to delete the snapshot and thought what the hell, I had been hard about the new beta to Eset so I downloaded it. After install and a reboot, it grabbed the damn thing and completely cleaned it without even having to do a reboot. It was almost to easy I thought. But there were honestly no parts left.

Now I am not comparing products here as this is just one stupid piece of malware, and others testing may find the complete opposite. But my testing, has no hidden agendas like some who have thier own sites for this, I could care less, my loyality is not to any product and you folks know this.

But Eset 5 Beta tore a new anus into this fake AV and it utterly shocked me. If this is any sign of what is to come, and I am not saying it is, well, it is about dang time. Eset never cleaned anything like this, so I am thinking there are some changes to this engine that Marcos hasnt bragged about, yet.

 

Haha I bet it did, LOL

I am happy to see that you decided to give the BETA a try trjam

 

Nice comment, trjam.

 

I think it is quite common that ESET detected Fake AV in your system because I am checking this:https://www.wilderssecurity.com/forumdisplay.php?f=34everyday and recently I saw the detection of this fake AV by ESET:http://support.pandasecurity.com/blog/2011/05/06/fake-antivirus-programs-are-now-also-targeting-mac-users/

Code:

OSX/AdWare.MacDefender.C (6), OSX/AdWare.MacDefender.D (5), OSX/AdWare.MacDefender.E (4), 

 

Most impressive and may the trend continues.

Thanks.

 

Great news. I hope things continue to get better. Want to hopefully stay with Eset in September when my licenses expire, but am starting to look at other products in the meanwhile.

 

so far so good

 

Ofcourse ESET products are gr8 but when we talk about its inbuilt PF it is not aggressive. I have enclosed a Leak test result below, I do expect 100% results not 40% because v4.2 has given 50% which is with out HIPS basically then with HIPS it should be doubled.

1. RootkitInstallation: MissingDriverLoad Protected
2. RootkitInstallation: LoadAndCallImage Protected
3. RootkitInstallation: DriverSupersede Protected
4. RootkitInstallation: ChangeDrvPath Vulnerable
5. Invasion: Runner Vulnerable
6. Invasion: RawDisk Vulnerable
7. Invasion: PhysicalMemory Protected
8. Invasion: FileDrop Vulnerable
9. Invasion: DebugControl Protected
10. Injection: SetWinEventHook Vulnerable
11. Injection: SetWindowsHookEx Vulnerable
12. Injection: SetThreadContext Vulnerable
13. Injection: Services Vulnerable
14. Injection: ProcessInject Protected
15. Injection: KnownDlls Vulnerable
16. Injection: DupHandles Protected
17. Injection: CreateRemoteThread Protected
18. Injection: APC dll injection Vulnerable
19. Injection: AdvancedProcessTermination Vulnerable
20. InfoSend: ICMP Test Protected
21. InfoSend: DNS Test Vulnerable
22. Impersonation: OLE automation Protected
23. Impersonation: ExplorerAsParent Vulnerable
24. Impersonation: DDE Vulnerable
25. Impersonation: Coat Vulnerable
26. Hijacking: WinlogonNotify Protected
27. Hijacking: Userinit Vulnerable
28. Hijacking: UIHost Protected
29. Hijacking: SupersedeServiceDll Vulnerable
30. Hijacking: StartupPrograms Vulnerable
31. Hijacking: ChangeDebuggerPath Protected
32. Hijacking: AppinitDlls Vulnerable
33. Hijacking: ActiveDesktop Protected


So I do expect this to be rectified, I personally vote for v2.71.39 than v4.2 or v5.00.65.00.I also prefer to use with threatfire for better protection.

 

i noted youre using ESET Remote Administrator icon in your avatar now

excellent