New keylogger tests from Zemana

Discussion in 'other anti-malware software' started by aigle, Aug 21, 2008.

Thread Status:
Not open for further replies.
Page 1 of 8
  1. aigle

    aigle Registered Member

    http://www.zemana.com/list/list.asp?ktgr_id=413

    Hmmm... It,s interesting. Much failure.

    CFP

    Key Logger Simulation Test - - - - - PASS
    Screen-Logger Simulation Test - - - PASS
    Webcam Logger Simulation Test - - FAIL
    Clipboard Logger Simulation Test - - FAIL
    SSL Logger Simulation Test - - - - - POC not Available so far

    EQSecure

    Key Logger Simulation Test - - - - - FAIL
    Screen-Logger Simulation Test - - - FAIL
    Webcam Logger Simulation Test - - FAIL
    Clipboard Logger Simulation Test - - FAIL
    SSL Logger Simulation Test - - - - - POC not Available so far

    GesWall

    Key Logger Simulation Test - - - - - FAIL PASS
    Screen-Logger Simulation Test - - - FAIL
    Webcam Logger Simulation Test - - FAIL
    Clipboard Logger Simulation Test - - FAIL
    SSL Logger Simulation Test - - - - - POC not Available so far

    Older thread is here.

    https://www.wilderssecurity.com/showthread.php?t=204941
     
    Last edited: Aug 22, 2008
    aigle, Aug 21, 2008
    #1
  2. the mul

    the mul Registered Member



    Hi,

    Process Guard v 3.410 can block these tests.
     

    Attached Files:

    the mul, Aug 21, 2008
    #2
  3. the mul

    the mul Registered Member

    Test two.
     

    Attached Files:

    the mul, Aug 21, 2008
    #3
  4. the mul

    the mul Registered Member

    Test three.
     

    Attached Files:

    the mul, Aug 21, 2008
    #4
  5. the mul

    the mul Registered Member

    Test four.
     

    Attached Files:

    the mul, Aug 21, 2008
    #5
  6. CogitoErgoSum

    CogitoErgoSum Registered Member

    For those who are interested,

    I personally tested DefenseWall v2.45 against three of the four available Zemana security tests. The results are below.

    Key-Logger Simulation Test.........PASS(*Note: Pop-up notification allowed me to terminate the attempt on the spot.)
    Screen-Logger Simulation Test.....PASS(*Note: Silently blocked attempt.)
    WebCam-Logger Simulation Test..?(*Note: I was not able to test because I do not have a webcam.)
    Clipboard-Logger Simulation Test..PASS(*Note: Retested. Pop-up notification allowed me to terminate the attempt on the spot. Please take a look at the following link for instructions on how to properly conduct this test - https://www.wilderssecurity.com/showpost.php?p=1303569&postcount=40 )


    Peace & Gratitude,

    CogitoErgoSum
     
    Last edited: Aug 22, 2008
    CogitoErgoSum, Aug 21, 2008
    #6
  7. aigle

    aigle Registered Member

    @ the mul

    It,s not an execution test. Any HIPS can do what PG is doing. Allow the test to run and then see if PG intercepts the actula logging attempt.
     

    Attached Files:

    Last edited: Aug 21, 2008
    aigle, Aug 21, 2008
    #7
  8. Remouald

    Remouald Registered Member

    @the mul: you must allow the execution of the software and then see if PG block the loggers.

    EDIT: oups, aigle beat me on this :)
     
    Remouald, Aug 21, 2008
    #8
  9. aigle

    aigle Registered Member

    That,s good. Anyone can test WebCam test with DW?
     
    aigle, Aug 21, 2008
    #9
  10. the mul

    the mul Registered Member

    Hi aigle,

    I have allowed PG to run the keylogger test and outpost pro 2009 blocked this test.
     

    Attached Files:

    the mul, Aug 21, 2008
    #10
  11. the mul

    the mul Registered Member

    Here is the result after blocking the test with outpost pro firewall 2009.
     

    Attached Files:

    the mul, Aug 21, 2008
    #11
  12. aigle

    aigle Registered Member

    That,s a PASS indeed for Outpost FW. :thumb:
     
    aigle, Aug 21, 2008
    #12
  13. LoneWolf

    LoneWolf Registered Member

    Tested..........It's a fail. :mad:
     
    LoneWolf, Aug 21, 2008
    #13
  14. Einsturzende

    Einsturzende Registered Member

    What about other test from Zemana against OP (not just first keylogg)?
    Screen logger and Clipboard logger will be interesting to see against OP...
     
    Last edited: Aug 21, 2008
    Einsturzende, Aug 21, 2008
    #14
  15. Dark Shadow

    Dark Shadow Registered Member

    At least Defensewall passed 2 of 4. Look at geswall god it failed bad:oops:
     
    Dark Shadow, Aug 21, 2008
    #15
  16. Metting

    Metting Registered Member

    SSM 2.4.0.621

    Key Logger Simulation Test - - - - - PASS
    Screen-Logger Simulation Test - - - FAIL
    Webcam Logger Simulation Test - - FAIL
    Clipboard Logger Simulation Test - - FAIL
    SSL Logger Simulation Test - - - - - POC not Available so far

    :'( :'(
     
    Metting, Aug 21, 2008
    #16
  17. Dark Shadow

    Dark Shadow Registered Member

    Aigle thanks once again for the testing great work.:thumb:
     
    Dark Shadow, Aug 21, 2008
    #17
  18. mvdu

    mvdu Registered Member

    How does Outpost 2009 do against the other tests?
     
    mvdu, Aug 21, 2008
    #18
  19. Metting

    Metting Registered Member

    it failed all these tests :oops:
     
    Metting, Aug 21, 2008
    #19
  20. aigle

    aigle Registered Member

    @CogitoErgoSum I tested DW version 2.45 on default settings. My results are a bit different.

    Key-Logger Simulation Test......... DW gave keylogging warning with option to termiante the keylogger but no way to just block the keylogging
    Screen-Logger Simulation Test..... Fail
    WebCam-Logger Simulation Test... Fail
    Clipboard-Logger Simulation Test.. DW gave keylogging warning with option to termiante the clipbaord logger but no way to just block the clipboard logging.

    1.jpg
    2.jpg
    3.jpg
     
    aigle, Aug 21, 2008
    #20
  21. Atomic_Ed

    Atomic_Ed Registered Member

    Has anyone tried this with Mcafee to see if it can block this as well?
     
    Atomic_Ed, Aug 21, 2008
    #21
  22. ruinebabine

    ruinebabine Registered Member

    SSM 2.4.0.621: Same results here (but no webcam)

    DW v2.45

    Key Logger Simulation Test - - - - - PASS
    Screen-Logger Simulation Test - - - PASS
    [ Webcam Logger Simulation Test - - no webcam ]
    Clipboard Logger Simulation Test - - FAIL
     
    ruinebabine, Aug 21, 2008
    #22
  23. mvdu

    mvdu Registered Member

    Doesn't Outpost at least pass the Key Logger Simulation Test, based on the screenshot above?
     
    mvdu, Aug 21, 2008
    #23
  24. Dark Shadow

    Dark Shadow Registered Member

    Ok some confusion Screen logger passed from your testing,for some others it failed.strange in consistent results, configuration perhaps.:doubt:
     
    Dark Shadow, Aug 21, 2008
    #24
  25. aigle

    aigle Registered Member

    They refused to give me any POC for this. But I think I have found two POCs( not sure) so I tried them.

    !- SIW.exe from

    http://www.gtopala.com/

    Run and go to Tools> Eureka and follow the pictures.

    2- Sownload Revelation from here.

    http://snadboy.com/

    And follow the pictures;

    Results: CFP, GW, DW, OA free, SafeSpace all passed
    EQS failed with revelation and passed with SIW

    a.jpg
    b.jpg
    aa.jpg
     
    aigle, Aug 21, 2008
    #25
Page 1 of 8
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice