Norton Internet Security, Antivirus and 360 Being Retired?

Discussion in 'other anti-virus software' started by Raza0007, Sep 19, 2014.

  1. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,081
    Location:
    USA
    I found some of the methodology of the Youtube test dubious. For instance at one point the tester disconnects from the Internet and turns off Auto Protect so he can copy a folder full of malware files to the desktop. That's not something most users would do. Then he scans the files while still offline, his reasoning being that it's valid because people can be infected by malware from USB flashdrives while offline. Again that's an unrealistic scenario, and I would have preferred that he actually have the malware on a USB flashdrive if that's the attack vector he intends to test. Although the various modules of a security suite function with a degree of independence the effectiveness of a product can only be accurately determined when the product is fully functional. No one part of the product is designed to stand alone.

    The reason why security products in general are using more "cloud analysis" is because signatures cannot be generated fast enough to keep up with new malware. The model of having 100% detection capability available offline via signatures no longer works and testers need to stop testing products that way and criticizing them when they fail. The one thing I would agree with is the slow response of Sonar. Note that although he did set it to aggressive he did not change the setting from "high certainty" to "low certainty" (or whatever the more sensitive setting is called). That may have improved the result.

    Question: Does Norton Security still have a Boot Protection option? I ask because that option has been off by default in previous versions. It should have been on by default IMHO and if it still exists it should be turned on and set Aggressive.
     
    Last edited: Oct 5, 2014
  2. qakbot

    qakbot Registered Member

    Joined:
    Aug 25, 2010
    Posts:
    380
    Yes, I still see the Boot Time Protection option.
     
  3. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Boot protect is still there, and it defaults to aggressive now, same as Enterprise.
     
  4. clocks

    clocks Registered Member

    Joined:
    Aug 25, 2007
    Posts:
    2,772
    I agree with you guys about testing. With many of todays AVs, scanning a folder of 100 malware samples doesn't provide an accurate picture of their protection capabilities. Same as opening 10-20 pieces of malware at once. That is not a real world scenario. Programs like Norton, WRSA, Comodo, etc don't work like many others, which is why they are pulling out of a lot of traditional tests. But I see these type of programs as the future.
     
  5. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Is Bloodhound in the consumer product?
     
  6. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    AFAIK Norton pulled out of AV-C mostly because they could not "skip" the on-demand test, and they have no reason to skip the RWPT tests from what I know. :doubt:

    But WSA is quite a different story though due to the way it works.
     
  7. clocks

    clocks Registered Member

    Joined:
    Aug 25, 2007
    Posts:
    2,772
    Not sure if they still do, but didn't AV-C used to have a policy you had to be in all tests, or none at all?

    Regardless, I've seen Norton tested many times, and have tested it myself. It has always protected very well. I personally have a decent amount of confidence in it.
     
  8. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,081
    Location:
    USA
    Yes, you only have to look at MBAM and Hitman Pro to see how effective "cloud detection" can be. Hitman Pro devastated NS at the end of that video. I've yet to see any "suite" nail malware like those two can. Until the suites up their game I feel MBAM and/or Hitman Pro are needed alongside them.
     
  9. qakbot

    qakbot Registered Member

    Joined:
    Aug 25, 2010
    Posts:
    380
    The recent videos on YouTube testing Norton Security 2015 show its doing really well. Testers seem like it.

    MBAM and HitmanPro are the little guys and as a result they don't get sued as often as the Big dogs by all the PUAs/PUPs companies that they convict. Therefore they can be a lot more aggressive in their detection. They don't have any magic technology if that's what you are thinking.
     
  10. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,081
    Location:
    USA
    I don't care what the reason is for why they work so much better - what matters is that they do. Regarding the video where Hitman Pro caught the stuff NS was not reacting to, are you saying it was because it was all PUP/PUA? That stuff looked like "real" malware, not the borderline opt-out rubbish.
     
  11. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    all you need nowadays is to post a few vids on youtube and suddenly your an expert,laughable really,what is more laughable is that folk take any notice!
     
  12. hawki

    hawki Registered Member

    Joined:
    Dec 17, 2008
    Posts:
    5,546
    Location:
    DC Metro Area
    It appears that there is something WRONG with The PC Security Channel guy's installation of NS. Whether it was caused by malware affecting NS itself or a bad install I do not know. (This would not be the first test of a Norton Product on You Tube where it's self protection failed.)

    At 15:17 of the video both Boot Time Detection and Auto Protect are in the ON position but the control slider is gray - if they were on the slider controller should be green.

    At 16:43 of the video The AV slider is set to on, but the control slider is gray - if it was on the control slider should be green.

    If he disabled these protections by another setting screen, the sliders should have moved accordingly, not turned gray.
     
    Last edited: Oct 5, 2014
  13. hawki

    hawki Registered Member

    Joined:
    Dec 17, 2008
    Posts:
    5,546
    Location:
    DC Metro Area
    That is correct, though on one recent test they involuntarily tested Norton, though they did not publish the results. I forget which Mag,blog it was but it was the Real Time test and if published the author said that Norton would have received a +++ top tier rating.

    Norton believes the on demand test does not show the capabilities not only of its on demand scanner but of its product as a whole. It;s On Demand scan is linked to other parts of its protection--for example it relys in part on knowing where a file came from.
     
  14. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA

    Hmmmm.... You are not correct on a few points.

    MBAM is not little. If you look at worldwide vendor market share, MBAM is in the top 10.

    The companies that get sued more often are companies without the capital to support litigation costs. Suing big companies like Symantec is not easy as Symantec has an in-house legal team and can afford protracted litigation.
     
  15. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    Its doubtful any company could sue any vendor of protection software for classing their products as being PUPs etc because the definition of a PUP is so wide that it would be down to one companies definition of what is/isn't against another companies definition of that,anybody got any records of any such litigation being pursued?
     
  16. zfactor

    zfactor Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    6,103
    Location:
    on my zx10-r
    ill be testing more on wed this week but i can say at least for now i find that test video to be strange and i (for now at least till i unleash what i call hell on norton 2015) think the test is not accurate of what nortons will do. so far its detection for me is very very good in fact i am finding it almost to sensitive at times. i am not saying it has been perfect yet (it has not been perfect but no av is). i know we cant do "tests" here but i will at least report if i find anything similar, worse, or far better. i am sort of a fan at this point but not enough yet to switch out any of my av's i have now.
     
  17. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA
    Just Google it.

    Here is a couple of results from a quick search:

    http://www.welivesecurity.com/2012/08/23/carbon-dating-and-malware-detection/

    PUP Link #2

    Additionally, the issue has been referred to by vendors in this forum.

    Search Wilders for further info.
     
  18. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    those links have nothing to do with an anti malware company being taken to task through the courts by one of the companies that their product detected!
     
  19. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    I am unaware of any antimalware company actually sued by greyware producers.. Mostly it's just bluff. Have a lawyer send a letter, and hope the company caves.. There is no reason for any company to cave to that nonsense. AV companies are a bit worried to start detecting it because where do you draw the line? Some people LIKE toolbars and helpers.. I've run into people that specifically like coupon injectors. Java has a hidden open now to 'disallow' all toolbars/offers from all future upgrades, so at least some companies are ending the practice of pushing those.

    Norton set to aggressive should stop all greyware because it won't pass download insight, since those greywares are flagged as bad apps on the insight metric.
     
  20. hawki

    hawki Registered Member

    Joined:
    Dec 17, 2008
    Posts:
    5,546
    Location:
    DC Metro Area
  21. malexous

    malexous Registered Member

    Joined:
    Jun 18, 2010
    Posts:
    830
    Location:
    Ireland
    20:55, "These settings cannot be changed due to a pending remediation action. Please restart your computer to resolve this issue."
     
  22. malexous

    malexous Registered Member

    Joined:
    Jun 18, 2010
    Posts:
    830
    Location:
    Ireland
    Last edited: Oct 6, 2014
  23. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    8,799
    Location:
    Among the gum trees
    Don't get me wrong, I'm not a Norton 'fanboy', but if Norton requests I reboot to resolve security risks I'll reboot. Was that video a real-world test?
     
  24. hawki

    hawki Registered Member

    Joined:
    Dec 17, 2008
    Posts:
    5,546
    Location:
    DC Metro Area
    This was an on demand scan test-not a blocking test so I guess NS is ok for a machine you know is clean only. The only worse test of a Norton product were two You Tube videos of NIS 2014 where malware was able to totally disable Norton and let in 100s of other malware. I had just bought a new license for NIS 2014 but immediately uninstalled it and went to my local big box brick and mortar store that was having a special intro promotion price on KIS 2014. At least KIS can protect itself. I just uninstalled my demo version of NS. One of the worst test results for on demand scanning I have ever seen. I don't care how good their blocking is, this test is a sign of a generally lousy product and it's $90.
     
  25. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Yes and the same applies for all participants "all or nothing", but if they would get good or very good results in all the other tests, what difference does it make if they get less good results in one of the tests. No product shines in every singel test.

    Some products would probably love to skip the performance test for obvious reasons.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.