The Proof behind just how worthless Windows One care really is.

By +Warwagon
in General Discussion

 Share

Recommended Posts

Grand Master

Joshie

Posted
Posted
Windows One Care, Windows Defender and Malicious software removal tool is a complete joke!

I use MiniPE with latest virus definition of whatever antivirus it has. Works like a charm most of the time.

But not nearly as much of a joke as "I don't use AV software and I've never had a virus ever because I know how to use a computer."

That one cracks me up every time.

Mentor

ScottKin

Posted
Posted
True but in this Entire infection it didn't even find one file. I mean if it found maybe 3 files of the particular type of malware infection but missed the rest. That would still be pretty bad but it would be something. In this case it missed the entire infection.

This, of course, begs the inevitable questions:

WHERE have you been going to in order to get what appears to be very obscure & relatively unknown infections?

Has SuperAntispyware been reported to mis-identify actual non-infected or non-spyware programs, or been reportedly having any false-positives?

Any AV & AS software is only as good as the signatures available to it. Also, I seem to remember that in the past there have been a few very-disreputable AV & AS programs out there that actually ended-up installing THEIR OWN viruses and spyware just to make it seem like they're better than the competition.

As said before by others, this seems to be nothing more than anecdotal info. I wonder if we could know from "Warwagon" what the test environment was, or was this just one incident?

With that, since I have three systems protected by OneCare and two protected by SAV Corp10 I think I'll run the same tests and see how things prove-out.

--ScottKin

Grand Master

peacemf

Posted
Posted
Windows One Care, Windows Defender and Malicious software removal tool is a complete joke!

i disagree :)

ive run zone alarm the full blowen antivirus and firewall, and stuff still got through without a problem!

ran that Kav-pant-sky thing, and it was such a system hog, and looked like poo!

onecare for me was/is easy to use (none of that stupid crap that pops up and asks if you want to allow some random file to connect to the net!)

and so far in the 8 months ive had it, not ONE virus got through!

also norton suck, Mc-assfey is crap too

and dont start that NOD32 greek crap! :)

Veteran

White Cuban

Posted
Posted

Haha damn dude im suprised your computer is still running you got like 10 diffrent kinds of just rogue antiviruses not to talk about everything alse.

i can get you nod32 for free i got an extra copy, legally, pm me if you want some help.

Grand Master

+Warwagon MVC

Posted
  • Author
  • MVC
Posted
One Care AND SuperAntiSpyware are BOTH trash!!

Spybot is about the ONLY trustworthy antispyware program out there.

Now that I will disagree with. Sounds like you've never used superantispyware.

Mentor

ScottKin

Posted
Posted

As promised earlier....

Test Started 08-27-08 0135 PDT

Test Environments:

RAPTOR-VISTA: Windows Vista Ultimate SP1

FALCON: Windows XP SP3

DECATONCALE: Windows 2000 Advanced Server SP4

NAUTILUS: Windows 2000 Advanced Server SP4

Current AV & AS Protection:

RAPTOR-VISTA: OneCare & Ad-Aware

TALON: OneCare & Ad-Aware

Decatoncale: Symantect Anti-Virus Corporate 10 & Ad-Aware

NAUTILUS: Symantect Anti-Virus Corporate 10 & Ad-Aware

Each item found will be awarded 1 point, and the points totalled at the end of the test.

System: Raptor-Vista

SUPERAntiSpywareTest1onRAPTOR-VISTA.jpg

Per screencap, AV is up-to-date since yesterday with 0 infections or incidents.

SuperAntiSpyware - Full Scan:

SUPERAntiSpywareTest2onRAPTOR-VISTA.jpg

Found 672 "Threats" in "Tracking Cookies" - Tracking Cookies are no *real* threat; Half of those appear to be from

XP x64 drive.

Scan ended and no viable threats found on either my Vista or my XP x86 drive.

So, let's find out what exactly SuperAntiSpyware found!

SUPERAntiSpywareTest3onRAPTOR-VISTA.jpg

Found 3 possible Trojans that appear to be on the XP x64 drive:

Trojan.Dropper/Gen

Trojan.Fake-Drop/Gen

Trojan.Unclassified/Loader-Suspicious

Now, lets take a look at each of the "Trojan" items SuperAntiSpyware found:

- Trojan.Dropper/Gen - Identified as "TRASHMAN.EXE"

Located as D:\Program Files (x86)\USER\TRASHMAN.EXE and identified as "Trojan.Dropper/Gen".

The files in this folder on my XP x64 drive are *all* Win9x or OLDER software that I never took the time

to delete, and are absolutely non-trojans.

Points = 0

- Trojan.Fake-Drop/Gen - Identified as OLE2SYS2.DLL

Located as C:\Windows\System32\OLE2SYS2.DLL and identified as "Trojan.Fake-Drop/Gen"

More proof that SuperAntiSpyware is *not* all that it's cracked-up to be: it found C:\Windows\System32

\OLE2SYS2.DLL to be "Trojan.Fake-Drop/Gen.Process", which is described at SuperAntiSpyware's website as:

"Trojan.Fake-Drop/Gen represent files that are dropped by the rogue anti-spyware/anti-malware

products so they can detect the fake-threats to make it look like they are doing actual detection

and removal. This files are not actual applications"

(Good use of english in the last phrase - "This files". This makes this software even more

amateurish!)

After further investigation, I found nothing that identified OLE2SYS2.DLL as any kind of malware or spyware or any kind of trojan or malicious softwware. On one search via Google I visited "www.winsosfree.com", which was a hit from Google, to see what they had on that DLL, and as soon as I went to that page (I will not post the full URL here), the page in question attempted to infect my system with a Trojan identified as "TrojanDownloader:HTML/Adodb.gen!A". Guess what stopped it...Microsoft OneCare! SuperAntiSpyware didn't even catch the download attempt!!

Points = 0

- Trojan.Unclassified/Loader-Suspicious

Located as C:\PROGRAM FILES\STARDOCK\SDCENTRAL\BACKUP\LOADER.EXE and D:\PROGRAM FILES (X86)

\STARDOCK\SDCENTRAL\BACKUP\LOADER.EXE

This is a key component in Stardock's Object Desktop and Stardock Central application, and is absolutely

*not* any kind of Trojan loader.

Points = 0

So far, SuperAntiSpyware scores 0 on the tests, whereas Microsoft OneCare scores 1 on detecting an attempt to

download a trojan from a site that supposedly is designed to help people with many computer problems - including

info on TROJANS!

System: FALCON

SUPERAntiSpywareTest1onFALCON.jpg

Per screencap, AV is up-to-date since yesterday with 0 infections or incidents.

SuperAntiSpyware - Full Scan:

SUPERAntiSpywareTest2onFALCON.jpg

Found 100 Tracking Cookies - no threat

Points = 0 - No significant difference

System: DECATONCALE

SUPERAntiSpywareTest1onDECATONCALE.jpg

SUPERAntiSpywareTest2onDECATONCALE.jpg

Per screencap, AV is up-to-date since yesterday with 0 infections or incidents.

SuperAntiSpyware - Full Scan:

SUPERAntiSpywareTest3onDECATONCALE.jpg

Found 97 Tracking Cookies - no threat

Points = 0 - No significant difference

System: NAUTILUS

SUPERAntiSpywareTest1onNAUTILUS.jpg

Per screencap, AV is up-to-date since yesterday with 0 infections or incidents.

SuperAntiSpyware - Full Scan:

SUPERAntiSpywareTest2onNAUTILUS.jpg

Found 87 Tracking Cookies - no threat

Points = 0 - No significant difference

Final Score: 0 for 3

Conclusion:

SuperAntiSpyware is probably a very capable product - but it's no better than any other Anti-Virus / Anti-Malware / Anti-Spyware package. The fact that Microsoft OneCare caught a potential exploit being downloaded and SuperAntiSpyware just sat there. I won't ding SuperAntiSpyware a minus for missing the attempted exploit, but that still won't make me recommend it to anyone.

--ScottKin

Grand Master

MillionVoltss

Posted
Posted

Recently AVG seems to suck, ive found it dosnt update at startup anymore and evern when i tell it to update it gets server errors where before it ran fine. What web sites revews them each month as mentioned earlier ? Also does AVG take up more memory now days compared to before it had all the rookkit detection etc added.

Grand Master

ViperAFK

Posted
Posted
i ran windows defender ..... found nothing .....

i ran superantispyware and it found 240 spyware cookies ..... W T F

any way to remove windows defender ?

Just turn it off in the options and disable the service.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.