MRG Tests

Malware Research Group Project 025

Project number: 025

Project Details: Online Banking / Browser Security Test

Operating System used: Windows XP Professional Service Pack 3

Number of applications used: 31

List of applications used in this test:

Browser Security/ID Protection Applications:

1. Authentium SafeCentral
2. EMSI Software Mamutu 2.0.0.22
3. Global Information Technology Anti-Keylogger 9.2.1
4. Prevx SafeOnline 3.05.171
5. QFX Software KeyScrambler Professional 2.6.0
6. Quaresso Protect On Q
7. SentryBay Data Protection Suite 5.0.0.4493
8. SoftSphere DefenseWall 3.02
9. SpyShelter SpyShelter 4.17
10. Trusteer Raport 1003.9
11. Trustware BufferZone Pro 3.31-46
12. White Sky IDVault Free Edition
13. Zemana AntiLogger 1.9.2.206

System/Internet Security Applications:

1. Acronis Internet Security Suite 2010
2. Agnitum Outpost Security Suite Pro 7.0.3373.514.1234
3. AVG Internet Security 9.0.819
4. Avira Premium Security Suite 10.0.0.542
5. BitDefender Internet Security 2010 13.0.21.347
6. Bluepoint Security 1.0.30.99
7. ESET Smart Security 4.2.40.0
8. F-Secure Internet Security 2010 246
9. G Data internetSecurity 2011 21.0.2.1
10. Kaspersky Internet Security 2010 9.0.0.736
11. McAfee Internet Security
12. Norman Secority Suite
13. Panda Internet Security 2010 15.01.00
14. Sunbelt Software Vipre Antivirus Premium 4.0.3282
15. Tall Emu Online-Armor ++ 4.0.0.44
16. Trend Micro Internet Security 17.50.1647.0000
17. Webroot Internet Security Essentials 2010
18. Symantec Norton 360 4.0.0.127

Download full report here  Online Banking Browser Security Project June 2010

  1. #1 by dallas7 on June 23, 2010 - 1:31 pm

    Outstanding piece of work; a real eye opener and of great value to the community! Looking forward to the ongoing results in the coming month of days.

    What was the environment of the Prevx installation…
    PrevxFree/SOLFree (setup.exe default) or then licensed as
    PrevxPaid/SOLfree or
    PrevxFree/SOLpaid or
    PrevxPaid/SOLpaid???

    Thank you.

    Quote

  2. #2 by ssj100 on June 25, 2010 - 6:01 am

    You write:
    “…real financial malware commonly, will NOT use the same exploit/vector as a simulator…
    …An application blocking these simulated attacks does NOT necessarily mean it will be effective against REAL malware.”

    I’ve highlighted the key words in capitals. Unfortuntately, this test doesn’t really prove anything. Fact is, most (clever) zero day malware will be released after testing against anti-logging mechanims. And they will NOT be blocked. Right?

    Hence, a default deny mechanism of protection with a sandbox containment mechanism (which is easily flushed) is the best way to block these (non-existent haha) malware loggers.

    You know what I would really like to see? A test against real-world malware, NOT simulators.

    Thanks and keep up the “good” work.

    Quote

  3. #3 by Igsloth on June 27, 2010 - 6:18 am

    Great tests.

    Please test [new] Free Anti Keylogger Keystroke Interference 1.4 if you can.

    http://download.cnet.com/Free-Anti-Keylogger-Keystroke-Interference/3000-2144_4-75211735.html

    Quote

You must be logged in to post a comment.