New Anivirus UnThreat

loveboy_lion · November 12, 2011, 10:28am

Hey Guys Checkout this new UnThreat Antivirus it also has vb100

http://www.unthreat.com/

UnThreat Antivirus reviews

Petit · November 13, 2011, 1:46am

What engine does it use ?

loveboy_lion · November 13, 2011, 12:19pm

Not sure about that

kail · November 13, 2011, 12:38pm

A Net search says it’s the VIPRE engine. There is also a topic on this product over at Wilders, which dates back to April/May. So, I guess that it isn’t so new any more.

Petit · November 14, 2011, 6:15am

Well.
I see. Now if some company wanna be a security company is just buying engine from popular vendor and rename rebrand and remake UI. Because I see a lot of New brand Antivirus program from Virusbtn that used other engine from popular vendor.

Will Comodo planning to release engine SDK soon. ;D

loveboy_lion · November 14, 2011, 2:37pm

i wonder how it managed to score above 90% results
http://www.virusbtn.com/vb100/rap-index.xml

sAyer · November 15, 2011, 6:56pm

ran_golde · November 28, 2011, 11:38am

Very light resource impact (even lighter then AVG).

4 major flaws :

No exclude from active protection (for “known threats”).
Shell integration (Win 7 32 bit) does not work.
Custom scan (with archives and heur enabled) failed.
No support for free version - i.e. for tickets one should be able to login (and that means be registered as license holder).

Great potential (very nice interface, very impressive quick scan) - should be monitored (perhaps some of the above will be resolved with future versions).

loveboy_lion · November 28, 2011, 1:36pm

I does has exclude (see screenshot)
It doesnt work on win7x32 ( can conform that)
Passed for me (see screenshot)
you are right i guess
Checked with a lot of 0-day malware and it detected all of them on execution ( detection rate is good)
memory usage is also low almost 30mb
scans also fast and speed can be changed according to process priority
will further test it to see if it works along side CIS on win7x32 and win7x64
overall a good protection with some minor flaws

[attachment deleted by admin]

ran_golde · November 28, 2011, 1:43pm

No offense just read what I wrote : no excludes for “known threats” (only for unknown) on active protection (scanner is NOT active protection …).
It didn’t on my box (even after boot).

All in all very promising - however from my point of view too early.

loveboy_lion · November 28, 2011, 2:23pm

there is no exclude for known threats but you can restore it through quarantine and add to excludes
I installed it on my win7x64 as well alongside CIS 5.9 and kingsoft PC doctor 3.1 and everything is working fine as it should be
will however disable active protection in unthreat since its good at detection will keep it for manual scans incase CIS misses anything unthreat detection can be used to increase CIS database

khanyash · November 28, 2011, 3:08pm

After 2 days of installation still no AV updates, updater mentions no new updates available & the database version is the same as it was 2 days before on installation i.e 11146.

Signature Detection seems good.

Suspicious Behaviour detection - Dont know how good is this?

No right click scan.

Few bugs like delete item in quarantine not working, etc.

People say its Vipre engine. I tested it with few malware. Whatever it did not detected I uploaded to VirusTotal. At VT Vipre detected few of those not detected by Unthreat. So I guess may be coz of less frequency of update or limited AV database.

But seems promising if updates are good & other features are little polished & few new features in the upcoming versions.

Thanxx
Naren

ran_golde · November 28, 2011, 3:53pm

You can not add known threats to “active protection” excludes. Thus even if you restore a known threat it gets quarantine again once detected (you can for example try autokms from office activation tool which should be at most risk aware or suspicious nothing more. It’s keygen will bounce back to quarantine after restore if the dir it’s in is opened in windows explorer with “active protection” enabled …).

It seems that I’m not the only one with no right click scan (which is shell integration …).

However still a very strong free contender for average user.

loveboy_lion · November 28, 2011, 5:39pm

mine is also at 11146
I wonder how do they have a good detection though the virus database is not updating it even detects lots of 0-day malware
anyways will keep an eye to see when it updates its database
I a free version is so good i wonder how good is their paid version which updates frequently anyone tested their paid version

[attachment deleted by admin]

khanyash · November 29, 2011, 9:13pm

3 days & no updates. Uninstalled it. But signature detection seems good. And registry scanning also seems good. Also has suspicious behaviour detection but dont know how good it is. Looks promising if updates frequency is good & heuristics/behaviour is improved.

Thanxx
Naren

ran_golde · November 30, 2011, 8:38am

Awhile ago I’ve created a network policy called AV update (based on Web browser, changed DNS to both TCP as well as UDP for AVG + log all).
I’m configuring all AVs to use this policy.

UnThreat does not log any internet access (not due to automatic upadtes nor due to manual check via about).

BTW: I’m failing to get sched whole computer scans to work (nothing block by D+).

For now I’m keeping it installed as a 2’nd opinion scanner (active protection disabled).

khanyash · November 30, 2011, 10:30am

I sent an email to Unthreat team regarding AV updates, database & engine in the free & paid version.

Here is the reply I got.

“There is automatic update in the paid version but not in the free one. We are about to release a new version of the Free version with a button for offline update.
The databases are the same but you will have to do manual updates on the free version.”

Thanxx
Naren

ran_golde · November 30, 2011, 10:39am

There’s a button (I guess this is manual) for “Check For Update Now …” under update (after clicking about) - pushing it does not create any out connection.

I guess the sched scan does nothing due to usage of free version …

@naren : if you can get them to enable manual excludes (even for “known threats”) for active protection it will be great ! 88)

khanyash · December 6, 2011, 3:48pm

New version of Unthreat Free Edition released with autoupdate feature now. Previously it was manual update.

Thanx
Naren

khanyash · December 6, 2011, 7:14pm

Unthreat Forum Released

http://www.unthreat.com/forums/

By the way I also asked them now what is the difference between the autoupdate in free & paid version?

They replied “The update in the free version is a bit slower than our paid version, however our incremental updates are no more than 100-200kb so they are still downloaded quickly. Other than that, there are no differences.”

I also asked them Unthreat uses Vipre engine but I find difference in detection of Unthreat & Vipre, why?

They replied “There might be slight differences between us and Vipre because they recently released their new version with a new engine. We will soon have it in-house and upgrade it.”

I must say awesome support.

Thanx
Naren