Page 1 of 1

Call me crazy, but I have suspicions about this test...

Posted: Fri Oct 11, 2013 1:27 pm
by Lumberjack
http://www.youtube.com/watch?v=m0MqPV0O_iM

according to this Sandboxie 4.04 fails to protect against these malware samples.
I have to admit I'm very suspicious about this, because Sandboxie fails to protect against too many malware samples.
If someone else on board has already tested Sandboxie, I'm sure the answer would be that Sandboxie 4.04 did not fail against malware samples.
Big thanks.

Posted: Fri Oct 11, 2013 1:47 pm
by Buster
I do not see the fail.

First time the computer is scanned, Hitman Pro finds malware samples in sandbox folder and in the folder where malwares used for testing are stored.

Sandbox folder and folder containing malwares are removed.

Second time the computer is scanned, Hitman Pro finds nothing.

What is the problem?

Posted: Fri Oct 11, 2013 2:27 pm
by Peter2150
I am not sure of the point the video is making, but if it is that Sandboxie failed then there is a lack of understanding of Sandboxie

Couple of points.

1. Sandboxie does nothing to identify malware or whether a program is good or bad.

2. Unless run exclusions are in place, Sandboxie does nothing to prevent anything from runninig.

3. What Sandboxie does admirably well is prevent malware that does run from infecting the system.


No. 3 is the key.

Pete

Posted: Fri Oct 11, 2013 2:40 pm
by Lumberjack
Buster wrote:I do not see the fail.

First time the computer is scanned, Hitman Pro finds malware samples in sandbox folder and in the folder where malwares used for testing are stored.

Sandbox folder and folder containing malwares are removed.

Second time the computer is scanned, Hitman Pro finds nothing.

What is the problem?
No problem at all, but how could I miss it?
I wasn't paying attention too much, so obviously I have not seen this video very good.

Posted: Fri Oct 11, 2013 9:13 pm
by PepC4U2
If all those malware samples were actually running in the real system it would seem to me your computer would become infected and possibly you might not even be able to finish conducting this test depending upon what the malware would actually do when running on your system.

Those malware samples were "CONTAINED" in the sandbox and once the sandbox is deleted they are gone. If you "RECOVERED" those malware samples "OUT OF THE SANDBOX" then your computer would become infected.

Posted: Sun Oct 13, 2013 12:24 pm
by Lumberjack
Has anyone see this?

OpenFilePath fails when FileRootPath is changed:
http://www.youtube.com/watch?v=aGn2kr858Ss

Should there be any worries about this?

Posted: Sun Oct 13, 2013 4:33 pm
by Peter2150
Lumberjack wrote:Has anyone see this?

OpenFilePath fails when FileRootPath is changed:
http://www.youtube.com/watch?v=aGn2kr858Ss

Should there be any worries about this?
I don't take any youtube reviews seriously. Why didn't he simply report it here.

Pete