Finding and Installing Malware
Now, my own tests to see what NIS does with malicious programs.
In one of the tests, I saw this screen:
If a child saw this, there is a chance he would click any of the buttons. If it was someone who thought that this is a porn video or something, he may be determined to see it. He may press remove it.
Or someone else may think it is safe, and runs it.
We know what would happen if I clicked remove or stop. But I want to see what Norton would do if I allow.
If I "meet up" with an alert that says NIS is sure it is a baddie, I will remove. But if it is indefinite (like this one), I allow it to run partly to see if NIS will do any more about it.
Nothing happened after this, so I moved on.
The next file was blocked before I tried to open it (Download Guard detected "bad" behavior).
Over time of testing 15+ malicious files, I noticed that some were removed by heuristics (blocking base on behavior). With a lot, I just got a pop-up like the picture above, and giving no definite info one way or another.
During the testing time, I had a lot of little pop-ups in the lower-right corner, saying SONAR had detected and removed some file. So Norton was finding stuff, but still I noticed many funny tasks running, and I was getting tons of pop-ups by rogue security programs.