Author Topic: virus belletin  (Read 12006 times)

0 Members and 1 Guest are viewing this topic.

mantra

  • Guest
virus belletin
« on: July 08, 2003, 08:28:56 AM »
is so difficul win a virus bulletin award?

the antivirus has to detect only virus or for example remote access (rat)?

how many virii has to detect ??!? the av

techie101

  • Guest
Re:virus belletin
« Reply #1 on: July 08, 2003, 03:57:57 PM »
Mantra,

Yes it is indeed difficult to win the Virus Bulletin award.
It is not only detecting the virus, but all variants.  In addition, the av program must do well against "inthewild" viruses which are not common, and keep changing "shape".

The av also competes against other leading av programs.

No, it is not a simple matter to win in this kind of market.
There are many many anti-virus programs out there, and believe me...I have tried most of them.

Avast is the most promising one around and the price is right for the Home user....FREE!!!

 ;D

[url=http://]]]http://www.virusbulletin.com

mantra

  • Guest
Re:virus belletin
« Reply #2 on: July 08, 2003, 04:14:45 PM »
but norton & nod32 won a lot of awards!!!!!!!!!!!!!!!!!!

but in my test norton missed many and many viriii

jdong

  • Guest
Re:virus belletin
« Reply #3 on: July 10, 2003, 05:20:02 PM »
Describe your 'tests'.

I've done a little unofficial testing myself, with trojans/worms, packing them, etc.

In my test of 125:

F-Secure: 125 detected, 0 suspicious.
Avast: 104 Detected, 0 Suspicious.
KAV: 125 detected, 0 suspicious.
NAV: 106 detected, 3 suspicious
McAfee: 121 detected, 0 suspicious
AVG: 93 detected, 0 suspicious
RAV: 110/125 by sig, 1 heuristics
Panda: 103 by sig
GAV: 115 by sig
F-Prot: 61 by sig, 34 Heuristics



I'm VERY VERY impressed with Avast's ability to blow the free AVG way,and manage to keep up so closely and surpass some top dogs...


But if you are really looking for Malware/Trojan detection, nothing beats KAV/F-Secure

Waldo

  • Guest
Re:virus belletin
« Reply #4 on: July 10, 2003, 05:25:01 PM »

But if you are really looking for Malware/Trojan detection, nothing beats KAV/F-Secure

That's correct, but its better to have a layered defence > that means having a seperate trojan scanner & guard

like > TDS3 or Trojan hunter or Anti trojan 5.5 (i use this one).

Never trust on 1 program to detect ALL nasty's.

jdong

  • Guest
Re:virus belletin
« Reply #5 on: July 10, 2003, 05:32:23 PM »
Very very true, but would you consider F-Secure as layered defense? ;D Look at the image, F-Secure is AVP (KAV) + F-Prot + Orion (heuristics engine)


Artisan

  • Guest
Re:virus belletin
« Reply #6 on: July 10, 2003, 07:42:40 PM »
jdong,

Which AVG version did you use (6.0 or 7)?  Which program build?

Artisan

Waldo

  • Guest
Re:virus belletin
« Reply #7 on: July 10, 2003, 07:57:15 PM »
Very very true, but would you consider F-Secure as layered defense? ;D Look at the image, F-Secure is AVP (KAV) + F-Prot + Orion (heuristics engine)


Well, its not really layered defence, but it comes close...:)

Never forget that your displaying anti virus software engine's and NO specialised Trojan or RAT or backdoor engine's offered by well known programs like TDS3 and trojan hunter, The cleaner, anti Trojan, Trojan shield,....

I wouldn't feel total secure, if i didn't have one of these running resident also. Altough 100 % security doesn't excist.

If a trojan or some other nasty manage to shut down your F-secure engine, than your doomed. But not
if your running another seperate program.

I'm sure you get the point. You see to know your way around this kind of software.

Waldo
« Last Edit: July 10, 2003, 07:57:43 PM by Waldo »

techie101

  • Guest
Re:virus belletin
« Reply #8 on: July 10, 2003, 08:07:49 PM »

But if you are really looking for Malware/Trojan detection, nothing beats KAV/F-Secure

Depends on your point of view!  Each user has to decide which program offers them the level of protection they need.  If you separate the programs you tested into "free" and "not-free"......Avast DOES a heck of a job.

No av is perfect.  To each user, a program is or is not sufficient, but that does not make it less useful.

Thanks for the "informal" testing.  

 :D
« Last Edit: July 10, 2003, 08:18:55 PM by techie101 »

jdong

  • Guest
Re:virus belletin
« Reply #9 on: July 10, 2003, 10:04:46 PM »
Yep. As I've said before, I'm very impressed with Avast, and recommend it as a free AV to everyone. In fact, before my school offered me F-Secure, I was a dedicated Avast user. I still use Avast on an older system that can't take the load of F-Secure.

Strangest thing with F-Secure... Works on my 1.8GHz P4 perfectly with no slowdown, but is unbearably slow on my 2.4GHz P4...


I tested AVG 6, not 7. From all I've heard, the free v7 will be out in september...
« Last Edit: July 10, 2003, 10:25:10 PM by jdong »

jdong

  • Guest
Re:virus belletin
« Reply #10 on: July 10, 2003, 10:29:25 PM »
Very very true, but would you consider F-Secure as layered defense? ;D Look at the image, F-Secure is AVP (KAV) + F-Prot + Orion (heuristics engine)


Well, its not really layered defence, but it comes close...:)

Never forget that your displaying anti virus software engine's and NO specialised Trojan or RAT or backdoor engine's offered by well known programs like TDS3 and trojan hunter, The cleaner, anti Trojan, Trojan shield,....

I wouldn't feel total secure, if i didn't have one of these running resident also. Altough 100 % security doesn't excist.

If a trojan or some other nasty manage to shut down your F-secure engine, than your doomed. But not
if your running another seperate program.

I'm sure you get the point. You see to know your way around this kind of software.

Waldo

Yes, Waldo, I do know the security problems with a single AV product...

However:

(1) F-Secure runs from a Windows service, so regular programs may NOT terminate it (error 604, permission denied). Programs may terminate the tray icons, but that doesn't disable protection... you still get MessageBoxes from the service if a virus is present. The only perceivable way that one could terminate F-Secure is with the NET command or another service, in which case:

(2) I use regular user accounts (can't modify the system registry, add services, use the NET command, etc), I don't run random attachments, and I run all untrusted EXE's in a VMWare virtual PC before running it on my primary PC.



So, as far as I'm concerned, I'm pretty safe. But, as we've established before, there's no such thing as 100% security

Waldo

  • Guest
Re:virus belletin
« Reply #11 on: July 10, 2003, 10:57:54 PM »
well Jdong, I see your a verry serious PC user...taking all these precautions.

This is a real good thing mate, as NO program in the world can defend from the biggest disaster > a dummy pc user.

If you watch out wich exe's etc...you open and run, most problems can be solved even before they happen.


I saw you did some AV testing on your own... sweet job. always intresting.

http://www.dslreports.com/forum/remark,7165307~root=security,1~mode=flat;start=77

(copy & paste the complete link)

Waldo
« Last Edit: July 10, 2003, 11:33:54 PM by Waldo »

techie101

  • Guest
Re:virus belletin
« Reply #12 on: July 11, 2003, 01:07:53 AM »
From all I've heard, the free v7 will be out in september...

From what I have read on Grisoft......the released versions are trial/shareware.  Sorry!  Free version will remain AVG 6 for now.
 :-[

Just try to remember that this is an AVAST FORUM!
It is not a Product Forum, nor is it an AVG forum.
They have their own.

 ;D
« Last Edit: July 11, 2003, 01:10:19 AM by techie101 »

jdong

  • Guest
Re:virus belletin
« Reply #13 on: July 11, 2003, 04:54:14 AM »
From all I've heard, the free v7 will be out in september...

From what I have read on Grisoft......the released versions are trial/shareware.  Sorry!  Free version will remain AVG 6 for now.
 :-[

Just try to remember that this is an AVAST FORUM!
It is not a Product Forum, nor is it an AVG forum.
They have their own.

 ;D

Yeah I know, but I don't like to see questions with hanging ends or endless anticipation... sorry, just my personality.

mantra

  • Guest
Re:virus belletin
« Reply #14 on: July 11, 2003, 09:08:39 AM »
i did a test with 3314 virii  ;D ;D

AVAST32 Missed  1 :-)))))
Kaspersky & f-secure 2 :-))
Drweb 4.29 missed 15 :-)
nod32 missed 340  :-((( i paid for it
f-prot missed 189 :-(
norton for me it's a big shit  i did not try