Trying to Choose Between KAV6 and NOD32

lodore, if this is true, how come Kas scans more files. Are they locked ones or fictious ones,lol.

 

ok kas or kav if just the av. scans more files because it counts all files in archives as files and unpacks them all. so kav shows alor more files. where as windows shows say 100000 files kaspersky might show 20000 because is unpacks the archive and counts all the files in it. it hass support for more packers than nod32 also as far as i know dont flame me for claiming this.

 

Not flaming, you threw out the LOL first. So what you are saying, I think, is that Kas and Bit dont scan locked files either. Thats is all I am asking. Kas is currently scanning my games on my HP machine. I dont think anything is their, but Nod doesnt. Just asking for help, as a lot are in trying to understand this. Money isnt a issue, nor is time scanned, but accuracy is.

 

if you want accuratecy try bitdefender it may be one of the slowest scan engines but its really through. and bitdfender 10 is lighter on resourse than the old version. also I reccomend you try antivir pm because that doesnt seem to skip mainy files and please report on your findings k?

 

Bit 10 locked my pc, will not recomend it. It may work for some though. Again I ask, is Kas scanning files that Nod sees as locked. It isnt that hard to just say. And I say that with respect.

 

im not sure because kaspersky may show more files but it shows everyfile it the archive that it scanned so say 5 files inside the archive instead of 1 file the archive itself. but doa test set up logging of all files do a full scan with nod32 save the log somewhere. then run kaspersky again and do full logging and try to see how many locked files. but you really should try antivir

 

thanks, but Nod and Kas are the 2 that came recomended by the State of NC IT staff. I just like to know all I can before deciding. I have my own website about DBS, and we deal directly with Direct and Dish and hopefully only try to distinguish the good and bad with both. This is a great place, but it is aggravating trying to get a simple answer. Thankfully someone with ESET is dealing with me directly for my logs to help explain this.

 

ok but they are right both great av's but so is Antivir. shame bitdefender didnt work for you. there is so mainy nod32 vs kaspersky posts on this forum.
everyone asks it at sometime. choose which one is best for you. i find kaspersky 6.0 a bit buggie atm and nod32 has some features i dont like. todayi installed antivir on a laptop and its great. easy interface great detection fast scans. so my fav av atm is antivir. but secound bitdefender except bitdefender has some bugs to iron out to. well i gtg

 

This is actually a DESIGN BUG OF MOST(ALL?) Antivirus & trojan
scanners. ( ROOTKIT SCANNERS already DO THIS ) This issue is a MORE
THAN 1 YEAR OLD stuff but i see no fix till now!!!!

lately i've ONLY tested it on the following AV & few other spyware
scanner & saw its still NOT fixed!

Kaspersky Anti-Virus 6.x (latest)
BitDefender 9 Professional Plus (latest)
NOD32 (latest)

OS tested: WINxp sp2

to keep things simple, let me give you a situation;

if there is a directory/file a EVIL_USER is willing to hide from
antivirus scanner all he has to do is fire up a command prompt & run
the command;

cacls.exe TORJANED_FILE_OR_DIRECTORY_NAME /T /C /P EVIL_USER:R


next time EVEN when the administrator starts the antivirus "system
scan" the TORJANED_FILE_OR_DIRECTORY_NAME will be effectively
bypassed as the ownership of the directory is just of the user account
named; EVIL_USER and the antivirus "manual scan" is running just with
the privilage of ADMINISTRATOR


by this way a malicious executable can remain hidden in the system
BYPASSING THE SCAN even when the AV scanner is run by administrator!!!

BUT there isn't a compulsion that there should be a user with a
malicious intension to get this condition & bypass the scan.

there is another DUMB equivalent of the above cacls.exe command;
Right click a folder, Properties > Sharing Tab >> Check on the tick
mark of >> Make this Folder Private

by doing so a user might me thinking he is making a folder
not_accessable_to_any_other_system_user BUT by doing so... the
directory gets effectively sciped by a AV scannner vulnerable to this
trick.


SOLUTION:
AV already running with administrative privilage if the system
administrator is starting manual scan, so what does AV should do is
excelate its (manual scan) OF THE ANTIVIRUS SCANNER ENGINE/DRIVER (not
the GUI) privilage to SYSTEM before starting the scan which will
effectively bypass file permission & be able to scan the locked file
with any file permission in Windows!

And one more thing, if during AV scan if a file can't be opened due to
some processes LOCKING the file.... Instead of going through the
regular file open process AV should instead directly read the SECTORS
of the hdd holding the locked file and examine if there is sething
malicious (which still some AV don't do & instead just report the
file(s) as locked!)

am i clear Discussions, welcome!

 

I would presume that the multiple answers to this verbatim repeat of a post already received at multiple sites (see the following: http://www.securityfocus.com/archive/1/442442/30/360/threaded, http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0186.html,
http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048559.html for example) covers the range of answers reasonably well.

Are you looking for something else?

Blue

 

I trialed both... before finally deciding on Kaspersky. I love the hourly updates and the proactive defense.

To be honest I really liked both programs and you can't go wrong with either one.

It may come down to something as simple as which interface you prefer.

 

I have KIS 6 and I tried NOD32 but didn't like it.

Bitdefender 9 is my once in a while on-demand scanner though.

 

I didn't read the entire thread, so I'm not sure if the OP has made a decision. I'm just posting beacuse I just saw that TigerDirect.com is selling KAV 6 for $24.99 USD (after $25 rebate). Rebate offer expires on 12/31/2006.

Kaspersky Anti-Virus 6.0 @ TigerDirect.com