How good/bad is Kaspersky?

Discussion in 'other anti-virus software' started by Gaeko, Jun 26, 2009.

Thread Status:
Not open for further replies.
  1. Rain_Train

    Rain_Train Registered Member

    Joined:
    Aug 27, 2008
    Posts:
    142
    A Little OT...

    Just a really simple and quick question: does the new 2010 version still have that iSwift & iChecker compatibility issue with CHKDSK? That's always what scared me off from Kaspersky :( .
     
  2. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,166
    Location:
    PA
    From my experiences only -

    The good:

    - good AV scanner; I believe it's second only to AntiVir. Hopefully it will improve again in tests.
    - easy to use firewall
    - sandbox
    - improved proactive defense
    - automatic updates instead of mostly scheduled like some other AVs

    The bad:

    - web scanner still has a couple second delay when surfing
    - they seem to have taken out the remember individual action part of the prompt in proactive defense
    - scan times slow; can't browse Firefox well when scan is running (stickiness)
     
  3. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,065
    Re: A Little OT...

    it only ever effected a small number of customers and wasfixed ages ago.
     
  4. Jin K

    Jin K Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    105
    the good :

    1 - firewall
    2 - sandbox
    3 - scripts emulator
    4 - removal ability

    the bad :

    1 - proactive defence is just too weak >< its like a pic with the program
    2 - hips is also too weak in automatic mode ، its put almost everything in low-restricted group
    3 - weak removal against some malwares like rootkits......
    4 - their signature detection can easily bypassed
    5 - it seems that they suck a hard time in improving their heuristic !! also there is alot of malwares family that cant be detected with it

    anyway there is something that really make me feel angry not related to the program !! it about their website !! they dont mention if there is a heur or gen detection that been released to detect a special malware family like many other vendors :thumbd:
     
  5. bahamot

    bahamot Registered Member

    Joined:
    May 28, 2008
    Posts:
    16
    Re: A Little OT...

    KAV/KIS uses slightly different iSwift & iChecker methods since version 2009. Which KL said it would not affecting chkdsk performance.
     
  6. BlueZannetti

    BlueZannetti Registered Member

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    Re: A Little OT...

    I don't believe the method per se has changed, but the ultimate invocation does seem more selective on casual inspection. The net result is more in line with the implied usage metrics for file object ID's.

    Blue
     
  7. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,166
    Location:
    PA
    Could you explain why you think the signatures can be easily bypassed?
     
  8. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,899
    Location:
    localhost
    Actually this applies to all signature based tools. Just a small change and puf... scanner is eluded.
    On the contrary KAV engine is one of the best in unpacking support
     
  9. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,166
    Location:
    PA
    I was thinking it is a general problem, so I'm asking why he mentioned it as a problem specifically here.
     
  10. zfactor

    zfactor Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    6,102
    Location:
    on my zx10-r
    one thing i still notice in 2010 i saw in 2009 is the browser slowdowns. especially for streaming like you tube etc.. ive changed the settings and it still stutters at times. other than that and a few times i saw the memory usage go up to near 100mb (ive read other people reporting the same memory leak) i have not seen anything bad and it is a very nice overall suite. i do like the sandbox though ive had a few things not run properly in it.. this is a first release though. i may go back to kaspersky if they can weed out just a couple issues
     
  11. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    How good/bad is Kaspersky?:-If this isn't a trolling thread I don't know what is!How did this get past the mods as legit title?
     
  12. TJP

    TJP Registered Member

    Joined:
    May 6, 2006
    Posts:
    120
    Steve, I couldn't agree more.

    Jin K please drop the Kaspersky hate. You've stated your issues with Kaspersky at every given opportunity since you've changed AV vendors.
     
  13. Jin K

    Jin K Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    105
    yes maybe its a general problem but there is some AVs who have some technique to detect these modfied malwares with heur or gen detection !! like avira and avast for example !!

    and till now there is some AVs in this world who dont use gen detection o_O for unknown reasons :mad: like kaspersky
     
  14. deltantor

    deltantor Registered Member

    Joined:
    Jun 28, 2009
    Posts:
    1
    Like this?
    http://i40.tinypic.com/j7xfmh.jpg



    sourav_gho and TonyW: No no no, he wasnt talking about ROGUE applications, he was talking about ROUGE applicators. Kaspersky does not detect a single rouge applicator out there.
     
  15. harlan4096

    harlan4096 Registered Member

    Joined:
    May 6, 2008
    Posts:
    234
    Location:
    Almería (Spain)
    What Do You mean? Kaspersky, has of course, heur and gen detection, and has been improved in last year.

    Regards.
     
  16. sourav_gho

    sourav_gho Registered Member

    Joined:
    May 22, 2009
    Posts:
    141
    Yes,
    absolutely right it has generic signatures, some ppl have very much negative thinking in their mind about Kaspersky no matter what proof u give :mad:
     
  17. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,642
    Location:
    Sneffels volcano
    Just like the ones he uses? Avon? :D
     
  18. Blackcat

    Blackcat Registered Member

    Joined:
    Nov 22, 2002
    Posts:
    4,024
    Location:
    Christchurch, UK
    Agree :thumb:

    I wonder whether a similar thread with an AV beginning with E/N would have been allowed to start? :blink:
     
  19. Jin K

    Jin K Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    105
    give me a one single gen detection o_O also yes they have improved in last year but its still not enough !!! look at every new test is come !! they are getting a bad results everytime :'(

    i dont hate kaspersky but i hate the fact that they are really falling !!

    but it seems like what they say :

    (a day to you and a day on you)
     
  20. harlan4096

    harlan4096 Registered Member

    Joined:
    May 6, 2008
    Posts:
    234
    Location:
    Almería (Spain)
    I think last tests of Proactive Detection (AV-Comparative for example) Kaspersky did not bad ... and heur can be bypassed too, We see it every day ... so HIPS/and Proactive Defense, both, help us too.

    Regards.
     
  21. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,899
    Location:
    localhost
    Bad results? KAV engine is constantly a top 5 engine. This is regardless if it is one of the most targeted by malware (i.e. malware writers test their creation first with it). All this sounds like just a BIG pile of rubbish :gack:

    Fax
     
  22. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,741
    Location:
    UK
    Other than by signatures, malware can be detected by other means in current KL products such as by any one of the heuristics, HIPS and PDM modules if these are enabled.

    Generic signatures are updated as and when required. Much more seems to be made of heurisitics these days though, and not only by KL. Since you mentioned AVIRA, the last time I tested with that AV, it flagged something under its own heuristics engine, and not by a generic signature.

    In the last on-demand test by AV-Comparatives, it mentions false positives by various vendors. I know they are FPs and have since been corrected, but if you examine the detection names it's interesting to note that out of 14 FPs for Kaspersky, 5 were by generic signature (e.g. Trojan-Downloader.Win32. Generic), and you say it doesn't detect anything by generics, even though they were wrong in this case.

    AVIRA on the other hand had 10 detections out of 24 that were heuristically based (e.g. HEUR/Malware); 5 were by generic signature (e.g. TR/Downloader.Gen).
     
  23. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    see!:-its turned into a "have a go at Kav/kis thread"!
    Any thread that starts off with this type of"agenda"(no matter which product it is about)is going to attract the opinions form completely oppsite veiwpoints,the fanboys and the haters,on here the haters probably outnumber the fanboys for other products other than eset,so as soon as the thread started I and the OP knew where it was going!it was a deliberate ploy by him/her!
     
  24. format_c

    format_c Registered Member

    Joined:
    May 6, 2008
    Posts:
    116
    it's not the truth at all, KL has the weakest signatures and must to create a lot of them => slow down.

    not the truth, too.
     
  25. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,899
    Location:
    localhost
    LOL... is this post to help this thread to be locked? :gack:
    Well, post factual technical analysis that everybody can review or zip.

    Last time a serious performance review was published on KAV it was rated as "advanced" . Last detection test also confirm high detection rates and effective generic/heur detection. KAV engine has always been top 3-5 since ages.

    This is facts, rest is.... BS :D

    Fax
    P.S. I am not running KAV :D
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.