Layered defence, how effective solution?

Now FF can you repeat these tests with the trial version of TDS-3?

 

Hi Firefighter,

It is not just NOD but some other AVs also have good Heuristics and are also working to improve that type of protection. I personally believe that type of protection is also a valid consideration for chosing an overall line of defense.

 

I agree.

Best regards,
Firefighter!

 

Are there any stats at all on how successful heuristic technology is at detecting zero-hour malware? Or false positives caused by heuristics? Or how many pain-reliever bottles have been consumed as a direct result of it?
-

 

I'm just curious, how good Avast's heuristics in email could be. Unfortunately I couldn't install my a bit over 260 Megs collection to my emailbox to check that. Still very good combo with Ewido in my mind.

Best regards,
Firefighter!

 

Some testing results here:

Retrospective/ProActive Test:
http://www.av-comparatives.org

I have noted some posts about FPs but I haven't noticed any FPs myself with NOD's AH on a game machine here used by a bunch of teens. However, I have noted that the NOD HTTP scanner has terminated some of the connections with an AH detection while they were surfing game platform cheat and walk through sites which I consider a good thing and that does help cut down on the pain-reliever bottles for me.

IMHO, I do think it is very good that heuristic can stop this sort of stuff prior to an AV getting the definitions out to all their users and then users updating their definitions in a timely fashion.
https://www.wilderssecurity.com/showthread.php?t=58482

So from my end heuristic can be a valuable addition, YMMV.

 

Can you show any screenshot how I can update that f...g mother of trojans detection software (tds).

PS. My eyes are already almost blind after this. Maybe because of that it is only 1:54 AM local time.

Best regards,
Firefighter!

 

Go here to download the update file: (screenshot is in Firefox)
http://tds.diamondcs.com.au/index.php?page=update

 

Then copy it to your TDS-3 directory, and you're done!

 

Thanks Firefighter, for these tests...

It's nice to see who can we improve our protection with combining our AV's with some AM's (AntiMalware)...

What is your current opinion about ewido and a-squared?

 

Personally I like Ewido, easy to use and make tests, that's why I have bought a licence to it.

About a² Personal. Have you seen many engine updates concerning av:s, that can improve the "Common PC Protection" level in real time protection from 69...88 % to 84...92 %? There you have my answer.

Best regards,
Firefighter!

 

I also prefer the ewido.

It seems that they work hardly to make a very good program...

 

How fast detection rate can improve? Just after 3 days Ewido scored 100 detections more than on last Friday. Over 50 worms more and the rest were mostly among trojan like malware. Now only eScan Free, McAfee and DrWeb were better against worms than Ewido.

All this happened even that I have not submitted any samples to any av/at vendor.

Best regards,
Firefighter!

 

And now just few hrs later, again 12 detections more with Ewido, am I tracked?

Best regards,
Firefighter!

 

...