NOD32 winner best heuristics in this test

Is a secret

 

What happens if something new comes out that kills the all-magic single defence suite? Statistically it is harder to bring down a layer.

Cheers

 

This is the problem all security software is facing and the lurch we are all in. Malware is being churned out faster than we can protect ourselves from it so it is more easy to get hit today than in previous years. It's forcing AV's to look at all types of malware. Remember the days when an AV only took care of actual viruses? Now they look for spyware and riskware and toolbars and all sorts of stuff.

I just wish they'd make a secure internet portal and be done with all this multi-layered stuff because the day is almost here when we simply just can't run enough security applications due to lack of resources. Already we need a firewall, an anti-virus, an anti-trojan, anti-worm and anti-spyware and soon anti-registry hacking and anti-rootkit tools. It's just getting to be too much.

I'd rather pay my ISP a few dollars extra each month for a secure portal that is already screened by the ISP.

Dave

 

Not to mention personal preference. I like separate layers because I find that in most cases each is more fully featured and better written than an "all in one" suite product. For example LnS and Proxo together provide greater control and less resources (together) than ZA Pro. Others do prefer to just use ZA (or some other firewall with all the extras), I like that I have the option.

I also have to agree w/ BS about the database.. I won't feed any flames here, but I won't be switching from NOD32 anytime soon, proactive methods being just one reason. I even have a paid version of KAV 4.5 Lite, but choose not to use it. I will agree, however, that opinions around NOD32, KAV, and some others (on all sides, especially together) could do with a little balance. Like I stated in another thread, users of both AVs rarely end up infected, and that's what counts in the end. Further, regardless of what AV I use, I would still want an AT for the superior memory scanning and at least one layer of generic protection. AVs are not the end-all.

 

I can fully agree with the sentiment, but keep in mind that it's all still relatively new. Look at how far AVs have come in the past couple years, and their future can be seen in the anti-trojan scanners today. We'll get there, it's just going to take some time and innovation. The business customers make too much noise about it not to. Take a look at the GIANT based anti-spyware scanners and new Kerio (with IPS), too. With a good AV, those two could give you pretty solid protection.. who knows, in enough time they might even mature!

 

Until now I can't find a program that protect us agaisn't the possible threads...
Maybe the new Kaspersky Internet Security could be the most complete when will be finish...

 

No,i meant diferent classes of malware. I like separate firewall if possible...

 

Ah, OK

NOD32 already started to protect us agains't all the malware threats, and the detection of spyware is growing very well...

I hope that avast!, my favorite free AV, can do the same thing in the next times...

 

Well, my primary reason for choosing NOD32 was that fact that it uses less resources with decent detection. I tried various versions and builds of KAV but they tend to freeze my desktop - especially when I'm using another CPU intensive application while resident is running. With NOD32, that is not an issue - on demand or resident (I use Escan free for on demand). Why doesn't NOD32 offer an extended database option for those who wish to use it?

 

If only KAV and NOD32 merged.

Then we'd have the best heuristics with a very light engine, and the best definitions around.

 

Name of AV: KAV32 AH

 

Or Kavnodsky32

 

Kaspersky AV - NOD edition

 

How about KAV OD Edition as in overdosed on protection!!!

Dave

 

Look how good is KAV signatures and NOD32's AH.

 

Another good detection with AH. ;-)

 

and another...

 

And one good detection with AH.

 

KAV is very very fast with new signatures. NOD 32 detect this file with AH.

This is a mass-mailing worm. Only KAV detect with signature. Good job Kaspersky!!!

 

This is not a heuristic detection. It's generic.

 

It's generic detection via AH.

 

Why people think that AH should handle everything? Generics are in some way heuristic, but it's not the same thing.

 

Read my lips: This is generic detection via AH.

 

This is a GENERIC DETECTION. It doesnt have to come via AH!

 

izi, it can use emulation module, but it's still a generic detection. Generic detection via heuristics is for modified versions of existing known samples (like probably modified Win32/Mytob.C). "probably unknown NewHeur_PE" is a AH detection. probably unknown Win32 is a standard Heuristic detection.
Generic detections are "a variant of Win32/Rbot" or "a variant of Win32/Mytob".