Kaspersky Internet Security 2011 in "real world"-test

Discussion in 'other anti-virus software' started by King Grub, Jun 25, 2010.

Thread Status:
Not open for further replies.
  1. King Grub

    King Grub Registered Member

    Joined:
    Sep 12, 2006
    Posts:
    814
  2. Matthijs5nl

    Matthijs5nl Guest

    Short summary of the results:

    - 4.685 samples from May 2010, were all detected both on-demand and on-acces;
    - 445.775 malware samples, detection rate of 99,45%;
    - 200.000 clean samples, 0 false positives;
    - tried to acces 25 malicious websites, 23 were blocked;
    - tried to install KIS2011 on a by 25 items infected machine, 23 were removed after installing KIS2011, althought after the restart some registry keys and HOST items were broken;
    - tested KIS against in total 25 active and inactive rootkits, all were detected;
    - test performed by AV-Test.org.

    I think that are excellent results.
     
    Last edited by a moderator: Jun 25, 2010
  3. King Grub

    King Grub Registered Member

    Joined:
    Sep 12, 2006
    Posts:
    814
    Yes, best results imaginable, and AV-Test is a reputable testing organization.
     
  4. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    Excellent indeed ! Especially impressed with it's rootkit detection and disinfection capabilities.:thumb:
    0 FPs with a 99+% detection rate too.
     
  5. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    yeah, impressive results.
     
  6. chris1341

    chris1341 Guest

    As someone struggling a bit with the bugs still evident in the 2011 products its good to see that this fairly comprehensive test shows the product still does the important stuff very well indeed. Roll-on CF1 when the user experience will hopefully match the protection levels.

    Cheers
     
  7. iravgupta

    iravgupta Registered Member

    Joined:
    Dec 17, 2009
    Posts:
    605
    Must...stop...myself...from...dishing..out...the....money....
     
  8. Matthijs5nl

    Matthijs5nl Guest

    I see trjam already changed his security setup again xD. Do you really have licenses for all programs or what?
     
  9. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    Impressive Result...But does anybody tested it against latest TDL3 rootkits ? Is it able to detect it and clean it completely? :rolleyes:

    Trjam is really a fanboy of each AV who did excellent in Test Reviews...Its nothing new. :D
     
  10. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    Welcome back ;)
     
  11. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    Me too. Let them all perform well
     
  12. sourav_gho

    sourav_gho Registered Member

    Joined:
    May 22, 2009
    Posts:
    141
    Very impressive. Has KL changed the av-engine? As far as I know it uses the same av engine of v2010, and till v2010, the detection has never reached 99%.
    Kudos to KL...:thumb:

    Edit: Their page for 2011 products advertise only for feature improvements like GeoSecurity, Improved sandbox etc. But never states about av enhancements.
     
    Last edited: Jun 25, 2010
  13. Matthijs5nl

    Matthijs5nl Guest

    It doesn't state anything about what type of rootkits were used, which is ofcourse quite a shame. But as far as I know there are very few apps which can remove the latest TDSS/Alureon rootkit, only Hitman Pro, and some specific programs to remove that rootkit, as far as I know GMER can't handle it for example.
     
  14. iravgupta

    iravgupta Registered Member

    Joined:
    Dec 17, 2009
    Posts:
    605
    It would have been excellent if he would care to share his insights into each product he tests and the reason why he switches. Probably there is some kind of 'Quest for Perfection' at play here, which is nearly impossible to achieve in the present state of digital security. But still, would love to hear his thoughts.
     
  15. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    It's able to detect (pretty much) all variants (tested a ~dozen samples, versions varying from dec 09 to may '10), currently removes all except there are issues with April edition of TDL3+.

    (tested in a VM, so results may vary in real world)
     
  16. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    Then we'll be fanboy of all of them...:D
     
  17. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    I am sure he only changes his signature...and display pic and not his AV. ;)
     
  18. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    Have you tested it yourself or you are talking about the test review?
     
  19. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,060
    Location:
    New Delhi Metallo β-Lactamase 1
    You are absolutely right, only Hitman Pro and few other application (Personally Don't Know) are able to remove the latest version of TDL3...That's why i have asked that whether they have tested KIS 2011 against the latest threat of TDL3 or not. Even i have saw that many AV's are not able to find out TrojanSpyEye, which is also using stealthy techniques to evade the detection capability of many AV's...
     
  20. Rampastein

    Rampastein Registered Member

    Joined:
    Oct 16, 2009
    Posts:
    290
    As far as I know KIS 2011 detects pretty much all variants of TDSS and is able to remove most of them.

    I've also tested KIS 2011 against many versions of TDSS in a VM.

    Also the results are impressive. I wonder if they tested KIS 2011 in Automatic mode or in Interactive Mode (where its HIPS asks the user instead of deciding automatically what to allow and what to block).
     
    Last edited: Jun 25, 2010
  21. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    Myself ;)
    The changelog usually doesn't show tweaks and changes to existing engine features.
    For ex. in 2010 the Automatic rootkit scan is able to detect rootkits/malware which other scan tasks (quick/full) weren't able to, even if set to max settings. In 2011 the technology behind Auto rootkit scan has been ported over to other scans. :) (at least it's able to detect what 2010 quick/full scan missed)
     
  22. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    well if I didnt have licences how could I use them.
     
  23. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    Wrong. 2 computers have FD-ISR with a total of 10 snapshots each. That is 20 different setups. I currently test 14 products. So the avatar changes with the snapshot used.;)
     
  24. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    TBH I've paid little attention to KIS over the last year or 2.However,although this is just one test,I've seen enough here to pique my interest again.

    I'd be interested to read a detailed appraisal of the various improvements for this year.;)
     
  25. m0unds

    m0unds Guest

    with as often as people say it's really heavy, in my experience with client and friends' machines, it's not at all. several people i know have been using kis2010 and now kis2011 on limited-spec netbooks with nary a problem. it's a much better polished product than previous versions (2009 and earlier) imo. the firewall is smart, proactive stuff works really well, its detections are good and it's a mostly hands-off product that doesn't bug users with prompts that can't be disabled.

    also their updater applications is badass if you have a fileserver and multiple KAV/KIS clients on a network...it aggregates the updates and you just configure the clients to update from that location in addition to the main kaspersky servers. updating AV defs at wireline speed is awesome.

    i'd probably switch to it myself if kaspersky offered a site license.
     
Loading...
Thread Status:
Not open for further replies.