New Tests Show Rootkits Still Evade AV

From New Tests Show Rootkits Still Evade AV:

 

Terrific article.
Thanks for the link

 

You're welcome .

 

Wow, thanks as well. It appears, that I relied too much on ondemand scanners. I know, that AVs can not detect new rootkits, but I thought, that they have no problem detecting the old one. But not detecting 3 years known rootkits, common. I wonder, when there will be an antirootkit scanner for Vista 64 finally?!

 

AVG anti rootkit no longer free ?

 

I wonder how Kaspersky 2009 would have done

 

I also wonder how well Dr. Web would have done.

 

Some lesser-known AV tools fared more poorly, including Dr Web Antivirus für Windows 4.44.0.09170

 

Grats proud of Kaspersky. Can't wait till 2009 comes out in Canada. Anyone know a release date?

 

this was already discussed ages ago on this very forum,

the test is old, the samples are extinct and this test....... was a waste of time.

 

Do you make your post because Nurse Web faired poorly?

 

The article is a bit old, May 13th.

 

nope, cos its fact.

article is from may, but the test was from alot sooner, using extinct samples from way before then.

 

Have to agree with C.S.J. here, Dr web's employees have the sense to not mess around and add useless extinct viruses on their list, unlike some other so called 'leaders' in tests who get half their employees to get extinct ones to commercially impress users by major tests, AV-Comparatives e.t.c.

 

i just think the 'professional' testers, or not so.......

a flawed test, is an invalid one....

so please show me a valid one....

 

This March 2008 test from AV-Test.org has a column with grades for active rootkit detection.

 

I have yet to see one test you have called "Valid" every time web gets shot down you take it out on the test and not the software. maybe that why there so unknown spends to much time trying to say we had a unfair disadvantage instead of working on there software and fixing holes. I have a hard time believing every test that pops up here is "Invalid" or the "official" ones giving a unfair advantage to the rest.

 

then you obviously need to dig deeper, or are you one who sees the results and comes to the conclusion?

FYI, drweb does not need to play this kind of game, this forum alone is full of stories of drwebs excellence.

And also, if these so called tests bothered me, why would I be using drweb?

Thinking IS allowed outside of the box, even if they dont want you to.

 

Sorry Ronjor

Anyways good read on the article and the other link provided to more recent test results from AV-Test.

 

It is good to know that my av is one of the three that detected and cleaned all inactive and active samples. (test from AV-Test.org )

Three AV tools had perfect scores, catching all active and inactive rootkits as well as removing all of them: Norton Antivirus 2008 15.0.0.58; Panda Security Antivirus 2008 3.00.00; and F-Secure Anti-Virus 2008 6.80.2610.0.

 

Eset did pretty well in the Vista Ultimate test as did Trend. Also Eset has upgraded their detection to detect new types with the latest build I believe.

 

Yes NOD's 667 Release I believe has a new Anti Mod update in it.

also on another note from the post above its nice to see Norton on a change for the bette. never ever thought I would be backing them after they have been the way they are for years.