Stand-alone AV Cleaning Tools Comparative

Discussion in 'other anti-virus software' started by itman, Feb 22, 2017.

  1. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,591
    Location:
    U.S.A.
    I was on the AV-Test web site yesterday and noticed this. Don't believe a previous thread has been poste d on it.

    Put to the test for 12 months: This is how well security packages and special tools help after an attack
    https://www.av-test.org/en/news/new...-packages-and-special-tools-help-after-an-at/
     
  2. Spartan

    Spartan Registered Member

    Joined:
    Jun 21, 2016
    Posts:
    1,424
    Location:
    Dubai
    Look at how bad the Microsoft Malicious Software Removal tool (or shall I say, ignore tool) does in the above image....

    That's why I disabled it from ever being installed.......to do this.....save this as a TXT file and rename the extension to.reg then merge it with your registry:

    Disable Microsoft Malicious Software Removal Tool

    Code:
    Windows Registry Editor Version 5.00
    
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MRT]
    "DontOfferThroughWUAU"=dword:00000001
     
  3. guest

    guest Guest

    Good to know :thumb:
     
  4. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    BTW where is the pdf file to download to view the test results? The pictures on the screen in the link are too small to see

    Thanks
     
  5. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
    Just click on the pictures to view them enlarged.
     
  6. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Kaspersky leading the pack again :)
    I wonder how Emsisoft Emergency Kit would perform. Since it's using BD definitions it's detection could be similar but I wonder if cleaning capabilities are similar also.
    MSRT cleans only specific malware families so IMO it would be better to test their Safety scanner to get more realistic results.

    Personally I wouldn't use cleaning tools to restore my system, but they are useful when cleaning up other people's computers.
     
  7. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,591
    Location:
    U.S.A.
    They also didn't test Eset which has both a cloud scanner and a bootable cleaner solution.

    Doesn't work anymore on Win 10.
     
  8. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    OK, thnx, didn't know that.
     
  9. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Well I looked at the PDF, and it just confirms my own feeling that these test are a waste. After announcing their findings, at the bottom of the page they said this didn't apply to ransomware, and the only sure protection was backups. Well if you are taking their advice and doing backups, then the rest of the tests are irrelevant.
     
  10. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,591
    Location:
    U.S.A.
    If you think about, why would they? These are post-infection mitigations. Most if all ransomware removes itself after the encryption process.
     
  11. Martin_C

    Martin_C Registered Member

    Joined:
    Dec 4, 2014
    Posts:
    525
    Yes, they clearly used the wrong tool.
    MSRT are as you say, targeting specific malicious families only.

    This is not correct.

    On Windows 10 a user will use Windows Defender Offline which has been built into the OS since Windows 10 1607 (Anniversary Update) was released.

    Official info : https://technet.microsoft.com/en-us/itpro/windows/keep-secure/windows-defender-offline
     
  12. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,417
    Location:
    Slovakia
    Windows Defender Offline might be superior, but Safety Scanner works just fine on 10, but I prefer KRT and EEK anyway.
     
  13. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    I also use EEK. One question about KRT - is it portable? Does it store all data (including signature files) in folder from which it is run or does it store some of it's data on system partition also?
     
  14. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,417
    Location:
    Slovakia
    In unpacks to the user's temp folder and it creates a report folder on C, the report can not be read outside of KRT though.
     
  15. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Thank you, will try it out.
     
  16. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    One note - it seems that test was conducted on Win 7 since MSE was tested and not WD.
     
  17. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,417
    Location:
    Slovakia
  18. Edwin024

    Edwin024 Registered Member

    Joined:
    Nov 14, 2004
    Posts:
    1,008
    How is Kaspersky leading the pack? Avira Pro is the only one with a 100% score.
     
  19. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,417
    Location:
    Slovakia
    There are 2 tests, one for security suites and another one for removal tools, but Kaspersky did OK even as a suite, it just left one harmless leftover, otherwise it would get 100%.
     
  20. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    As mentioned, I was looking at special removal tools test results. Avira did great also.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.