Calgarypuck Forums - The Unofficial Calgary Flames Fan Community - View Single Post

OilKiller · 02-27-2010, 11:41 AM

OK, so some interesting results last night. Finished up pretty late so posting the results this morning. Included in the test (I ran out of time for any others) were:

Avast Free 5
ClamWin
G Data
Immunet Protect
Kaspersky
Norman
Norton AntiVirus 2010
Panda AntiVirus Pro

All latest versions I could download, all allowed to update any required information (program and signatures) and all set to default out-of-the-box settings. All tested in shadow mode using Shadow Defender and all done on Windows 7 64-bit.

Used 25 malware links that were found that day (some consider these zero day threats, while others may say one day threats). Included in those were rogues, bots, droppers, etc. No real focus on any one thing. Just lots of nasties, including a rogue AV called PC Defender. Not really sure how nasty it was, but it got by everyone except for one.

Stopped/Reported means just that, the AV reported there was a threat and it had been stopped or dealt with. No Reported Threat means the AV didn't say anything and it appeared the threat got through. How dangerous the threat was is anyone's guess. MBAM Infections Found means that once the test was over, Malwareybytes Antimalware was loaded, updated and ran (just a simple quick scan) and the # of infections found was reported.

Results (Worst to Best):

8. ClamWin

Stopped/Reported: 0
No Reported Threat: 25
MBAM Infections Found: 45

Overall: 0%

7. Immunet Protect

Stopped/Reported: 5
No Reported Threat: 20
MBAM Infections Found: 35

Overall: 20%

6. Norman

Stopped/Reported: 5
No Reported Threat: 20
MBAM Infections Found: 33

Overall: 20%

5. Panda AntiVirus Pro

Stopped/Reported: 12
No Reported Threat: 13
MBAM Infections Found: 35

Overall: 48%

4. Norton AntiVirus 2010

Stopped/Reported: 13
No Reported Threat: 12
MBAM Infections Found: 22

Overall: 52%

3. Avast

Stopped/Reported: 16
No Reported Threat: 9
MBAM Infections Found: 27

Overall: 64%

2. G Data

Stopped/Reported: 18
No Reported Threat: 7
MBAM Infections Found: 22

Overall: 72%

1. Kaspersky

Stopped/Reported: 20
No Reported Threat: 5
MBAM Infections Found: 2

Overall: 80%

So there you have it. Avast finally not perfect anymore and neither is Kaspersky, although Kaspersky did an excellent job and was the ONLY one to not allow the rogue AV PC Defender to get in and start displaying pop-ups and tray alerts. Kaspersky also had a note that a reboot was required, so it might have even removed the other two upon a reboot, but I could not reboot to see while running in shadow mode. I think it would be fair to almost give Kaspersky an honorary 100%.

Couple of other side notes. G Data was a huge download, and was the only one that required a reboot after install as well as a reboot after updating. What a pain. It did really well though, although it did also give me a prompt when downloading and installing MBAM (looked like some sort of HIPS prompt), so I'm not sure if it was prompting for just about everything, or it truly was doing as well as it did.

Also, I had to go on the hunt for something to uninstall Panda because it immediately displayed an error when I tried to uninstall it. That was also a pain. Even a reinstall and another uninstall would not work. It's great if the AV does not require a reboot after installing because all of it can be done in shadow mode, allowing me to simply reboot and move on the the next test, although I installed Panda by accident not in shadow mode, thus the trouble.

So again, not saying one is any better than the other and these tests are not professional or scientific by any means, but more links used this time. So take from this test what you will.

02-27-2010, 11:41 AM	#29
OilKiller Lifetime Suspension Join Date: Feb 2004 Exp:	OK, so some interesting results last night. Finished up pretty late so posting the results this morning. Included in the test (I ran out of time for any others) were: Avast Free 5 ClamWin G Data Immunet Protect Kaspersky Norman Norton AntiVirus 2010 Panda AntiVirus Pro All latest versions I could download, all allowed to update any required information (program and signatures) and all set to default out-of-the-box settings. All tested in shadow mode using Shadow Defender and all done on Windows 7 64-bit. Used 25 malware links that were found that day (some consider these zero day threats, while others may say one day threats). Included in those were rogues, bots, droppers, etc. No real focus on any one thing. Just lots of nasties, including a rogue AV called PC Defender. Not really sure how nasty it was, but it got by everyone except for one. Stopped/Reported means just that, the AV reported there was a threat and it had been stopped or dealt with. No Reported Threat means the AV didn't say anything and it appeared the threat got through. How dangerous the threat was is anyone's guess. MBAM Infections Found means that once the test was over, Malwareybytes Antimalware was loaded, updated and ran (just a simple quick scan) and the # of infections found was reported. Results (Worst to Best): 8. ClamWin Stopped/Reported: 0 No Reported Threat: 25 MBAM Infections Found: 45 Overall: 0% 7. Immunet Protect Stopped/Reported: 5 No Reported Threat: 20 MBAM Infections Found: 35 Overall: 20% 6. Norman Stopped/Reported: 5 No Reported Threat: 20 MBAM Infections Found: 33 Overall: 20% 5. Panda AntiVirus Pro Stopped/Reported: 12 No Reported Threat: 13 MBAM Infections Found: 35 Overall: 48% 4. Norton AntiVirus 2010 Stopped/Reported: 13 No Reported Threat: 12 MBAM Infections Found: 22 Overall: 52% 3. Avast Stopped/Reported: 16 No Reported Threat: 9 MBAM Infections Found: 27 Overall: 64% 2. G Data Stopped/Reported: 18 No Reported Threat: 7 MBAM Infections Found: 22 Overall: 72% 1. Kaspersky Stopped/Reported: 20 No Reported Threat: 5 MBAM Infections Found: 2 Overall: 80% So there you have it. Avast finally not perfect anymore and neither is Kaspersky, although Kaspersky did an excellent job and was the ONLY one to not allow the rogue AV PC Defender to get in and start displaying pop-ups and tray alerts. Kaspersky also had a note that a reboot was required, so it might have even removed the other two upon a reboot, but I could not reboot to see while running in shadow mode. I think it would be fair to almost give Kaspersky an honorary 100%. Couple of other side notes. G Data was a huge download, and was the only one that required a reboot after install as well as a reboot after updating. What a pain. It did really well though, although it did also give me a prompt when downloading and installing MBAM (looked like some sort of HIPS prompt), so I'm not sure if it was prompting for just about everything, or it truly was doing as well as it did. Also, I had to go on the hunt for something to uninstall Panda because it immediately displayed an error when I tried to uninstall it. That was also a pain. Even a reinstall and another uninstall would not work. It's great if the AV does not require a reboot after installing because all of it can be done in shadow mode, allowing me to simply reboot and move on the the next test, although I installed Panda by accident not in shadow mode, thus the trouble. So again, not saying one is any better than the other and these tests are not professional or scientific by any means, but more links used this time. So take from this test what you will.