In this test we examine the self-protection capabilities of TOP-20 most popular Internet Security antivirus products against 33 cases of possible malware attacks aimed to override or disrupt operation of the antivirus protection. This was the first time we tested the antivirus self-protection under Windows 7 x64.
Social engineering techniques make it easy to entice users to download and launch malicious programs as yet unknown by antivirus solutions. In such cases, in order to gain complete and uninterrupted control over the system, malicious programs search for an antivirus program, firewall or other protective solution in order to disrupt its operation.
Consequently, contemporary antivirus products should be able to resist such attempts, that is, they should include self-protection functionality. This helps them to resist even the most complicated attacks, such as when malicious programs use a variety of methods to disable protection, and remove the infection using standard tools after receiving the appropriate antivirus database updates.
In this test we analyzed the ability of popular antivirus programs to treat active malware by statement on October 2012 -- when a malicious program has been executed and installed on a computer and may be using various methods to prevent detection and removal by antivirus solutions.