Antivirus Software Tests

The results of Antivirus Software Tests

Динамика изменения возможностей антивирусов по лечению активного зараженияIn this test we analyzed the ability of popular antivirus programs to treat active malware by statement  on October 2012 -- when a malicious program has been executed and installed on a computer and may be using various methods to prevent detection and removal by antivirus solutions.

 Time assessment for executing the antivirus operations by a group of usersWhen choosing a personal antivirus, protection quality is one of the main criteria. But if the results for some products are about the same by this factor, the user starts paying attention to the other characteristics of these products such as their productivity and usability.

Сравнение уровня самозащиты антивирусных программ Windows 7 x64 и x86In this test we examine the self-protection capabilities of TOP-20 most popular Internet Security antivirus products against 33 cases of possible malware attacks aimed to override or disrupt operation of the antivirus protection. This was the first time we tested the antivirus self-protection under Windows 7 x64.

Social engineering techniques make it easy to entice users to download and launch malicious programs as yet unknown by antivirus solutions. In such cases, in order to gain complete and uninterrupted control over the system, malicious programs search for an antivirus program, firewall or other protective solution in order to disrupt its operation.

Changes in active infection treatment capabilities of antivirus productsNowadays malicious programs increasingly use different rootkit technology to hide itself in a compromised system. This fact forces anti-virus software to evolve the detection methods of hidden objects. The purpose of this test is to show the ability of modern anti-virus software to neutralize rootkit-based malware.

Antivirus test - Operation system boot time The objective of this test is to show how personal antivirus software influences the typical operations performed by the user, slows down its work and utilizes the system resources. 

Эффективность различных антивирусов против новейших угрозIn this test we analyzed the complex antivirus protection effectiveness to Zero-day malware spread via websites.

Changes in the heuristics effectivenessSerious efforts of the antivirus industry are focused on proactive methods of antivirus protection, which allow antivirus software to combat malicious programs that have undergone modifications and those that are still unknown. This development trend is the most promising on the market and almost every developer likes to emphasize just how good their proactive defense is.

Figure 2 Changes in active infection treatment capabilities of antivirus productsThis is not the first time the Anti-Malware Test Lab has tested antivirus products for their ability to combat malicious programs, when they have already penetrated into operating system, started their activity and hid their presence. Will antivirus solutions be able to detect and remove the malicious program without disrupting the system’s operation? This test will show how popular antivirus products cope with this difficult task.

Diagram 3: Protection against the Twido virus family

The polymorphic malicious software (known also as polymorphic file-infectors or polymorphic viruses) is the variant of traditional file-infectors unlike to other file-infectors, the polymorphic viruses use different code-techniques to generate new mutations and make their detection hard for anti-viruses. The practice shows, that not only the ability to cure is important, but the correct detection too. Our test will give the answer how modern anti-virus solutions are able to protect user in case of polymorphic virus infections.

Syndicate content