 DiamondCS APT: Advanced Process Termination V3.0, Kaspersky Anti-Virus Personal 5.0.676 |
Kaspersky Lab Forum > English User Forum > Protection for Home Users > Kaspersky Internet Security & Anti-Virus  |
  2.06.2006 13:22
Post
#1
|
|
|
Newbie  Group: Members Posts: 5 Joined: 9.04.2005  |
Testing Results:
kavsvc.exe: Kernel Kill can terminate the process and its anti-virus functionality, but it is able to restore in a few seconds. kav.exe: kill 6, 7, 8, and kernel kill can stop the process, but it is also able to restart in a few seconds. klswd.exe: kernel kill can kill the process, but it is not able to restart itself. Since Kav 5 is still around for a while, I hope that the development team can better the self-defence capability. Can anyone test it against KAV/KIS 6 and post the results here? Thank you. http://www.diamondcs.com.au/index.php?page=apt http://www.diamondcs.com.au/downloads/apt.zip This post has been edited by R.L.: 2.06.2006 13:24 |
 |
 
|
|
2.06.2006 13:25
Post
#2
|
|
 Are You Kidding? Group: Moderators Posts: 56933 Joined: 28.01.2006 From: Timisoara, Romania |
KAV 6/KIS 6 has a better self protection. I tested it and it didn't manage to kill it with all methods, even crash & kernel kill.
|
|
|
|
|
2.06.2006 13:29
Post
#3
|
|
|
Newbie Group: Members Posts: 5 Joined: 9.04.2005 |
QUOTE(lucianbara @ 2.06.2006 09:25) KAV 6/KIS 6 has a better self protection. I tested it and it didn't manage to kill it with all methods, even crash & kernel kill.  Thank you, lucianbara. I do believe that KAV/KIS 6 has far advanced self-protection capability. Do you know any other anti-virus application programs that can match KAV/KIS 6 excellence in this area? |
|
|
|
|
2.06.2006 13:31
Post
#4
|
|
|
Are You Kidding? Group: Moderators Posts: 56933 Joined: 28.01.2006 From: Timisoara, Romania |
QUOTE(R.L. @ 2.06.2006 12:29) Thank you, lucianbara. I do believe that KAV/KIS 6 has far advanced self-protection capability. Do you know any other anti-virus application programs that can match KAV/KIS 6 excellence in this area? I only used nod32 before and i know that if you kill the scanning service it's starts again. But i haven't tested it with that program. |
|
|
|
|
2.06.2006 16:22
Post
#5
|
|
|
Member Group: Members Posts: 14 Joined: 1.10.2005 From: Columbus, Ohio |
TrendMicro has a "watchdog service" that monitors its process. If it gets ended, it should restart within a minute. The service can be identified in Task Manager by it's random 5-7 alpha-numeric character name (ie B67T58L). Everytime you re-start the computer, a new name is generated.
|
|
|
|
|
2.06.2006 16:27
Post
#6
|
|
|
Are You Kidding? Group: Moderators Posts: 56933 Joined: 28.01.2006 From: Timisoara, Romania |
Yes, kav 5 also has that feature for the 2 important components kavscv.exe kav.exe. But kis/kav 6 can't even be killed (both avp.exe processes)
|
|
|
|
|
2.06.2006 16:49
Post
#7
|
|
 Kaspersky Fan III Group: Gold beta testers Posts: 2465 Joined: 14.10.2005 |
QUOTE(R.L. @ 2.06.2006 11:29) Thank you, lucianbara. I do believe that KAV/KIS 6 has far advanced self-protection capability. Do you know any other anti-virus application programs that can match KAV/KIS 6 excellence in this area? if i'm not wrong norton 2006 has a good self-protection too (not killable with apt). --------------------  |
|
|
|
|
2.06.2006 16:51
Post
#8
|
|
|
Are You Kidding? Group: Moderators Posts: 56933 Joined: 28.01.2006 From: Timisoara, Romania |
QUOTE(Julian @ 2.06.2006 15:49) if i'm not wrong norton 2006 has a good self-protection too (not killable with apt). BD has something like this too, it's not killable but i don't know up to which point |
|
|
|
|
2.06.2006 17:07
Post
#9
|
|
|
Kaspersky Fan III Group: Gold beta testers Posts: 2465 Joined: 14.10.2005 |
i'm sure these products haven't got a protection to all their files through a driver like kis6.
-------------------- |
|
|
|
|
| Lo-Fi Version | Time is now: 22.05.2013 14:58 |