What's new in KIS2018？ 2018版本的改进。+ 3月底将大规模更新一次各个反病毒组件

pal家族

Kaspersky Internet Security provides the following features:
卡巴斯基安全软件提供以下内容：

Added notification from Web Anti-Virus regarding pages containing adware or legitimate software that can be used by criminals to damage your computer or personal data.
现在网页反病毒新增拦截可能不需要有风险软件的拦截提示。

There is now protection against infection while the operating system is being restarted.
现在有新的对保护计算机重启时受感染的保护。

Improved technology for counteracting the modification of user files by malware, particularly by encryptors.
改进的保护机制：修改用户文件的病毒，尤其是勒索软件。

There is now the capability to navigate from the Licensing window to My Kaspersky portal to view information about the activation code.
现在可以从密钥界面导航到‘我的卡巴斯基’门户，以查看激活码信息。

You can now add a new activation code if the license has expired.
授权结束之后你可以信添加一个激活码。（什么鬼以前不行吗？）

You can now add a list of domains for which connections are not controlled by the application.
你现在可以添加一些老司机不管理的域名。

Diagnostics of application installation issues have been improved. Now, when there is a problem with application installation, the application saves the installation logs instead of deleting them.
程序安装诊断的改进。现在如果安装遇到问题，安装程序不会删除安装日志，而是保留他们。（难道？？？）

Application Self-Defense during upgrade to a new version has been improved. Now there is protection for not only the current version but also for the newly installed application prior to it being started for the first time.
自我保护改进。程序升级是不仅会保护现有的版本的内容，还会保护新版本的存在。

Improved speed for certain installation scenarios, the first startup, and the first update of the application.
提升某些环境下的安装、第一次启动、第一次升级的速度。

Improved notification that appears if you disable the System Watcher component. The notification now contains a more detailed description of the consequences of disabling the component, especially regarding the resultant lack of protection against encryptors.
改进你关闭系统监控组件时的提示。程序会提示你，关闭系统监控的严重后果，尤其是对勒索软件缺乏保护。

The procedure for displaying notifications has been improved.
改进弹出提示的过程。

The application now waits a longer amount of time before displaying a notification about outdated databases and application modules when the computer wakes from sleep mode.
计算机休眠之后，程序会多等一会儿在提示你该进行更新了。



用户自己观察得到的非官方内容：

卡巴斯基现在会将一个dll注入用户进程，我的实践是这样做并没有将其他程序稳定性降低。

使用更加改进的反病毒数据库（Klava），完整数据库为80MB左右，比2017（120MB）还少40MB，比KES10（180MB？）更得多了。

性能更加优秀，同样的电脑，2017一次快速扫描1分40秒，2018则是47s。我的实践。

改进的数据库结构，至少我是这么觉得。




其实不用翻译的，但是我感觉官方翻译总是怪怪的。。。。。。。。。。。。于是自己翻译了下。

pal家族

预计三月底更新一下组件：

SystemWatcher 系统监控组件/（启发式主动检测模块）
klavasyswatch.dll 2.3.6.1969 fcc0ba12e5eb275afdc7447431f2f7a4
sw2.xms f88f2da4f1f93a7bbf063f990aef826c
mod:
klavasyswatch.dll 2.3.6.1970 4b21611df38d7119035ad3a8ed37bdc6
sw2.xms b5612c6eb5ad1995025f63f9368bbc43

Changes:
Improvements of detection mechanisms 改进检测机制
Improvements of rollback mechanisms 改进回滚机制
Bugfix 修复bug





Avengine 反病毒引擎/（AV-Engine component）
avengine.dll 2.2.0.28 MD5: 8c5674dfc3aeb36eca46c32ef3dabf3f
avengine.dll (mod) MD5: 486efd588e295cfc094dcfd9d8a5bd07

Changes:
Use 64-bits drvcommlib 使用64位的？？？原谅我也很小白
Send Statistics about crash/loop 发送崩溃记录
Fix Access to uninitialized UserData is treated as error 手动哭脸2333
Fix crash 修复各种bug





Klavemu/kimul  启发式引擎（heuristic engine）
klavemu.kdl (x86, unmod) Version: 22.46.20.6 MD5: 4DD8CA4E32BA9A815122A7D6187EBCF9
klavemu.kdl (x86, mod) Version: 22.46.20.6 MD5: D3DDD965DAABB7BB2F01527A2EC33E43
kimul32.dat (x86, unmod) MD5: DC89E8B35AADF3EF385B4F6EE88C2139
kimul32.dat (x86, mod) MD5: C8CB3DFFB1F4649BDCF148B4552317F0
kimul64.dat (x64, unmod) MD5: D80EF5AE0CC06388345436E1BF1310B7
kimul64.dat (x64, mod) MD5: 3C50DE42D2C27238CF0A304FBEF656C0
klavemu.kdl (x64) Version: 22.46.20.6 MD5: 90F4B893B318D1C95C3021718284141E

Changes:
Antiemulation fix 反模拟器改进
Breakpoint fix 阈值改进？？？





QSCAN 快速扫描（rootkit扫描）
NONMOD:
kavsys.kdl 2.5.4.0 81635c7e1e402ff1a2aa6892b6b8aa4e
klark32.dat bfed94be593af5bfd8774b8f65721772
klark32.drv c004ab94bf03d65709c1af241eca482b
klark64.dat d0ca30ff2bbad75c896991c0c99e87a7
klark64.drv 522b0f138776268efd0cfbeba0948671
klbg32.dat 21b2c0160508eb44cfa9ffa255145b97
klbg32.drv 09dfae84d269aac678cec29fd7dd5e25
klbg64.dat 1220234bb9aad667d5a29c4edfbc85a1
klbg64.drv eb34bea2f8ef2dd8416790f60c4b6600
qscan.kdl 4.5.4.0 dd4f417391612d56db09188b49bfc20e

MOD:
kavsys.kdl 2.5.4.0 01d412f28fd90bb2c6e64bb7decb436c
klark32.dat 06e8242920b7b20beb469744dc2db08e
klark32.drv 69486ff046699188b39bb40c656d7dc0
klark64.dat d8a70338e6dc8e92c9475ff579743c00
klark64.drv 2d1f11053bfac6dda9b5c33db0c92509
klbg32.dat 154ff0f507800df89d86bf0cb6b3d7fb
klbg32.drv b403c8604820b2257057b20127286e12
klbg64.dat 514074a875086709753bf85a569e5a69
klbg64.drv acd52d65d7f2314b070dfeeb7d6e2a2e
qscan.kdl 4.5.4.0 0617639063e7a7f7d86d6497f5be4888

changes:
Bugfix for driver cure 修复驱动的bug修复
Optimized ODS scan in multicleanup mode 优化多重清理模式下的手段扫描
Optimized WinSxS scan 优化扫描winsxs
Hardlink scan fix 硬链接扫描修复
Bugfixes and internal improvements bug修复与内在优化与提升
Fixed scan hang on AD in KVRT product under Win10 RS2.  修复rs2系统上使用KVRT（卡巴扫描器）的卡死




KLSIHK 一个用于安全支付，虚拟键盘，虚拟化技术等的支持组件
klsihk.dll 14.0.52.0 f9c9b15bbb7494e92edc8a48abebb6a5
klsihk64.dll 14.0.52.0 85fac8b134a576da675bf5670511b7cf
klsihk64l.dll 14.0.52.0 dff9c3a9f2685689436b7fe2d4355c1b

changes:
Fix for Chrome 0xc0000142 error 修复谷歌浏览器0xc0000142错误 @VernierCaliper @cxy密斯 姗姗来迟的修复
Removed SSE2 instructions 喵喵喵~~~





oSSL  Operating Systems Simulation Language,操作系统模拟语言，新版本使用
crypto_ssl.dll (md5: cb8c2aa16b277ad0b932d65a311efcb3)
ssleay32.dll (1.0.2k md5: 0a21c01cb71df554c7a566770b14933e) (for KAVKIS2016 MR1)
libeay32.dll (1.0.2k md5: 4990a69c06812d3d671a27ef2f757599) (for KAVKIS2016 MR1)
crypto_ssl.dll (1.0.2k md5: cb8c2aa16b277ad0b932d65a311efcb3)
crypto_ssl.dll x64 (1.0.2k md5: cd64ca59880830e6f5bf88ba7fa2878e) (for SDK x64 only)

Changes:
New oSSL 1.0.2 使用新版本





Vapm 软件升级与清理组件
vapm.dll (3.3.0.19) hash: dd452eaca7cf6838be43944c572b66bf

Changes:
Bugfix   bug修复

linzh

2018有了和ESET一样的PUA拦截了？这个值得庆幸哇

pal家族

linzh 发表于 2017-3-19 00:10
2018有了和ESET一样的PUA拦截了？这个值得庆幸哇

？？？？不是一直有嘛？
就是那个威胁与排除里的选项呀

只是之前网页反病毒貌似不拦截还是咋的

pal家族

Avengine
avengine.dll 2.2.0.28 MD5: 8c5674dfc3aeb36eca46c32ef3dabf3f
avengine.dll (mod) MD5: 486efd588e295cfc094dcfd9d8a5bd07

Changes:
Use 64-bits drvcommlib
Send Statistics about crash/loop
Fix Access to uninitialized UserData is treated as error
Fix crash

QSCAN

changes:
Bugfix for driver cure
Optimized ODS scan in multicleanup mode
Optimized WinSxS scan
Hardlink scan fix
Bugfixes and internal improvements
Fixed scan hang on AD in KVRT product under Win10 RS2.

我感觉这里面有队上次那个avatar rootkit发现一两个问题的修复、、、、、、@Wesly.Zhang
但愿如此~~~~~~

necsuper

经验告诉我卡巴系列至少也要等到MR1才算最稳定。这个2018算了吧！

lvxing8686

necsuper 发表于 2017-3-19 05:36
经验告诉我卡巴系列至少也要等到MR1才算最稳定。这个2018算了吧！

还得等到 D 补丁 呢，我卡巴是大型测试软件！斜眼！！！

ysj963

超越ESET了吗？

zhanghtjj

ysj963 发表于 2017-3-19 10:52
超越ESET了吗？

我并不觉得eset比卡巴好，谈何超越？

pal家族

ysj963 发表于 2017-3-19 10:52
超越ESET了吗？

毫无意义的疑问。