 有几点不敢苟同:
1、漏洞扫描、防护有用。
2、Pis09开启发后才报可疑,与联网断网无关,当然,联网之后识别和报可疑更多。
3、Pis09隔离区里面过多可疑文件会导致程序响应时间过长,这是测试版已知的BUG,正式版会解决。
4、解毒對个人用戶意义同样重大。
5、Panda的內置防火墙是鸡肋?!天啊……这么优秀的墙……
“記不住規則”——这是Pis09beta2已知的BUG,beta1正常,以往正式的版本不会出现这个问题。
6、我认为,数据包的拦截方式(中间层驱动)是卡迅雷的主要原因,Pis09Beta已有相当大的改善,Pis08和07新版可将迅雷全局最大连接数设置为3。
7、不见Panda卡代理,但记得以前会报轮子的无界,哈哈,很好很合我意。
8、Panda占內存尤其是虚拟内存较多,但系统、应用软件操作的流畅性很好,在此也赞一下Kis09的流畅性。
9、要退出Panda保护,你需要停止相关驱动,卸载相关动态链接库,恢复所有Hook、Inline-Hook,摘除文件过滤驱动……不然还真的会呆在那里保护自身和你——它可不是白吃白喝。
10、Pis09的Collective Intelligence、联网后的強启发已经将侦测率提高到一个很高的层次。
11、Panda处理样本的速度慢?那要看你通过什么办法上报了,我用熊猫内置的SOS上报,一般24小时内就有解决方案(针对个人的特征库),48小时内入通用库。
下面转个来自熊猫Blog的帖子,英文好的饭友帮大家翻译下,谢谢
Mine is bigger than yours!
In the latest months, there have been some discussions about malware figures. My colleague Stuart wrote in the SophosLabs blog a post about this, as well as our colleagues at McAfee did. Today I’ve seen a press release from F-Secure, where they announce the publication of their 2008 first half data security summary (I have to talk to Mikko to see how they can summarize something that hasn’t finished yet ;-)
So now we have a small ranking, listed in alphabetical order:
F-Secure 900,000
McAfee 400,000 – 10,000,000
Sophos 4,600,000
Symantec 1,122,311
Panda 13,225,535
Q&A:
Does this mean that we detect more than they do?
No, it doesn’t mean that. It is like comparing apples and oranges.
So are you detecting less than the others?
No, as said before you shouldn’t compare apples and oranges.
Why some are apples and the other oranges?
You can be counting just files or detections. With one good detection you can detect thousands of malicious files.
The more signatures a product has, the best the product is?
No. Product A could have X signatures, and product B could have X/2 and detect more than product A.
Finally, when AV companies are talking about this kind of figures, they are referred as detections, malware files or similar. So no proactive technologies are involved in those figures… and that’s part of the solution – as well as the signatures- for the ever growing malware landscape that we have. Last week, Eva Chen, Trend’s Micro CEO said that ‘AV Industry sucks’. Even though I know what she meant and I do agree, I would have used different words. But what I want to point out about this is a different thing --> scanning "in the cloud". I’m really happy to see that we have created a trend and that now Trend Micro is following us. I really think that this is the best AV companies can do right now, and I hope the others will follow us too. We published almost one year ago a paper about this, we released a proof of concept of that technology within a memory online scan engine called Nanoscan. Later we applied some of this technology in our 2008 products, and it is completely integrated in our 2009 products, which are right now on public beta. Let’s see if we can build a safer world! |
楼主: 英仔
发表于 2008-8-7 21:17:08
