12/04/2011
10:08

Comparative tests on the identification and automatic removal of variants TDL3 and TDL4

C.R.A.M. (TG Soft's Anti Malware Research Center) have done some TESTS on the identification and automatic removal of TDL3 and TDL4 virus variants with some of the most used AntiViruses on the market.

Since Vir.IT eXplorer 6.8, andvanced removal techniques has been introduces, so it is possible to automatically remove TDL3 and TDL4 ROOTKIT variants (also known as Alureon, TDSS and TDSSkiller).

TDL3 and TDL4 are some very insidious malwares belonging to the ROOTKIT "family", they are very dangerous and well crafted for Microsoft Windows operating systems. They are considered to be some of the most infecting and prerilous viruses that are circulating right now, because they are able to hide inside the operating system and prevent most antiviruses to detect and delete them.

C.R.A.M. (TG Soft's Anti Malware Research Center) researchers have studied these kind of ROOTKIT and had creatd advanced algorithms to detect and remove them (automatically) and they thought it would be a good idea to check which antivirus softwares out in the market can detect and remove these ROOTKITS.



Product Engine Signatures Detect
TDL4		 Remove
TDL4
(automatically)
Avast! Free Antivirus 6.0.1 110224-0
(24/02/2011)		 110224-0
(24/02/2011)		 Rileva
MBR
infetto		 No
AVG Internet Security 2011 10.0.1209
(06/04/2011)		 1500/3556
(06/04/2011)		 No No
Avira Antivir Personal
Free Antivirus 10.0.0.635		 8.02.04.192
(24/03/2011)		 7.11.05.147
(31/03/2011)		 No No
BitDefender Antivirus Pro 2011 (11/04/2011) (11/04/2011) No No
BullGuard Antivirus 10 10.0.175
(07/04/2011)		 (07/04/2011) No No
ESET NOD32 Antivirus 4 4.20 6022
(07/04/2011)		 No No
F-Prot Antivirus 6.0.9.5 4.6.2
(06/04/2011)		 (06/04/2011) No No
Norton AntiVirus 2011
by Symantec		 (07/04/2011) (07/04/2011) No No
Panda Antivirus Pro 2011 (08/04/2011) (08/04/2011) No No
Sophos Anti-Virus 9.5
(11/04/2011)		 (11/04/2011) Si No
Vir.IT eXplorer 6.8
by TG Soft		 6.8.33
(03/02/2011)		 (03/02/2011) Si Si


So, if you still couldn't appreciate TG Soft's softwares we would like to recommend you to use our Vir.IT eXplorer Lite - Free Edition - software to perform cross-checks with it. It is the free-to-use version of our AntiVirus, both for private and corporate uses. We also rember you that Vir.IT eXplorer Lite was engineered so it is completely interoperable with other AV present on your computer without uninstalling them or slowing down the computer.

Download Vir.IT eXplorer Lite
Any information published on our site may be used and published on other websites, blogs, forums, facebook and/or in any other form both in paper and electronic form as long as the source is always and in any case cited explicitly “Source: CRAM by TG Soft www.tgsoft.it” with a clickable link to the original information and / or web page from which textual content, ideas and / or images have been extrapolated.
It will be appreciated in case of use of the information of C.R.A.M. by TG Soft www.tgsoft.it in the report of summary articles the following acknowledgment/thanks “Thanks to Anti-Malware Research Center C.R.A.M. by TG Soft of which we point out the direct link to the original information: [direct clickable link]”

Vir.IT eXplorer PRO is certified by the biggest international organisation: