Lots of AV software out there is vulnerable to kernal patching: http://www.matousec.com/info/articles/khobe-8.0-earthquake-for-windows-desktop-security-software.php
Microsaoft's is one of the ones not vulnerable: http://arstechnica.com/microsoft/news/2010/05/microsoft-mse-safe-from-windows-kernel-hook-attack.ars On Sun, May 16, 2010 at 8:48 AM, Thane Sherrington <[email protected]> wrote: > At 07:06 AM 16/05/2010, maccrawj wrote: >> >> That's nice, have you read anything to back up that assumption? From what >> I read >> @ VirusBulletin MSE is as good as commonly used AV's. > > The only AVs that I would use right now would be Avira (faster and slightly > better) and NOD32 (slower) - and I'm probably going to be recommending > Malwarebytes (pay version) soon. > > T > >
