Hello. GMX released a paper where they were comparing the four biggest e-mail provider in Germany and how successful the most known viruses are caught by the e-mail software.
They were testing the following providers and virus software: www.1und1.de (Symantec) www.gmx.de (Sophos Anti-Virus) www.web.de (ClamAV) www.freenet.de (ClamAV) Now they say that Symantec and Sophos caught 100% of all the viruses, and ClamAV only got 54%! I have to say, that this test was done in January with ClamAV 0.65 and current signatures at that time. I am a little disappointed with these results and I am sure it is not really representative. First, because ClamAV 0.65 didn't have support to scan OLE2 documents (so no macro viruses were caught). Unfortunately they didn't say which viruses were not caught by ClamAV, but they say they were using the January virus list published at www.wildlist.org! There are 254 viruses on that list with 2 infected files for each virus, means the anti-virus software has to find 508 viruses. They added 113 obsolete wildlist viruses to the test, also with 2 infected files for each virus, means 226 files. In total, it should check 734 infected files (these are file, macro and script viruses). To make the test more difficult, they took some files from Windows 2000 and XP installation CD, which should not be detected by the anti-virus software. All files sent to the mail server are 6'266 files (57MB). Now I am curious to know how the current ClamAV is performing. But unfortunately I can't get any viruses from wildlist.org, so maybe the developers can check the list at wildlist.org and see if they support all those viruses there. What is the reaction of the ClamAV team? Regards, Phil.
smime.p7s
Description: S/MIME cryptographic signature
