AV Recommendations

RTmarcRTmarc Member Posts: 1,082
We've had several threads lately regarding anti-virus recommendations. Saw this article today on Ars Technica and I thought I'd throw it out there:

http://arstechnica.com/journals/microsoft.ars/2008/12/04/av-comparatives-november-2008-report-only-nod32-worthy
AV-Comparatives November 2008 report: only NOD32 worthy

By Emil Protalinski | Published: December 04, 2008 - 02:14PM CT

AV-Comparatives is known for the thorough tests it does on security software. Following its October 2008 performance report, the company has released its November 2008 retrospective report. 16 products were tested against new and unique samples received between August 4-31, split into one and four week periods. Here are the results:

Data source: AV-Comparatives

The company also took false positives into account and then rated the security companies from best to worst:

* Advanced+: ESET NOD32
* Advanced: AVIRA, Kaspersky, Microsoft, Symantec, McAfee, GDATA
* Standard: TrustPort, BitDefender, AVG, Avast, Norman, VBA32
* No Certification: Sophos, F-Secure, eScan

The results are on par with what I have seen recently in the security software area: ESET and Kaspersky are still topping the charts, and I would still recommend either. Microsoft is, of course, out of the game in pay solutions, but we'll keep an eye on how the company's free solution will fare.

Here's a link to AV-Comparatives: http://av-comparatives.org

Comments

  • paintb4707paintb4707 Member Posts: 420
    I noticed the same thing reading through AV Comparatives. ESET is definitely number 1 when you weigh out the false-positives.
  • BokehBokeh Member Posts: 1,636 ■■■■■■■□□□
    I know Sunbelt Software has a new AV pkg out, and price isn't bad for multiple machines. Has anyone used it yet?

    http://www.sunbeltsoftware.com/Home-Home-Office/VIPRE/
  • dynamikdynamik Banned Posts: 12,314 ■■■■■■■■□□
    paintb4707 wrote:
    I noticed the same thing reading through AV Comparatives. ESET is definitely number 1 when you weigh out the false-positives.

    It's funny, the only complaint I have against NOD32 is that it always quarantines the .exes when I buy and download a new game from Steam icon_lol.gif
  • HeroPsychoHeroPsycho Inactive Imported Users Posts: 1,940
    AV-Comparatives November 2008 report: only NOD32 worthy

    Microsoft is, of course, out of the game in pay solutions, but we'll keep an eye on how the company's free solution will fare.

    Well, that's not exactly true. Microsoft does have Forefront, but it provides an API that allows other engines to plug into to scan files. This is crucial to this article that rates them. Forefront allows you to scan content with multiple engines if desired. Would NOD32 be as effective as say two scan engines that might be rated lower than it? Not even NOD32 is the first to have signatures for every single virus, so Microsoft touts having multiple engines with their own updates is advantageous.

    Not saying it would or wouldn't, just some food for thought.
    Good luck to all!
  • AhriakinAhriakin SupremeNetworkOverlord Member Posts: 1,800 ■■■■■■■■□□
    Since they are usually to 2 most recommended (and rightly so) one thing to keep in mind when using sites like AV Comparatives for ESET and Kaspersky is that they use Kaspersky AV only, Kaspersky Internet Security is needed for advanced security features like the HIPS module and application sandbox (They should really be part of the AV package but I guess it's kaspersky's carrot on a stick). In short KIS gives you much better malware prevention than KAV, and the metrics used on AVComparative don't really reflect that.
    Both are great choices though, and if you don't want to shell out for KIS then ESET is a better choice than vanilla KAV.
    We responded to the Year 2000 issue with "Y2K" solutions...isn't this the kind of thinking that got us into trouble in the first place?
  • KasorKasor Member Posts: 912 ■■■□□□□□□□
    Interesting chart...
    Kill All Suffer T "o" ReBorn
  • RussSRussS Member Posts: 2,068
    I always ask .... Who commissioned the comparison - unfortunately I find too often that when one AV or another comes out top in a comparison there is a link to that manufacturer somewhere in the background. Quite often someonbe doing the testing was involved in AV development or something like that.
    www.supercross.com
    FIM website of the year 2007
  • dynamikdynamik Banned Posts: 12,314 ■■■■■■■■□□
    While I'm the same way, I think AV Comparatives is fairly trustworthy. That's all they do, and they've been doing it awhile.

    http://av-comparatives.org/ - Click on the "About Us" link.
  • blargoeblargoe Self-Described Huguenot NC, USAMember Posts: 4,172 ■■■■■■■■■□
    Where's Trend?
    IT guy since 12/00

    Recent: 11/2019 - RHCSA (RHEL 7); 2/2019 - Updated VCP to 6.5 (just a few days before VMware discontinued the re-cert policy...)
    Working on: RHCE/Ansible
    Future: Probably continued Red Hat Immersion, Possibly VCAP Design, or maybe a completely different path. Depends on job demands...
  • RTmarcRTmarc Member Posts: 1,082
    dynamik wrote:
    While I'm the same way, I think AV Comparatives is fairly trustworthy. That's all they do, and they've been doing it awhile.

    http://av-comparatives.org/ - Click on the "About Us" link.

    What he said.
  • tierstentiersten Member Posts: 4,505
    dynamik wrote:
    paintb4707 wrote:
    I noticed the same thing reading through AV Comparatives. ESET is definitely number 1 when you weigh out the false-positives.

    It's funny, the only complaint I have against NOD32 is that it always quarantines the .exes when I buy and download a new game from Steam icon_lol.gif
    Odd. Mine doesn't do that. Wonder what is set differently on yours.
  • tierstentiersten Member Posts: 4,505
    HeroPsycho wrote:
    Forefront allows you to scan content with multiple engines if desired.
    Its a pretty obvious and neat idea but ewwwwww in actual operation. Your PC will be so slow running multiple AV packages! There is already a noticeable difference between not running any AV and running one.

    I've seen a similar system in operation for mail servers which use multiple AV packages to scan incoming emails & attachments however which does work quite well.
  • dynamikdynamik Banned Posts: 12,314 ■■■■■■■■□□
    tiersten wrote:
    Odd. Mine doesn't do that. Wonder what is set differently on yours.

    I'm not sure what trips it. It did it for The Witcher and one other one.
    tiersten wrote:
    I've seen a similar system in operation for mail servers which use multiple AV packages to scan incoming emails & attachments however which does work quite well.

    I think that's more what Forefront is geared towards.
  • HeroPsychoHeroPsycho Inactive Imported Users Posts: 1,940
    tiersten wrote:
    Its a pretty obvious and neat idea but ewwwwww in actual operation. Your PC will be so slow running multiple AV packages! There is already a noticeable difference between not running any AV and running one.

    I've seen a similar system in operation for mail servers which use multiple AV packages to scan incoming emails & attachments however which does work quite well.

    I've seen Forefront in action. Two scan engines and its performance is fine. 3 you really start to see slowdowns. Higher than that? Forget it.

    But to be honest, for Exchange AV, nothing beats Antigen/Forefront. Great product.
    Good luck to all!
Sign In or Register to comment.