Author Topic: False negatives (17)  (Read 8401 times)

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 4813
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: False negatives (17)
« Reply #15 on: December 08, 2013, 12:14:57 PM »
People who rely on AV scanners have been fooled by the marketing hype aimed at the technically illiterate. They will catch many things that don't matter, deliver an ever increasing list of generic tests (heuristic scanners) that deliver false positives and regularly miss the newer dangerous stuff.

There is no substitute for knowing your OS/Computer, knowing how to secure it, never ever run anything that you don't know and have a disk image of your boot partition as a backup. While there are exceptions, I have the suspicion that virus writers and AV scanner vendors are respectively the demand and supply sides of selling security software that are part and parcel of the same operation. I generally recommend Kaspersky, Eset and the generic Microsoft AV scanners for those who must use them but only if they maintain the correct discipline of not running trash and properly securing their computer. A VM sandbox is also a handy toy if you must run risky things.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :biggrin:

TWell

  • Member
  • ****
  • Posts: 748
Re: False negatives (17)
« Reply #16 on: February 13, 2014, 01:53:12 AM »
False Alarm Tests here

jj2007

  • Member
  • *****
  • Posts: 7558
  • Assembler is fun ;-)
    • MasmBasic
Re: False negatives (17)
« Reply #17 on: February 13, 2014, 03:21:30 AM »
False Alarm Tests here

Cute - that merits a ranking (September 2013):
#false positives
0      MSE
1      ESET
2      F-Secure
3      Fortinet
5      Kaspersky
7      Emsisoft
8      BitDefender
8      BullGuard
8      Sophos
10      Avast
13      AhnLab
13      Qihoo
14      Trend Micro
20      Avira
20      Kingsoft
20      McAfee
20      Panda
20      Tencent
22      G Data
28      AVG
28      eScan
37      Symantec
37      Vipre

Gunther

  • Member
  • *****
  • Posts: 3515
  • Forgive your enemies, but never forget their names
Re: False negatives (17)
« Reply #18 on: February 13, 2014, 03:45:46 AM »
Avira is at the rear third of the AV scanners. What a shame.

Gunther
Get your facts first, and then you can distort them.

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 4813
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: False negatives (17)
« Reply #19 on: February 25, 2014, 11:45:49 AM »
More or less fits my view on AV scanners, the classy ones like Eset and Kaspersky have a far lower false positive count and so far the Microsoft one seems to be OK. Anything on the tail end of the list needs to be converted to free disk space.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :biggrin:

Magnum

  • Member
  • *****
  • Posts: 2235
Re: False negatives (17)
« Reply #20 on: February 25, 2014, 02:59:19 PM »
I don't believe the MSE ranking.

When I used it, it had all kinds of false positives.

Even on 2000 byte files that I made that did next to nothing.

Andy
Take care,
                   Andy

Ubuntu-mate-16.04-desktop-amd64

http://www.goodnewsnetwork.org