You might be tempted to believe that Symantec, McAfee, ESET, Kaspersky or Softwin Labs provide the best antiviruses on the market. In fact, it's well known that these solutions have millions of consumers as they offer very powerful antivirus utilities. But (yeah, I know, there's always a 'but'), a recent research conducted by Cascadia Labs revealed that the technologies mentioned above are NOT the best solutions on the market when it comes to certain aspects of the antiviruses. The lucky (or maybe - the best) antivirus that provides the most powerful detection of new infectious agents (malware/viruses/spyware/Trojan horses) is included in Sophos Antivirus.
According to the research, the Sophos solution detected 86,percent of the pre-execution malware while McAfee and Symantec found only 43 percent and 51 percent. Symantec's post execution detection won the first place with 18 points while McAfee came second with 2 percent.
"We were disappointed with McAfee's effectiveness. It only caught 43 of our 100 files pre-execution. Although 28 of these were caught with signatures, McAfee's pattern-based recognition and other pre-execution capabilities couldn't keep up with Sophos. McAfee caught 13 more malware samples at execution but none of these could be attributed to its run-time HIPS capabilities. It should be possible to improve McAfee's protection by configuring HIPS rules, but it takes a lot of expertise and time to configure the rule-based HIPS and we conducted our testing with basic HIPS settings in place", Cascadia Labs wrote in the report.
Symantec and McAfee have always been two of the top antivirus technologies on the market and I guess they will remain among the leaders as long as the developers continue to implement more and more security features. For example, the Symantec engineers improved the security of the products with the Proactive Threat Scan feature. However, the report reveals that this function may not be as useful as it might sound.
"Symantec's new Proactive Threat Scan is included to bring additional protection against some malware, but it only runs hourly by default. This default configuration leads to a window of vulnerability where malware is not detected and can inflict damage. Although Proactive Threat Scan can be configured to run when a process starts, it places a heavy burden on the system according to Symantec's documentation and confirmed in our testing", it is mentioned in the report provided by Cascadia Labs.
你也许会认为,赛门铁克,McAfee,Eset,卡巴斯基实验室或Softwin提供市场上最好的antiviruses。 事实上,众所周知,这些解决方案有百万计的消费者,因为他们提供了非常强大的反病毒工具。 但是,(是的,我知道,总有一',但'),最近的研究卡斯凯迪亚实验室的调查显示,上述并非市场上最好的解决方案,当涉及到的antiviruses某些方面的技术。 幸运(或者-最好的),防病毒,提供了新的传染因子的功能最强大的检测(恶意软件/病毒/间谍软件/木马)在Sophos的防病毒在内。
据研究,发现86 Sophos的解决方案
姊的前执行恶意软件,而McAfee和赛门铁克发现,只有百分之四十三和百分之五十一。 赛门铁克执行检测后获得了18分的冠军,而迈克菲带着百分之二秒。
“我们感到失望与McAfee的有效性。只是引起我们的100个文件前执行43虽然这些28。被抓的签名,McAfee的基于模式的识别和其它前执行能力无法跟上Sophos的。迈克菲被捕13个恶意软件样本,但没有在执行这些可能是由于它的运行时HIPS的能力。应当能够改善配置HIPS的规则McAfee的保护,但它需要的专业知识和时间来配置规则为基础的许多高抗冲聚苯乙烯我们进行了我们的基本HIPS的地方设置在“测试,卡斯凯迪亚实验室在报告中写道。
赛门铁克和McAfee一直是市场上最防毒技术两年,我想他们会仍然是作为长期的领导人,因为发展商继续实施越来越多的安全功能。 例如,赛门铁克公司的工程师改进了与主动威胁扫描功能的产品的安全性。 但是,报告表明,此函数可能没有用处,因为它听起来。
“赛门铁克新的主动威胁扫描将包含对一些恶意额外的保护,但它只能运行在默认情况下每小时。此默认配置导致的漏洞窗口,没有检测到恶意软件,可以造成任何损害。主动的威胁,虽然可以配置扫描当运行一个进程启动时,它放置在根据赛门铁克的文件体系带来沉重的负担,在我们的测试“证实,这是卡斯卡迪亚中所提到的实验室提供的报告 |
发表于 2009-10-4 15:03:59
发表于 2009-10-4 15:05:43
欢迎LZ回到骚护士身边
他早就抛弃熊猫,回归骚护士了
自己用的当然说是最好的,,我还说MSE是最好的呢
楼主
是吗?我现在正在骚护士的保护下
