Main Area and Open Discussion > Living Room

How's *that* for a false positive? And is it? (Avira AV)

<< < (3/4) > >>

tranglos:
Today Avira decided uTorrent.exe was a trojan. Similar reports to be found on uTorrent forum. For my part, I have declared Avira malware and removed it. I really hope Mouser's Superior AV project takes off!

FWIW, Kaspersky is one AV that you can decide not to run at startup, or quit it when it is running, and it won't leave any services behind when you do. This means it can be used in manual-only mode, but with a slight hitch: the right-click menu command to scan a file is inactive if Kaspersky is not running. This means that in order to check a file you must start KAV, then right-click a file and scan, then quit KAV.

On the bad side, Kaspersky is awfully unfriendly to other AV and malware detecting applications. Here's a long list of applications Kaspersky claims are "incompatible" with it: http://support.kaspersky.com/faq/?qid=208280128

The KAV installer detects all these products and uninstalls them (!) for you. Thankfully there is a prompt, but you cannot continue installing KAV as long as it detects any of the listed products. There is a procedure to skip the check, but it's not for the timid:
http://support.kaspersky.com/kav2010/install?qid=208280398

Deozaan:
At least UAC gives you a clear indication that an application is trying to access locations that most applications shouldn't - with the amount of false positives AV products throw, all bets are off.
-f0dder (December 01, 2009, 01:46 AM)
--- End quote ---

f0dder, it seems there is no way we are ever going to agree on this.

Every UAC notification is a false positive by design, because UAC doesn't know that the application is trying to do anything untoward, so it warns about practically all of them.-tranglos (December 01, 2009, 02:13 AM)
--- End quote ---

I hated UAC on Vista so much that I disabled it. On Windows 7 it doesn't seem that bad. But that might be because I've been using Ubuntu off and on since January (nearly a year now!) and I find Windows 7's UAC prompts to be about the same as Ubuntu's "pop-up protection" (whatever it's called). Only Ubuntu's is "worse" because you have to type in your password every time to grant administrator privileges. At least in UAC you can just click the "Allow" button.

biox:

On the bad side, Kaspersky is awfully unfriendly to other AV and malware detecting applications. Here's a long list of applications Kaspersky claims are "incompatible" with it: http://support.kaspersky.com/faq/?qid=208280128

The KAV installer detects all these products and uninstalls them (!) for you. Thankfully there is a prompt, but you cannot continue installing KAV as long as it detects any of the listed products. There is a procedure to skip the check, but it's not for the timid:
http://support.kaspersky.com/kav2010/install?qid=208280398-tranglos (December 08, 2009, 12:05 PM)
--- End quote ---

That's one hell of an un!impressive list. What's got an AV to do with a firewall (Outpost in my case)?

kakarukeys:
 ;D One month ago, after an update Avira started to brand all my AutoHotKey compiled programs as trojan. I began to think which part of the code triggered the false alarm, was it the low-level keyboard hook or the program's signature 'AutoHotKey'?

Innuendo:
Avira has always been bad about false positives. It's always been good about detecting the bad stuff, but I have never in good conscience been able to recommend it due to the false positives.

Navigation

[0] Message Index

[#] Next page

[*] Previous page