I have nothing against Trend products personally, so this isn't in any way a "slam" or dig at them, however, I have over the years found to be true what Ajit says - I fully agree, Symantec is and typically has been for several years, ahead of the others. Check the Gartner Group quadrant. Symantec is high in the upper right quadrant...... leaving others in the dust. Microsoft is a johnny-come-lately and still falling flat on their collective faces. I hope the dirt in Redomd tastes good, they seem to fall face-first into it quite a bit.
Back on the other...... when I worked endpoint security (we called it anti-virus, anti-malware back then) at a very large financial services company, Trend was used in Exchange, I had SAV CE on the servers and endpoints. I can't tell you how often SAV CE caught things that had gotten through otherwise. It was reversed on occasion, but not very often. SAV won the title of most caught most often. It's even more true today, as I see it.
I have used these products since NAV 2.0 (that ages me a bit, doesn't it? And the computer condom Peter Norton had to represent the protection he offered) I started out a 150% Central Point fan - used and supported CPAV, then CPAV for Netware, and followed it to Symantec when they bought out CPAV and the AV technology they had. I've been through all of the products over the years. every place I've worked, when I evaluated products, these typically came out on top. Now with SEP as my tool, and my use of the technology within, I can state that I have kept the government agency I work for 100% malware and virus free for 25 months. think of it - over 2 full years without a single infection of ANY sort. No adware, no malware, no viruses. We've not had to clean a computer in so long many of us are almost forgetting what it's like. In fact, we recently got together to review what to do in cases of infection, and we had to think a bit. It's almost no fun any more................ LOL.
The enterprise arm of IT here "audited" us - sort of a small pennitration test, although in my opinion, not much of one... anyway, one of the tests was they were to insert a USB device and try to copy files over to it and leave with the files. When they came and asked if I saw their attempt - I said "so, how's that USB device working for you........." of course, it didn't! They could never get to the step in the test where they were to copy the file as they were unable to get the USB device to work. Even on computers in IT!
They WERE able to get their computer onto our network, but only because I don't have NAC (SNAC) working here.... yet... I really want to do that next. Make it so that only our own can connect and get an IP address. I want it so that if it's not a member of our domain, it can't even get an IP or pass any traffic at all. I've not been able to figure that out yet.