A more passive AV?

Discussion in 'other anti-virus software' started by Gullible Jones, Apr 7, 2013.

Thread Status:
Not open for further replies.
  1. One of the things I've noticed about antivirus software in general is that it uses a lot of disk I/O, and creates lots of intermittent CPU spikes. It appears that most AVs do background scanning of filesystems and RAM for malicious code.

    Is there any antivirus software that does not do this?

    i.e.

    - Assume the system starts out clean
    - Hook system calls for opening files and creating processes
    - If a target file's modification time is different from the last time it was scanned (or if it was never scanned before), then scan it
    - Otherwise don't do anything

    Is this in any way a reasonable approach to dealing with malicious software? What are the caveats? Could performance problems with large files be mitigated by e.g. only examining the portions of the file cached in RAM?

    If I'm not making sense here, let met rephrase the question: can an AV product be designed - or has one already been designed - that does not cause significant I/O or CPU usage on an idle system?
     
  2. mattdocs12345

    mattdocs12345 Registered Member

    Joined:
    Mar 23, 2013
    Posts:
    1,785
    Location:
    US
    Hmmm. I am running an old laptop with small CPU, I found that in general you have to try several AVs before you actually find the one that's lite on your system. From my experiences I found the latest Avast 8 to be one that uses least CPU.
    You are also given several options:

    - scan files when writting
    - scan files when opening
    - scan programs when executing

    These options are probably not exactly what you were looking for but again I have a very small single core CPU and after experiences with several AVs, this one seems to have the least drag on the system.
     
  3. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,730
    Location:
    localhost
    The non-conventional approach of "Webroot Security Anywhere" should fit your request. Test it if you have not done so.
     
  4. kdcdq

    kdcdq Registered Member

    Joined:
    Apr 19, 2002
    Posts:
    657
    Location:
    Southwestern Massachusetts
    Ditto. I couldn't have said it better myself.... :thumb: :thumb: :thumb:
     
  5. true indian

    true indian Registered Member

    Joined:
    Sep 24, 2012
    Posts:
    756
    Location:
    india
    1 answer for free AV:
    MSE
    Avira
    Avast

    for paid:
    Webroot
     
  6. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,081
    Location:
    Netherlands
    Try Avast 8 with file shield only and caches set to max with auto scan off, should give really low CPU and I/O overhead (enable reputation check, sandbox and all cloud features though of file shield), add bit defender traffic light as browser add-on. Light, lean and mean and more than adequate protection.

    To all youtube testers please try this combo out and compare it to paid individual suites (of Bitdefender and Avast) with same sample set and let the results speak for themselves.
     
    Last edited: Apr 8, 2013
  7. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Throw in HMP with start up scans. :D
     
  8. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    I'd go for Webroot, it's the lightest one I've used. Combine that with hitman pro scans, or sandboxie, and you've got one light and secure system.
     
  9. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    Yes,the impact upon the system from Webroot,when I tried it,was negligible.
     
  10. DBone

    DBone Registered Member

    Joined:
    Nov 24, 2010
    Posts:
    1,041
    Location:
    SoCal USA
    As is it's protection abilities. ;)
     
  11. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,737
    Location:
    New York City
    Agreed.
     
  12. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,730
    Location:
    localhost
    My experience is just the contratry. Lighther than most and above most in protection. ;)
     
  13. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    I can see where this thread is heading to.I would agree with you on the lightness.But seeing as everyone relies so heavily on "tests",the results would seem to indicate contrary to your supposition.
     
  14. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    I'm assuming the original poster wants better security, but doesn't want the constant churning associated with some security apps which sometimes classify everyone as a rank novice, therefore check everything.

    Most people can hear their hard drive churning on idle with some security apps.

    Anyway, I think it has some solid tools under 'system tools' - system cleanup does a similar job to CCleaner in removing temporary files so the Webroot scan, or say a hitman pro scan can fly through.

    1.png

    Control active processes shows how long each process has been running, and the ability to block the process.

    2.png
    3.png

    Protection statistics feature, allows you to double-click on system events and then click on each heading, shows you a live update of what is happening on your system (registry/windows etc). Gives you the ability to block any system event which looks suspicious.

    4.png
    5.png

    Overall, very useful and lightweight security program - with some extra features for those more interested in doing a bit of system 'research'.
     
  15. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,730
    Location:
    localhost
    Tests over AV-test org confirms the solid protection even if it only test part of WSA protection features. ;)
     
  16. Syobon

    Syobon Registered Member

    Joined:
    Dec 27, 2009
    Posts:
    469
    isn't webroot cloud-only??
    anyway the only 'pure' av nowadays are mse and avira...
     
  17. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    What do you mean by "pure"?
     
  18. Syobon

    Syobon Registered Member

    Joined:
    Dec 27, 2009
    Posts:
    469
    no hips, no web scan, not much besides file protection.
     
  19. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    There are some AV's with on execution scan. :D
     
  20. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    516
    Location:
    United States
    As Windows Security had mentioned, Avast with only the File Shield enabled scans only on write, read, or execute, depending on what you set it to.
     
Loading...
Thread Status:
Not open for further replies.