Can't go wrong with Kaspersky! Also as far as i know the free version has most of the functionality of the paid ones in terms of security (it might be lacking stuff like passwords update programs etc. that is easily and better achieved with dedicated software) so u might wanna try out the free version first and maybe if u like it u wont have to pay
You do not participate if you don't accept agreement (you don't send back data), but program (at least application control) still performs KSN lookups, so you are still somewhat protected by it.
Yeah we all know how that went with Proton Mail https://www.jordanthrilla.com/post/...resses-despite-claiming-they-kept-no-ip-logs/ https://blog.malwarebytes.com/priva...o-police-showing-the-limits-of-private-email/
I just put KSC back on my machine after running MD for the last couple of months. Might as well use the license I paid for, right?! Well, I do have it installed on my Android phone too.
Privacy is broken by default for security programs because the malware that they fight against do the same. In which case, use whatever has the best protection and the least impact on your system. Meanwhile, continue doing backups, etc.
I would recommend finding an AV that has good other protection and turning off File AV module. This way stuff won't get scanned nonstop and also they don't get privacy information on the files. U get both privacy and performance this way. Plus if you use AV that cannot block malware without using File AV (signatures module) it sucks anyway. Kaspersky is prob the best, but avast with hardened mode and Defender with Hard Configurator aint bad either. Oh yeah and Comodo Firewall with CS settings ofc.
Kaspersky being Russian has been the source of controversy. Few people can be neutral about it. As for the rest of it, its cybersecuritty products have a good reputation. I've had no problems running it on my Windows PCs.
A multinational company can't afford to alienate customers so this a good move for Russia's leading software firm.
You know that your recommendation doesnt make any sense right? There are other components that makes use of cloud/reputation to protect the machine (like System Watcher), there are background scans and even automatic submission, if Kaspersky or other AV wants to spy on you it isnt a checkbox that is gonna stop them. If you dont trust the company behind the product dont use it at all and File AV is much more than just signatures, actually modern signature detection is a very underrated protection mechanism.
my motto too. for instance, i don't trust tony ******* behind sd, so i don't use his (or her, maybe) product.
Funny how many people say Russian this, Russian that. Well guys, wireshark is free, what are you waiting for? Prove your theory.
I said File AV won't send your files, i didn't say all spying would stop Still my point stands about the performance and privacy part. So what is this "modern signature detection" you're talking about?
That's exactly my point. If I don't trust Win Defender to a certain extent, then I might as well stop using Windows. Because Windows can use one of the zillion svchost.exe services to exfiltrate data from your system. I have to say that so far in my 25 years of using Windows I haven't encountered anything weird, but the amount of telemetry that has been implemented into Windows 8/10/11 is worrying.
I mean if svchost.exe had telemetry why would microsoft make external telemetry? Plus simplewall blocks the IPs that svchost.exe connects to. Although I do not know if these are all the IPs. I don't even know how they get em, i haven't looked into tbh. But maybe u think microsoft would pretend to be dumb by making external telemetry services so we block em and we think heheh we are so smart but the real telemetry is in svchost.exe? But still what about the blocked IPs that svchost.exe supposedly connects to to give telemetry?
YARA signature rules based detection, combined with "tradicional" heuristics it is a powerful tool to stop entire malware families pre-execution. https://insights.sei.cmu.edu/blog/writing-effective-yara-signatures-to-identify-malware/ https://securelist.com/applied-yara-training-qa/104007/ https://www.cyber.nj.gov/informational-report/yara-effective-tool-to-detect-malware Even post-execution, signatures are still useful for behavior modules, Kaspersky System Watcher is a good example for that.
Yeah but how can you be so sure these are in the File AV part and not let's say "BB" or "heuristics" or "behaviour shield" or whatever it's called in different AVs?
But they are and heuristics are mainly done by File AV in a virtual machine/sandbox via emulation, it is simple not wise to disable it because it will for sure have a negative impact in other modules that otherwise uses pre-execution info for protection; File AV usually does much more than simple "scanning" with old signatures. Ps: I guess the prejudice against signatures is perpetuated by the marketing of so called next-gen antivirus vendors that conveniently ignores that there is no traditional antivirus anymore and ironically makes heavy use of "signatures" detection in combination with not so smart fancy heuristics called "AI detection" and so.
Hmm well then perhaps it's best to have a folder where u download all stuff and make File AV only scan that folder and exclude the rest of the computer from it. Even Kaspersky themselves recommend turning off File AV for performance boost when gaming (and maybe in other areas didn't bother to look)
Link for that info? Never head about that, sounds pretty absurd for an antivirus vendor to recommend that. What some antivirus vendors may recommend is to exclude some folders from scanning, but never disabling File AV module. Actually the industry as a whole would love to ditch the File AV and "signatures", it is expensive to create, maintain, it needs to constantly check against large files sample to test false positives rate, needs human analysts to make better rules and so on, not only that it is the module that makes antivirus "heavy" on its users machines in disk space, CPU and RAM metrics, but vendors cant because of how important it is for overall protection.
https://support.kaspersky.com/us/common/settings/13980 Pause File AV while gaming. Even the vendors themselves who always lie acknowledge that file AV is a performance hog for little benefits when compared to other modules such as Trusted Applications which is basically an anti-exe and much more effective while only scanning processes running not every single file ever, and also scanning it faster
Well maybe vendors sh ould try Comodo Firewall, Voodooshield or Appguard. Oh wait they are patented cuz vendors got cucked in that area. Sticking to same thing for years and preying on the users. And unfortunately avs are still as popular as ever despite vast majority of them being trash.
