Advice Request Which Antivirus has no HTTP Scanning?

Please provide comments and solutions that are helpful to the author of this topic.

Spartan

Spartan

Level 3
Thread author
Verified
Well-known
Apr 15, 2019
118
Other than Panda Free Antivirus, and Avast Free which you can choose to install without the web shield, which Antivirus is there that has no web protection/HTTP Scanning?

I don't want anything touching my internet connection just a file scanner.

I know you can disable HTTP scanning in a lot of them but then you get a warning in the antivirus to reenable it which I don't want to see (ie. ESET NOD32,)
 
  • Like
Reactions: Sorrento, Nevi, Trooper and 2 others
upnorth

upnorth

Level 68
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
Most major AVs even if you can disable/not install their own browser extension, usually have other modules and features that interacts with Windows firewall etc. Several AVs also have their own cloud services.
 
  • Like
Reactions: Sorrento, Nevi, Shadowra and 9 others
silversurfer

silversurfer

Super Moderator
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,095
Spartan said:
I know you can disable HTTP scanning in a lot of them but then you get a warning in the antivirus to reenable it which I don't want to see (ie. ESET NOD32,)
Click to expand...
Kaspersky Free, there it's possible turn-off fully the web-protection component AND also the warnings can be disabled via "ignore" option available on mainpage of UI...
 
  • Like
  • +Reputation
Reactions: Sorrento, Nevi, Trooper and 9 others
Spartan

Spartan

Level 3
Thread author
Verified
Well-known
Apr 15, 2019
118
upnorth said:
Most major AVs even if you can disable/not install their own browser extension, usually have other modules and features that interacts with Windows firewall etc. Several AVs also have their own cloud services.
Click to expand...
and I'm guessing even Windows Defender does that due to Smar Screen Filter. So really I see only Panda Free and Avast (if you don't install is webshield) which don't affect anything with regards to the internet connection
 
  • Like
Reactions: Sorrento
A

Arequire

Level 29
Verified
Top Poster
Content Creator
Feb 10, 2017
1,822
Spartan said:
and I'm guessing even Windows Defender does that due to Smar Screen Filter. So really I see only Panda Free and Avast (if you don't install is webshield) which don't affect anything with regards to the internet connection
Click to expand...
Defender doesn't have any web protection by itself; it relies on Edge's integrated SmartScreen. (There is an optional feature that provides system-wide malicious URL blocking, but it's disabled by default.)

I believe Avira's free offering also doesn't have native web protection and relies on an extension.
 
  • Like
Reactions: Sorrento, Nevi, roger_m and 4 others
Spartan

Spartan

Level 3
Thread author
Verified
Well-known
Apr 15, 2019
118
Arequire said:
Defender doesn't have any web protection by itself; it relies on Edge's integrated SmartScreen. (There is an optional feature that provides system-wide malicious URL blocking, but it's disabled by default.)

I believe Avira's free offering also doesn't have native web protection and relies on an extension.
Click to expand...
Thanks for the clarification about Windows Defender. With Avast free, during installation, you can select custom then de-select the webshield.

I just tried Kaspersky Free and I was able to turn off web protection and network protection then ignore the warning so it doesn't keep popping up
 
  • Like
Reactions: Sorrento, Nevi, roger_m and 4 others
SeriousHoax

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,862
Spartan said:
Thanks for the clarification about Windows Defender. With Avast free, during installation, you can select custom then de-select the webshield.

I just tried Kaspersky Free and I was able to turn off web protection and network protection then ignore the warning so it doesn't keep popping up
Click to expand...
Just keep in mind that Kaspersky (also ESET) have many signatures that are tied to their web protection engine only and won't get detected by their file based protection signatures. So if there's a malicious script that the browser run to attempt something malicious, they may not get detected by Kaspersky & ESET when HTTPS scanning is off. Some other AV products which don't have MITMing for HTTPS scanning but have file based signatures for those scripts may detect them on browser cache or some other ways, but Kaspersky and ESET won't. That's because they don't expect you to turn off HTTPS scanning. Their product wasn't designed to be used without it. They separate the file based and web based signatures to improve performance (Kaspersky analyst told me).
Also weirdly, I have seen Kaspersky not detecting some known malicious site and malware CnC server without HTTPS scanning. They were detected on Virustotal and Opentip, but not on their product when HTTPS scanning is off.
Avast and Bitdefender don't have separate signatures for file and web based protection, it seems. I can not guarantee with 100% certainty but haven't been able to find something to prove otherwise. HTTPS scanning can be turned off in Avast without losing too much of the protection, I think. In Bitdefender, disabling "Encrypted web scan" completely disable filtering of HTTPS traffic, so web protection becomes almost useless.
So, only turn off Kaspersky's HTTPS scanning if you are comfortable with losing a certain amount of protection.
Edit: HTTPS scanning can be replaced by Web scanning/Web shield/Web protection, etc. but the reasoning and explanation will remain the same.
 
Last edited:
  • Like
  • +Reputation
  • Applause
Reactions: Vasudev, Sorrento, Nevi and 12 others
Kuttz

Kuttz

Level 13
Verified
Top Poster
Well-known
May 9, 2015
630
Just use an Unsupported Browser that will result in web scanning dysfunctional. This was the case with NOD32 last time I played with. I noticed this phenomena while using Brave Browser and NOD32. NOD32 do not officially supported Brave browser back then when I tried. While running various AMTSO Security Features Check Tools, I noticed while running Brave browser, NOD32 fails to detect drive-by downloads, phishing pages etc in real time and only flags the file as malware if I actually download something to the PC and then it get detected by the NOD32s file scanner instead of its web scanning. The advantage with this approach is that you can normally use the AV without disabling any of its features. Not sure if this works with other Anti Virus products.
 
  • Like
Reactions: Sorrento and [correlate]
Spartan

Spartan

Level 3
Thread author
Verified
Well-known
Apr 15, 2019
118
SeriousHoax said:
Just keep in mind that Kaspersky (also ESET) have many signatures that are tied to their web protection engine only and won't get detected by their file based protection signatures. So if there's a malicious script that the browser run to attempt something malicious, they may not get detected by Kaspersky & ESET when HTTPS scanning is off. Some other AV products which don't have MITMing for HTTPS scanning but have file based signatures for those scripts may detect them on browser cache or some other ways, but Kaspersky and ESET won't. That's because they don't expect you to turn off HTTPS scanning. Their product wasn't designed to be used without it. They separate the file based and web based signatures to improve performance (Kaspersky analyst told me).
Also weirdly, I have seen Kaspersky not detecting some known malicious site and malware CnC server without HTTPS scanning. They were detected on Virustotal and Opentip, but not on their product when HTTPS scanning is off.
Avast and Bitdefender don't have separate signatures for file and web based protection, it seems. I can not guarantee with 100% certainty but haven't been able to find something to prove otherwise. HTTPS scanning can be turned off in Avast without losing too much of the protection, I think. In Bitdefender, disabling "Encrypted web scan" completely disable filtering of HTTPS traffic, so web protection becomes almost useless.
So, only turn off Kaspersky's HTTPS scanning if you are comfortable with losing a certain amount of protection.
Click to expand...
Right, the reason for this thread to be honest is because I upload a lot of files and when I have ESET installed, upload speed takes a significant hit and takes ages compared to when I have Avast or F-Secure installed or no AV. I hate how if I disable HTTP Scanning in ESET the whole icon turns orange as if something is wrong with the system messing with my OCD.
I might just install Kaspersky Free or F-Secure Antivirus which I have a license for valid until 2027 (luckily extended my license before they announce that they will only be selling the full suite with the Firewall from now on)
 
  • Like
Reactions: Vasudev, Sorrento, Nevi and 3 others
S

Scirious

Level 2
Feb 22, 2022
91
Spartan said:
Right, the reason for this thread to be honest is because I upload a lot of files and when I have ESET installed, upload speed takes a significant hit and takes ages compared to when I have Avast or F-Secure installed or no AV. I hate how if I disable HTTP Scanning in ESET the whole icon turns orange as if something is wrong with the system messing with my OCD.
I might just install Kaspersky Free or F-Secure Antivirus which I have a license for valid until 2027 (luckily extended my license before they announce that they will only be selling the full suite with the Firewall from now on)
Click to expand...

There is no firewall in F-Secure. They use Windows Firewall.
 
  • Like
Reactions: Sorrento and Spartan
A

a090

Level 2
Mar 26, 2023
67
Scirious said:
There is no firewall in F-Secure. They use Windows Firewall.
Click to expand...

Can confirm @Spartan. As a recent convert to F-Secure from Defender (and ESET before that), the following is true:

  1. The new F-Secure Internet Security (successor to F-Secure SAFE) has no firewall component. Supposedly it adds rules to the Windows Firewall to make it more resilent to attack and/or shutdown. But I can’t confirm that. @Shadowra will likely know the answer to this. I use Windows Firewall Control (WFC) and killed all the previous Windows Firewall rules so if F-Secure added any, I didn’t see them. All connections on my system have to ask permission manually to connect due to WFC. And yes, both F-Secure and WFC work amazingly well together. Big thanks to @piquiteco for helping set it up for me and answering all of my niche and out of the ordinary questions.
  2. F-Secure Total also does not include a firewall. The difference between Total and Internet Security mentioned above is Total bundles the F-Secure VPN and the Password Manager into Internet Security’s interface, and calls the whole thing Total. But no firewall.
  3. F-Secure does not install a root certificate for MITM your browser connections for HTTPS scanning. The way F-Secure checks HTTPS connections is via the browser extension. If you don’t want it, you can disable it. The only downside is you lose browsing protection as a whole (phishing / malware pages likely won’t be blocked) but the malware itself, should you encounter any, will be blocked by F-Secure’s active protection once you try to download it.
 
  • Like
Reactions: Sorrento, Nevi, Azure and 3 others
Spartan

Spartan

Level 3
Thread author
Verified
Well-known
Apr 15, 2019
118
a090 said:
Can confirm @Spartan. As a recent convert to F-Secure from Defender (and ESET before that), the following is true:

  1. The new F-Secure Internet Security (successor to F-Secure SAFE) has no firewall component. Supposedly it adds rules to the Windows Firewall to make it more resilent to attack and/or shutdown. But I can’t confirm that. @Shadowra will likely know the answer to this. I use Windows Firewall Control (WFC) and killed all the previous Windows Firewall rules so if F-Secure added any, I didn’t see them. All connections on my system have to ask permission manually to connect due to WFC. And yes, both F-Secure and WFC work amazingly well together. Big thanks to @piquiteco for helping set it up for me and answering all of my niche and out of the ordinary questions.
  2. F-Secure Total also does not include a firewall. The difference between Total and Internet Security mentioned above is Total bundles the F-Secure VPN and the Password Manager into Internet Security’s interface, and calls the whole thing Total. But no firewall.
  3. F-Secure does not install a root certificate for MITM your browser connections for HTTPS scanning. The way F-Secure checks HTTPS connections is via the browser extension. If you don’t want it, you can disable it. The only downside is you lose browsing protection as a whole (phishing / malware pages likely won’t be blocked) but the malware itself, should you encounter any, will be blocked by F-Secure’s active protection once you try to download it.
Click to expand...
Well that's good news, I actually have a 3 year license for F-Secure AntiVirus only
 
  • Like
Reactions: Sorrento and a090

Similar threads

Shadowra
    • Like
    • +Reputation
    • Wow
App Review MeyeProtect Antivirus 2024
Replies
2
Views
647
Video Reviews - Security and Privacy
Seandc33
S
Shadowra
    • +Reputation
    • Like
    • Thanks
App Review Kaspersky - Norton - ESET VS Malicous Scripts (LOLBins)
Replies
10
Views
1,982
Video Reviews - Security and Privacy
JB007
JB007
simmerskool
Advice Request VMware 17.6.0 network glitch
Replies
6
Views
245
VM and Remote Access
simmerskool
simmerskool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top