Question Which AV are you using and why did you choose this one ??

[cofer123]

It is no excuse that when you deactivate real-time protection, your AV does not work

Who in their right mind would go around deactivating core protection features of their AV software and expect it to work? What you are going on about is illogical.

You are trying to adapt the software around some arbitrary test. That's not how testing anything goes.

 

[RansomwareRemediation]

Who in their right mind would go around deactivating core protection features of their AV software and expect it to work? What you are going on about is illogical.

You are trying to adapt the software around some arbitrary test. That's not how testing anything goes.

This is done to test your AV in different scenarios and with different modules, not that the AV depends on a single module to protect you. And to see how the av behaves, without signatures. Everyone does it. Is that why I have to have attacks? or giggles? I hope that Eset improves on unknown malware with this 18v. My point is, I don't want an AV that depends on a single technology to protect you, that's what I'm going for:
Windows Defender: you deactivate the cloud and your PC will be filled with viruses, that's what I'm saying. If there is malware that bypasses the cloud, will your computer be infected? is it understood?
Comodo: you deactivate its autocontainer, and your av will do nothing. That's my point and I want you to understand it. YouTubers are precisely the most important in trying an AV, since they are the closest to reality. On the other hand, in a laboratory, you will never see their tests, only results.
Greetings.

 

[cofer123]

This is done to test your AV in different scenarios and with different modules... to see how the av behaves, without signatures

YouTubers are precisely the most important in trying an AV, since they are the closest to reality

Running your AV with disabled protection modules and outdated signatures is not close to reality. Do people test the base version of any software without updates and security patches to check how resilient they are against attacks as well?

What you described is an attempt to adapt a product around a test. If there is no way to craft a test to check some specific aspect of a software, that does not mean the product is broken. Mangling the product until it conforms to some test is not in any way realistic nor how anything on any industry works.

 

[RansomwareRemediation]

Running your AV with disabled protection modules and outdated signatures is not close to reality. Do people test the base version of any software without updates and security patches to check how resilient they are against attacks as well?

What you described is an attempt to adapt a product around a test. If there is no way to craft a test to check some specific aspect of a software, that does not mean the product is broken. Mangling the product until it conforms to some test is not in any way realistic nor how anything on any industry works.

You don't understand my point. Why does Kaspersky, if I deactivate its real-time protection, will System Watcher continue to protect me? If you get malware that ignores the AV's real-time protection because it doesn't have a competent behavior blocker and doesn't depend on signatures, your computer is going to be infected and you're going to be encrypted, that's my point.
Greetings.

 

[cofer123]

Why does Kaspersky, if I deactivate its real-time protection, will System Watcher continue to protect me?

Because it's a different software than ESET!

 

[zidong]

Microsoft Defender. 3rd party antiviruses are bloatware with tons of useless modules - cleaners, shredders, extensions, password managers, vpns, driver updaters, software updaters, optimizations etc. 99% of OS and app crashes, bsods, slowdowns etc are related to 3rd party antivirus apps or optimization apps etc. Almost impossible to completely uninstall. Sometimes only a clean Windows reinstall solves the problems. You should listen to what the best cybersecurity experts says, not some random youtubers and pseudo experts.
Tavis Ormandy:
I get asked constantly what av to use. You're missing the point; av creates more problems than it solves, and we're overdue an av slammer.
Justin Schuh:
AV products poison the software ecosystem because their invasive and poorly-implemented code makes it difficult for browser vendors and other developers to improve their own security.

 

[RansomwareRemediation]

Because it's a different software than ESET!

different? How strange that all the other antiviruses work by disabling modules, Kaspersky, Trend Micro, Avira, Avast, Norton, Bitdefender...?

 

[silversurfer]

For your information: personal attacks will be removed/deleted. Please stop arguing and rather agree to disagree...

Stay on topic, what the OP #1 asking for:

So what do you use and what made you decide to use this AV ?

 

[partha_roy]

While eScan has been my default choice, I frequently alternate with McAfee, Vipre (with HIPS and Process protection ON), and AVG (with the hardened mode ON); they are my preferred options. I'm planning to give Bitdefender IS a shot for a while.

I've personally tested them all and they consistently provide top-tier protection

 

[Fel Grossi]

Windows Defender + Configure Defender Max Settings (Controlled Folder disabled) + Hard Configurador (Recommended Settings) + Firewall Hardening (Recommended).

 

[Vitali Ortzi]

By the way, I'd like to add something with advanced IP protection like BlackFog to Eset, but I don't want to install Symantec like you do, I think it will decrease system performance . The only thing I found is TSplus Advanced Security, but it seems to be more for servers, but it has the function of protection by a large database of compromised IPs.

1. IPS stops attacks before they reach your client or server. With IPS, attacks are not detected on your machines, they are stopped before they get onto your machines. This means IPS users were protected from threats without alerts to the SOC – and without a need to clean up. This happened 4.3 billion times in 2023.
2. IPS Protects Servers. It's not just desktops and laptops; IPS protects all the systems in your entire network ecosystem. 668 million attacks against servers were stopped by IPS in 2023.
3. IPS Provides Proactive Defense. IPS prevents the exploitation of vulnerabilities by attackers. Threats are stopped even before the malware is identified. 4 billion such attempts were shut down in 2023.
4. IPS Provides Browser Protection. Threats come in all forms, and IPS extends its shield to your browsing experience. Its browser extensions blocked 160 million web attacks, including malicious redirects, cryptojacking, and scams. Think of it as an invisible safety net for your end users browsing.
5. IPS Is Irreplaceable. IPS is responsible for 96% of all threat detections made by SEP. source 5 Reasons to Install IPS Everywhere

• IPS blocks some threats that traditional virus definitions alone cannot stop. IPS is the best defense against drive-by downloads, which occurs when software is unintentionally downloaded from the Internet. Attackers often use exploit kits to deliver a web-based attack like CryptoLocker through a drive-by download.
• In some cases, IPS can block file encryption by interrupting command-and-control (C&C) communication. A C&C server is a computer controlled by an attacker or cybercriminal and that is used to send commands to systems compromised by malware and receive stolen data from a target network.

source Ransomware protection using Symantec Endpoint Protection

IPS drivers use a maximum of 100 MB of non-page pool memory.

source Best practices for Endpoint Protection on Windows servers

it uses very little cpu resources and max of 100mb ram and wouldn't impact gaming just like ips in Norton didn't and if you disable submissions it will lower CPU usage even more and its free forever here Unlimited Giveaway - Symantec Endpoint Unmanaged without time limit

 

[ForgottenSeer 114717]

I definitely need to avoid hopping around in the coming year.

Addiction. Boredom. Thinking the next one will be better. All eventually disappoint. You grow weary of not seeing any spectacular AV live action. You grow weary of the bugs and annoyances. Then you have doubts about the softwares. So you are in a perpetual state of chasing something that you will never find. Ever.

 

[ForgottenSeer 114717]

there is no more signature detection like in the old days

People are still buying Ikarus - which is only 1 step above Microsoft Security Essentials in that it receives regular signature updates.

I do not know how Ikarus still exists as a company, but it does.

Must have enough loyal customers who want its niche AV and other security products.

IKARUS anti.virus Home - IKARUS Security Software

IKARUS Security Software entwickelt und betreibt IT- und OT-Sicherheitslösungen von der eigenen Scan Engine über Cloud-Services bis hin zu SOC, SiEM und Log Management-Services.

www.ikarussecurity.com

I think Ikarus earns most of its revenue as a Managed Security Service Provider (MSSP) and Industrial Controller security (e.g. PLC, ICS, SCADA). Consulting.

 

[TuxTalk]

Can we please stay on topic ? This thread is made by me and see the title, we do not need any bla bla whats good, bad or whatever.

 

[Khushal]

Can we please stay on topic ? This thread is made by me and see the title, we do not need any bla bla whats good, bad or whatever.

I’m currently using Kaspersky as my antivirus software. I chose it because:

1. It provides robust real-time protection against viruses, malware, and ransomware.
2. Its user-friendly interface makes it easy to configure and use effectively.
3. It includes additional features like a secure VPN, password manager, and privacy protection, offering comprehensive security.
4. It has a minimal impact on system performance, ensuring my device runs smoothly while staying protected.

Kaspersky's strong reputation for reliability and consistent top ratings in independent tests were also key factors in my decision.

 

[Vitali Ortzi]

I’m currently using Kaspersky as my antivirus software. I chose it because:

1. It provides robust real-time protection against viruses, malware, and ransomware.
2. Its user-friendly interface makes it easy to configure and use effectively.
3. It includes additional features like a secure VPN, password manager, and privacy protection, offering comprehensive security.
4. It has a minimal impact on system performance, ensuring my device runs smoothly while staying protected.

Kaspersky's strong reputation for reliability and consistent top ratings in independent tests were also key factors in my decision.

Incredible that except not having options to configure the free version is pretty much similar to the paid

 

[simmerskool]

By the way, I'd like to add something with advanced IP protection like BlackFog to Eset, but I don't want to install Symantec like you do, I think it will decrease system performance . The only thing I found is TSplus Advanced Security, but it seems to be more for servers, but it has the function of protection by a large database of compromised IPs.

prelim look at TSplus it's pricey $180 / $300

TSplus Advanced Security ® Secure your IT Infrastructure | TSplus

Secure your application servers and remote desktop in just a few clicks. Block hackers and protect your IT infrastructure with the most powerful security features in one comprehensive cybersecurity toolbox.

tsplus.net

 

[simmerskool]

...the other day I forgot to mention the VM with G Data + Cyberlock. for me, G Data is smooth clean fast. It seems like a very good av but seems to get overlooked, although recently tested by Shadowra iirc.

 

[Game Of Thrones]

People are still buying Ikarus - which is only 1 step above Microsoft Security Essentials in that it receives regular signature updates.

...

oh, they are still in business?! many years ago they had a good(enough) protection PUP detection was good. I think they had an av for Symbian maybe @Shadowra can test it in video.

 

[CyberDevil]

oh, they are still in business?! many years ago they had a good(enough) protection PUP detection was good. I think they had an av for Symbian maybe @Shadowra can test it in video.

I'll tell you more, from my experience, Google's Android detection is actually Ikarus' detection, when you report a false positive to them, Google's detection disappears too =)