DonationCoder.com Software > Screenshot Captor
NOD32 False Positive
superboyac:
I've only done a full scan once. Here's a question: what's the point of doing regularly scheduled full scans?
-superboyac (September 01, 2009, 05:04 PM)
--- End quote ---
I always run a full scan after installing a new AV package, just to see if it comes up with anything. But you're right, there's not much point in doing it later, unless you expect an infection missed earlier.
The shaky mouse movement during full scan worries me somewhat, because it may reflect on the performance of real-time scan as well. And even when I selected "Objects scan" and "By extension", Kaspersky still seemed to be scanning *.pas files - that's weird, and I couldn't find a way to customize the list of extensions.
That said, with Kaspersky I see no perceptible delay when viewing or executing large apps, while with Eset there was always a small pause. I like it a lot so far.
-tranglos (September 02, 2009, 06:45 AM)
--- End quote ---
I'm not sure if I've experienced the shaky mouse movement. I know during full scans my computer has slowed down somewhat noticeably, but nothing as far as mouse movement. The only other nuisance I've experienced with kaspersky is that there is a pretty long pause sometimes when running an executable for the first time while it figures out what level of trust to assign to it. Especially for a new, fast computer like mine, I felt the long pause was unnecessary. But it's only the first time it runs, after that it's fine.
I've tried other programs also, like you have, including the free ones. I always go back to kaspersky because of the extensive configuration options. Just in the last month, i even put it on my mom's and sister's computers because they both got some pretty horrible virus/malware just recently. My mom's computer was destroyed, I had to reinstall Windows. I just happened to be at my sister's house at the time, so I made her buy Kaspersky and installed it quickly to clean it, and it did. i think both viruses (or malware) came from Facebook. My mom had an old version of F-secure running, which is usually pretty good, but it didn't catch it (it was the antivirus version, not the "internet security" version and the definitions were updated). My sister had AVG Free running and it did not catch it. Kaspersky Internet Security caught them all.
This wave of attacks from Facebook recently has been pretty bad. I think someone at my work also got a similar virus. All within the past month. I searched google, but didn't find any news about it, so maybe it's not as big as I'm imagining. But I've never seen so many computers around me get infected at the same time like this. The one on my mom's computer was especially bad: it disabled Windows safe mode, it disabled any kind of entry into Task Manager, and it prevented any exe's to run. There was nothing you could do. I eventually cleaned it by using a special Linux boot CD, but after it was cleaned, the OS was just in shambles. I'm very surprised F-Secure didn't catch it, but again, it was an old version.
superboyac:
I always run a full scan after installing a new AV package, just to see if it comes up with anything. But you're right, there's not much point in doing it later, unless you expect an infection missed earlier.
The shaky mouse movement during full scan worries me somewhat, because it may reflect on the performance of real-time scan as well. And even when I selected "Objects scan" and "By extension", Kaspersky still seemed to be scanning *.pas files - that's weird, and I couldn't find a way to customize the list of extensions.
That said, with Kaspersky I see no perceptible delay when viewing or executing large apps, while with Eset there was always a small pause. I like it a lot so far.
-tranglos (September 02, 2009, 06:45 AM)
--- End quote ---
Tranglos, I'm curious, did you ever settle on an antivirus suite? I ran a full scan again this past weekend, and there was no mouse jumping, but it does hamper the performance of my pc pretty significantly. That's annoying because my pc is very new and pretty powerful. But other than that, I have no problems with kaspersky.
tranglos:
Tranglos, I'm curious, did you ever settle on an antivirus suite?
-superboyac (September 15, 2009, 11:34 AM)
--- End quote ---
Yeah, I did go with Kaspersky, thanks for the suggestion. I chose the AV, not the firewall (which I liked, but decided to go without). I really like the UI (I'm a sucker for nice UI's, so that was easy), and I see no delays when opening/viewing large files. I had that problem with ESET, where the real-time AV would cause perceptible delays e.g. when viewing files in Total Commander's lister, or copying various installers between folders. Kaspersky seems faster here, and I'm quite satisfied with it.
I've discovered how to exclude files by extension, which wasn't immediately obvious to me: in Settings -> File Anti-Virus -> Threats and exclusions -> Settings again. I needed this because after installing the AV I started getting strange crashes from an application that often updates a large MS Jet database. It was throwing unlikely errors like "disk or network resource is no longer available", then crashing and taking some of my work with it. It suppose Kaspersky was scanning the DB in real time (on every access?) and maybe was locking the file, who knows. It seems to have stopped after I excluded the specific extensions from scanning.
I've already found a likely false negative too. I received a piece of spam with a typical come-on message and a zip file containing a randomly named .exe file. No idea exactly how harmful it was, but definitely not something you'd want to run. I unpacked the zip file, but Kaspersky gave no peep when viewing the exe file, copyng it, or scanning that specific file. Of course in the past on occasion I did the same kind of experiment with ESET, and it didn't flash the red light at me, either. Maybe I should turn on heuristics, after all :)
superboyac:
Tranglos, I'm curious, did you ever settle on an antivirus suite?
-superboyac (September 15, 2009, 11:34 AM)
--- End quote ---
Yeah, I did go with Kaspersky, thanks for the suggestion. I chose the AV, not the firewall (which I liked, but decided to go without). I really like the UI (I'm a sucker for nice UI's, so that was easy), and I see no delays when opening/viewing large files. I had that problem with ESET, where the real-time AV would cause perceptible delays e.g. when viewing files in Total Commander's lister, or copying various installers between folders. Kaspersky seems faster here, and I'm quite satisfied with it.
I've discovered how to exclude files by extension, which wasn't immediately obvious to me: in Settings -> File Anti-Virus -> Threats and exclusions -> Settings again. I needed this because after installing the AV I started getting strange crashes from an application that often updates a large MS Jet database. It was throwing unlikely errors like "disk or network resource is no longer available", then crashing and taking some of my work with it. It suppose Kaspersky was scanning the DB in real time (on every access?) and maybe was locking the file, who knows. It seems to have stopped after I excluded the specific extensions from scanning.
I've already found a likely false negative too. I received a piece of spam with a typical come-on message and a zip file containing a randomly named .exe file. No idea exactly how harmful it was, but definitely not something you'd want to run. I unpacked the zip file, but Kaspersky gave no peep when viewing the exe file, copyng it, or scanning that specific file. Of course in the past on occasion I did the same kind of experiment with ESET, and it didn't flash the red light at me, either. Maybe I should turn on heuristics, after all :)
-tranglos (September 15, 2009, 12:19 PM)
--- End quote ---
Interesting information, thanks. I've been recommending Kaspersky a lot the last couple of months to people. It seems like there have been a lot of virus related issues lately. In the past, i've been hesitant to recommend it because there are so many settings and I was afraid people would look at that and freak out. But the last couple of years, they've really cleaned up their interface and it works pretty well right out of the box.
yeah, I don't know about the firewall. I used to leave it turned off, but I turned it back on recently, i don't remember why. I think I had some problems that seemed suspicious, and i thought i was running some harmful software. Something like that, anyway, I turned it back on and I've been okay.
Well, I'm glad you like Kaspersky. That's encouraging. I always like to know if the software I recommend is helpful to others and not just a quirky choice of mine.
superboyac:
I've discovered how to exclude files by extension, which wasn't immediately obvious to me: in Settings -> File Anti-Virus -> Threats and exclusions -> Settings again. I needed this because after installing the AV I started getting strange crashes from an application that often updates a large MS Jet database. It was throwing unlikely errors like "disk or network resource is no longer available", then crashing and taking some of my work with it. It suppose Kaspersky was scanning the DB in real time (on every access?) and maybe was locking the file, who knows. It seems to have stopped after I excluded the specific extensions from scanning.
-tranglos (September 15, 2009, 12:19 PM)
--- End quote ---
You know, I just remembered a situation a few years ago when I used newsgroups more. I was using forte agent, and I remember that kaspersky would do the same thing for the database files that agent used. I tried to figure out how to make kaspersky exclude it, but could never figure it out. I'm glad you did. I'm going to have to bookmark this solution for the future. Thanks!
Navigation
[0] Message Index
[*] Previous page
Go to full version