Do you find the crippling effect that most anti virus software has on a computer's performance worth the "security" they provide? I've never been able to really tell myself its worth it, and have used my computer without "protection" for years without any problems. Jeff Atwood wrote about this a while back [1], taking a similar stance.
So I'm looking for some discussion on the merits and downfalls of antivirus software, and whether you personally think its worth the hassle. One point I do think is valid is that I am probably okay with not running it because I know if something goes wrong I have the ability to make it right (most of the time) but I can't really recommend the same for family as they may not be able to...
I don't bother running an anti-virus program. The intrusiveness of the software, along with the number of times I have seen some cause massive problems on others machines, makes me thing it's just not worth it. I have my OS partition ready to be wiped at any time if something does happen, with all my important data stored elsewhere on the system.
I do regularly run malwarebytes, search and destroy, and adaware just to make sure my system is clean. If it seems like there may be a problem, and those programs can't get rid of it, I either go to one of the online scanners, or just restore from an image.
As far as I'm concerned, anti-virus software is a virus.
Not only does AV software infest itself into the deepest darkest corners of your system hampering its performance, but it can't even protect you from new threats until it gets updated.
I've found that just being an intelligent computer user is much better protection than AV software.
I run my machines without any real time AV software and do occasional scans using TrendMicro's online scanner [1] just to be sure.
[1] http://housecall.trendmicro.com/I have AV installed, but only scan things manually.
For a desktop used across multiple people in a family,
I have always used and recommended an anti-virus installation.
It also helps to leave out administrative privileges for most users.
I do install it just as extra insurance, however, I only use AV software that has low impact to performance. I'm a big fan of ClamWin/ClamAV right now due to it's minimal impact on system performance. Can't even really tell it's there. It doesn't scan on every single file access, just specific ones.
I do recommend having one. And I do also recommend to not be cheap and to get a great one, even if it is not free.
Personally I use ESET NOD32 and put it in silent mode (Only bugs me if it needs me to do something). Doesn't slow my system down (that I can notice at least). And although you might be careful, you will be VERY happy that day when something suddenly sneaked up on you and got stopped. For example late at night, tired and bored, when a good friend "sends" you a link and you Just Click It without really looking at it...
Better to be safe than sorry I would say.
AVG [1] works very well and does not hamper the performance of my computer in any way as far as I can tell. It has found a few viruses for me over the years and I consider it worth the hassle of reinstalling it each time I reinstall the OS.
[1] http://free.grisoft.comThis really depends a lot on how you use your computer.
If you really know how computer programs work in relation to operating systems, and are absolutely sure you, or any of your programs, are not allowing unverified foreign code to be executed on the machine... well, you're free to leave the AV software out of the picture - but it's a bit useless to mention this, because if you indeed do understand the issue you knew this already.
So if you have no idea what I'm talking about, or even if you are not sure whether you understand it well engough, then yes, you should install a good AV software. Sure, it eats a bit performance and might cause some trouble in extreme cases - so what? The downsides are mostly trivial. Malware infection causes a lot more trouble than an AntiVirus software, and you should expect that you will get infected.
However, if you are pretty sure what you are doing, and really, really don't want the performance hit (for example on an old system), do get an AV but turn off real time scanning, or even automatic startup. You'll have to always remember do the manual scans for any source of threat - that's would be pretty much any foreign data. It's also a good idea to do a manual scan on the whole system once in a while, just in case something has managed to sneak through.
Also, if you actually do know enough about computers to be safe without AV, but just don't want to bother analyzing for each and every Windows installer or such whether you can trust the source, the distributor, whether the connection was secure or not, if there was a hash check, if that could have been compromized or not, etc. - just get an AV software. It's easier. That's what I do for my Windows machine.
No.
I am in no way confident that any AV package will be able to stop the next new virus that takes advantage of some previously unknown security hole.
It's like trying to protect against meteors. The best you can do is try and clean up the mess after it happens.
Good backup habits are my AV.
I have my system set up so that the system drive, OS install etc. are disposable, I can reinstall them without losing anything - all my actual data is on external drives and backed up. So, as you say, if I do end up with a virus then the damage it can do is limited.
I have been using Avast for ages and have never had performance issues.
In corporate environments it is extremely rare to not have either McAfee or Norton deployed on the network, and I will admit between the two Norton does have a huge performance impact. I have also found that some system administrators believe that 12:00 midday is the perfect time to run full system scans, which tend to be a major issue.
However I have spent enough time removing viruses from machines to recommend that you do use one, as long as you have tested that it works for you. Anti-Virus software is as big a religion as the OS Wars.
Every computer I fix/setup for someone else has these 4 programs on it:
You have to caution a user about CCleaner, as it can do some registry damage if you don't know what you are doing.
I put these programs on a lady's laptop that was running vista with only 1GB of RAM and a 2.26GHz processor. AVG and Spybot both run in the background at all times and neither her nor I noticed a significant slowdown.
I've been using Avira [1] for some time and haven't had any problems whatsoever. As far as I can see it doesn't even require much resources and updates are loaded smoothly.
Only downside perhaps is that every boot and update a message inviting you to buy the full version is displayed.
[1] http://www.free-av.com/avnotify.exe
and you'll never see that ad again. But you knew that already, didn't you? ;) - musicfreak
I use ESET Nod32 and have never had any performance problems with it. Honestly, I hardly notice it's there most of the time. Yes, I could probably do without an antivirus, but if I'm not losing anything by having it, why not? The extra security layer is always nice.
Disclaimer: I don't have any means of backing up my entire hard drive, so I have more reason to be cautious than most people. Yes, my documents, photos, music, etc will be safe, but I don't want to have to reinstall all the applications I currently have installed.
If you have no AV/Firewall and your box is landlocked, you probably don't need any of that crap. If you are the average user, you will definitely need that:AV and other supplements to help protect your PC.
If you know how to do backups, you probably don't need AV or other supplements.
If AV is free, sure, use it, it's signature based and anyone can write custom code to bypass your Kaspersky or Nod whatever; however, some AV is better than no AV for the average user, so every little bit helps, especially if you run some variant of Windows.
There is also people that do stuff like, I: dual boot operating systems, run OS(es) in Vmware, and run abstract 0S(es) like Unix and Linux not to mention the Mac fan boyz.
So that question is really dependent on the user and what you use your box(es) for and the level of technical savvy or geekness.
I don't take chances, just cause I have backups and Vmware or I run Unix or Linux, if it's free I use it, that's my philosophy.
I prefer not using AV software, because of the (minor) performance hit. Previous iterations of AV software sometimes froze the computer for a few seconds, which was enough to drop an internet connection, and even earlier AV software was ineffective at picking up the NYB virus that prevented formatting floppies.
I use the built-in firewall to prevent most inbound attacks. AV is handled by not downloading from highly questionable sites, and not running a browser that is highly prone to exploits (e.g. old versions of Internet Explorer.)
My desktop computer has AV software, but my laptop does not.
I never use it on my personal PCs. Like Mark Pim any important data isn't stored on the local PC's hard drive, and is regularly backed up.
I always install something on friends and family PCs that I set up for other people. Currently I tend to go with AVG.
Yes, I run anti-virus software. I think of it as insurance. It's not free, but the premium (making my computer a tad slower) is far less than the cost of data loss or the time it would take for me to restore my computer after an attack.
If you think anti-virus makes your computer too slow, buy some more memory or a faster processor. It's still much cheaper than dealing with a virus infection.
I use to have it disabled until I've got my computer unsuable.
It turns out it somehow delete my system restore which was pretty much what I used when a virus attacked.
Now I have it always running and updated.
I run Symantec Endpoint, which has no crippling effect on my machine. You'll hardly notice it's running, particularly if you configure it to run stealth (no systray icon, no report after scan). It scans every night while I'm sleeping and usually just finds a few tracking cookies. Auto-Protect has saved my bacon a few times.
Whether you're running no antivirus or some other antivirus (coughAVG*cough*), chances are better than 90% that Endpoint will find something on your computer. Running without antivirus is just foolish and asking for trouble.
An anti-virus isn't guaranteed to stop viruses, so I consider it as a last resort when I think a machine is infected.
If you don't run as administrator, install security updates and use a firewall you shouldn't have any problem.
I run Norman AV [1] on (l)user's boxen because its sandbox looks for virus-like behavior, and has actually quarantined zero-day exploits right in front of my face.
Of course, it's also a resource hog.
On my own machines, I run AVG with half the features turned off.
[1] http://www.norman.com/I do run anti-virus software, but don't have it scanning all the time, just set it to scan overnight when I'm not usually doing anything else. My logic is:
Even if I was runing Mac OSX, with Windows XP VM, I still put some free AV in there just in case. Just cause you run a Mac is still no excuse for not using free AV or paid AV.
I run Linux and Unix, but that does not warrant me telling you that I do not run AV, cause I do, my grandmother does not run Linux or Unix and sometimes those attachments will be received on a Windows box, so I do need to scan them somehow whether I am on Linux or Unix, just saying you are on some planet that does not use AV regardless if it's free or not is not really a real world solution.
Not everyone can afford Mac's nor do they have the time to be setting up a FreeBSD(Unix) box for grandma, nor does grandma want to learn to use BASH.
I run without AV on my desktop Vista PC. However, it is behind a firewall and I'm pretty careful about where I go online. Naturally, my desktop Mac doesn't have an AV. :-)
My laptop, however, has AVG on it. I consider it to have a need to be "hardened".
My work machine(which is maintained by an IT department) has Symantec on it, and it interferes with our work on a moderately regular basis.
I don't run anti-virus software on my PC but I do have it installed on a virtual machine. When I come across something that I think might be questionable I copy the file into the virtual machine and run a virus scan there. This way the anti-virus software doesn't bog down my system.
No. I moved to linux mainly so I wouldn't have to run anti-virus software.