Do I really need antivirus?

By gohpep
in Microsoft (Windows)

 Share

Recommended Posts

Mentor

gohpep

Posted
Posted

I'm using Firefox, with AdBlockPlus blocking malcious ads and annoying ads, NoScript blocking 0-day JavaScript vulnerabilities, and WOT so I know if I am on a safe site. Is there a possibility to get a virus if there is no route of entry through the browser or through USB flash drives (I only put drives that are my own that I know are not infected into my computer)?

Link to comment
https://www.neowin.net/forum/topic/1238996-do-i-really-need-antivirus/
Share on other sites
Grand Master

Max Norris

Posted
Posted

Just my own personal experience that I wouldn't recommend to everyone, haven't used a resident suite in over a decade, got tired of the inane amount of false positives/nags, performance drag, compatibility issues, etc.. personally if you're waiting for that "This program is malware" warning, you already made a mistake by letting it on your system to begin with.  Barring OS exploits that any OS gets and exploitable services (web servers, etc, again on any OS), 99.9% of the time malware on a desktop typically comes from user error or bad habits.. it doesn't appear out of thin air like catching a cold.  If you have internet facing services though you may want to reconsider.. that sort of stuff gets hammered all the time on any OS you can think of.

 

My neighbors for example (rank them in the "clueless user" category) have had multiple problems in the past, always due to dumbassery.  No you don't need that codec to view the video, no it's not safe because the guy said so, no you don't want to run that Shipping Label.docx.exe that got mailed to you.  With a bit of corrective training (and hardening of their browser) I haven't had to work on their system in over two years now.. but they still run resident protection just because.  

 

Obviously regular drive images are a good idea, that safety net never hurts.  An on-demand scanner is handy to have if you tend to grab stuff from random places, never mind a sandbox to run them in. If you don't have a sandbox, get a VM.  If you don't trust where the file came from, you don't run it without some sort of barrier to protect the system, period.

 

Whichever way you go though.. backups are always front and center.  Only takes one mistake to let malware in. It's entirely on you if you want to run without it, and it's certainly not for everyone.

Grand Master

soldier1st

Posted
Posted

I also agree with Max Norris. If a site provides some sort of checksum like MD5 or SHA1, or CRC, then that can provide a means of a good chance the file in question, is the real thing. imo WOT is not needed as if a site has been deemed safe but at the same time, the site/page could be compromised and that is another addon that if it were bad, it could do anything it wants. Also anything that can hold information such as USB/DVD/etc.. can be suspect and if your not sure, then run a VM/sandbox or a seperate testing PC. Also there are plenty of sites like virustotal/etc.. that you can upload files to or check websites and see if they are malicious or not. Also like Max Norris said, use images as they can save you.

Contributor

whs37

Posted
Posted

I would install at least MSE. It is not the world greatest AV suite, but it helps amd is free. I also recommend frequent images so that you can easily backpaddle.

 

I run most of my web activities thru a virtual Linux Mint Mate system. That is the best protection you can get.

  • Tews and 4CxbqFxVnstmA
  • Like 2
Grand Master

simplezz

Posted
Posted

I'm using Firefox, with AdBlockPlus blocking malcious ads and annoying ads, NoScript blocking 0-day JavaScript vulnerabilities, and WOT so I know if I am on a safe site. Is there a possibility to get a virus if there is no route of entry through the browser or through USB flash drives (I only put drives that are my own that I know are not infected into my computer)?

That certainly helps a lot. Whenever I load Windows, I use virtually the same configuration of FF + ABP + NoScript + CookieMonster. However, it's not a silver bullet when it comes to Windows unfortunately. It minimizes your exposure, and you could probably get away with it if you only download programs from reputable sources / scan them online, but it won't eliminate the threat entirely.

 

GNU/Linux is the only desktop OS I recommend for a completely secure malware-free experience. I would never do any sensitive work on Windows, nor would I store any important files there. The risk is too great.

Grand Master

Som

Posted
Posted

I'm using Firefox, with AdBlockPlus blocking malcious ads and annoying ads, NoScript blocking 0-day JavaScript vulnerabilities, and WOT so I know if I am on a safe site. Is there a possibility to get a virus if there is no route of entry through the browser or through USB flash drives (I only put drives that are my own that I know are not infected into my computer)?

 

if your asking the question, then yes

  • xendrome and MorganX
  • Like 2
Mentor

badb0y

Posted
Posted

One question. Where would viruses come from? Neowin? Nope! so similarly, All reputed sites are safe. Except; Warez, Porn, Cracked Software. Don't tell me that cracked Photoshop is safe and clean..Just saying and neither is cracked/ toolkit Office 2013, no matter how many scans you run! and use worlds "best" AV/IS. If you invite Viruses yourself, you'll have them for sure.

Grand Master

+Warwagon MVC

Posted
  • MVC
Posted

One question. Where would viruses come from? Neowin? Nope! so similarly, All reputed sites are safe. Except; Warez, Porn, Cracked Software. Don't tell me that cracked Photoshop is safe and clean..Just saying and neither is cracked/ toolkit Office 2013, no matter how many scans you run! and use worlds "best" AV/IS. If you invite Viruses yourself, you'll have them for sure.

 

Totally wrong. Neowin could totally serve up a virus if they were hacked and bad code was put on the website or a malicious ad provider stuck in an Ad with an exploit on it. Happens all the time to other legit sites, heck I think Yahoo had a bad ad and infected 200,000 machines. or was it 2 million?

  • +theblazingangel, Knife Party, Max Norris and 2 others
  • Like 5
Grand Master

simplezz

Posted
Posted

One question. Where would viruses come from? Neowin? Nope! so similarly, All reputed sites are safe. Except; Warez, Porn, Cracked Software. Don't tell me that cracked Photoshop is safe and clean..Just saying and neither is cracked/ toolkit Office 2013, no matter how many scans you run! and use worlds "best" AV/IS. If you invite Viruses yourself, you'll have them for sure.

Even so called reputable sites can contain malware. Youtube was briefly infected recently if I remember correctly. Servers can be compromised to spread it, etc. Point being, there's no single thing you can do besides completely disconnecting from the internet. For most of us, that's not an option.

 

And who hasn't clicked on a link from a search result to find it's not what you expected? It's easy to run across dodgy/less reputable sites by accident. So to suggest that the only way to be safe is to avoid them entirely is impractical.

Veteran

+DonC Subscriber²

Posted
  • Subscriber²
Posted

Pretty much what Max Norris said. When your using Windows, you are targeted and so you need to address that. I wouldn't install an anti-virus suite because they're not worth the hassle. To be honest, I consider it *too late* by the time your anti-virus solution has actually found something. Instead I would:

  • Ensure that Windows Update is switched on
  • Uninstall Java
  • Either keep Flash up to date or use IE or Chrome's built-in version of Flash
  • Consider a sandbox technology (I use Sandboxie personally) for the times when you don't fully trust software

Think about this: When was the last time you heard of a major Windows virus / worm and any of the anti-virus companies said "Yes!  We caught that before it affected our customers!"

Grand Master

simplezz

Posted
Posted

Uninstall Java

You may as well uninstall dotNET while you're at it. Every piece of software on a system is a potential security threat if it isn't kept up-to-date. Take a look at your next Windows update and note how many vulnerability fixes there are for dotNET.That will give you an idea of the risks of out-of-date software. This is why a good package manager is essential to system security.
Veteran

+DonC Subscriber²

Posted
  • Subscriber²
Posted

I'd also add that running a VM is an option but I think it's more important to have an environment that you can discard trivially. I used to use a VM solution that had the option to essentially commit or discard changes at the end of a session and I would always choose discard.

 

Sandboxie offers a separation facility but runs in the same run of Windows so it's more convenient for me. I run Java inside it so that my main installation of Windows does not have any Java functionality visible to the browsers. You can also set it up so that your browser always runs in a sandbox that gets discarded when you close it, meaning that whatever changes are made do not persist. You get the option to keep downloads, obviously.

Veteran

+DonC Subscriber²

Posted
  • Subscriber²
Posted

You may as well uninstall dotNET while you're at it. Every piece of software on a system is a potential security threat if it isn't kept up-to-date. Take a look at your next Windows update and note how many vulnerability fixes there are for dotNET.That will give you an idea of the risks of out-of-date software. This is why a good package manager is essential to system security.

 

Just about every time I've witnessed a successful malware attack, Java has been the attack vector. Seriously, practically nobody needs Java on a Windows machine. It's been a sorry tale of vulnerabilities, fragile update agents and extreme software engineering incompetence.

 

I don't recall ever wondering if my version of .NET was out of date. I haven't used Silverlight for a long time so it's not really relevant to drive-by attacks from the web.

Grand Master

Torolol

Posted
Posted

and when using windows explorer, turn on the "show known extension" setting, that would enable you to immediately discern any app/program trying to look like a (fake) folder or documents files.

Any apps that doing that almost positively have malicious intent behind it.

  • +Nik Louch and Ice_Blue
  • Like 2
Grand Master

adrynalyne

Posted
Posted

Just about every time I've witnessed a successful malware attack, Java has been the attack vector. Seriously, practically nobody needs Java on a Windows machine browser.It's been a sorry tale of vulnerabilities, fragile update agents and extreme software engineering incompetence.

 

I don't recall ever wondering if my version of .NET was out of date. I haven't used Silverlight for a long time so it's not really relevant to drive-by attacks from the web.

FTFY.

 

There are quite a few reasons to have it otherwise.

Mentor

gohpep

Posted
  • Author
Posted

You dont download any files?

What about exploits in sites that attack the OS?

I only download files from trusted sources, and I do not run stupid things.

How can I get stuff onto my computer that attacks the OS?

 

 

My neighbors have had multiple problems in the past, always due to dumbassery

My point exactly.

 

 

I would install at least MSE

I am using Windows 8's Windows Defender, which is MSE. It annoys me because it seems to suddenly hog CPU and memory at random times.

 

 

Totally wrong. Neowin could totally serve up a virus if they were hacked and bad code was put on the website or a malicious ad provider stuck in an Ad with an exploit on it. Happens all the time to other legit sites, heck I think Yahoo had a bad ad and infected 200,000 machines. or was it 2 million?

But I use AdBlockPlus to block malicious ads.

 

You forgot one addon/plugins called "Ghostery"

Ghostery is proprietary. I use Disconnect. The addons I did not list are: request policy, httpseverywhere, httpsfinder, privacy badger, beef taco, betterprivacy, refcontrol, and youtube all html5 (so I don't need flash).

 

 

And who hasn't clicked on a link from a search result to find it's not what you expected? It's easy to run across dodgy/less reputable sites by accident. So to suggest that the only way to be safe is to avoid them entirely is impractical.

But I use WOT, so I know if a link is trustable.

 

 

Just about every time I've witnessed a successful malware attack, Java has been the attack vector. Seriously, practically nobody needs Java on a Windows machine. It's been a sorry tale of vulnerabilities, fragile update agents and extreme software engineering incompetence.

 

I don't recall ever wondering if my version of .NET was out of date. I haven't used Silverlight for a long time so it's not really relevant to drive-by attacks from the web.

I'm not going to uninstall Java because I develop using Java. There are no vulnerabilities in Java itself, it is just when it is used in the browser is when it is unsafe. That's why I disabled it in the browser and why I decompile Java programs and check them before running them.

 

 

and when using windows explorer, turn on the "show known extension" setting, that would enable you to immediately discern any app/program trying to look like a (fake) folder or documents files.

Any apps that doing that almost positively have malicious intent behind it.

Already do that.

 

 

OP, what OS are you running?

I use Windows for gaming, Arch Linux for everything else.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Microsoft confirms Windows 11 26H2 to finally get one of the most requested features

      By Michal H. · Posted

      Dude, im talking about simply disable it from settings app. Because of the eu regulation, you could disable it here for years.
    • One big question about Mars was answered thanks to Einstein's 100 year old theory

      By hellowalkman · Posted

      One big question about Mars was answered thanks to Einstein's 100 year old theory by Sayan Sen Image via DepositPhotos Scientists at the U.S. National Institute of Standards and Technology (NIST) have calculated how time passes on Mars compared with Earth, adding detail to how timekeeping would need to work beyond Earth’s orbit. The study, published in The Astronomical Journal, found that clocks on Mars run an average of 477 microseconds, or millionths of a second, faster per day than clocks on Earth. A microsecond is one millionth of a second, a very small unit used in precise scientific timing systems such as atomic clocks, which measure time using consistent atomic behavior. This difference is not constant. Because Mars moves around the Sun in a non-circular path (an eccentric orbit, meaning its distance from the Sun changes over time instead of staying fixed) and is affected by gravity from other bodies, the daily difference can vary by as much as 226 microseconds over a Martian year. The study also identifies smaller repeating changes of about 40 microseconds per day linked to synodic cycles (repeating periods that describe how planets line up with each other as they orbit the Sun from different positions). These longer patterns affect how time differences slowly rise and fall. To make these estimates, researchers compared Mars with Earth and the Moon. The work looks at relativistic proper time (the time actually measured by a clock depending on its speed and the strength of gravity where it is located, as described in Einstein’s relativity). This shows that each world has its own slightly different “rate” of time. This becomes more important as space missions expand into cislunar space (the region between Earth and the Moon) and toward Mars. On Earth, time systems rely on atomic clocks and satellites, which stay closely synchronized for navigation and communication. The study is based on Albert Einstein’s theory of relativity, which shows that time is affected by gravity and motion. Stronger gravity makes clocks run slower, while weaker gravity makes them run faster. “The time is just right for the Moon and Mars,” said NIST physicist Bijunath Patla. “This is the closest we have been to realizing the science fiction vision of expanding across the solar system.” A day on Mars is about 40 minutes longer than on Earth, and a Martian year lasts 687 Earth days. But the main question is not just about days and years, but how fast time itself passes. An atomic clock placed on Mars would function normally, but compared with one on Earth, the two would slowly drift apart due to differences in gravity and motion. This requires careful calculation of what is similar to a time-zone difference across planets. Researchers modeled Mars using a reference surface and included gravitational effects from the Sun, Earth, the Moon, and other planets. This includes a multi-body gravitational system (often described as a three-body or four-body problem, where predicting motion becomes difficult because multiple large objects all pull on each other at the same time through gravity). Mars also follows a Keplerian orbit (an idealized elliptical orbit based on simple gravitational laws that assume smooth motion, before adding real-world disturbances from other bodies). In addition, the researchers accounted for solar tides (small changes in gravitational force caused by the Sun that slightly distort planetary motion and timing, especially in systems involving Earth and the Moon). These combined effects are described as relativistic proper-time offsets (small but measurable differences in elapsed time between locations caused by gravity and motion), which must be included when comparing clocks across planets. “But for Mars, that’s not the case. Its distance from the Sun and its eccentric orbit make the variations in time larger. A three-body problem is extremely complicated. Now we’re dealing with four: the Sun, Earth, the Moon and Mars,” Patla explained. “The heavy lifting was more challenging than I initially thought.” Although the differences are extremely small, they matter for navigation and communication systems that depend on precise timing. Even modern networks on Earth, such as mobile systems, rely on timing accuracy at very small fractions of a second. Communication between Earth and Mars currently takes about four to 24 minutes or more depending on planetary positions, meaning signals are not real-time. A shared and accurate time system could help future missions reduce confusion in navigation and data exchange. “If you get synchronization, it will be almost like real-time communication without any loss of information. You don’t have to wait to see what happens,” Patla said. Researchers note that fully developed interplanetary communication networks are still far in the future. However, understanding how time behaves across planets helps prepare for those systems. “It may be decades before the surface of Mars is covered by the tracks of wandering rovers, but it is useful now to study the issues involved in establishing navigation systems on other planets and moons,” said Neil Ashby. “Like current global navigation systems like GPS, these systems will depend on accurate clocks, and the effects on clock rates can be analyzed with the help of Einstein’s general theory of relativity.” Patla added that the results also help improve understanding of time itself under relativity. “It's good to know for the first time what is happening on Mars timewise. Nobody knew that before. It improves our knowledge of the theory itself, the theory of how clocks tick and relativity,” he said. Source: NIST, IOPscience This article was generated with some help from AI and reviewed by an editor. Under Section 107 of the Copyright Act 1976, this material is used for the purpose of news reporting. Fair use is a use permitted by copyright statute that might otherwise be infringing.
    • TeraCopy 4.0 Build 26

      By Copernic · Posted

      TeraCopy 4.0 Build 26 by Razvan Serea TeraCopy is a compact program designed to copy and move files at the maximum possible speed, also providing you with a lot of features. Copy files faster. TeraCopy uses dynamically adjusted buffers to reduce seek times. Asynchronous copy speeds up file transfer between two physical hard drives. Pause and resume transfers. Pause copy process at any time to free up system resources and continue with a single click. Error recovery. In case of copy error, TeraCopy will try several times and in the worse case just skips the file, not terminating the entire transfer. Interactive file list. TeraCopy shows failed file transfers and lets you fix the problem and recopy only problem files. Shell integration. TeraCopy can completely replace Explorer copy and move functions, allowing you work with files as usual. TeraCopy is free for non-commercial use only. For commercial use you need to buy a license. The paid version of the program includes the following features: Copy/move to your favorite folders. Save reports as HTML and CSV files. Select files with the same extension/folder. Remove the selected files from the copy queue. TeraCopy 4.0 Build 26 changelog: Added support for receiving files via the LocalSend protocol. Improved exception handling and automated bug report upload. Fixed several minor bugs and small memory leaks. Build 26 (June 24) Fixed a rare exception when a transfer completed. Features added since version 3.17: Enhanced speed graph. New multi-threaded copy engine. Support for copying to multiple targets. Queue system for managing multiple copy operations. Support for receiving files via the LocalSend protocol. TeraCopy entry in the modern Windows Explorer context menu. Integrated toolbar in the title bar. Why receive LocalSend transfers with TeraCopy? Handle file conflicts: Skip, overwrite, or rename files when a file with the same name already exists. LocalSend always creates another copy, which can waste time and disk space, especially when resuming an interrupted transfer. Filter unwanted files: Apply ignore lists or remove files manually before accepting a transfer, so unnecessary files are not downloaded. Better performance on fast networks: In tests over a 10 Gbps connection, TeraCopy received files several times faster than the standard LocalSend app on Windows. Download: TeraCopy 4.0 Build 26 | 14.5 MB (Freeware, paid upgrade available) View: TeraCopy Website | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • Anyone Here With Turbo Pascal Experience?

      By +virtorio · Posted

      Briefly used Turbo Pascal (and Turbo C++) in 97 and soon after that I bought PC magazine that included a full version of Delphi 2. I still use Delphi today, some 29 years later.
    • Age of Empires Mobile comes to PC, here's how to carry over progress from your phone

      By Ivan Jenic · Posted

      Age of Empires Mobile comes to PC, here's how to carry over progress from your phone by Ivan Jenic Image: YouTube/Microsoft Microsoft just released Age of Empires Mobile for PC. The game, officially called Age of Empires Mobile: PC Edition, is available for free on Steam and Microsoft Store, almost two years after its initial release for handheld devices. Age of Empires is one of those franchises that entire generations grew up with. The original came out in 1997, and immediately got people hooked to building civilizations and crushing their enemies on the battlefield. However, the franchise today is a far cry from its roots, as Age of Empires Mobile is, well, a game optimized for handheld devices, and not a classic RTS title we’ve all loved for years. And, of course, it includes in-game purchases. The PC version is still a mobile game at its core, but it’s been optimized for desktop play. There’s mouse control, full keyboard compatibility, and a refined UI. Microsoft also refreshed the visuals with some 4k textures, so the game should look better on larger screens. The game supports Crossplay, so you can switch between your phone, tablet, and PC without losing anything. But linked progress doesn’t come out of the box, as you have to enable it first. Here’s how to link your progress: On your mobile device, open Age of Empires Mobile. Go to Settings (Gear icon) > Account. Select Bind Account and choose a sign-in option. Once you enable account binding, sign in on PC using the same method, and your progress will be accessible across all your devices. Xbox Game Pass subscribers also get a bonus reward pack on PC, which includes: 1 Monthly Pass Token 1 Custom Resource Chest 10 Universal 60-Minute Speed-Ups 1,000 Empire Coins Exclusive Player Portrait Frame You can find more info about Age of Empires Mobile: PC Edition, as well as download links, on the Age of Empires official website.

  • Recent Achievements

    • One Year In
      Philsl earned a badge
      One Year In
    • Dedicated
      Scoobystu earned a badge
      Dedicated
    • First Post
      Tom Schmidt earned a badge
      First Post
    • One Month Later
      D0nn13 earned a badge
      One Month Later
    • Rookie
      +ChiefOfNeo went up a rank
      Rookie

  • Popular Contributors

    1. 1
      +primortal
      458
    2. 2
      +Edouard
      177
    3. 3
      PsYcHoKiLLa
      124
    4. 4
      Michael Scrip
      79
    5. 5
      Xenon
      76
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!