The Portable Freeware Collection Forums

It's all well and good not using an AV so long as it's not the family computer. I have no protection on my laptop as i am the sole user but on this desktop I have a running AV and scan monthly with MBAM.

3K3 wrote:Malwarebytes Anti-Malware Portable
UniEx on installer:
all in {App} -> mbam folder (portable package)
Configuration folder ({commonappdata}\Malwarebytes\Malwarebytes' Anti-Malware) -> mbam\Users folder

Launcher=MBsAnti-Malware.exe

Config Options (Launcher.ini):
[MBsAnti-Malware]
Command Line Parameters=commas to separate params
[Windows Integration]
Start MBsAnti-Malware At Login=startup reg value
Send To Shortcut=Scan with Malwarebytes Anti-Malware Portable option
[FileASSASSIN]
Integrate Into Shell=right-click options on files

i would like to give mbam portable a try, but there have been quite some changes (different launcher name - mbam.exe), is this guide still valid for recent versions?

Impact of security software on system performance investigated:

http://hexus.net/tech/news/software/844 ... estigated/

joby_toss wrote:Impact of security software on system performance investigated:

http://hexus.net/tech/news/software/844 ... estigated/

Wow! According to those figures, out of 20 products only Emsisoft and Avast can be considered negligible, IMHO...

Midas wrote:... only Emsisoft and Avast can be considered negligible

I do generally recommend Avast so this will give some weight to that recommendation. I've only been able to test two AV solutions but on very different computers: Avast seems fast on my older magnetic drive device but occasionally it gets in the way while doing something hard drive-intensive.  Meanwhile on my other machine, McAfee doesn't really register against a very fast SSD.  As such, it's interesting to see some clear numbers about what's probably taking the most processor cycles between both machines.

FYI, Ghacks recently published an alert regarding MBAM (MalwareBytes Anti-Malware):

• Security Issues in Malwarebytes Anti-Malware disclosed
  http://www.ghacks.net/2016/02/04/securi ... disclosed/

• http://www.ghacks.net/2016/02/04/security-issue-in-malwarebytes-anti-malware-disclosed wrote:Google researcher Tavis Ormandy alerted Malwarebytes in early November 2015 to several security vulnerabilities that he found in Malwarebytes Anti-Malware.

I used Avast in the past and did enjoy it. I don't use it anymore. Why? It does block the output of compilation of software with: embarcadero product (Delphi and C++ IDE). It even put output release to it's quarantine zone. Sometime it crashed the PC during compilation so badly I lost hours of work. No matter what I tried to stop this behavior nothing worked but turn of the real time scanner. For me and me only I had to go with another solution.

This post to 'revive' the debate as I found it interesting.

Former Mozilla Engineer: Your Antivirus Is Poison, Remove It Now

Robert O'Callahan wrote:If you’re currently running third-party antivirus on your computer, remove it now. In case you’re considering buying one, don’t do it. Antivirus solutions are poison for the software ecosystem.

Original blog post: http://robert.ocallahan.org/2017/01/dis ... xcept.html

Note: I don't agree with everything he said, but that was a fun reading...

Revisiting the topic, I recently came across this unsettling info regarding antivirus software...

RACK911 Labs has come up with a unique but simple method of using directory junctions (Windows) and symlinks (macOS & Linux) to turn almost every antivirus software into self-destructive tools.

BTW, related topic at viewtopic.php?t=23565.

Midas wrote: ↑Sat Aug 08, 2020 7:12 am Revisiting the topic, I recently came across this unsettling info regarding antivirus software...

RACK911 Labs has come up with a unique but simple method of using directory junctions (Windows) and symlinks (macOS & Linux) to turn almost every antivirus software into self-destructive tools.

@ www.rack911labs.com /research/exploiting-almost-every-antivirus-software/

WTF? That's a classic TOCTOU vulnerability. Security professionals of all people should be easily able to avoid it.

SYSTEM wrote:WTF? That's a classic TOCTOU vulnerability.

Is it? Great to know, then. Nothing like the expert overview...