F-Secure Ultralight Anti-Virus

Supporter

Re: F-Secure Ultralight Anti-Virus

yeoldfart@  Also I think about it

Superuser

Re: F-Secure Ultralight Anti-Virus

From what I understand, YOF, it has the same protection levels as the current security products, except for isolating the connection to banks and other secure sites (so, no Banking Protection), and it doesn't currently have offline protection, ie, for if you're offline and plug in a USB stick, for example.

So, in short, it is missing some of the features of the current security products. Personally, I'm keeping it on a spare machine at the moment, as I don't want to compromise security on my main machine for banking, etc, but I am eager to see how Ultralight evolves. :)
Superuser

Re: F-Secure Ultralight Anti-Virus

I'm considering using it o my main rig (my wife won't accept any change on her laptop Smiley LOL ) after a fresh windows 8 history and backup as I am very interested in this unique AV concept.

Superuser

Re: F-Secure Ultralight Anti-Virus

Bear in mind it is a very early concept beta product. Perhaps Andy could advise as to whether it's a good idea to use it on a main machine?
F-Secure

Re: F-Secure Ultralight Anti-Virus

I have been using this product on my main rig for the good part of a month already. I'm happy with the protection level if offers. However, in my line of work, I know very well what to look out for, where the product has shortcomings, etc. I'm also sitting with the guys developing it, malware analysts and a large number of experts in the field :)

 

Bear in mind that this is a beta product. That means that you will be receiving more cutting-edge changes than a production product. I would advise against using any beta product on any system you would consider mission-critical.

Superuser

Re: F-Secure Ultralight Anti-Virus

---------------------

and it doesn't currently have offline protection, ie, for if you're offline and plug in a USB stick, for example.

---------------------

 

How I can to understand......

 

 

Spoiler

In fact... there have offline protection during USB/CD/DVD connection or other variants of malicious files transferring to system (when network disabled).

 

There just will be basic, low.... and not full meanings of protection.

 

Will be work just "offline core". Such as.... OK... it can be Hydra -engine as example;

Or just "core" with signatures (or patterns, hashes or other) about MOST of critical (?! but outdated), engine-depended or important known files/signatures/patterns/hashes.

 

Such as .... will be detection for most of related files for current engine as main F-Secure's basic core.

Will be normal detection about some of files (it's can be malware, spyware or suspicious files), but it should be known for "offline"-engine (which same with basic-core... about default level of checking around. Such as known viruses maybe). Such as... it's F-Secure ULAV - small and ultralight. It's of course.. not really biggest collection can be. But maybe about most important. There I can just create a suggestion... that current basic-core should be also with updates for "last three days" new discovered malware/spyware/suspicious files as "offline". After that... goes be "just under cloud" and offline version with "next last three days".

It's probably will be still around "small size", but with protection against NEW and modern malicious things EACH day... with offline-protection too. If it's on current time.. same things - good. Such as "basic-core" of detections and "some of last days around all new known malicious files" (which after day goes be just under cloud and offline-protection based on basic-core and "new-fresh detections").

 

And during offline-protection.... will be dropped a lot of advanced things. Maybe it's will be include: aquarius-core under cloud, advanced-scanning patterns under cloud, Security-Cloud as protection behavior-based for "known files" and other variants of "static/dynamic/virtual analysis" under Cloud during launch or "trying to launch" files.  Also maybe it's related with hooks... such as... not available to re-get "result" of checks during launch.

 

So... such as... there still have offline-protection, but around "default one" with dropped all of advanced-mechanism-detection-steps, which comes just by Cloud.

In fact.... it's also can be same with FS Protection (about some of things), but FS Protection also have a lot of cache-history and more local database... which enough for most of "visible" advanced detection. And it's required to get more space.... more perfomance-usage... and all of other things, which certainly not related with ultralight :)

But FS Protection/F-Secure IS close to be friendly with system too (for me).

 

 

Superuser

Re: F-Secure Ultralight Anti-Virus

all  I can It's freaking fresh looking, no competitors in sght, extremely light on ressources, running it as sole AV on my main rig (W8 x64) with episodic MBAM scans to make sure, no problems so far.

One questio: is the gui in Java ?

Superuser

Re: F-Secure Ultralight Anti-Virus

just added webroot: neither F-S nor WR complained, work alongside together well

Superuser

Re: F-Secure Ultralight Anti-Virus

how long is this beta supposed to last ?

Superuser

Re: F-Secure Ultralight Anti-Virus

About GUI question:

UI maybe HTML/Javascript as Qt-based.  .... or maybe Java... as around OpenGL points..

 

 Anyway....

Here also can be question.... does F-Secure ULAV planned also for some of other platforms? :)