14 comments

[ 2.7 ms ] story [ 40.5 ms ] thread
(comment deleted)
> Not much is known about UltraAV besides being part of Pango Group, which controls multiple VPN brands (e.g., Hotspot Shield, UltraVPN, and Betternet) and Comparitech (a VPN software review website).

I recognize these names. For a long time after VPNs like Mullvad, ExpressVPN, ProtonVPN, etc were removed from Chinese app stores, Betternet and Hotspot shield was still there. I’ve heard them referred to as whitelisted and monitored. Would not trust this company.

(comment deleted)
I would bet UltraAV is some kind of Russian/Chinese spyware.
Is there any anti-malware suite on the market that is not collecting and sending back telemetry to its master?

I give admin-level access to this stuff (or Windows/Play has it already) and it has an all-access pass to all activity, including reading my screen and every web page.

So the only difference between that and "spyware" is semantics, connotation, and trust.

ClamAV is open source
That was not the premise, and I see no relation between license and telemetry.

That being said, I used to run ClamAV, and as I understood it, it was far from a complete security suite, only a scanner, and had no reason to communicate with anything.

Also, it never gave me anything but false positives, flagging image files (jpg, png) on my Linux system with obsolete/benign win32 malware. I wasn't running win32. Idiots.

clamav is used as a network based scanner. It's not unreasonable for it to flag windows malware on a Linux host.
Indeed, that's the idea, such as protecting the users of an MTA/POP3 host. That's not what I was running, and ClamAV cannot replace Windows Defender, McAfee or Norton, no matter how freakin' free its source is. Honestly.
I don't run antivirus on my desktop but you're probably right. They don't have the resources to be an all around antivirus solution. Their engine does have value beyond antivirus though. For example I am using it with non-virus signatures to block various malicious email types.
And so, Kasperskys final act was to operate as overt malware
Final act in the USA my workplace Kaspersky seems to be working fine.