Recently, my subscription to my antivirus protection lapsed and instead of just automatically renewing it, I decided to take a look at what’s going on in the Internet Security business to see if there were better alternatives to what I was using.
I’ve asked questions in several forums and read numerous reviews, and the majority of the answers were pointing to one security product - Kaspersky® Internet Security 7.0 Triple Threat Protection.
Where to Get it?
There are numerous resellers and of course you can get it from the official site, but there’s an incredible deal that I found nowhere else at BAS. You can get a free license for reviewing the product.
Installation is easy with the option to choose the Express Installation using the programs’ default settings or Advanced mode. The installer checks your system for other anti-virus and firewall applications already installed on your computer and offers to un-install them for you, to prevent any clashes. The installation process is followed by an Initial Setup Wizard, where you activate the software (an active Internet connection is required for this) and to enable the firewall (which is done for you automatically). You need to restart your computer once the installation is complete.
Kaspersky Internet Security periodically checks for new updates in the background and installs them automatically. Kaspersky Lab claims that they update their database on an hourly basis.
Kaspersky Internet Security features 6 different resident shields (not including the firewall and spam filter), antivirus sheilds for files, mail, web, the Proactive Defence shield, the Privacy Control Shield and the Parental Control shield. Each shield can be configured, enabled or disabled individually, making this Internet security suite very flexible. Kaspersky Internet Security basically protects your computer from almost every possible threat.
If you take into account the number of resident shields protecting your computer, the active scans and automatic updater running in the background, then it is absolutely amazing to see how responsive your system remains. Even during a full system scan, you can still browse the web, reading email or listen to your favourite MP3s. Performance of your machine will depend on how many programs are loaded during the Windows Startup.
Isolation of Threats
Once a threat is detected you can’t rename, copy or move it. It basically means that a threat is toast once Kaspersky Internet Security detects it. You can set the File Anti-Virus settings to disinfect a detected threat automatically or delete it if disinfection fails. This means the threat is treated before you even lay eyes on it.
The Kaspersky Internet Security Firewall protects your computer from various types of network attacks, including port scans, DoS (Denial of Service) attacks and general intrusion attacks. The firewall isolates an attack by adding the attacking computer to a black list for 60 minutes (which is the default setting, but you can increase or decrease this time limit if you want).
I found my way around the menus, dialogs and controls of the program quite easily. The user interface is laid out intuitively and it’s not hard to find what you are looking for.
Scanning & Healing
- Fast-scan function: Yes
- Scanning of Single objects: Yes
- Customisable scanning: Yes
- Boot sector scanning: Yes
- Memory scanning: Yes
- Registry scanning: Yes
- System Area scanning: Yes
The scanner of Kaspersky Internet Security has been designed for optimal performance, thanks to iCheckerTM, iSwiftTM technologies. Smart Mode scanning is aimed at speeding up file processing, therefore allowing the user to work with the files on his/her computer without any unnecessary interruptions or delays. The scanner also keeps productivity in mind by only scanning new and changed files. This means that your very first system scan may take some time to complete, but all subsequent scans will be much faster. The scanner prompts for action once the scan is complete. This speeds up the scanning process and does not annoy the user with a prompt each time it detects a new threat. After the scan, the user can take action against each threat individually or all threats at once. You can either attempt to disinfect or delete a threat, or you can add it to Kasperskys’ Trusted Zone if you believe the file was wrongfully detected. Kaspersky Internet Security includes a special scanner for rootkits as well.
This is the main scanner of the security suite and scans files on hard drives, CDs, DVDs and flash drives when they are accessed. This means every file on your computer has to pass through this scanner before it can be executed or loaded. The heuristic analyzer of the File Anti-Virus shield is turned off by default. Kaspersky Lab analyzes new threats quickly and new methods for disinfecting them are added to the database updates on an hourly basis. Therefore if you update Kaspersky Internet Security on a regular basis and maintain the optimal protection level (indicated by a color coded indicator at the top of the application window) on your computer, you will not need to use the heuristic method regularly. An antivirus application can only tell you if a file or specific action is malicious if it corresponds to a signature in the database. The heuristic analyzer on the other hand, can detect malicious behavior, even if the signature of a specific threat is not present in the antivirus database. It is a handy tool to analyze suspicious files, but should be used with caution, because legitimate processes may also contain virus-like behavior, that are not necessarily malicious. The heuristic analyzer should therefore be used by advanced users only.
This scanner scans your email for malicious attachments. It scans for malware on POP, SMTP, IMAP and NNTP protocols. It has special support for Microsoft Office and The Bat! The attachment filter can be used to rename or delete specific file types.
This shield protects you against malware attacks from websites while browsing the Internet. It scans HTTP traffic for malicious code and blocks dangerous scripts in Microsoft Internet Explorer. With more and more users on Firefox these days, I would like to see a version of this add-on being developed for Firefox as well.
The Proactive Defense mode is an impressive feature of Kaspersky Internet Security that consists of three components namely the Application Activity Analyzer, analyzing the actions performed by every application running on your computer; the Application Integrity Control, tracking the integrity of your programs by the composition of the program modules and checksum of the program itself; and the Registry Guard, analyzing all attempts made to change keys in the Windows Registry. Novice users should not feel intimidated by these strange terms. The Proactive Defense module is mainly a tool for power users, but is already optimally configured for normal use.
The Kaspersky Internet Security Firewall is a very thorough and robust intrusion detection system. By default, it allows network activity of all applications except those explicitly prohibited by user defined application rules. This is the best setting for novice users, where they enjoy firewall protection without the annoying nagging prompts of most firewall applications in the industry. Power users can move the security level of the firewall up by one notch to enable the Training Mode. Most firewalls are based on the basic principles of this mode, namely training. You train the firewall by telling it which applications should be trusted as you use them on your system. However you need to have some solid knowledge about the applications installed on your computer before switching to this mode.
Additional features of the firewall include a built in popup blocker (Anti-Publicity), blocking annoying pop-up windows and the Anti-Banner feature, blocking advertisement banners on the web, or the ones that are built into the interfaces of various programs installed on your computer.
This shield includes Anti-Phishing and Anti-Dialer protection. The Anti-Dialer protection informs you of telephone numbers being dialed in the background of your computer without your knowledge. Kaspersky Internet Security protects your confidential data by prompting you whenever an unauthorized transmission of confidential data occurs over the Internet or when someone or some program tries to access your saved passwords or personal information stored in the Windows Protected Storage.
The Kaspersky Internet Security Anti-Spam filter can process traffic from POP, SMTP and IMAP protocols. It also includes support for Microsoft Office Outlook/Outlook Express and The Bat! via a plugin. The Mail Dispatcher allows you to preview email messages (only header information, not the content) and delete them directly from the mail server if you believe they are spam. This is where the PDB technology of the filter comes into action. It shows you which emails are considered as spam according to certain elements in the header. The Mail Dispatcher tells you why an email is regarded as spam, by supplying a reason in the “Reason” column. This helps you to identify possible spam email and delete them before downloading them. Note that the Mail Dispatcher is not dependent on your email client, so whether you use Outlook Express or Thunderbird, you will always get the Mail Dispatcher window before the email client retrieves the email (unless you choose to turn the Mail Dispatcher off).
The Kaspersky Internet Security Anti-Spam filter acts as a proxy between your email server and email client, which saves downloading time and cuts down on bandwidth costs (because you delete spam before downloading it). You can do initial training on the spam filter by running the Anti-Spam Wizard to show the spam filter which email you regard as non-spam, by pointing the filter to a folder in your email client containing non-spam email only. When the wizard asks for samples of spam emails, you can point it to the junk folder (or any other folder containing spam email only).
When you open Microsoft Office Outlook or Microsoft Outlook Express for the first time, after installing Kaspersky Internet Security, the Anti-Spam Configuration Wizard automatically starts. You mainly specify how the Anti-Spam filter should handle spam or probable spam (copy or move it to a specific folder, delete it or skip spam filtering and leave it in the inbox). The plugin adds a special toolbar to Microsoft Office Outlook/Outlook Express to make the training of the spam filter easy and effortless. You hit the Spam button if you believe an email is spam, or the Not Spam button if you feel that the spam filter wrongfully labeled a legitimate email as spam. You don’t have to use a supported email client to be able to train the spam filter. You can still train the filter in the main application under the Anti-Spam configuration settings.
The filter also has a white and black list of email addresses and key phrases. Email from people on your white list or email containing the key phrases on your key phrases white list, will never be labeled as spam. The black list has the exact opposite effect. Three different spam recognition filters are used for spam filtering namely the self-training iBayes algorithm, for text recognition; the GSG technology for image recognition and the PDB technology for header recognition. Additional spam ratings can be assigned to fine-tune the filter to meet your specific needs.
This is a very handy tool for parents who are concerned about what their children can access on the Internet. The tool is very basic and easy to configure. Kaspersky Internet Security blocks websites containing content related to pornography and erotic materials, drugs, violence, explicit language, weapons and gambling. Parents can also restrict access to chat and Internet Mail. A white list and black list can be used to allow or block specific URL’s or specific phrases/words found in an URL.
Further options include the ability to block access completely or to log the event only. The logging option can be useful to see which sites your children visit regularly. You can limit your childs’ daily operating time on the Internet or allow Internet access only at specific times of the day (for instance only when you are at home). The settings can be password protected to prevent your children from changing or overriding the Parental controls.
Different profiles can be created to control access for different types of people, for instance the Parent Profile does not limit web browsing in any way, while the child profile blocks access to the web as explained above. You can even create a Teen Profile where you, for instance, allow unlimited Internet access, but log your teenagers’ activity while browsing the web.
Kaspersky Internet Security allows you to view the events logged by the parental control in an easy and understandable way. You can view the time and date of the event, the website that was visited and whether access to the site was allowed or blocked. This enables you to identify prohibited sites that are not being blocked by the Parental Controls. You simply add these sites or URL’s to the Parental Control black list to prohibit access to these sites in the future. You can even use the black list to block content/images in email coming from specific domains. The Parental Controls of Kaspersky Internet Security can be configured, not only to block access to the website alone, but all images from that website as well, so your child will not be able to bypass the restrictions by asking a friend to sign up for newsletters from the prohibited website. Remote images in the newsletters will be blocked as well.
Interested in purchasing the best Internet Security software on the market or getting it free by doing a software review? Get it here: Kaspersky® Internet Security 7.0 Triple Threat Protection