Any American made AV's out there?

Hi All,

I have a customer that is a government contractor. The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I know about PC-Matic, but they are not tested by Av-comparatives

https://www.av-comparatives.org/test...eptember-2018/

meaning they are flaky.

-T

On 11/04/2018 3:31 PM, T wrote:
Hi All,

I have a customer that is a government contractor.Â* The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I know about PC-Matic, but they are not tested by Av-comparatives

https://www.av-comparatives.org/test...eptember-2018/


meaning they are flaky.

-T

Click each browser listed in the List from the site you pointed to and
you will find only 4 From the USA.

Microsoft
Symantec
McAfee
Vipre

I find Microsoft defender adequate for my needs, Don't need 2 or AVs.

Rene

On 11/4/18 2:00 PM, Rene Lamontagne wrote:
On 11/04/2018 3:31 PM, T wrote:
Hi All,

I have a customer that is a government contractor.Â* The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I know about PC-Matic, but they are not tested by Av-comparatives

https://www.av-comparatives.org/test...eptember-2018/


meaning they are flaky.

-T

Click eachÂ* browser listed in the List from the site you pointed to and
you will find only 4 From the USA.

Thank you!

Microsoft
multinational

Symantec
india and china and terrible s***

McAfee
india last I heard and terrible s***

Vipre

Hmmmm. Never heard of them. I will look. 14 false positives,
meaning I get to talk to the customer more.


I find Microsoft defender adequate for my needs, Don't need 2 or AVs.

M$ is the worst and is used as a base line by av-comparatives since M$
gives the source away for free to AV vendors

https://www.av-comparatives.org/test...eptember-2018/


OFFLINE ONLINE ONLINE False
Detection Rate Detection Rate Protection Rate Alarms

Avast 99.0% 99.0% 100% 5
AVG 99.0% 99.0% 100% 5
Avira 96.6% 99.9% 99.98% 2
Bitdefender 99.5% 99.5% 99.99% 9
BullGuard 99.5% 99.5% 99.89% 13
Emsisoft 99.5% 99.5% 99.95% 10
ESET 99.8% 99.8% 99.94% 1
F-Secure 99.5% 99.6% 99.87% 15
K7 98.4% 98.5% 99.83% 59
Kaspersky Lab 99.2% 99.4% 99.87% 5
McAfee 84.8% 99.8% 100% 35
Microsoft 78.6% 99.6% 99.99% 32
Panda 52.2% 98.4% 99.97% 28
Quick Heal 99.6% 99.6% 99.83% 35
Symantec 81.5% 99.9% 100% 47
Tencent 99.5% 99.5% 100% 14
Trend Micro 58.4% 99.8% 99.99% 40
VIPRE 99.5% 99.8% 99.98% 14

On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.

On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of info
including origin.

Rene

T wrote:

I have a customer that is a government contractor. The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I haven't checked, especially since AV companies are distributed
worldwide for a very long time now (dev could be anywhere), but probably
Norton or Fortinet would be a safe bet for your customer (which must be
some employee looking at personal solutions for a company loaner they
use at home since obviously a user can use anything they want at home
for their own non-company PC). Just because they list corporate HQ in
the USA doesn't mean all of their product is developed and produced
entirely within the USA. There's "based in the USA" and then there's
"made in the USA". Same for "where is it made" versus "where is it
sold." The USA has become a 3rd-world manufacturer. Used to be the USA
imported the raw materials and made the products here. Now trade has
reversed and the USA is shipping out the raw materials for products to
be manufactured elsewhere hence our huge and growing trade deficit.
Plus if the concern is Russian- or China-made, what about all the other
countries where an AV author may be headquartered? Avast started out
Czech but has become worldwide. The Czech Republic is a member of the
European Union. It is not Russia.

Is this contractor taking his own personal PC to his gov't employer to
connect to the corporate network? That in itself is a security breach
unless the gov't IT folks are restricting this contractor to connecting
only to a specific subnet that is protected (aka war zone or DMZ). No
matter what AV the contractor uses, a corporate network should not be
trusting any outsiders to get at the whole corporate network. Host not
*in* the network should not be trusted. However, that also means the
contactor may not be able to reach the hosts where he needs to work.
For a gov't employer to know what is the host that comes outside to hook
into their network, they should be providing their own laptop and using
software auditing of clients to ensure none have any software not
authorized in a sysprep image.

If the contractor is working from home using his own PC, the employer
should be requiring the use a limited secured VPN (uses tokens that
allow the VPN to only hook into the corporate network and nowhere else)
that only gets the contractor into a DMZ subnet at work.

If the network access requires workstation auditing, what else might
this contractor have the employer may ban? Like chat clients, game
servers, or other iff web clients that have nothing to do with work?
The contractor should have one PC for his own personal use and a
separate PC (perhaps a loaner from the employer) for work use. He
doesn't get to "play" on the work PC.

Unless you get a branded AV (Norton, McAfee, Avast, Avira, etc), you
don't know what AV engine the 3rd-tier market is using. The could, for
example, be using ClamAV which sucks for detections and disinfection.
PC-Matic certainly sounds like one of those iffy brands that uses
someone else's engine under royalties or contract. They (PC Pitstop)
certainly don't seem to have the wherewithal to have the labs, dev,
engineers, and other resources to produce a top-level AV product, so
they're riding on someone else's coattails -- but whose? You can't even
visit its parent's home site (pcpitstop.com) without allowing several
off-domain scripts and resources. I gave up trying to get their web
pages to render after having to allow many off-domain resources. I
would never trust software that is "as seen on TV".

https://www.riskbasedsecurity.com/re...03-02-2016.pdf
"PC Matic also relies on a threat engine where somedevelopment and
research potentially may occur outside the USA."
Then read section 6.3, which includes the comments:

- PC Matic is a suite of utilities where some definitely were not
developedinternally at PC Pitstop. Furthermore, some of them were not
developed in the USA.
- the ad-blocking capability is a rebranded version of uBlock.
- The threat engine is VIPRE. This was developed by Sunbelt Software,
which was later acquiredby GFI Software. Eventually, VIPRE spun off as
ThreatTrack, which has two offices in USA, butalso offices in Spain,
Philippines, and Australia25. This means that ThreatTrack may have
somedevelopment and threat research in countries outside USA e.g.
Philippines, which specifically isa country that PC Pitstop criticizes
their competition for outsourcing R&D.

So this is a front-end product using technology from other sources.
They lie. Oh, what code THEY write might be devs located in the USA but
many parts of their /product/ are produced elsewhere. That's not really
atypical of software development. You'll be hardpressed to find any
consumer or enterprise software that is distributed worldwide being
wholly written by USA devs located in the USA.

Maybe this "contractor" should be using whatever his employer requests
or demands. Build a simple image (basic stuff only, no 3rd party
software) to save and install whatever the employer wants on the work
PC. In the next job, restore to the basic image and use whatever the
next employer wants. If they require specialty VPNs or other software,
restoring to a base image eliminates having to uninstall and perform
remnant registry and file cleanup for reuse of the work PC for the next
employer.

On 11/04/2018 4:29 PM, Rene Lamontagne wrote:
On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of info
including origin.

Rene




Damn, forgot to put in the URL.

https://en.wikipedia.org/wiki/Compar...virus_software

Rene

On 11/4/18 2:29 PM, Rene Lamontagne wrote:
Here is a great list with tons of info includingÂ*origin.

Not seeing it. Did you forget to paste it?

On 11/4/18 2:33 PM, Rene Lamontagne wrote:
On 11/04/2018 4:29 PM, Rene Lamontagne wrote:
On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of info
including origin.

Rene




Damn, forgot to put in the URL.

https://en.wikipedia.org/wiki/Compar...virus_software

Rene

That never happens to me. What??? Okay maybe ...

Thank you!

On 11/4/18 2:30 PM, VanguardLH wrote:
T wrote:

I have a customer that is a government contractor. The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I haven't checked, especially since AV companies are distributed
worldwide for a very long time now (dev could be anywhere), but probably
Norton or Fortinet would be a safe bet for your customer (which must be
some employee looking at personal solutions for a company loaner they
use at home since obviously a user can use anything they want at home
for their own non-company PC). Just because they list corporate HQ in
the USA doesn't mean all of their product is developed and produced
entirely within the USA. There's "based in the USA" and then there's
"made in the USA". Same for "where is it made" versus "where is it
sold." The USA has become a 3rd-world manufacturer. Used to be the USA
imported the raw materials and made the products here. Now trade has
reversed and the USA is shipping out the raw materials for products to
be manufactured elsewhere hence our huge and growing trade deficit.
Plus if the concern is Russian- or China-made, what about all the other
countries where an AV author may be headquartered? Avast started out
Czech but has become worldwide. The Czech Republic is a member of the
European Union. It is not Russia.

Is this contractor taking his own personal PC to his gov't employer to
connect to the corporate network? That in itself is a security breach
unless the gov't IT folks are restricting this contractor to connecting
only to a specific subnet that is protected (aka war zone or DMZ). No
matter what AV the contractor uses, a corporate network should not be
trusting any outsiders to get at the whole corporate network. Host not
*in* the network should not be trusted. However, that also means the
contactor may not be able to reach the hosts where he needs to work.
For a gov't employer to know what is the host that comes outside to hook
into their network, they should be providing their own laptop and using
software auditing of clients to ensure none have any software not
authorized in a sysprep image.

If the contractor is working from home using his own PC, the employer
should be requiring the use a limited secured VPN (uses tokens that
allow the VPN to only hook into the corporate network and nowhere else)
that only gets the contractor into a DMZ subnet at work.

If the network access requires workstation auditing, what else might
this contractor have the employer may ban? Like chat clients, game
servers, or other iff web clients that have nothing to do with work?
The contractor should have one PC for his own personal use and a
separate PC (perhaps a loaner from the employer) for work use. He
doesn't get to "play" on the work PC.

Unless you get a branded AV (Norton, McAfee, Avast, Avira, etc), you
don't know what AV engine the 3rd-tier market is using. The could, for
example, be using ClamAV which sucks for detections and disinfection.
PC-Matic certainly sounds like one of those iffy brands that uses
someone else's engine under royalties or contract. They (PC Pitstop)
certainly don't seem to have the wherewithal to have the labs, dev,
engineers, and other resources to produce a top-level AV product, so
they're riding on someone else's coattails -- but whose? You can't even
visit its parent's home site (pcpitstop.com) without allowing several
off-domain scripts and resources. I gave up trying to get their web
pages to render after having to allow many off-domain resources. I
would never trust software that is "as seen on TV".

https://www.riskbasedsecurity.com/re...03-02-2016.pdf
"PC Matic also relies on a threat engine where somedevelopment and
research potentially may occur outside the USA."
Then read section 6.3, which includes the comments:

- PC Matic is a suite of utilities where some definitely were not
developedinternally at PC Pitstop. Furthermore, some of them were not
developed in the USA.
- the ad-blocking capability is a rebranded version of uBlock.
- The threat engine is VIPRE. This was developed by Sunbelt Software,
which was later acquiredby GFI Software. Eventually, VIPRE spun off as
ThreatTrack, which has two offices in USA, butalso offices in Spain,
Philippines, and Australia25. This means that ThreatTrack may have
somedevelopment and threat research in countries outside USA e.g.
Philippines, which specifically isa country that PC Pitstop criticizes
their competition for outsourcing R&D.

So this is a front-end product using technology from other sources.
They lie. Oh, what code THEY write might be devs located in the USA but
many parts of their /product/ are produced elsewhere. That's not really
atypical of software development. You'll be hardpressed to find any
consumer or enterprise software that is distributed worldwide being
wholly written by USA devs located in the USA.

Maybe this "contractor" should be using whatever his employer requests
or demands. Build a simple image (basic stuff only, no 3rd party
software) to save and install whatever the employer wants on the work
PC. In the next job, restore to the basic image and use whatever the
next employer wants. If they require specialty VPNs or other software,
restoring to a base image eliminates having to uninstall and perform
remnant registry and file cleanup for reuse of the work PC for the next
employer.


pc matic won't submit their stuff to av-comparatives, meaning they
know it is s***. Same with Norton

On 11/4/18 2:33 PM, Rene Lamontagne wrote:
On 11/04/2018 4:29 PM, Rene Lamontagne wrote:
On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of info
including origin.

Rene




Damn, forgot to put in the URL.

https://en.wikipedia.org/wiki/Compar...virus_software

Rene

Be nice if they included county of ownership and if that is a government
agency.

Bit Defender is not on the Gov's s*** list, so I am thinking
of using it. and it get consistent good av-comparative ratings

On 11/04/2018 4:41 PM, T wrote:
On 11/4/18 2:33 PM, Rene Lamontagne wrote:
On 11/04/2018 4:29 PM, Rene Lamontagne wrote:
On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of info
including origin.

Rene




Damn, forgot to put in the URL.

https://en.wikipedia.org/wiki/Compar...virus_software

Rene

Be nice if they included county of ownership and if that is a government
agency.

Bit Defender is not on the Gov's s*** list, so I am thinking
of using it.Â* and it get consistent good av-comparative ratings


If I were to use one Bitdefender would be on my shortlist.

Rene

On 11/4/18 2:51 PM, Rene Lamontagne wrote:
On 11/04/2018 4:41 PM, T wrote:
On 11/4/18 2:33 PM, Rene Lamontagne wrote:
On 11/04/2018 4:29 PM, Rene Lamontagne wrote:
On 11/04/2018 4:23 PM, T wrote:
On 11/4/18 2:22 PM, T wrote:
MicrosoftÂ*Â*Â*Â*78.6%Â*Â*Â*Â*99.6%Â*Â*Â*Â*99.99%Â *Â*Â*Â*32
PandaÂ*Â*Â*Â*52.2%Â*Â*Â*Â*98.4%Â*Â*Â*Â*99.97%Â*Â*Â *Â*28


How in the world Panda managed to get worse than m$?
It is a shame.



There you go, Fill your boots, Here is a great list with tons of
info including origin.

Rene




Damn, forgot to put in the URL.

https://en.wikipedia.org/wiki/Compar...virus_software

Rene

Be nice if they included county of ownership and if that is a
government agency.

Bit Defender is not on the Gov's s*** list, so I am thinking
of using it.Â* and it get consistent good av-comparative ratings


If I were to use one Bitdefender would be on my shortlist.

Rene

Thank you!

T wrote:

On 11/4/18 2:30 PM, VanguardLH wrote:
T wrote:

I have a customer that is a government contractor. The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I haven't checked, especially since AV companies are distributed
worldwide for a very long time now (dev could be anywhere), but probably
Norton or Fortinet would be a safe bet for your customer (which must be
some employee looking at personal solutions for a company loaner they
use at home since obviously a user can use anything they want at home
for their own non-company PC). Just because they list corporate HQ in
the USA doesn't mean all of their product is developed and produced
entirely within the USA. There's "based in the USA" and then there's
"made in the USA". Same for "where is it made" versus "where is it
sold." The USA has become a 3rd-world manufacturer. Used to be the USA
imported the raw materials and made the products here. Now trade has
reversed and the USA is shipping out the raw materials for products to
be manufactured elsewhere hence our huge and growing trade deficit.
Plus if the concern is Russian- or China-made, what about all the other
countries where an AV author may be headquartered? Avast started out
Czech but has become worldwide. The Czech Republic is a member of the
European Union. It is not Russia.

Is this contractor taking his own personal PC to his gov't employer to
connect to the corporate network? That in itself is a security breach
unless the gov't IT folks are restricting this contractor to connecting
only to a specific subnet that is protected (aka war zone or DMZ). No
matter what AV the contractor uses, a corporate network should not be
trusting any outsiders to get at the whole corporate network. Host not
*in* the network should not be trusted. However, that also means the
contactor may not be able to reach the hosts where he needs to work.
For a gov't employer to know what is the host that comes outside to hook
into their network, they should be providing their own laptop and using
software auditing of clients to ensure none have any software not
authorized in a sysprep image.

If the contractor is working from home using his own PC, the employer
should be requiring the use a limited secured VPN (uses tokens that
allow the VPN to only hook into the corporate network and nowhere else)
that only gets the contractor into a DMZ subnet at work.

If the network access requires workstation auditing, what else might
this contractor have the employer may ban? Like chat clients, game
servers, or other iff web clients that have nothing to do with work?
The contractor should have one PC for his own personal use and a
separate PC (perhaps a loaner from the employer) for work use. He
doesn't get to "play" on the work PC.

Unless you get a branded AV (Norton, McAfee, Avast, Avira, etc), you
don't know what AV engine the 3rd-tier market is using. The could, for
example, be using ClamAV which sucks for detections and disinfection.
PC-Matic certainly sounds like one of those iffy brands that uses
someone else's engine under royalties or contract. They (PC Pitstop)
certainly don't seem to have the wherewithal to have the labs, dev,
engineers, and other resources to produce a top-level AV product, so
they're riding on someone else's coattails -- but whose? You can't even
visit its parent's home site (pcpitstop.com) without allowing several
off-domain scripts and resources. I gave up trying to get their web
pages to render after having to allow many off-domain resources. I
would never trust software that is "as seen on TV".

https://www.riskbasedsecurity.com/re...03-02-2016.pdf
"PC Matic also relies on a threat engine where somedevelopment and
research potentially may occur outside the USA."
Then read section 6.3, which includes the comments:

- PC Matic is a suite of utilities where some definitely were not
developedinternally at PC Pitstop. Furthermore, some of them were not
developed in the USA.
- the ad-blocking capability is a rebranded version of uBlock.
- The threat engine is VIPRE. This was developed by Sunbelt Software,
which was later acquiredby GFI Software. Eventually, VIPRE spun off as
ThreatTrack, which has two offices in USA, butalso offices in Spain,
Philippines, and Australia25. This means that ThreatTrack may have
somedevelopment and threat research in countries outside USA e.g.
Philippines, which specifically isa country that PC Pitstop criticizes
their competition for outsourcing R&D.

So this is a front-end product using technology from other sources.
They lie. Oh, what code THEY write might be devs located in the USA but
many parts of their /product/ are produced elsewhere. That's not really
atypical of software development. You'll be hardpressed to find any
consumer or enterprise software that is distributed worldwide being
wholly written by USA devs located in the USA.

Maybe this "contractor" should be using whatever his employer requests
or demands. Build a simple image (basic stuff only, no 3rd party
software) to save and install whatever the employer wants on the work
PC. In the next job, restore to the basic image and use whatever the
next employer wants. If they require specialty VPNs or other software,
restoring to a base image eliminates having to uninstall and perform
remnant registry and file cleanup for reuse of the work PC for the next
employer.


pc matic won't submit their stuff to av-comparatives, meaning they
know it is s***.

I already told you what AV engine that PC-Matic uses. Guess you
couldn't be bothered to read all of my reply.

Same with Norton

Both Symantec and Vipre (the engine used by PC-Matic) *are* included at
av-comparatives.org. So is Tencent (Chineseware) and Kaspersky
(Russianware). av-comparatives.org tests on engines, not who happens to
use/borrow/contract what other scan engines.

https://www.av-comparatives.org/test...st-april-2018/

So what's going to be your next bigot remark?

On 11/4/18 3:33 PM, VanguardLH wrote:
T wrote:

On 11/4/18 2:30 PM, VanguardLH wrote:
T wrote:

I have a customer that is a government contractor. The "Gov'
is really frowning on non-American made Anti Virus products
begin uses at the customer's site -- especially Kaspersky.

Who are the American made AV's?

I haven't checked, especially since AV companies are distributed
worldwide for a very long time now (dev could be anywhere), but probably
Norton or Fortinet would be a safe bet for your customer (which must be
some employee looking at personal solutions for a company loaner they
use at home since obviously a user can use anything they want at home
for their own non-company PC). Just because they list corporate HQ in
the USA doesn't mean all of their product is developed and produced
entirely within the USA. There's "based in the USA" and then there's
"made in the USA". Same for "where is it made" versus "where is it
sold." The USA has become a 3rd-world manufacturer. Used to be the USA
imported the raw materials and made the products here. Now trade has
reversed and the USA is shipping out the raw materials for products to
be manufactured elsewhere hence our huge and growing trade deficit.
Plus if the concern is Russian- or China-made, what about all the other
countries where an AV author may be headquartered? Avast started out
Czech but has become worldwide. The Czech Republic is a member of the
European Union. It is not Russia.

Is this contractor taking his own personal PC to his gov't employer to
connect to the corporate network? That in itself is a security breach
unless the gov't IT folks are restricting this contractor to connecting
only to a specific subnet that is protected (aka war zone or DMZ). No
matter what AV the contractor uses, a corporate network should not be
trusting any outsiders to get at the whole corporate network. Host not
*in* the network should not be trusted. However, that also means the
contactor may not be able to reach the hosts where he needs to work.
For a gov't employer to know what is the host that comes outside to hook
into their network, they should be providing their own laptop and using
software auditing of clients to ensure none have any software not
authorized in a sysprep image.

If the contractor is working from home using his own PC, the employer
should be requiring the use a limited secured VPN (uses tokens that
allow the VPN to only hook into the corporate network and nowhere else)
that only gets the contractor into a DMZ subnet at work.

If the network access requires workstation auditing, what else might
this contractor have the employer may ban? Like chat clients, game
servers, or other iff web clients that have nothing to do with work?
The contractor should have one PC for his own personal use and a
separate PC (perhaps a loaner from the employer) for work use. He
doesn't get to "play" on the work PC.

Unless you get a branded AV (Norton, McAfee, Avast, Avira, etc), you
don't know what AV engine the 3rd-tier market is using. The could, for
example, be using ClamAV which sucks for detections and disinfection.
PC-Matic certainly sounds like one of those iffy brands that uses
someone else's engine under royalties or contract. They (PC Pitstop)
certainly don't seem to have the wherewithal to have the labs, dev,
engineers, and other resources to produce a top-level AV product, so
they're riding on someone else's coattails -- but whose? You can't even
visit its parent's home site (pcpitstop.com) without allowing several
off-domain scripts and resources. I gave up trying to get their web
pages to render after having to allow many off-domain resources. I
would never trust software that is "as seen on TV".

https://www.riskbasedsecurity.com/re...03-02-2016.pdf
"PC Matic also relies on a threat engine where somedevelopment and
research potentially may occur outside the USA."
Then read section 6.3, which includes the comments:

- PC Matic is a suite of utilities where some definitely were not
developedinternally at PC Pitstop. Furthermore, some of them were not
developed in the USA.
- the ad-blocking capability is a rebranded version of uBlock.
- The threat engine is VIPRE. This was developed by Sunbelt Software,
which was later acquiredby GFI Software. Eventually, VIPRE spun off as
ThreatTrack, which has two offices in USA, butalso offices in Spain,
Philippines, and Australia25. This means that ThreatTrack may have
somedevelopment and threat research in countries outside USA e.g.
Philippines, which specifically isa country that PC Pitstop criticizes
their competition for outsourcing R&D.

So this is a front-end product using technology from other sources.
They lie. Oh, what code THEY write might be devs located in the USA but
many parts of their /product/ are produced elsewhere. That's not really
atypical of software development. You'll be hardpressed to find any
consumer or enterprise software that is distributed worldwide being
wholly written by USA devs located in the USA.

Maybe this "contractor" should be using whatever his employer requests
or demands. Build a simple image (basic stuff only, no 3rd party
software) to save and install whatever the employer wants on the work
PC. In the next job, restore to the basic image and use whatever the
next employer wants. If they require specialty VPNs or other software,
restoring to a base image eliminates having to uninstall and perform
remnant registry and file cleanup for reuse of the work PC for the next
employer.


pc matic won't submit their stuff to av-comparatives, meaning they
know it is s***.

I already told you what AV engine that PC-Matic uses. Guess you
couldn't be bothered to read all of my reply.

Same with Norton

Both Symantec and Vipre (the engine used by PC-Matic) *are* included at
av-comparatives.org. So is Tencent (Chineseware) and Kaspersky
(Russianware). av-comparatives.org tests on engines, not who happens to
use/borrow/contract what other scan engines.

https://www.av-comparatives.org/test...st-april-2018/

So what's going to be your next bigot remark?


I am not a bigot, but you are an ass hole for calling me one.

Also, you are a WORD WALL and use 1000 words where 10 will do
and as such are very difficult to comprehend. So do no
get on my case for not following your lengthy missives.