The charmingly-named Dr.Web sports only two protections -- antivirus and anti-spam -- with the antivirus portion of the product being the more versatile of the two.
The three core applications are the antivirus engine, the mail-scanning engine, and a task scheduler. Many common program options are available by right-clicking the tray icons, so you don't need to drill down through the program's configuration menus as much as you might for some other apps of this kind. Each program's defaults seem to be decent for everyday use: by default, Dr.Web's protection traps pretty much all file creation and access actions, including anything downloaded from the Web.
The program's creators claim they employ an intelligent scanning engine that doesn't need to constantly rescan the same files. Malware, adware, and hacking tools are all broken out into their own categories, so each can be handled differently from the other if you're inclined to do so. Each type of threat can be given a default action and a "what to do if this fails" action -- for instance, a virus could be defaulted to "move to quarantine," with "block" as the fallback action in case the virus can't be moved. I've long been in favor of regarding malware/adware as viruses, but it's nice to have this added degree of flexibility in case for some reason you need to have a given piece of adware running.
Archive scanning is turned off by default, with the justification for this being that it slows down scanning without substantially increasing security. Ditto scanning e-mail archives (although it's not clear from the documentation which e-mail applications are supported), again on the grounds that it will slow the system down without really making things any safer. Specific directories and files also can be set to be excluded by default from scanning, if you need to, and it's also possible to selectively suppress scanning of objects on the local network and on removable drives. The scanning engine also can be configured to send e-mails or notifications if something is detected -- useful if you're administering multiple desktops, but maybe not as important for an individual user.
There are some other things about the program, aside from its relatively limited scope of protection, that also are irritating. For one, the program populates the system tray with three icons: one for the e-mail subsystem, one for the antivirus system itself, and one for the program's task scheduler. It's not clear why they use their own scheduler instead of Windows's native scheduler. Also, the anti-spam system is even less configurable than TrustPort's anti-spam system -- for one, there's no visible way to even control the sensitivity of the spam filter. It's possible to change how it stamps messages suspected of being spam, though: by default the message subject is prefixed with "[SPAM]," but you can change that as needed. What's unforgivably primitive is the whitelist/blacklist function, which is nothing but a pair of text boxes. Being able to point to an e-mail client's address book or having some other mechanism that's a little more flexible would help.
In sum, Dr.Web is limited in scope, if efficient in its protection. If you eventually decide you need broader coverage, though, you will probably have to go to an entirely different application, unless Dr.Web is significantly expanded in future revisions.
5 Top Federal Initiatives For 2015As InformationWeek Government readers were busy firming up their fiscal year 2015 budgets, we asked them to rate more than 30 IT initiatives in terms of importance and current leadership focus. No surprise, among more than 30 options, security is No. 1. After that, things get less predictable.
Join us for a roundup of the top stories on InformationWeek.com for the week of December 14, 2014. Be here for the show and for the incredible Friday Afternoon Conversation that runs beside the program.