Quote: Originally Posted by Dwarf
Thanks, John. So if I were to use, say Kaspersky (because I am already running it, and also because I know that you can get versions licensed for 3 machines) and install the SAME AV on each OS on my system, would it eliminate the problem of false positives being generated if the full disk is scanned in any of the OSes as opposed to just the partition that the OS is on?
Well, not eliminate, but would greatly reduce. See, the problem is that AV programs and suites have gotten a lot more sophisticated then they were back in the 90s - today, they analyze files on the fly (aka real time protection) and analyze what the file is attempting to do, where it is attempting to be written to (or where it is attempting to write to), etc. So, you could potentially see a FP from Kaspersky in, say, Vista, if it scanned a file that resides on your Windows 7 partition, and does not recognize it / does not like it / etc. Similarly, you might get a FP in Windows 7 when it scans a file on the Vista partition....
And either can give a FP if a file fails any sort of verification tests - for example, a hash check, an integrity check, etc.
That being said, though, the chances for these occurring decreases dramatically when you use the *same* AV in all OSs.
So, end result - yes, you're better off using the same one in all three, with respect to cross-OS replication and / or FP detection.
As to whether you're better off using Kaspersky over other AVs...that i8s all a matter of opinion. And I am not going there.