Pros & Cons
-
- Ransomware protection beats the competition
- One very good lab test score
- Firewall resists direct attack
- Pricing undercuts the competition
- Numerous bonus security tools
-
- Dismal detection of phishing frauds
- Parental control is awkward and ineffective
- Some bonus features don't do much
K7 Total Security Specs
| Antispam | |
| Firewall | |
| Malicious URL Blocking | |
| On-Access Malware Scan | |
| On-Demand Malware Scan | |
| Parental Control | |
| Phishing Protection | |
| Tune-Up | |
| VPN | None |
| Vulnerability Scan | |
| Website Rating |
Getting all your PCs secured with powerful antivirus protection is a big step. If you’re ready for one more step, consider upgrading to a full-blown security suite for additional privacy and security protection. With K7 Total Security, you get antivirus, firewall, ransomware protection, parental control, Wi-Fi security, and many bonus features. The effectiveness of these components varies from excellent to poor, but if its strengths match your needs, it can be a cost-effective choice. Even so, you’re better off scraping up a little extra cash for a more effective suite like Editors’ Choice award winner Bitdefender Total Security. Bitdefender comes with even more security bonuses than K7, and unlike K7, the bonuses are consistently effective.
How Much Does K7 Total Security Cost?
Your cost for a single K7 Total Security subscription is just $27 per year. Bumping that to $41 gets you three licenses, and for five licenses it’s $61. Unusually, K7 also offers two- and four-license packs, for $34 and $48, respectively. At every level, it’s less expensive than competing entry-level suites.
Some competitors come close. For example, G Data Internet Security costs $39.95 per year for a single license, while F-Secure Internet Security and ESET Home Security Essential cost about $10 more.
ZoneAlarm Extreme Security and Vipre Advanced Security both cost close to $60 per year for a single license; K7’s $27 price tag is less than half that. At the three-license level, Panda Dome Advanced and Trend Micro Internet Security are in the $70s, nearly twice K7’s price.
With quite a few competing suites, pricing starts at the five-license level. Bitdefender Total Security costs $109.99 per year for five licenses, as does Avira Prime. Norton 360 Deluxe goes for $10 more, though that $119.99 price does get you five no-limits VPN licenses and 50GB of storage for your online backups. Once again, K7’s five-license price is just $61.
With a yearly price of $149.99, McAfee+ might seem to be way out of line price-wise. However, that one subscription lets you install protection on every device in your household, and it covers devices running Windows, macOS, Android, iOS, and even ChromeOS. K7’s five-device license is roughly $12 per device. McAfee+ can cost even less per device, but only if you use it to protect 13 or more devices.
K7’s economical pricing often earns it a place in PCMag’s list of 100 Budget Buys. The standalone K7 Antivirus Premium makes that list as well, as does K7 Ultimate Security, representing the budget realm for top-tier security suites.
Getting Started With K7 Total Security
As with K7’s antivirus, installation is a breeze. One click accepts the EULA and starts the installation. You do need to activate the suite, either by entering the registration code you purchased or by starting a 30-day trial. For this review, I took advantage of the 30-day trial.
The suite’s main window is almost identical to that of the standalone antivirus. It displays useful statistics in three large panels, including the date and time of the last update, the version of the virus definitions, and the number of days left in your subscription. The main visible difference is the application title at the top, along with the fact that Wi-Fi Advisor joins icons for Scan, Update, and Tools along the bottom edge of the window.
(Credit: K7/PCMag)As you click icons, links, and arrows to navigate the app, new pages slide in from different directions. The interface is lively but not entirely intuitive. You’ll want to spend some time exploring all the available pages, so you don’t miss any of the features.
Features K7 Total Security Shares With K7 Antivirus
Naturally, every feature found in K7 Antivirus Premium also shows up in this suite. I’ll summarize my impression of those shared features here. If you want more details, please read my review of the antivirus.
In past years, two of the four antivirus testing labs I follow routinely included K7 in their reports. More recently, that’s down to one, which is still more attention than many antivirus tools get. More than 40% of those I track have no lab scores at all. From AV-Test Institute, K7 received 17.5 of 18 possible points, earning the designation Top Product, an honor it shares with almost all products tested. In truth, most of the products in the latest test earned a perfect 18 points.
I use an algorithm to calculate an aggregate score for those antivirus systems tested by at least two labs. With just one lab reporting, K7 doesn’t have an aggregate score. Looking at the latest tests, AVG holds a perfect 10 points, based on scores from two labs. All four labs considered Avast in their latest reports, so its 9.9-point score is also impressive. Tested by three labs each, Bitdefender, ESET, and McAfee all came in at 9.8 points.
K7’s full antivirus scan on a clean test system finished in 51 minutes, less than half the current average of two hours. It clearly used that first scan to optimize subsequent scanning; a repeat scan finished in just three minutes.
As noted, many antivirus tools don’t get attention from independent labs. With or without lab results, I always perform my own tests, which also give me valuable hands-on experience with each antivirus.
K7 scored 8.4 out of 10 possible points in my hands-on malware protection test. That’s the lowest score of any antivirus tested with my current malware collection, but it’s much better than K7’s previous score of 6.9.
Tested with the same sample collection, UltraAV detected 100% and scored a perfect 10 points. Avast, AVG, and Norton, all of which rely on the same Gen stack antivirus engine, scored 9.7 points. Webroot Premium also scored 9.7 points.
That hands-on test uses a set of samples that remain the same for months. For a more timely view of antivirus protection, I test using real-world malware-hosting URLs recently discovered by experts at London-based MRG-Effitas. I launch each one, discarding those that are already defunct, and note whether the antivirus blocks access to the URL, eliminates the malware download, or misses the danger altogether.
K7’s standalone antivirus suffers a serious handicap in this test, as it doesn’t include the web protection component found in the suite. It blocked 89% of the malicious payloads during or immediately after the download. That’s a big improvement over its 58% score when last tested, but it’s still among the lower scores for this test. Fortunately the full suite, reviewed here, did better.
(Credit: K7/PCMag)K7 Total Security adds Safe Surf web protection, a component designed to keep you away from dangerous and fraudulent websites. When Safe Surf detects a dangerous website, it replaces the page with a starkly minimalist warning that says nothing more than “The access to this page has been denied by K7 Safe Surf.” Most similar components offer a bit more, perhaps naming the type of danger the page poses and linking to instructions for restoring access.
K7 blocked 64% of the malware-hosting URLs in the browser, and its real-time antivirus took care of another 32%. Its total score of 96% is vastly better than the 78% it scored when last tested. Still, there’s better and then there’s best. Avira, Bitdefender, Guardio, and Sophos Home Premium all scored a perfect 100% in their own tests.
On the plus side, K7’s antivirus (and, by extension, this suite) turned in an amazing performance in my ransomware protection test. For this test, I turned off the regular real-time antivirus and attacked the virtual machine testbed with more than a dozen real-world ransomware programs. In every case, K7 detected ransomware activity and shut down the dangerous program before it could do any damage. Well, in one case, the test ransomware encrypted a single unimportant text file, but that’s nothing compared with competitors whose ransomware component didn’t kick in until after hundreds or even thousands of files were encrypted.
Even at the standalone antivirus level, K7 includes a basic firewall that fends off outside attacks and monitors local programs so they don’t misuse your network connections. In testing, the firewall proved resistant to direct attack. The antivirus will also scan for security vulnerabilities, abnormal system setting changes, and tracking cookies.
Other bonus features include a pair of simple privacy cleaners, a virtual keyboard, vaccination of USB drives against infection, and a simple device control system. This last component lets you control the use of USB drives, CD/DVD drives, and floppies, but it’s not the full-scale device control found in G Data Total Security and a few others.
As you can see, you get a lot of security features from K7 even at the standalone antivirus level. If this summary intrigues you, please read my full review of the antivirus.
K7 Is an Anti-Phishing Dud
Phishing websites don’t attempt to plant malware on unsuspecting web surfers. That’s too hard! Instead, they do their best to simulate real-world sensitive sites such as banks, auction sites, and even dating sites. When a victim logs in to one of these fake sites, the fraudsters receive the login credentials for the real site, and the victim is pwned. Sure, phishing sites quickly get blocklisted and taken down, but the fraudsters just pop up another fake. I couldn’t test phishing protection in K7’s antivirus because it simply lacks that feature.
Because phishing sites are transient, it’s important for a web-based protection system to handle the very newest ones. To test that ability, I scrape websites that receive reported phishing attempts, gathering the newest ones and making sure to include both verified fraud and ones that are too new for the blacklists.
With my collection of several hundred URLs in hand, I set up four test systems: three relying on the phishing protection built into Chrome, Edge, and Firefox, and a fourth protected by the antivirus under test. I launched each URL in all four browsers at once and noted the results, discarding any URLs that didn’t load properly in all four and any that didn’t represent a fraudster's clear attempt at stealing credentials.
From my test with malware-hosting URLs, I knew that the Safe Surf feature was installed and working. That knowledge encouraged me to keep at the phishing protection test even when I saw exactly zero detections from K7 for the first hundred or so phishing samples. Eventually, I did encounter a few that K7 recognized and blocked, using the same uninformative "access denied" message.
K7 scored 17% detection in this test, lower than the 26% it managed when last tested, and lower than all but a handful of competitors. The lesson is clear—if you’re going to rely on K7, leave the phishing protection in your browser turned on.
(Credit: K7/PCMag)Thorough defense against phishing fraud is undeniably possible. AVG, Avira, Guardio, McAfee, and Webroot all scored a perfect 100% detection in their latest tests, as did the phishing-focused Norton Genie. NordVPN Plus and Surfshark One have VPN protection as their core skill, but they also managed 100% in this phishing detection test. K7’s detection of fraudulent and malicious websites needed an overhaul when last tested; this time around, instead of improving, it made a worse showing.
Web Protection in K7 Total Security
Safe Surf is just one component of this suite’s Web Protection system. The Safe Search system rates all the links in your search results, marking safe ones with a green check and dangerous ones with a red X. This lets you avoid clicking on dangerous links. Hovering over the rating icon gets a tooltip that tells you whether the site is safe or dangerous. Norton’s Safe Web system goes further, offering a link to a full analysis of the page in question.
(Credit: K7/PCMag)I couldn’t immediately figure out the third component, titled Identity Protection. The help system clarified that this component prompts you with a warning if you enter a password on a website that’s not secured with HTTPS. With the current strong emphasis on security, it’s hard to find a site that doesn’t use HTTPS. If you do run across one, heed K7’s warning and avoid entering passwords or other sensitive information.
(Credit: K7/PCMag)K7 Total Security Local Spam Filter
These days, few users need a local spam filter. Popular web-based email systems such as Gmail strip out spam messages, as do most business-level email servers. If you’re one of those few who still require local protection, K7’s spam filter could come in handy.
K7 filters all incoming POP3 email and checks outgoing SMTP email for spam characteristics, on the chance a spambot got past the antivirus. The filter adds a marker to the subject line of suspected spam messages. If you’re using Outlook or Outlook Express as your email client, K7 diverts those messages to a spam folder automatically. It’s worth noting that development on Outlook Express ceased in 2006, and support ended along with Windows XP in 2014. It’s very unlikely that you’re using Outlook Express, and its presence in the spam filter options suggests that this component hasn’t been updated in ages.
Outlook is still around, of course. As always, those using a different client must create a message rule to sort the spam.
Recommended by Our Editors
(Credit: K7/PCMag)From the toolbar in Outlook or Outlook Express, you can mark any spam messages that reached the Inbox, or valid messages wrongly discarded as spam. In settings, you can add known correspondents to the allow list, with an option to automatically allow recipients of your own messages. Any address or domain on the blocked list will always go to spam.
If you love tinkering, you can dig into the spam filter’s settings to tweak them in many ways. A slider lets you adjust the threshold for “spamminess,” controlling how bad it must be to get a message banned as spam. Another slider adjusts the threshold for the Bayesian learning filter, which is disabled by default. You can even define rules, for example, to mark any message with “webinar” in the subject as spam. I doubt one user in a thousand ever touches these advanced settings.
As noted, few users need this feature. If you’re one of them, keep an eye on it at first to make sure it correctly distinguishes spam from valid mail. Then, just lean back and let it do its job.
Privacy Protection in K7 Total Security
K7 includes two very different features for protecting your privacy, Webcam Protection and Privacy Service. To configure Webcam Protection, you click the Details link near the top right corner of the home screen. Scroll down to the bottom of the Settings list and then click Webcam Protection.
(Credit: K7/PCMag)In its default configuration, the webcam protection system notifies you when any program wants to use the webcam. You can allow or block access, with an option to remember the response, thereby making the program trusted. There’s also an option to prevent all use of the webcam, removing the block manually when you need it for a video call. Either way, you can ensure that no creepy peeper will be spying on you through the webcam.
A different route lets you configure the Privacy Service, which prevents inadvertent transmission of user-defined personal data. To reach this one, click Settings at the top of the home screen and click Privacy Service in the resulting slide-in window.
(Credit: K7/PCMag)In past reviews, the only way I could get this feature to do anything was to dig deep into the parental control system and enable the option to block sensitive information. I don’t imagine one user in a thousand would figure that out.
K7 Total Security Parental Controls
Not every consumer has young children, and not every parent wants to monitor and control what the kids do on their screens. For those who need one, K7 nominally offers a parental control system. However, it’s quite different from most, and not in a good way.
Parental Customization
Most parental control systems are configured separately for each child, perhaps setting different time limits or different degrees of content filtering. With K7, many settings are global, with a separate option to determine whether they apply to each user account. For example, you create just one content filtering list but choose whether to enable it for each child or other user. Customization is the first step.
Unlike almost every parental control content filter, K7 offers no predefined categories for blocking unwanted content. You, the parent, must list every website you don’t want your kids to visit. Or, if you’re going for the iron fist approach, you can list all the websites that are allowed, banning anything not on the list. This feature is worse than useless.
(Credit: K7/PCMag)Next is a peculiar option called Browser Settings. Here, you create a list of websites with certain controls on the use of cookies, ActiveX, and Java apps. For every site listed, you define whether each type of active content is allowed or blocked, or whether the user will get a prompt to choose. This isn’t an appropriate feature for parental control.
Ad-blocking works by blocking access to URLs containing such text strings as “/ad/” and “/adinfo/”. The list is short, just 10 items, and doesn’t seem to cover modern advertisers. You can add to the list, but if you’re not careful, you could wind up blocking legitimate websites. As with the DIY content filter, maintaining the ad-blocking list isn’t a task that should be dumped on the user.
Finally, Application Control lets you identify specific applications for K7 to block. Again, this list is global. You add any programs you don’t want your kids using, and then turn on control for each child account.
Per-User Settings
Everything you’ve done so far has no effect until you apply limitations to specific user accounts. To get started, you choose an account and click Modify User Settings.
You start by configuring the Web Filter. For each user account, you can choose to block all sites on the blocked list, allow only sites on the allowed list, or leave the account unfiltered. There’s an option to log all sites visited, but you can’t tune the allowed and blocked lists on a per-user basis.
(Credit: K7/PCMag)The Application Control page lets you choose whether to block the specified applications for this account and whether to log all blocking activity. Also on this page is an option to block all browsers except Internet Explorer, with a statement that this is necessary if you want web filtering for HTTPS sites. Unfortunately, this is useless given that Internet Explorer reached its end of life in 2022. Fortunately, I found that, despite the warning, HTTPS content filtering works in other browsers.
The Privacy tab lets you configure privacy protection on a per-user basis. By default, it blocks the sending of sensitive information and notifies when blocking occurs. But just what information does it block? It turns out this refers to the private data you entered in the Privacy Service component, completely outside of the parental control system. And under Browser Settings, you can configure global options for cookies, ActiveX, and Java applets. As with the separate per-website control of these options, I don’t think this last item belongs in parental control.
(Credit: K7/PCMag)Finally, there’s the Timings page. Here you can completely block a user’s access to the internet or define periods during which access is permitted. There’s no convenient grid for roughing out allowed and blocked times, though, nor do you get a daily or weekly cap, as you do with Trend Micro, F-Secure, and others.
Does It Work?
K7’s content filtering, which requires parents to define every site that should be blocked, is useless. I checked it anyway, and it did successfully block access to sites I listed, even secure HTTPS sites. The blocking message looks almost identical to when K7 denies access to a fraudulent or dangerous page, though it does specifically state that K7 Parental Control denied access.
(Credit: K7/PCMag)And then the house of cards came tumbling down. Yes, the painfully limited content filter worked in Chrome, Edge, and Firefox. But when I launched banned sites in a seriously off-brand browser, one that I wrote myself, K7 did nothing.
When I tried accessing the internet during a time forbidden by the scheduler, the browser displayed an ERR_NETWORK_ACCESS_DENIED error message, and a transient notification stated that access isn’t allowed at this time. Further attempts to visit websites just returned browser errors, without notification. I changed the system date/time to a time with internet access permitted, but that didn’t fool K7.
Just to see what would happen, I checked the box to ban all browsers except the defunct Internet Explorer. K7 blocked internet access for Chrome, Edge, and Firefox, but it did nothing to prevent internet access by my hand-coded off-brand browser.
I set K7 to block the “dangerous” application Windows Calculator. When I tried to launch it from the child account, K7 popped up a warning and prevented access. I tried moving the executable file, creating a renamed copy, and other sorts of chicanery. K7 wasn’t fooled.
Not a Parental Control Solution
Parents expect that a parental control solution will, at the very least, handle steering the little darlings away from naughty websites and help control their screen time. K7 does schedule when internet access is permitted, and it can’t be fooled by fiddling with the system date and time, but it lacks the daily cap offered by most competitors. Its web filter is useless, requiring parents to either list every bad website or every permitted website. What little effect it does have can be negated by finding an unsupported browser. If you need parental control from your security suite, consider Norton 360 Deluxe, which includes a top-tier parental control system.
K7's Data Locker Protects Your Files
Like the similar feature in Trend Micro, Avast, and others, K7’s Data Locker prevents unauthorized changes to files in specific protected folders. That way, if a ransomware attack gets past the admittedly powerful anti-ransomware layer, it still can’t mess with your files. You reach Data Locker by opening the antivirus settings page and clicking the Data Locker tab.
With most suites that offer protection against unauthorized file changes, the feature comes pre-configured to protect files in important folders such as Documents, Pictures, and Videos. Not K7. To get any benefit from Data Locker, you must manually add these and any other folders where you store important files.
(Credit: K7/PCMag)K7 populates the list of trusted applications with a handful of important ones, such as OneDrive and Windows Explorer. There’s also an option to use what’s called Smart Analysis to discover trusted programs. With that option turned on, Notepad could edit text files; with it off, Notepad got the bum’s rush. Even with Smart Analysis active, K7 correctly blocked changes made by a tiny text editor that I wrote myself.
If Data Locker blocks one of your important programs, you can’t just check a box in the notification to make it trusted. You must dig into settings and actively add the program to the trusted list. Similar components in competing suites make adding trusted apps easier.
K7 Total Security Wi-Fi Security Advisor
Another feature not found in the standalone antivirus is the Wi-Fi Security Advisor. You can click its icon at the bottom of the main screen at any time to check the security of your current Wi-Fi connection. It shows the name of the connection, the authentication and encryption types used, and the device’s IP address. But really, what’s important is the notice at the top that your connection is secure.
The advisor should also alert you when you connect to an unsecured hotspot. I don’t have one of those handy for testing, but I don’t doubt it works.
Additional Tools in K7 Total Security
As with the standalone antivirus, clicking Tools at the bottom of the main window brings up a list of bonus tools. For the suite, they are Activity History Eraser, Computer TuneUp, Disk Optimization, IE History Cleaner, Internet Temp Cleaner, Secure Delete, USB Vaccination, Virtual Keyboard, and Windows Temp Cleaner. Note that you must click the arrow on the right to see them all.
(Credit: K7/PCMag)The standalone antivirus offers just four of these: Internet Temp Cleaner, USB Vaccination, Virtual Keyboard, and Windows Temp Cleaner. I didn’t see much point in the two cleaners, but the virtual keyboard can foil keyloggers, and vaccinating your USB drives prevents USB-proliferating malware from infecting them.
You use Secure Delete to wipe out sensitive files so thoroughly that even forensic software can’t recover them. This can be handy, for example, to wipe out the plaintext originals of documents that you have encrypted. There’s no handy right-click menu option for files, nor the ability to drag and drop items for deletion, just buttons to add items to the list. With your items in place, you check the box for Quick Mode if desired and click Delete. The program doesn’t specify, but I imagine it overwrites file data once before deletion in Quick Mode, more than once otherwise.
(Credit: K7/PCMag)As noted, I didn’t see much use for the temp cleaner tools. Nor do I see a real point to Disk Optimization, given that Windows 10 and 11 perform defragmentation in the background and include a built-in tool to invoke a thorough (and lengthy) defrag operation. Activity History Eraser is a grand name for a tool that does nothing more than wipe out most recently used lists and other traces of your computer activity. IE History Cleaner accomplishes the same thing as pressing Ctrl+Shift+Del in Internet Explorer, but with less fine-tuned control. Details are irrelevant, as Internet Explorer is a dead duck.
That leaves Computer TuneUp as the remaining new tool. This tool promises to increase your computer’s performance and speed. When you launch it, it reports itself as tuning up memory, CPU, browser, and graphics settings, and then requests a restart. It doesn’t provide any details about the changes it made, and I didn’t notice any difference after running it.
(Credit: K7/PCMag)Of all these tools, USB Vaccination, Virtual Keyboard, and Secure Delete are the most useful. The rest could be combined into a singular tune-up and privacy tool, perhaps one that more visibly demonstrates its worth.