There is a quandary for Windows users who want protection against malware, but also have hardcore concerns about their privacy. Back in the day, anti-malware software scanned local processes and files, relying on periodically updated threat databases. But given the volatile threat environment, it’s become common to share user information with providers in real time. That apparently includes geographic location, URLs, running processes, names and paths of files, and even “suspicious” files themselves (even documents).
The Emsisoft blog has also covered this issue.