Av-comparatives April results

[darts]

Av-comparatives did updated the charts with april results and Webroot is very , very disapointed they scored 86.2% and where the last. What happend too Webroot and there promices that in the next test it wi'll be better with detection? I have a one year license but i am not happy at this moment with Webroot.

-http://chart.av-comparatives.org/chart2.php-

Webroot what wi'll you people do too make us happy and feel save with you're product?

Greats.

darts

[Thankful]

Thanks for posting. The results are poor.

[trjam]

when are you Webroot beta testers going learn, their product sucks, plain and simple.

[PrevxHelp]

If anyone here ever gets infected while using WSA alone or with another security product, I request that they PM me personally. These tests results are not indicative at all of what we're seeing from our real users.

[Thankful]

There must be some concrete reason(s) Webroot is not doing well in this test and other vendors are.

[trjam]

Joe, thats great for Wilders Memebers, but we are a small percentage of your total users, at least I hope so. What about all of your other owners who are not so privy to have "Joe" at their disposal.

Everything I see, valid or not, You Tube, Testing sites, etc, all show WSA in a very unfavorable light. I mean you are great and having you continue to tell us about the great improvements is reassuring. But it gets old, with all due respect. I honestly think that is why Panda is rethinking some stuff right now. But the truth is, WSA is just not that great on real time active protection. I think it will be, one day, but it isnt right now.

[PrevxHelp]

I constantly watch our support inbox and we've seen nothing but positive improvements overall, with fewer support cases, dramatically fewer infections, and much better performance across all of our users.

I agree that there's always room for improvement with security but we certainly are doing better than this test would show. Even look at AVTest - we're consistently doing very well there.

I don't have the answers for this yet but we're working on finding out why this is so unrepresentative of what our other data is showing.

[Triple Helix]

To me it's just one test lets look at the rest of the tests for the year!

A Question to Joe! Does the cloud only depend on users or does it search the net for Malware also via Honey Pots or what ever?

TIA,

Daniel

[superssjdan]

Pity the results don't seem to mirror most user experiences.It has been a pleasure to use the product.Will definitely stick with it as it continues it's evolution.Only problem i ever really had was 1 FP(JVPowertools2012) which i reported and it was fixed within a matter of HOURS!HOURS!Try getting a response like that out of the bigger guys.Some people will never be satisfied with what they have.They jump from product to product thinking thinking a favorable review equals something special.Sometimes it's better just to let things alone.Ask yourself this..has WSA actually failed you the user,or are you solely reacting based on a review.Also,beware some things said on wilder's.The bigger guys have moderators,yes moderators from their own forums,trolling competing products i.e. WSA in these very forums.I know some of them very well.Now if WSA has actually failed you repeatedly,then by all means dump the product and try something else.I always have licenses to other products as a fallback in case of emergency so i could easily change if i wanted to.But,if WSA has kept you safe(like it has me),then why bother changing.I applaud Joe and his team.For a 1st year product it is really quite good and at the very least deserves a chance.Anxiously awaiting the next build.

[Cutting_Edgetech]

Personally I think WSA is a great product, but I would never rely on it as a stand alone product. I would never rely on 1 product as a stand alone product. I always recommend a layered security approach. I use WSA because of its light impact on the system, and it stems from Prevx roots which was originally designed to work with other resident security applications to enhance ones security. Most other security applications of this type are not compatible to use with other resident AV's. I currently have 8 machines, and i'm using WSA on 6 of them, and EAM on the other 2. I believe the fact that WSA only relies on the cloud, and no other signature sources could account for the low detection scores. This is my understand of how WSA works. If i'm incorrect then someone step in here, and explain to me where i'm wrong. WSA has no localized signatures, and purely relies on the cloud as far as I know. So it really has not changed much in its mechanics since the Prevx days. I was informed that Spysweeper's database was going to be merged with Prevx for WSA. SOPHO's database on the other hand was not merged. Maybe Webroot should devote another team to discovering malware, and adding localized signatures to use with the cloud. I know they want to keep their installation as small as possible, but HD's are large these days, and its not going to make one bit of difference if the installation size is 670 Kb's or 50 mb's because due to having localized signatures. I don't really know that this will help on the detection rate, but it would make WSA much more effective when internet access is lost. Does anyone else have any ideals for improving WSA's detection? Joe, exactly what sources do the signatures come from that are in the cloud? Are they purely community based, and behavioral analysis based?

[PrevxHelp]

WSA includes signatures from our cloud, malware feeds, honeypots, manual research (scouring the net for infections) and numerous other sources to stay on top of threats before they affect our customers.

I don't see us moving in the direction of storing large signature databases locally as even if a threat isn't found initially, it will be generically removed with WSA's change journaling logic to prevent it from making persistent changes on the system.

[darts]

But Webroot promises in a few times that the detection will be better in the next versions but what version then?? When will the test be postive for Webroot because it isn't the cheapest antivirus that there is so people also want too have a good protection and detection because they pay for it.

Greats,

darts

[STV0726]

I'm starting to really, REALLY get scared.

[Mongol]

With the duo I have running in my signature I still feel plenty secure but I definitely would like to hear some explanation as to WSA's "biff" in the recent AVC test. Some stronger and more stable test scores would really be a plus too...

[PrevxHelp]

We're expecting to get to the bottom of this in the next few days. From what it looks like so far, it is most likely an edge case bug exacerbated by the testing style but we should have a better understanding of it soon. I'll keep everyone in the loop as we make progress and hopefully get to a solid point/version number where we know we'll be performing more accurately in these tests.

[Mongol]

Good to hear...

[STV0726]

Since we are nearing mid-2012 and I am sure AV-Comparatives is going to be releasing their next official report where they'll give a rating, I hope strongly it's fixed by then.

[darts]

Quote:

Originally Posted by STV0726

Since we are nearing mid-2012 and I am sure AV-Comparatives is going to be releasing their next official report where they'll give a rating, I hope strongly it's fixed by then.

Me too , because i think that i don't need 2 layers of antivirus because Webroot needs too do his work so that we all feel that we have good protection because we pay a lot of money for it then we don't want too feel that a other product next too Webroot need too protect us.

Greats,

darts

[sturgess]

I'm back to using Norton, Prevx 3.0 and Trusteer Rapport. Norton refused to participate in Av-comparative's tests, and with Prevx no longer being tested by anyone that only leaves Rapport, and as my bank likes Rapport so do I. My reading of the situation is you need to change your security on a daily basis if you want to be using the flavour of the day, I've been doing this and it's wearisome. So I look back over the last few years and in all that time my machines have remained safe, only ever had one warning and that was a FP from Prevx. I believe a good firewall ,common sense and something akin to Secunia PSI is all that is required, but I lack the guts to actually go down that path just yet. Windows 8 is looking promising for the future and I'm not ruling out the more powerful Chromebooks when they arrive. But with Norton and Prevx not competing for top spot and Rapport doing OK thank you I'll be sticking with the old guard for now.

[Sir Percy]

Quote:

Originally Posted by sturgess

I'm back to using Norton, Prevx 3.0 and Trusteer Rapport. Norton refused to participate in Av-comparative's tests, and with Prevx no longer being tested by anyone that only leaves Rapport, and as my bank likes Rapport so do I. My reading of the situation is you need to change your security on a daily basis if you want to be using the flavour of the day, I've been doing this and it's wearisome. So I look back over the last few years and in all that time my machines have remained safe, only ever had one warning and that was a FP from Prevx. I believe a good firewall ,common sense and something akin to Secunia PSI is all that is required, but I lack the guts to actually go down that path just yet. Windows 8 is looking promising for the future and I'm not ruling out the more powerful Chromebooks when they arrive. But with Norton and Prevx not competing for top spot and Rapport doing OK thank you I'll be sticking with the old guard for now.

I'm sorry, but why are you using Prevx? It's outdated with the exeption of the cloud, i'm wondering why you aren't already using WSA or WSAE the new products

[STV0726]

Let's set one thing straight regarding AV-Comparatives' last "rated" test called "File Detection Test"...

Webroot did earn an abysmal Standard...BUT...

Someone casually mentioned that "Webroot would have earned an Advanced+ for their detection if it were not for their false positives."

Is that true? I did analyze the charts and Webroot was near the top in detection.

It's worth pointing that out again. There's hope for Webroot in AV-C tests.

[Thankful]

Actually, I feel very good about Joe's honest answer that they are closing in on a solution and will keep us notified about the progress. I prefer that to "Webroot should perform better in the future." Remember, this is a new product and will have bumps along the way.

[silverfox99]

I run WSA Essentials as resident av bt thought my laptop was doing a couple of strange things this afternoon so ran MBAM on demand (paid) and it came up with a Trojan on my laptop. C:\Windows\System32\DFDWiz.exe (Trojan.FakeAlert). Is this a new trojan? Should i have expected WSA to have picked it up? MBAM has removed it. I love WSA in particular as is light on my laptop but, am a bit concerned with recent results of av tests. Here's hoping Webroot can improve performance.

*Update - is a FP, now fixed http://forums.malwarebytes.org/index...owtopic=110016

[sturgess]

Sir Percy "I'm sorry, but why are you using Prevx?"
I have 5 Prevx 3.0 licences, and WSA and Rapport did not work well together when I tested them some months back and again last week.

[Securon]

Good Evening! Was re-installing Ikarus virus utilities this Sunday past...and when I downloaded; WSA Essentials stated that Ikarus and it's 29 files were all identified as malware. Knowing this to be very wrong and very false positive...I forwarded all files to Webroot support...and they stated that they concurred on my conclusion that indeed it was a large False Positive. I promptly uninstalled WSA Essentials...and it will stay in limbo...until which time Webroot gets their collective act together. Sincerely...Disappointed...Securon