Discussion in 'other anti-virus software' started by Triple Helix, Jun 6, 2014.
I give..Dealing with the password manager has turned me off of Webroot..
What turned you off about Password Manager?
just dont use it then? i dont use the webroot password manager myself.
i guess typing the master password everytime the browser is launched?
I've been using first Prevx and subsequently Webroot after it purchased Prevx and rebuilt its antivirus programme using Prevx's technology, since November 2006. Before then, we used a couple of AV programmes with household names and yet my company and personal computers (one and the same—I am a tiny company) seemed to encounter infections about twice a year. Since then, I haven't been infected once.
People call us fanboys because we say that many of the AV testing organisations use methods that don't take account of Prevx-->WSA's different technology. We only say that because it's a fact, and a fact that is pretty relevant to the discussion at that.
Yeah, that's what I was thinking. I use RoboForm Desktop for my Password Manager for that reason. But like the good old saying goes "Don't throw the baby out with the bathwater", I'm not going to stop using WSA's excellent security because of the Password Manager. More people need to Kudo the following to get it done:
hey TH sending you a pm huge issues with webroot today!!! pm will explain all.
Version 18.104.22.168 (Released April 18th, 2016)
Implementation of Microsoft Windows 10 user experience requirements.
I have replied to your PM!
Has anyone here caught a serious virus while using WSA?.....Any ransome ware or anything you couldn't rollback?
I believe @hjlbx has stated he has tested Webroot against some malware that the rollback feature couldn't fix. You should ask him for more details though.
Testing is not real world sorry! Also no AV or AM is 100% and we all know that.
True. But that doesn't mean an AV(or other security software) shouldn't try to improve.
Can you imagine an AV company stating the following "You know what? No AV/AM has 100% detection, so there's no point in us trying to update our product. It's too much work and we don't care anymore."?
If something does bypass Webroot's protections, including rollback, then Webroot should attempt to fix that.
I have seen rollback failures on youtube
I agree but it's not broken but an improvement is always welcomed, and they do always keep on working on new treats and harden WSA all the time!
Well you know how Wilders thinks of Youtube testers and I feel the same way! I could do one and not one infection would get by at all. You might say how?
Warn when any new program executes that is not specifically whitelisted, Issues a warning for any website not specifically included in the Webroot database of websites that are known to be okay.
I have never had a Virus or have needed to rollback in the 3 1/2 years of using Webroot on 5 machines and an Android. But Webroot is always updating and improving...And the machines that I have installed Webroot on have never had a virus. But still it's a fact that's nothing 100% and at least Webroot has a rollback feature...that's more then any other AV out there IMO.
Been using WSA for 2 years now and nothing!!!!!!!!!!!!!!!! Zilch!!!!!!!!!!!!!!!!! no Trojans, virus's, bots, malware,exploits have gotten through to my PC. Webroot is the best end of story
Nothing has ever got past WSA on my systems, I have total confidence in it. Reading through these posts there are quite a few knocking it, from my experience with it I cannot see why to be honest. I could copy and paste all the jargon from the WSA and the doubters would probably think I am just making it all up, but on these machines I am getting just what it says on the box.
The Webroot password manager is a modified version of LastPass. So if you have issue with the Webroot password manager, then you should level your frustration at Marvasol (developer) and not Webroot. All you have to do is visit the LastPass forum to see that many, many users have problems with it. That being said, there is no really good alternative to LastPass for Webroot.
In fact, Webroot's version of LastPass works better than even the most recent version of LastPass.
Download unknown\untrusted file.
Download known malicious file.
The only difference is that in malware testing the user knows that the file is malicious. Having that knowledge doesn't affect the end result.
But I do agree with your deeper meaning... throwing 500 malware samples at any AV is not a real-world situation during typical use.
That being said, in the course of day-to-day computing over the long term, the likelihood that a typical user will face an infection is quite low. So it's the low probability of exposure to an infection vector that is primarily protecting a system - and not any AV. Of course, the probability of exposure is directly proportional to the user's computing habits.
Malware testing is valuable only in-so-far that it reveals classes of malware and file-types that give a security solution problems; malware testing is not indicative of what will happen to the vast majority users in day-to-day computing.
Never, ever had a virus or malware of any type penetrate WSA's defences...it has caught a number of potential threats and dealt with them as advertised. As has been said before no one AV/IS/AM application can ever say that it is or be 100% in real life...but in my humble opinion and based on what I have seen/experienced I would say that it comes pretty damn close, and I too feel very secure in the fact that there is the journalling & rollback feature.
Some things like screenlock ransomware; WSA has no way of differentiating whether the user intended to put the image on the desktop or it is malicious. I have reported screenlock ransomware that will lock Task Manager, booting into Safe Mode, access to the command line interface in Safe Mode, etc. Not sure if anything was ever done about it.
The only AV that has an anti-screenlock countermeasure is Kaspersky.
Other things, like malicious scripts. WSA doesn't have a command line parser. The host processes shipped with Windows are whitelisted by Webroot and WSA deals with any system changes after the fact. Whether or not WSA will effectively deal with a malicious script depends upon what that script does. If it is a downloader, then WSA will likely detect\monitor the downloaded file(s). If it a script that deletes the entire drive - well, then - there is no AV that will protect against such a script unless that specific script is blacklisted.
Follow @TripleHelix's guide to set heuristics to block any non-whitelisted files. When in doubt - always block. You can always allow after verifying a file is safe.
You can also use VooDooShield, NVT ERP or AppGuard as additional measures to protect the system.
My case-history would seem to be fairly relevant here.
As I said in an earlier post, by Nov 2006 I was getting pretty sick and tired of getting infected—about twice a year. I had unsuccessfully used two different AV products, both higly reputable names in the security industry. Yet neither had managed to protect me or my micro-company against, or indeed rescue us from infections (calling in the computer-man was becoming a depressingly regular occurrence) presumably, as you say, due to "user's bad computing habits". For me and (at the time) my employee, somewhat average Joes in terms of computing expertise and habits, these products were simply not doing what they said on the box.
I then changed to Prevx (so: some 10 years ago). Infections stopped dead (OK not quite true: once or twice I saw an infection instantaneously caught and killed stone-dead).
In 2010, Webroot acquired Prevx with a view to replacing their security technology with Prevx's. So for me, in due course Prevx became Webroot. And my experience has continued to be the same. No infection since Nov 2006. As someone else said here: ZILCH!
I suppose one or two on this forum will accuse me of being "a fanboy" for relating my very, very positive experience?!?!? LOL.