Webroot SecureAnywhere PUBLIC Beta

Thanks pegas, yes I tried a second clean install also. I guess something I've got
installed is preventing somehow. Funny thing is that padlock was showing, albeit
sporadically, in original earlier betas.

 

It is correct behaviour as long as you have disabled option "Allow trusted screen capture programs access to protected screen contents" in Identity Shield settings.

 

Couldn't be it rather a graphical issue? Did you somehow tweak your graphic card? If not, I am sorry but I have reached the bottom of my suggestions and you will have to turn on Joe.

 

No worries, I'm sure it will be resolved. Thank you very much for suggestions and have a good day

 

Ran a few tests today against some 0-day malware and got into something I'd like to know...



It would be neat if I could know what type of threat (i.e. trojan, rootkit etc) that was quarantined. Now it's just the filename/folder and the date/time. I understand that you'll in the near future be able to look for the threat in the database via browser(?) but it'd indeed be good to at least show what type of threat was prevented in quarantine. Just an idea!

 

On a side note, I found out something peculiar about a threat:

Time: 11:35 AM CET 2011-08-11

MD5 : be20a6e0dc3e45230e500b9420911c5e
SHA1 : 9d36446e0a30c3cc206cb4f43950dd8e12b0356f
SHA256: 4d12d76a689062571f6a213ba7119fa24d838ff5a9b0a9f429ec6622aa985530

Why is it that with Hitman Pro, the file is detected with Prevx in the cloud... but when I right click-scan with WSA, it's not detected? On VT, the file is not detected as malicious by Prevx either... is it a Hitman Pro issue or what is this?

 

Did you try run the file? I recall I have had similar issue in the past and Joe replied something like that the right click scan doesn't engage all security modules of Prevx.

 

Dont know if this is the norm but when protected websites global policies are at its max protection levels all webs sites are a green check with secure padlock always on.

Now at the default global policies some sites are green and some red flaged,also noted padlock is in consistent.It seems at its max protection that all bad sites are skipped and only shows secured sites. Of course I am not making no assumptions they are secured just saying.

 

ESET Smart Security 5 release candidate, running on a Windows 7 Home Premium 64-bit system, Windows Firewall and Defender are disabled, no other security products are running.

On Google Chrome (stable channel) I am only using the Adblock Plus extension.
IE9 (up-to-date) I only have both EasyList Tracking Protection Lists enabled.

 

That's according to my knowledge as well. It'd be nice to know if WSA is different compared to Prevx when it comes to on-demand scanning files.

EDIT: I have not tried to execute many malware samples as of yet, as I'm currently without a virtual environment (on vacation).

 

Thanks for response!
Il get right on it.

 

i have a question, why is Winpatrol included in the list of protected applications under the "Identity & Privacy" tab and why is it as "Deny"?

 

It's not even listed in mine as I use WinPatrol Plus I just have IE, FF & Opera!

TH

 

very weird, since for me Winpatrol is automatically added to the list

http://i52.tinypic.com/i69spe.png

 

Just put it under allow or protect then, as you can add other apps if you want to! As I only use WSA Beta, Look'N'Stop & WinPatrol in realtime!

TH

 

well i dont seem to be experiencing any problem with it under block, my question was simply to know WHY it was automatically added to the list and why it was automatically added as "deny" at that.

 

No it's a good Question!

TH

 

Some programs will be automatically added if they try to access the screen or other contents. This is normal for legitimate programs but only small functions of them are blocked. You can change it to Allow but there shouldn't be any negative side-effects from it being on Deny as long as it is being legitimate.

 

another strange thing is happening, FP's that i had sent a month ago perhaps when i was using the closed beta which WERE corrected back when i was using it, are now AGAIN being detected...

also, it would be nice if we could submit FP's right from the "Detection Configuration" menu which lists all of the exclusions, would make it much easier than searching thru the filesystem for each .exe i want to send as an FP

 

First time it was doing a scan and I opened Firefox and it freezed.
The other time it wasn't doing a scan, and I was working with Office or browsing with FF and suddenly freezes ... (with firefox when I closed tabs it freezed like 2 times)

 

I second this idea. I have had this thought also and think it would be a very good addition to submitting files.

 

Ref the protected applications screen. Can somebody please explain what the difference is between protect & allow?

 

http://www.webrootcloudav.com/advicenow.asp?n=Managing_protected_applications

 

I can't see the image in this page http://www.webrootcloudav.com/advicenow.asp?n=Managing_protected_applications

I don't know if there are others that I also can't see. Other images appear just fine.

Does it happen with anyone else?

 

You should be seeing this.