What AV's DO NOT 'prompt for action'?

Discussion in 'other anti-virus software' started by ploppo, Feb 18, 2012.

Thread Status:
Not open for further replies.
  1. Nevis

    Nevis Registered Member

    Joined:
    Aug 28, 2010
    Posts:
    812
    Location:
    255.255.255.255
    Its disappointing that MSE is also going in that league.
    BUT
    Should we blame them since everyone already has ?
     
  2. nikanthpromod

    nikanthpromod Registered Member

    Joined:
    Oct 9, 2009
    Posts:
    1,369
    Location:
    India
    https://www.wilderssecurity.com/showpost.php?p=2018162&postcount=15
    go on renew it;)
     
  3. ploppo

    ploppo Registered Member

    Joined:
    Jan 2, 2011
    Posts:
    8
    I am truly mortified that Microsoft Security Essentials is going to adopt this idea as well. I wonder if they will keep updating MSE 2.1 (which is what I am currently using again) to allow us to bypass this idea?

    Maybe it is because some people suppress real viruses and trojans and 'the powers that be' are saying enough is enough? Pirated software, etc may have genuine malware contained that the user ignores because they want to use the stolen product regardless of the consequences - thus, 'the powers that be' deem that that PC can then infect others and so on and forced action is the only way to disinfect it?

    In my case, I like using game trainers from CheatHappens and I don't want to faff about with setting up rules/excetions, etc - just give me a chuffing little notification box that gives me an option to 'ignore' (or similar).

    I blame parents.
     
  4. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    You could try Webroot SecureAnywhere.

    They do a decent job with offering it to be automatic with a few checkboxes, or not automatic by unchecking those said boxes.

    As for MSE 2.1, highly unlikely. Microsoft is moving towards making the way MSE 4 Beta is be the Windows Defender in Windows 8.

    In other words...

    If you have Windows Vista or 7, Windows Defender was just an antispyware program. But in Windows 8, it will be the same as MSE.
     
  5. safeguy

    safeguy Registered Member

    Joined:
    Jun 14, 2010
    Posts:
    1,794
    Regardless of the argument FOR it (I perfectly understand the common man ignoring malware just to get his goodie scenario) , as long as the AV do not offer you the option to 'prompt for action' (even if you don't feel like the need for it today), I'd say go ahead and uninstall it. You'd wish yourself lucky 1 day you did.
     
  6. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    To me, the lack of an option to set it otherwise is a violation of trust for any anti-malware application.
     
  7. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    Most of the folk I talk to who complain about this type of action of any AV product complain because its crack files that are being deleted:-I do know its debatable as to whether these should be classed as malware or even if it is an AV vendors job to protect the interests of other application vendors but in the current climate they are complaining about the product doing what it is supposed to do
     
  8. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    Never used a crack or keygen in MY LIFE. Bad assumption.

    I say again, providing the lack of option to turn off automatic remediation is a violation of what an app should be allowed to do with one's files.

    However, with that being said, I almost always use and widely recommend automatic mode, aka "shoot first ask questions later." But it is very important that they offer the option to prompt vs automatically remediate.
     
  9. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    6,574
    Location:
    USA
    I guess you are hanging out with the wrong crowd...

    As I have stated before just about every time there is a new version of WinRAR one of the dll files is deleted by Norton. They all but called me a liar when I reported it as a false positive until I sent them a screenshot of their own product doing this. On 2 different machines. And waiting a couple of weeks after software updates are released to get approval from the almighty Symantec is not acceptable. I have opened versions of PSPad that were promptly closed and deleted by Norton. Without the option of keeping it. And having to defend one's self against accusations of piracy by the apologists of these companies is getting old. :ouch:
     
  10. Atul88

    Atul88 Registered Member

    Joined:
    Dec 8, 2011
    Posts:
    259
    Location:
    India
    That's why i keep ESET @ home & Bitdefender @ costumers pc.
    The customers whom i installed BD on their system, they are proud that their pc runs best without problems..lol:D :D
    I have used Norton in the past & at the sec it was installed, it started deleting the files & if i recall it right then Norton 2010 version was so confusing that even if u add files to the exception list it will keep asking you
    that XYZ.malware is found & personally experienced, i hated the SONAR protection of 2010 which used to delete winrar.exe if u r not connected to the internet. I almost felt like a Hostage of norton for like 24 HRS. & was released by Avast 5.0 :D :D :D
    Edited:
    @xxjackxx, i didn't read your comment prior to write this comment so have to edit it.
    lol...That problem still in the newer version?? Welcome to the Club!!!
    Sometimes i still see nightmares of Norton!!!
     
    Last edited: Feb 22, 2012
  11. emmjay

    emmjay Registered Member

    Joined:
    Jan 26, 2010
    Posts:
    1,413
    Location:
    Triassic
    Just checking the settings in MSE 2.1. You can set it to recommended (action up to MSE), allow (MSE do not touch), quarantine (MSE isolate it), remove (MSE nuk it). In the advanced options you can ask MSE to create a restore point before implementing any of the above actions (not a default, you have to check it). I have used a restore point (back a full month) and after the restore the MSE defs were shown as out of date, however the scan stayed at the current date, not the restored date. The scan is where the actions are performed and this surprised me. I may be wrong, but it looks to me as though you would not be able to get back an MSE nuked file using the restore point.
     
  12. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    Yup...2.1. Enjoy those settings while they last.

    As of the next version, with the exception of restore point creation, all those default action settings are wiped away.
     
  13. nikanthpromod

    nikanthpromod Registered Member

    Joined:
    Oct 9, 2009
    Posts:
    1,369
    Location:
    India
    everyone writing their opinions;)
    but one doubt .. will this thread change AV vendor's mind??:rolleyes:
    i think we are talking without any reason..
    They are not going to change :isay:
     
  14. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    6,574
    Location:
    USA
    Though we can do nothing but speculate I fear you are right, likely this will not change. I just hope that the vendors that do offer these options do not stop doing so. Else I will have to dump them all and find some kind of AV free setup where I do all of my browsing from a sandbox in a virtual machine or from a Linux boot disk or something. :(
     
  15. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    not really:-it comes with my job:-I have to deal with allsorts!,I never said there were never false+ves,but can't remember last machine brought in where deleting one has screwed it up,get lots where malware has:-usually caused by user turning off their AV "because it kept deleting/blocking download of a file I needed!":-think we all know where those files come from
     
  16. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    Neither have I used any crack files but then only issues I have ever had was a couple of years back,maybe even more and that was with kaspersky,but always used that in non-auto mode so no probs
    I do think users should have the option but I am just putting the other side of the argument:-for 90% of users the auto mode is better,problem is of that 90% only about 1/2 run any AV and usually out of date!:-most products are aimed at non-savvy PC users and are made to work as simply as possible with very little or no user input
     
  17. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    6,574
    Location:
    USA
    Fair enough. ;)

    True but I am not asking that option to be removed (it can even be the default), just that the options for advanced users be added. That way they can keep both kinds of customers instead of running those people off.

    Overall though I have had this discussion here and at the individual vendor's forums and am starting to feel like I can talk until I am blue in the face and nothing will change. I guess if a company does not want to add that functionality they do not have to but I will vote with my wallet and spend my money in the future on products from companies that accommodate what I want.
     
  18. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    I am surprised so many major AV vendors are doing this stupid movement of removing settings...removal of settings doesn't equal better protection...clear documentation of those settings, their intended use, and engine improvements are what makes AVs better.

    And to think a week ago I ignorantly thought it was only Microsoft that was doing this...

    So you guys are saying there are multiple AV products that are implementing automatic remediation (which is a GOOD thing) :thumb: , but also removing the settings that allow you to customize threat response? (A VERY BAD THING!) :thumbd:
     
  19. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    whether its good or bad depends on how up to date you are with what type of threat is doing the rounds,if you have no knowledge or interest then auto is good,if your a "geek"(us lot on here)then having choices is better
     
  20. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    6,574
    Location:
    USA
    When Norton uses its SONAR to detect a threat it deletes the file without anything other than a red popup that states a threat has been removed. There is no way to override this setting. For me these detections have been 100% false positives (I am sure there are people that will argue their experience is not the same, lucky them). The only way to stop it is to set an exclusion, but as you are browsing to the file to set the exclusion, it detects the file and deletes it before you can get it excluded. About all you can do is submit it as a false positive. The last time I did that it required about 3 email exchanges between myself and them as they argued they could not reproduce it and I had to send screenshots. Way too many hoops to jump through when I should just be able to click an "Add to exclusions" button somewhere. :blink:
     
  21. guest

    guest Guest

    Well all I can say is if my AV starts doing it without asking,:mad:
    it will be the one deleted
     
  22. markcc

    markcc Registered Member

    Joined:
    Apr 8, 2008
    Posts:
    185
    Location:
    Michigan, usa
    GData gives you an option. I'm very happy with that A/V
     
  23. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Others have mentioned valid files being deleted by Norton in recent past.IMO thats like a virus in itself if it deletes good things with out asking first,and one has to replace or restore a image.who ever brain stormed that idea of auto deletion has there head up there you no what.
     
  24. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    I just spoke with Joe, one of the main people of Prevx (now Webroot), and he has confirmed Webroot SecureAnywhere will NOT be following this horrible model of removing the option to disable automatic remediation.

    He said, "The settings will always be there."

    :thumb:
     
  25. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    I expected that because of joe.:thumb:
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.