WSA+AIS?

Discussion in 'Prevx Releases' started by ams963, Mar 14, 2013.

Thread Status:
Not open for further replies.
  1. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    Hi,

    Will using WSA with avast! IS break my system, hog it down, quarrel for first place for removing malware or improve protection than using any one product?

    Anybody tried the combo?

    Best Wishes,
    Amit
     
  2. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    Tried it. Worked fine. I've tried a bunch of programs with WSA. I mean at least on my laptop. The only one I had a problem with is shadow defender. Not really sure why.
    WSA works well with Norton IS, Avast IS, OA, Kingsoft AV, Baidu AV, Bitdefender IS and free.
     
  3. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    It will work fine as always Amit on your Atom! ;)

    TH
     
  4. chabbo

    chabbo Registered Member

    Joined:
    Jun 28, 2009
    Posts:
    350


    need to change annything in the webroot. so they dont conflict?
     
  5. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    You shouldn't need to just make sure AIS gives full right's to WSA to the system and the internet.

    TH
     
  6. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    For the longest time I've been thinking about running WSA, avast! and NVT EXE Radar Pro, do any of you see a problem in running these three?

    Since I've tested WSA very little, what do you think of it's detection rates?

    and...

    What do you suggest to run with avast! and ERP?

    WSA Antivirus?
    WSA Internet Security Plus?
    or
    WSA Complete?
     
  7. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    It works fine together. I actually had WSA, NVT EXE, Avast free and sandboxie running at one time. Sandboxie and Avast free working together kind of slowed down my browser.
     
  8. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    Thank you for assuring me that these all work together

    What do you think of WSA's detection rate?

    and

    If you were to recommend a version of WSA, which one would it be - Antivirus, Internet Security Plus or Complete?
     
  9. Techfox1976

    Techfox1976 Registered Member

    Joined:
    Jul 22, 2010
    Posts:
    749
    WSA's detection rate is hard to quantify. Unlike other AVs that need to Detect Now or You're Doomed, WSA has a built-in safety margin. Anything it misses at first isn't able to access sensitive or critical portions of the system and the stuff it does gets completely undone when it's detected. So it's not uncommon for something to be present for 10-20 minutes before being detected, even if the malware can't actually DO anything.

    If you don't look at instant detection only, its detection rate is astoundingly high with nearly everything being found within 15 minutes or less, even if it's polymorphic. Even AV testing organizations (AV-C most notably) have admitted that the standard tests they run don't accurately reflect operations of or work with WSA.

    As for versions:
    AV Only: Simple, effective, Just Works.
    IS+: Most notably adds a Webroot-branded and handled LastPass toolbar to browsers.
    Complete: Adds 25GB of online backup/storage/sync space and System Cleaner which recovers space and can mess things up if you leave Firefox running while cleaning Firefox.
     
  10. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    yeah what Techfox1976 said.
    I'm not into detection rates and things of those nature. As tech said it has that build in safety margin. Meaning anything that it doesn't detect gets set to monitor. When something "monitored" it isn't allowed outbound traffic. So nothing personal is going to be leaked. Also everything that the process does is recorded.
    So lets say you have a trojan that WSA didn't detect. WSA is going to determine that it is abnormal and set it to monitor. Once its set to monitor every file, folder, registry entry, etc, is recorded. So lets say in 30 min its determined that it's a trojan. Everything that the trojan did is reverted and deleted. Pretty cool huh.
    It really is a novel idea in security. Apart from all that it's also very light and has some cool tools.
    I would try out WSA AV. Unless you need backup or protection for your smartphone.
     
  11. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    @kjdemuth
    Thanks for the assurance.:thumb:
     
  12. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    @Triple Helix
    Hehe. You know Daniel, my atom rocks! :D
     
  13. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    @Techfox1976
    Useful info there my friend. Thank you.:)
     
  14. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    Yes I do and I know some on this forum like over kill and it's not necessary because WSA stands on it's own the future is here now in WSA because how can other AV's handle the high influx of new malware, with the cloud it does all the work then it decides if it's good or bad then it will roll back to before the infection and at the same time all other users are protected immediately without the need of downloading Definitions!

    TH
     
  15. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    @Triple Helix
    Just couldn't agree more.:thumb:
     
  16. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    Thank you very much for all this information, you definitely answered my question :thumb:
     
  17. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    I know that WSA runs along side other AV, but I noticed that Windows Action Center reports avast and WSA as my two AV's, Should I go ahead and ignore the message Action Center is reporting to me?

    I just don't want to run into any conflicts.

    Are you positive these two run flawless next to one another?
     
  18. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    Nevermind, I just unchecked this option under settings

    Show SecureAnywhere in the Windows Action Center

    Just so it doesn't report both.

    I might eventually end up buying WSA, But, that all depends on how well it performs for me.

    So far, So good
     
  19. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    What no sandboxie either? ;)
     
  20. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    I might throw it in the mix sooner or later lol :D
     
  21. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    It's my favorite combo at the moment. Can't be beat. Light and powerful.
     
  22. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,806
    Definitely :thumb:
     
  23. Techfox1976

    Techfox1976 Registered Member

    Joined:
    Jul 22, 2010
    Posts:
    749
    You're quite welcome.

    I'll point out straight away that highly-educated users have a tougher time with it unless they research all the details. They are used to very specific operational parameters and behaviors.They all have their own preconceptions as to what works and what is best. But the most intelligent ones look at facts and concepts well and can make their own decisions based on the issues at hand. :)

    Things to consider:
    • If it WOULD detect something the other program also detects, it will either A: detect it later and remove it fully while protecting you against it despite the latency in detection, or B: Allow the other program to block WSA from the detection and remove the malware. It does not want to get into a fight with other AV and negatively impact your system. It's been shown time and time again that when it's alongside something else, it will never give a peep if the other AV detects the malware even when it can detect also.
    • It does not look for or detect -everything- that other AVs may detect. Another AV may flag on the configuration file or registry entry for an infection, for example, even if the core infection is gone. Though WSA has a VERY strong ability to remove traces that it saw get placed, even if they are not detected by other AV programs, it will also miss outliers that existed prior to its installation even if other AVs have explicit detection for those outliers. The important thing is that none of those outliers are ever active machine code or able to actually influence your system.
    • Nothing is perfect. Period. When something gets by, a lot of us are completely capable of removing it manually ourselves. WSA not only provides a useful tool set to assist in this removal, but it also has outstanding support and a framework by which support and threat research can remove the infection without having you run ComboFix or MBAM and often without needing you to do anything at all if the infection got in while WSA was installed.
    • it's light. OMFG light. It's like it's not there. My current rig is a high end system. Three monitors, 2x GTX 680 SLI, 32GB RAM, 3x 512GB SSD in RAID5 for system drive, octo-core 3.8GHz CPU, etc. Yet conventional AV on my system still impacts performance noticeably and quantifiably. I support thousands of systems for enterprise and others, and the number of low-end systems, even many running XP on things like original P4s is huge. The impact of normal AV on those systems is nearly registered in megatons. :\ But WSA has no noticeable impact on my or any other systems when running right. (Caveat: When running right. Most of the time, AV is running right and impacting, or running poorly and impacting worse. WSA is not-impacting when running right, and minimally-impacting when running badly. Then support is tremendously helpful if it runs badly for any reason, and even then I can generally remediate it myself. WSA makes it so the computer you paid for belongs to YOU, not just the 75% of it your AV isn't using.
    • Support doesn't suck. Not only does the program give you the ability to solve the vast majority of any possible issues yourself if you know how, but support follows the sun, is in-house (US-based as well for US customers), and highly intelligent. Though it's always possible to catch a support person on a bad day (nothing's perfect), your chances of having a good support experience are much greater. Support also doesn't consider your computer or data to be expendable. if you have an infection, "Wipe everything and reinstall your OS" is the absolute last thing they want to ever say. That's a HUGE step away from other AV support where "Make an effort, then nuke it from orbit, that's the only way to be sure" is the common answer.

    A huge number of people use WSA as their only AV. Many also use it as a layered approach with others. With all the time I've been the security industry, I know its strengths and weaknesses and I utilize it exclusively. It's not perfect, but it sucks less than the other stuff.
     
  24. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    @Techfox1976
    Nice post.:thumb:
     
  25. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,965
    Location:
    Parallel Universe
    I wonder if there would be any double scanning.:doubt:
     
Thread Status:
Not open for further replies.