WSA suggestions thread

Discussion in 'Prevx Releases' started by Dermot7, Oct 27, 2011.

  1. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,430
    Location:
    Surrey, England.
    I'd like to be able to refer to a WSA/Webroot Malware Database...which doesn't seem to exist at Webroot (or I can't find it?). Prevx does provide this service at : http://www.prevx.com/malwarecenter.asp ...which I wish had a search function also, which would be handy. Beyond the Threat Blog and a bit of basic malware info at http://www.webroot.com/En_US/csc/malware.html Webroot doesn't seem to have any such service?
    Also, and with no wish to bulk-up or bloat WSA in any way, but recognising the product attraction associated with adding unique/useful features, was wondering if it might be useful/possible to add some basic "Repair Functions" for inexperienced home users e.g. Repair Internet Connection etc ....such as can be found with tools like this one : http://www.thewindowsclub.com/repair-fix-windows-7-vista-problems-with-fixwin-utility

    Just some thoughts......:) Thanks
     
    Last edited: Dec 8, 2011
  2. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    +1 I have tried to find a threat database at webroot.com before but I couldn't find one either.

    Note I did find one around 12 months ago, but it's not there now anyway.
     
  3. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,741
    Location:
    UK
    Ages ago it was mentioned there would be the ability to get much more info on a file than presently [prevalence etc.], but not locally. By that I took it to mean there may be a browser page showing such detail. I wonder if this is still happening.
     
  4. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    We're in the process of supplying this - it currently isn't available anywhere. This will be part of a much larger project which expands upon the older Prevx 3.0 filenames pages to a much larger threat research center available publicly.
     
  5. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,430
    Location:
    Surrey, England.
    Sounds great, thanks :thumb:
     
  6. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    Awhile back I was questioning precisely what the heuristic setting "Allow only programs that are known good to execute" did, since it was new in WSA and to me seemed out of place.

    Joe (PrevxHelp) said that it basically overwrites all the other heuristic settings and turns everything to maximum, if I understood him correctly.

    But if that's the case, shouldn't clicking that radio button then gray out the other slider bars?
     
  7. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    We never fully trust a program - when the "whitelist mode" is activated, the other slider bars don't apply to unknown programs (as they'll be blocked) but they're still applied to known good programs, to prevent, for example, Adobe Reader from installing suspicious drivers. Adobe Reader is known good and therefore whitelisted, but we still use the Advanced Heuristics/Age/Popularity to determine how to act on actions taken by legitimate programs.
     
  8. opcode

    opcode Registered Member

    Joined:
    Dec 19, 2011
    Posts:
    37
    Location:
    united states
    Here's a couple of ideas to add under the "Antimalware tools" module of WSA:

    The option to restore/fix damaged internet/TCPIP settings.
    The option to restore damaged file associations, such as .exe's not being able to execute.

    It would also be nice if Webroot would make a rescue disc available that could be used to boot an heavily infected machine into a pre-environment for removal. Almost every respected (and some not-so) AV companies on the market have one out there for free, why not Webroot?

    Thanks for considering these additions and for making an already superb product.
     
  9. opcode

    opcode Registered Member

    Joined:
    Dec 19, 2011
    Posts:
    37
    Location:
    united states
    There should be a verification notice that any files we upload to the cloud for investigation were successfully transferred. I've submitted dozens tonight that WSA has failed to catch and I can only assume the upload to your server went through. Why not show a status bar or something?

    Thanks for considering it.
     
  10. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,262
    Location:
    Ontario, Canada
    This is the best way to get undetected files looked at is to Open a Support Ticket! https://www.wilderssecurity.com/showthread.php?t=314555

    TH
     
  11. Corepcx

    Corepcx Registered Member

    Joined:
    Oct 6, 2011
    Posts:
    16
    Option to Exclude Programs and Directories from Scanning..I know we have the option for Custom Scan, but, I do not see the option anywhere else to prevent them from realtime scanning. (for example if you have folder with malware samples you want excluded it)

    Option under Detection Configuration screen to Remove Selected only ,
    currently we only have remove all, and cannot select individual entries and restore them, it remove's them all..
     
  12. Techfox1976

    Techfox1976 Registered Member

    Joined:
    Jul 22, 2010
    Posts:
    749
    I believe the option to exclude has been discussed and had to be dismissed as a security hole for the average user. People who have a folder full of malware samples and know how to handle them safely also know how to deal with realtime scanners that have no exclusions. The premise of granular heuristics control was discussed as an option for developers.

    When something is detected in the scan, the list of what was detected has checkboxes in it. You leave checked what you want to remove, uncheck what you don't want to remove, and click Next. Then it only removes the items you had checked, and gives you the options to allow, monitor, or block the things you did not have checked.
     
  13. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    You can right click on the line to remove it :)
     
  14. Corepcx

    Corepcx Registered Member

    Joined:
    Oct 6, 2011
    Posts:
    16
    Option was there this whole time, never noticed or never tried it would say, thanks..
     
  15. darts

    darts Registered Member

    Joined:
    Feb 19, 2009
    Posts:
    456
    Location:
    Netherlands
    A Anti-Spam bar in outlook maybe??
     
  16. superssjdan

    superssjdan Registered Member

    Joined:
    Dec 11, 2011
    Posts:
    148
    Location:
    USA
    I know in the best interests of keeping this wonderful program lean and mean,this may not be possible,but a banner ad blocker would be a big plus for me.I love this program as is.You never realize how other avs lag your system until you have used this one.Very impressive.My pc has never seen such speed before.Again,a banner ad blocker,if possible as i cannot stand banner ads and the like.
     
  17. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    1) An option for advanced users; exclusion folders.

    2) A reputation system where both normal analysis of files have been made but also users can send input on files whether they're good or bad... i.e. is the version of the software stable etc? Sort of like latest version of Norton has.
     
  18. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    I second that.
     
  19. JCRUYFF

    JCRUYFF Registered Member

    Joined:
    Oct 27, 2009
    Posts:
    87
    Hi

    Here is my Top 10 WhishList

    1. Better Compatibility with Google Chrome and Other AV
    2. a Completely new UI (don`t like the actual one).
    3. Better Malware Detection , Phishing Site Detection and Email Virus Detection.
    4. Less False Positive
    5. a more Advanced Firewall
    6. Vulnerabilities Detection/Scan
    7. Exclusion of Folders and all type of Formats
    8. Show "start in Sandbox" on Applications on Windows Explorer
    9. Reputation System Like Norton or Kasperksy or a new one of Webroot
    10. Skin Feature in Webroot
     
  20. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    THE MOST IMPORTANT ISSUE WITH WSA!!!!!

    1!!!) Do _not_ call your built-in feature a sandbox. Call it something else... for instance "invoked rights execution". What WSA has is _NOT_, I repeat _NOT_ a sandbox.

    Many users might actually start malware with this feature thinking it's perfectly safe (as it would've been with Sandboxie) when it's definitely not.
     
  21. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    It might be splitting hairs, but it is a sandbox - a sandbox doesn't mean it is perfectly safe (and indeed, even Sandboxie isn't always 100% perfectly safe against all malware). The difference with the sandbox within WSA is that you can control how much access a program needs into the system, which can let some programs work properly under it without compromising the system or their functionality.
     
  22. darts

    darts Registered Member

    Joined:
    Feb 19, 2009
    Posts:
    456
    Location:
    Netherlands
    Parental Contrrol

    Will there be in the future be a parental control and a anti spam in Wsa? I hope so because it is a expensive product an compare it with other products there aren't a lot of stuff in Wsa.

    Greats,

    darts
     
  23. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,262
    Location:
    Ontario, Canada
    I moved it over here darts as we can keep all suggestions in the same place!

    TH
     
  24. JCRUYFF

    JCRUYFF Registered Member

    Joined:
    Oct 27, 2009
    Posts:
    87
    if WSA will be have a lots of features in the future like anti-spam panel-control and anti-banner(which i don`t use) then i suggest a Custom Install Option: User can choose what features want to install.
     
  25. darts

    darts Registered Member

    Joined:
    Feb 19, 2009
    Posts:
    456
    Location:
    Netherlands
    I completly are right with you a custom install you can choose what you wan't too install.

    Greats,

    Darts
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.