AV-Comparatives June Test

Atlas147

Atlas147

Level 30
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 28, 2014
1,990
davisd said:
Not very long a webroot paid customer, but i haven't experienced any bad support from them. Even if this article is 4 years old, it still applies to up-to-date WSA versions, and how it works (confirmed by Triple Helix) Webroot Bulletin Regarding AV-Comparatives Results - Webroot Threat Blog Not a fanboy, but i don't feel like they deserve such critique :(
Click to expand...

Feels like they are taking the same approach as Comodo, sandbox everything so nothing can harm anything else. This could prove to be a disadvantage because certain legitimate applications won't be able to run in a sandboxed environment. Or in this case, can WRSA really reverse all changes made to the system? Even if the master boot record were to be completely wiped by ransomware? I believe there are certain limitations to WRSA's rollback protection system and they cannot complete rely on waiting for classification before killing the malware. Prevention is better than a cure.
 
  • Like
Reactions: Deleted Member 3a5v73x and Deleted member 2913
H

hjlbx

"WSA will automatically remove the infection and restore the system perfectly to a pre-infection state."

"all system changes would have been reversed automatically."

Above is from linked WSA article.

Here is problem: The way Webroot markets their product, people expect WSA to behave in a certain way - whereas Webroot means something else. It is word-games.

What Webroot does not tell you is that the journaling & rollback will NOT remove every single folder\file created during an infection; some might be left on system - but albeit inactive unless user launches any executable remnants. It also cannot rollback certain types of infections.

WSA will not roll-back any brow.lock, for example... LOL. WSA doesn't journal these types of infections - but everyone thinks it will due to the way Webroot makes statements about their product.

"While detection is certainly very important, actually blocking the vectors of attack used by malware is what the goal of security software should really be."

Smart statement... but, then, why doesn't Webroot follow this statement ?

Any how, with Webroot any criticism is "unfair" to them and their product.
 
Last edited by a moderator:
  • Like
Reactions: Deleted Member 3a5v73x, Deleted member 2913 and NullByte
H

hjlbx

NullByte said:
BitDefender also has a "rollback" option but it's not working that well. From what I know it has to do with AVC or something like that.
Click to expand...

So does COMODO (Viruscope) and Kaspersky (System Watcher) - and both of those don't meet user expectations because both vendors do not fully explain what those features can and cannot do...

Vendors are not always completely forthright with details and the end result is users are disappointed and their products get (justifiably in such cases) bashed.
 
  • Like
Reactions: Deleted Member 3a5v73x and Deleted member 2913
E

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
hjlbx said:
So does COMODO (Viruscope) and Kaspersky (System Watcher) - and both of those don't meet user expectations because both vendors do not fully explain what those features can and cannot do...

Vendors are not always completely forthright with details and the end result is users are disappointed and their products get (justifiably in such cases) bashed.
Click to expand...
I feel like this feature breaks my pc more than what it can protect. After a few times clicking rollback from Kaspersky, I have some problem with my laptop even repairing from iso file, sfc and windows repair (app) can't fix. Moreover, it broke my google chrome and forced me to completely uninstall and reininstall it after a rollback
 
  • Like
Reactions: Deleted Member 3a5v73x and Deleted member 2913
jamescv7

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
Regarding on FP's.

AV-Comparatives should release regular False-Alarm test follow by detailed files which are mistakenly flag (including prevalence rate), usually many AV's are confuse on Critical File systems and even installer of Microsoft.
 
  • Like
Reactions: tonibalas and Deleted Member 3a5v73x
You must log in or register to reply here.

Similar threads

Brownie2019
    • Thanks
Unlimited Giveaway Bitdefender Antivirus Plus 2024 [3-D, 1-YR] 17,99€
Replies
1
Views
1,571
Giveaways, Promotions and Contests
Dark Knight
Dark Knight
Gandalf_The_Grey
    • Like
    • Applause
    • Wow
AV-Comparatives Celebrating 20 Years of Excellence in Cybersecurity
Replies
1
Views
404
Security Statistics and Reports
Bot
Bot
vtqhtr413
    • Like
    • Applause
    • +Reputation
Hot Take Kaspersky Standard wins Product of the Year award from AV-Comparatives
Replies
31
Views
2,656
Kaspersky
micasayyo
M

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top