Known Problems with Most Common AV's

[SearchLight]

Nobody tested or mentioned Forticlient v6.0? Supposedly, a hidden gem?

And if all these Av's have bugs which weaken protection or make them difficult to use, what are the alternatives? VS or OSA alone along with the Free ZoneAlarm Firewall or Windows Firewall for example?

 

[Venustus]

Nobody tested or mentioned Forticlient v6.0? Supposedly, a hidden gem?

And if all these Av's have bugs which weaken protection or make them difficult to use, what are the alternatives? VS or OSA alone along with the Free ZoneAlarm Firewall or Windows Firewall for example?

Windows Defender...

 

[SearchLight]

Windows Defender...

I guess you mean OSA or VS+ just old WD?

 

[Venustus]

I guess you mean OSA or VS+ just old WD?

Just Windows defender..maybe augmented with malwarebytes

PS Windows defender is quite heavy!So....
No solution is perfect unfortunately

 

[Venustus]

All BD customers extremely satisfied with the newest relaese no reported posts:

Forum

 

[SearchLight]

Just Windows defender..maybe augmented with malwarebytes

PS Windows defender is quite heavy!So....
No solution is perfect unfortunately

Thought the same.

What is interesting is some on MT dislike Malwarebytes for weak signatures reducing its effectiveness. I was using WD until recently because I disliked wading through multiple menus to find out was going on setting-wise and update wise, etc.

The only other AV that I can think of that is light, light is Webroot. I guess Webroot+OSA or VS+Windows Firewall is the answer? Or just don't use the PC.

 

[Venustus]

don't use the PC

 

[ForgottenSeer 72227]

Sophos Home:

• No quarantine, malware is simply deleted. No way to restore a FP.

Actually this isn't true anymore.

As of version 2 Sophos Home/Premium has a quarantine and you can restore files from the web interface.

 

[roger_m]

In my book that's actually a pro. It's done for a reason.

It would be best if you were alerted about changes to the host file and asked if you want to restore it to default. For example, my VPN creates an entry in the host file and I would not want that to be removed. It even has the comment "#added by Windscribe, do not modify," so clearly it is needed.

 

[blackice]

It would be best if you were alerted about changes to the host file and asked if you want to restore it to default. For example, my VPN creates an entry in the host file and I would not want that to be removed. It even has the comment "#added by Windscribe, do not modify," so clearly it is needed.

So am I reading this correctly in learning Bitdefender doesn’t play nice with certain VPNs, especially Windscribe which I sometime use, due to this host file issue?

 

[roger_m]

So am I reading this correctly in learning Bitdefender doesn’t play nice with certain VPNs, especially Windscribe which I sometime use, due to this host file issue?

I don't use Bitdefender personally, but it would seem so. I guess that Windscribe would recreate its host file entry if it was deleted. But the point is, that I think it's a bad idea if an antivirus automatically removes entries to the host file. The host file can be modified by malware, but there are also legitimate reasons to modify the host file.

 

[upnorth]

The host file can be modified by malware, but there are also legitimate reasons to modify the host file.

Correct and this I actually can reply to but, when it comes to F-Secure it's not some odd bug or even a actual problem as they as many other security software vendors/companies include a " Exception/Exclude " feature , in F-Secure SAFE that's called Apps and File Control. More information from F-Secure about the Hosts file here.

Redirected hosts file | F-Secure Labs

Technical details and removal instructions for programs and files detected by F-Secure products.

www.f-secure.com

How To exclude.

How to allow a quarantined<br> hosts file and exclude the file from scanning

This article in other languages: Finnish, Swedish, Danish, Norwegian, German, French, Italian, Japanese, Dutch, Polish.

community.f-secure.com

Malware example.

Trojan:W32/Qhost | F-Secure Labs

Technical details and removal instructions for programs and files detected by F-Secure products.

www.f-secure.com

 

[SeriousHoax]

Correct and this I actually can reply to but, when it comes to F-Secure it's not some odd bug or even a actual problem as they as many other security software vendors/companies include a " Exception/Exclude " feature , in F-Secure SAFE that's called Apps and File Control. More information from F-Secure about the Hosts file here.

Redirected hosts file | F-Secure Labs

Technical details and removal instructions for programs and files detected by F-Secure products.

www.f-secure.com

How To exclude.

How to allow a quarantined<br> hosts file and exclude the file from scanning

This article in other languages: Finnish, Swedish, Danish, Norwegian, German, French, Italian, Japanese, Dutch, Polish.

community.f-secure.com

Malware example.

Trojan:W32/Qhost | F-Secure Labs

Technical details and removal instructions for programs and files detected by F-Secure products.

www.f-secure.com

This should not be an excuse. It's not like adding to exclusion is a new cool feature of F-Secure. Every AV has that. If you wanna modify my host file you better ask me before doing so. Beside, I already had my host file changed and install BD after so it had no right to change a critical file like that without asking me.

 

[upnorth]

This should not be an excuse. It's not like adding to exclusion is a new cool feature of F-Secure. Every AV has that. If you wanna modify my host file you better ask me before doing so. Beside, I already had my host file changed and install BD after so it had no right to change a critical file like that without asking me.

As I was curious enough, edited the Hosts file, rebooted and surprise surprise, Zero change by F-Secure. Will it happen later? I have no idea as I normally never edit the Hosts file. Never had the need but, I'll leave it alone a day or two and see what happens.

 

[roger_m]

Correct and this I actually can reply to but, when it comes to F-Secure it's not some odd bug or even a actual problem as they as many other security software vendors/companies include a " Exception/Exclude " feature , in F-Secure SAFE that's called Apps and File Control. More information from F-Secure about the Hosts file here.

Sure, it's a feature, not a bug. My point still stands, that you should be asked before security software makes changes to the host file, as there are legitimate reasons to edit the hosts file. It would be different, if a modified hosts file was only ever created by malware, but this is not the case.

 

[upnorth]

Sure, it's a feature, not a bug. My point still stands, that you should be asked before security software makes changes to the host file, as there are legitimate reasons to edit the hosts file. It would be different, if a modified hosts file was only ever created by malware, but this is not the case.

My test shows something very different, but I will not say it's final or 100% conclusive as I did see posts about it on F-Secures own community forum. I'll pull a few strings and see what I can find more.

 

[SeriousHoax]

As I was curious enough, edited the Hosts file, rebooted and surprise surprise, Zero change by F-Secure. Will it happen later? I have no idea as I normally never edit the Hosts file. Never had the need but, I'll leave it alone a day or two and see what happens.

Actually, I don't know about F-Secure. I tested Bitdefender 2020 yesterday and it put # before every host names. F-Secure doesn't let me install it in Shadow Defender so couldn't test it.

 

[imuade]

Nobody tested or mentioned Forticlient v6.0? Supposedly, a hidden gem?

Forticlient's signatures are very solid, probably at the same level of Kaspersky's. And their web filter is excellent.
Unfortunately, they have released v.6.2 which is no longer free (you can still download v.6.0 for free)

FortiClient Unified Agent for ZTNA, Secure Remote Access and Endpoint Protection | Fortinet

FortiClient Fabric Agent integrates endpoints into the Security Fabric and provides endpoint telemetry, including user identity, protection status, risk scores, unpatched vulnerabilities, security events, and more.

www.forticlient.com

 

[jackwilli]

Forticlient's signatures are very solid, probably at the same level of Kaspersky's. And their web filter is excellent.
Unfortunately, they have released v.6.2 which is no longer free (you can still download v.6.0 for free)

FortiClient Unified Agent for ZTNA, Secure Remote Access and Endpoint Protection | Fortinet

FortiClient Fabric Agent integrates endpoints into the Security Fabric and provides endpoint telemetry, including user identity, protection status, risk scores, unpatched vulnerabilities, security events, and more.

www.forticlient.com

It is free to use or trial version?

 

[roger_m]

It is free to use or trial version?

It's free and there is still a download link for v6 on their website.

FortiClient Unified Agent for ZTNA, Secure Remote Access and Endpoint Protection | Fortinet

FortiClient Fabric Agent integrates endpoints into the Security Fabric and provides endpoint telemetry, including user identity, protection status, risk scores, unpatched vulnerabilities, security events, and more.

www.forticlient.com