Overclock.net › Forums › Industry News › Software News › [ARS] AV provider Webroot melts down as update nukes hundreds of legit files
New Posts  All Forums:Forum Nav:

[ARS] AV provider Webroot melts down as update nukes hundreds of legit files - Page 7

post #61 of 80
Quote:
Originally Posted by DIYDeath View Post
 
Quote:
Originally Posted by jeffdamann View Post

If you haven't used an antivirus in 10 years, how in the world would you know if you were infected or not?

Usually, viruses have symptoms...such as a slow as hell computer...or an "FBI" warning telling you that you have to pay $ to unlock your computer, unusually high CPU usage for the tasks being performed (such as idling) unusual traffic passing through your modem (resulting in slow for no reason internet), etc.

If you're relatively well versed in these things you can get a general feel for how your computer runs virus free compared to when something is wrong. Through diagnosis of the issue you root out whether it's a virus/malware problem so it's not unfeasible that you could "eyeball it" though you need to have good internet surfing and downloading practices along with adblockers+friends to be relatively secure.

Most viruses these days get on your computer because you screwed up and downloaded something you shouldn't have or by clicking hyper links in your emails.
Everything else is just mal/spyware which accumulates due to not using a good adblocker+visiting websites that don't screen the people renting billboard space on their banners.

Of course there's always exceptions, such as living in China and plugging in USB drives from people who clearly have no idea how to responsibly handle a computer.

Oh, the nightmare!

 

They go on websites that are heavily loaded with flash adverts and within seconds are infected by dozens of eSTD's and then complain their PC's are rubbish and slow. No matter how many times I tell them iQiyi, Youku, Tudou, Baidu and other websites are to blame they refuse to believe me and continue to blame their PC's. While I trust my own machine I do not trust other people's, which is why I have an AV. Every time I plug my USB in someone's PC their AV says my LOCKED USB drive is infected because 360 itself is totally compromised and yet they continue to blindly trust it.

The girlfriend.
(15 items)
 
The Mistress
(13 items)
 
Media Server
(11 items)
 
CPUMotherboardGraphicsRAM
FX8320 @ 4.5 Crosshair V (Third One) 290 Tri-X OC 16GB HyperX 
Hard DriveHard DriveHard DriveCooling
Sandisk SSD Plus 240GB Toshiba 3TB Hitachi 2TB Swiftech H220-X 
OSMonitorKeyboardPower
Win 8.1/Mint Viewsonic VX2457-mhd Fuhlen L411 Slim Super Flower Golden King 650W 
CaseMouseMouse Pad
Enthoo Pro G400 Super Flower 
CPUMotherboardGraphicsRAM
A8-6410 Lenovo Lancer 4B2 K16.3 R5 128 Shaders/M230 Hynix 8GB DDR3 1600 
Hard DriveHard DriveOSMonitor
Samsung 840 120 GB SSD Seagate Momentus 1TB 5400rmp Win 8.1 CMN1487 TN LED 14" 1366*768 
KeyboardPowerMouseMouse Pad
Lenovo AccuType 2900mAh/41Wh Elan Trackpad/Logitech M90 Super Flower 
Audio
AMD Avalon(Connexant) 
  hide details  
Reply
The girlfriend.
(15 items)
 
The Mistress
(13 items)
 
Media Server
(11 items)
 
CPUMotherboardGraphicsRAM
FX8320 @ 4.5 Crosshair V (Third One) 290 Tri-X OC 16GB HyperX 
Hard DriveHard DriveHard DriveCooling
Sandisk SSD Plus 240GB Toshiba 3TB Hitachi 2TB Swiftech H220-X 
OSMonitorKeyboardPower
Win 8.1/Mint Viewsonic VX2457-mhd Fuhlen L411 Slim Super Flower Golden King 650W 
CaseMouseMouse Pad
Enthoo Pro G400 Super Flower 
CPUMotherboardGraphicsRAM
A8-6410 Lenovo Lancer 4B2 K16.3 R5 128 Shaders/M230 Hynix 8GB DDR3 1600 
Hard DriveHard DriveOSMonitor
Samsung 840 120 GB SSD Seagate Momentus 1TB 5400rmp Win 8.1 CMN1487 TN LED 14" 1366*768 
KeyboardPowerMouseMouse Pad
Lenovo AccuType 2900mAh/41Wh Elan Trackpad/Logitech M90 Super Flower 
Audio
AMD Avalon(Connexant) 
  hide details  
Reply
post #62 of 80
Quote:
Originally Posted by Liranan View Post

Oh, the nightmare!

They go on websites that are heavily loaded with flash adverts and within seconds are infected by dozens of eSTD's and then complain their PC's are rubbish and slow. No matter how many times I tell them iQiyi, Youku, Tudou, Baidu and other websites are to blame they refuse to believe me and continue to blame their PC's. While I trust my own machine I do not trust other people's, which is why I have an AV. Every time I plug my USB in someone's PC their AV says my LOCKED USB drive is infected because 360 itself is totally compromised and yet they continue to blindly trust it.

Don't forget the amazing Ask toolbar! Or the Babylon translator!

This why I hate Chrome. I work IT for a school and people always get malicious toolbars on Chrome.....so you delete them in the profile....problem solved right? NO!!! Because every time they log into with their Google ID it loads all their crap again with the stupid sync. Or lets say a student is using an older version of Chrome. Then Chrome loads tries and to force an incompatible addon and crashes Chrome.

UGGGH.
Sorry to rant. Some of that was on topic.
/rant
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500K @ 4.2ghz 1.27v Biostar TZ77XE3 Asus R9 390 STRIX 8GB 16GB DDR3 1600 kingston hyper X 
Hard DriveOptical DriveCoolingOS
Samsung 500GB F1 + WD 1TB + Crucial 120GB SSD Asus DVD-RW SATA ARCTIC FREEZER i32 Push/Pull Corsair AF120 Windows 10 64 Professional 
MonitorKeyboardPowerCase
Crossover Q27 Cougar Attack X3 Antec Truepower 750W AzzA Solano 1000 Full Tower 
MouseMouse PadAudio
Cyber Snipa SILENCER 5000DPI none X-Raider 5.1 PCI, Creative Inspire 5.1 surround  
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500K @ 4.2ghz 1.27v Biostar TZ77XE3 Asus R9 390 STRIX 8GB 16GB DDR3 1600 kingston hyper X 
Hard DriveOptical DriveCoolingOS
Samsung 500GB F1 + WD 1TB + Crucial 120GB SSD Asus DVD-RW SATA ARCTIC FREEZER i32 Push/Pull Corsair AF120 Windows 10 64 Professional 
MonitorKeyboardPowerCase
Crossover Q27 Cougar Attack X3 Antec Truepower 750W AzzA Solano 1000 Full Tower 
MouseMouse PadAudio
Cyber Snipa SILENCER 5000DPI none X-Raider 5.1 PCI, Creative Inspire 5.1 surround  
  hide details  
Reply
post #63 of 80
Quote:
Originally Posted by Megaman_90 View Post

Don't forget the amazing Ask toolbar! Or the Babylon translator!

This why I hate Chrome. I work IT for a school and people always get malicious toolbars on Chrome.....so you delete them in the profile....problem solved right? NO!!! Because every time they log into with their Google ID it loads all their crap again with the stupid sync. Or lets say a student is using an older version of Chrome. Then Chrome loads tries and to force an incompatible addon and crashes Chrome.

UGGGH.
Sorry to rant. Some of that was on topic.
/rant

You do realize you can turn off sync right? It takes a few minutes for Chrome to sync after they log in with their ID so take that time to turn off sync and remove the offending add-on/extension.

Ass for the student issue, that's not Chrome's fault at all. That's the students fault for not keep Chrome and/or the extensions up to date so they'll work with the latest version.

Source: IT Support Specialist For 3 Government Casinos.
post #64 of 80
Quote:
Originally Posted by NexusRed View Post

You do realize you can turn off sync right? It takes a few minutes for Chrome to sync after they log in with their ID so take that time to turn off sync and remove the offending add-on/extension.

Ass for the student issue, that's not Chrome's fault at all. That's the students fault for not keep Chrome and/or the extensions up to date so they'll work with the latest version.

Source: IT Support Specialist For 3 Government Casinos.

Yeah I do. The problem is sometimes Chrome crashes before you can even get to the settings panel. Our network guy runs most the GP settings too, so settings get re-enforced when Chrome is loaded.

Your right about the student problem is kinda the students fault. However, that doesn't stop the pile of tickets and "broken computers". wackosmiley.gif Chrome is a good browser especially for home use, but the sync in a business environment definitely has its quirks. Especially across a network that has frozen machines that can't always be updated every month.
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500K @ 4.2ghz 1.27v Biostar TZ77XE3 Asus R9 390 STRIX 8GB 16GB DDR3 1600 kingston hyper X 
Hard DriveOptical DriveCoolingOS
Samsung 500GB F1 + WD 1TB + Crucial 120GB SSD Asus DVD-RW SATA ARCTIC FREEZER i32 Push/Pull Corsair AF120 Windows 10 64 Professional 
MonitorKeyboardPowerCase
Crossover Q27 Cougar Attack X3 Antec Truepower 750W AzzA Solano 1000 Full Tower 
MouseMouse PadAudio
Cyber Snipa SILENCER 5000DPI none X-Raider 5.1 PCI, Creative Inspire 5.1 surround  
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500K @ 4.2ghz 1.27v Biostar TZ77XE3 Asus R9 390 STRIX 8GB 16GB DDR3 1600 kingston hyper X 
Hard DriveOptical DriveCoolingOS
Samsung 500GB F1 + WD 1TB + Crucial 120GB SSD Asus DVD-RW SATA ARCTIC FREEZER i32 Push/Pull Corsair AF120 Windows 10 64 Professional 
MonitorKeyboardPowerCase
Crossover Q27 Cougar Attack X3 Antec Truepower 750W AzzA Solano 1000 Full Tower 
MouseMouse PadAudio
Cyber Snipa SILENCER 5000DPI none X-Raider 5.1 PCI, Creative Inspire 5.1 surround  
  hide details  
Reply
post #65 of 80
Quote:
Originally Posted by Particle View Post

People who think like this, as a group, help contribute to the persistence of botnets used for spam and any manner of other evil things every bit as much as the inexperienced users tech people like to poke fun at. It isn't just about you. Good personal security is to the benefit of us all.

Security is done at the network level, no free or paid for antivirus is going to save you with a crap firewall. Botnets use embedded linux devices and unsecured internet facing appliances that have hard coded manufacturer burnt in login/passwords that can't be changed. I haven't run a AV till W10 builtin Defender for the last decade but my firewall has been more than adequate to counter my threats. Also a VPN to home allows me to safely use my internal network instead or forwarding or opening up ports on my router.
post #66 of 80
LMAO, my job has this..how fun that was.
Tardis
(13 items)
 
  
CPUMotherboardGraphicsRAM
|2500k @ 4.4Ghz vcore 1.40| MSI P67A-GD65 290X G.SKILL Ripjaws Series 16GB (4 x 4GB) 1600Mhz 
Hard DriveOSMonitorPower
C300 64GB SSD - 500GB HDD - 840 250GB SSD Windows 7 Ultimate 64bit 3 HP LA2405wg 24'' 1920x1200 @5760x1200 Corsair 850watts 
CaseMouse
NZXT Phantom Black G500 
  hide details  
Reply
Tardis
(13 items)
 
  
CPUMotherboardGraphicsRAM
|2500k @ 4.4Ghz vcore 1.40| MSI P67A-GD65 290X G.SKILL Ripjaws Series 16GB (4 x 4GB) 1600Mhz 
Hard DriveOSMonitorPower
C300 64GB SSD - 500GB HDD - 840 250GB SSD Windows 7 Ultimate 64bit 3 HP LA2405wg 24'' 1920x1200 @5760x1200 Corsair 850watts 
CaseMouse
NZXT Phantom Black G500 
  hide details  
Reply
post #67 of 80
Quote:
Originally Posted by Particle View Post

My message was pretty clear, and you can't logically just dismiss it out of hand as you appear to want to. People who run unprotected, Internet-connected systems whether out of ignorance or hubris are more likely to end up with infected systems. These infected systems are often used to send spam, distribute malware and child pornography, contribute to denial of service attacks, etc. This is how you can become part of the problem. The spam sent from your computer is a problem for the person whose mailbox you've just polluted. The traffic your system contributed to knocking some service offline is a problem for the service provider and all of its users. And so on. Obviously. You might not even know you were infected and part of the problem for days, weeks, or ever depending on how the malware was written and what it has been instructed to do. It has nothing to do with running a paid product or being required to spend money. That would be a straw man argument.

Your argument is a straw man in and of itself.

Haven't used AV in... 20 years. I monitor active ports on my network. I have not had a single infection or any malicious web traffic through my firewall. Bring better points to the table.

Same goes for the business I admin for. Single DPI firewall has covered the whole site without fail. Users have zero admin rights to change anything or install anything. Internet servers are white listed for inbound/outbound access. Insecure browsing is sandboxed on an independent V-LAN using read only VM's.

AV as a security measure on machines themselves is pretty useless and is mainly just there for those who have zero network security and have bad browsing habits.
μRyzen
(12 items)
 
Mini Box
(4 items)
 
 
CPUMotherboardGraphicsRAM
Ryzen R5 1400 MSI B350M Gaming Pro Zotac GTX 670 4GB G.SKILL FORTIS Series 8GB (2 x 4GB) 
Hard DriveCoolingOSOS
WD Green 3tb Wraith Stealth Windows 10 Debian 8.7 
MonitorKeyboardPowerMouse
ViewSonic VX-2257-8 Chinese backlit mechanical Kingwin 850w Chinese laser optical 
CPUMotherboardGraphicsRAM
Athlon 5350 Asus AM1I-A EVGA GTX 750 Ti SC 2x4GB DDR 3 1333 
  hide details  
Reply
μRyzen
(12 items)
 
Mini Box
(4 items)
 
 
CPUMotherboardGraphicsRAM
Ryzen R5 1400 MSI B350M Gaming Pro Zotac GTX 670 4GB G.SKILL FORTIS Series 8GB (2 x 4GB) 
Hard DriveCoolingOSOS
WD Green 3tb Wraith Stealth Windows 10 Debian 8.7 
MonitorKeyboardPowerMouse
ViewSonic VX-2257-8 Chinese backlit mechanical Kingwin 850w Chinese laser optical 
CPUMotherboardGraphicsRAM
Athlon 5350 Asus AM1I-A EVGA GTX 750 Ti SC 2x4GB DDR 3 1333 
  hide details  
Reply
post #68 of 80
Windows Defender is so invasive/built into the OS of win 10 creators update, even current AV's can not disable them anymore, it forces itself to run side by side with whatever you install, so I just gave up and let Microsft do w.e it wants. VPN 24/7 and screw it, lol
    
CPUGraphicsRAMHard Drive
i7-7820HK Kaby Lake @ 4.2Ghz GTX 1070 @ 2Ghz boost @ 9008Mhz Vram 16GB 2x8 DDR4 2133 Samsung 960 EVO 500GB NVMe 
Hard DriveCoolingOSMonitor
5TB Seagate 2.5" 5400RPM Grizzly Conductonaut on GPU and CPU Win 8.1 WSUS ;) 17.3" 1080p IPS oc'd 100hz GSYNC 
MouseAudioAudio
Naga 2014 + G303 HE-400i w/ 1540 Alcantara earpads Schiit Fulla 1 AMP/DAC over Type C 
  hide details  
Reply
    
CPUGraphicsRAMHard Drive
i7-7820HK Kaby Lake @ 4.2Ghz GTX 1070 @ 2Ghz boost @ 9008Mhz Vram 16GB 2x8 DDR4 2133 Samsung 960 EVO 500GB NVMe 
Hard DriveCoolingOSMonitor
5TB Seagate 2.5" 5400RPM Grizzly Conductonaut on GPU and CPU Win 8.1 WSUS ;) 17.3" 1080p IPS oc'd 100hz GSYNC 
MouseAudioAudio
Naga 2014 + G303 HE-400i w/ 1540 Alcantara earpads Schiit Fulla 1 AMP/DAC over Type C 
  hide details  
Reply
post #69 of 80
At least they got the Facebook part correct....
post #70 of 80
I guess webroot didn't get the memo? Reminds me of a time that I went to remove spyware from a friends computer but she stopped me. The cute monkey asking for her credit card was still a cute monkey and a exception must be made for him.
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 4690k msi z97 gaming 5 evga 980 ti G.SKILL Sniper Series 16GB 
Hard DriveOptical DriveOSMonitor
samsung 950 HP dual layer Windows 7 64 27 dell ips  
KeyboardPowerCaseMouse
G15 850 TX corsair 540 air G900 
Mouse Pad
generic 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 4690k msi z97 gaming 5 evga 980 ti G.SKILL Sniper Series 16GB 
Hard DriveOptical DriveOSMonitor
samsung 950 HP dual layer Windows 7 64 27 dell ips  
KeyboardPowerCaseMouse
G15 850 TX corsair 540 air G900 
Mouse Pad
generic 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [ARS] AV provider Webroot melts down as update nukes hundreds of legit files