Solved

Someone please do something about the False Positives and Web Reputation



Show first post

49 replies

Userlevel 7
Good thought Dan...Nice one!
 
MadeMeCry...go for it and start a Feature Request...I for one will add comments and support it if it is along the lines suggested by Dan.
 
Regards
 
 
Baldrick
Userlevel 7
Hi airdragon1953
 
No FPs whatsoever here and I suspect for the vast majority of user.  I would strongly recommend following Daniel's advice (2 post back) as it is the right approach.
 
Regards
 
 
Baldrick
Userlevel 3
I am a happy user of WSA but the FP issue with the webshield is getting very annoying.  It is OK saying "you can be part of the solution" but the complaint is that many of us have tried over many months to do this and the situation is not getting any better.  I personally have posted on Wilders,  exchanged private messages with Joe,  submitted several support tickets and spent some time providing multiple examples.  The fact them so many valid commercial sites (e.g. VPN providers) are being blocked (not just warned)  is plain wrong and has not been fixed.   The only valid reason I have had back in that time is that the site list is business focused rather then consumer so many sites that businesses might want blocked from users are included.  How true this is I don not know but it does not help us consumers if it is.
Userlevel 5

@Baldrick wrote:
Hi Seeker
 
Hope that you are well?
 
I am bemused because the Threat Filtering addon just does not seem to give me anything other than the very occassional FP...it either allows sites or has blocked a few that on investigation have seemed suspect (as far as I could tell)...and where I have had the FPs I have created a local override and then posted the FP via the URL Reputation Site...no real issues.
 
To me what is really strange is why some have so many issues and some have next to none...and my wife uses ebay sites galore and is always bying things...but never gets hit with an FP. ;)
 
It is the disparity in apparent performance that to me is the great mystery.
 
Regards
 
 
Baldrick

Hi Baldrick - I am well thank you. Bemused too, believe me. Clicking on 'Reply' within the 'My eBay' section of eBay to respond to a buyer's question, and seeing not a 'Suspicious threat' message, but a 'Malicious software threat' message really made me lose faith in the feature.
Userlevel 7
Badge +32

@MadeMeCry wrote:
I am a happy user of WSA but the FP issue with the webshield is getting very annoying.  It is OK saying "you can be part of the solution" but the complaint is that many of us have tried over many months to do this and the situation is not getting any better.  I personally have posted on Wilders,  exchanged private messages with Joe,  submitted several support tickets and spent some time providing multiple examples.  The fact them so many valid commercial sites (e.g. VPN providers) are being blocked (not just warned)  is plain wrong and has not been fixed.   The only valid reason I have had back in that time is that the site list is business focused rather then consumer so many sites that businesses might want blocked from users are included.  How true this is I don not know but it does not help us consumers if it is.

MadeMeCry,
You are correct about the business focus when it comes to sites such as VPN providers, which does make sense in a business environment. You could post a suggestion in the Ideas Exchange to treat these specific examples differently for the consumer and business products.
Of course those sites aren't the only issue being brought up in this thread...
 
-Dan
Userlevel 7
I am very sorry to see you go... Personally, I prefer to keep the best lightest AV on my computer.  A temporary problem with a few FP's is well worth it to me to have the best overall protection available.
Userlevel 7

@Rakanisheu wrote:
False positives on keygens and activators erm what?

Keygens, hacked .exe's, actvivators, etc all have been used to pass malware.  In the case of activators, since they alter the software they are often flagged as malicious anyway as they behave as a virus would in altering the software.
Userlevel 7
False positives on keygens and activators erm what?
Userlevel 7
Badge +51
 False Positives
You think they do not have ESET :D
Userlevel 7
Badge +51
Anyway use of activators illegally.
Userlevel 7
Badge +51

@The_Seeker wrote:
I came here to start a thread about this, but I'll post here as it's germane to the thread. I posted this on the Wilders forums too:
 
The false positives from this web filtering extension are becoming somewhat of a joke. I had a 'Malicious software threat' when trying to respond to a buyer on eBay - not some rinky-dink shopping site - eBay. Adelaide Metro, Adelaide's public transport website, resulted in a 'Suspicious threat' message.

Also problematic is Webroot's URL Reputation Change Request site. I've submitted several URLs using this service, always leaving my details and checking the 'Receive Notifications' box. Not once have I ever heard back about a site I reported. It's getting to where I'm seriously considering switching products.
 


You can use Webroot Reputation Toolbar, it won't show only reputation without blocking sites
http://www.brightcloud.com/wrtoolbar.php
 



 
 
Userlevel 4
sigh...I got no choice... I will continue doing this 😞
Userlevel 4
The websites are still blocked :(

I don't want to allow them manually as I want to confirm this issue has been fixed
Userlevel 4
yeah they seem to be much slower than the tech support as when I submit an FP, that is usually whitelisted within 30 minutes

I just checked my own forums http://forums.tweakarena.com and that has a not so good reputation as well.

I think the guys who are handling this department really need a kick. Do they just blacklist the entire web and then start whitelisting them as per request???

been almost 24 hours and no reply yet.

I know I can simply ignore the warning, but that's not right they shouldn't be marked as harmful
Userlevel 4
thank guys, you have been the friendliest and most tolerant bunch I have seen on any forums. But let's just part on good terms. going back to my heavy NOD32, I will bear the performance drop to have the ease of mind.

When I use an AV, it has to work properly out of the box, I don't want to disable anything.

The core must be fixed, not disabling features to make something work.

Webroot has a lot of potential, it covers the main point perfectly, which is keeping you protected. Maybe one day someone responsible will see this and make the guys behind these FPs realize that it annoys some customers. I have seen many complaints about this on Wilder Security but didn't bother until I experienced it myself.

I am sensitive to 2 things in life:

1) Ads (that's why I use ABP)

2) False Positives
Userlevel 4
@ Petrovic

I have been using NOD32 since 7 years, only had 1 False positive since then, which was a program called UltraSurf >>> https://ultrasurf.us/

No activator, crack, or keygen was ever detected as a virus unless it really was.

With WSA, I had to contact support for the Adobe Acrobat Pro XI activator, PassMark Performance Test activator, and a few others.

While they did respond almost instantly and whitelisted the files, just wanted to note that they were not detected by NOD32

I am not trying to make an A vs B thread here, Webroot blows NOD32 out of the water when it comes to system performance / slightness
Userlevel 4
@The_Seeker. I didn't receive one reply about the 4 sites I submitted since more than 24 hours.

The site rep people are totally opposite to the speed and responsive support. They are not doing their job well in the first place, and not even doing it right when customers report false positives
Userlevel 4
For the person who said that keygens are illegal.

They are, but our discussion here is their detection not what they activate and the legality of that.

What I like about NOD32, is that if it detects a bad keygen that is going to harm my system, it detects THAT. not simply detect every keygen made in the world or activator.

Some activators are legit, take for example, the Microsoft Toolkit or the Windows Loader 2.2.1

they are not made for piracy, but rather, made for people who are sick of dialing Microsoft to activate their genuinely purchased product, then have to spend a minimum of 10 minutes entering a large Installation ID, then spend a long time waiting slowly to hear the Activation code. That is when an activator becomes legit. you own the software legally but want to bypass the stupid activation methods that some software use.
 
An AV is supposed to tell me when a file is going to change critical stuff or harm my system, not to play as the police officer.
Userlevel 4
@Petrovic, my Windows 7 Pro and my Windows 8.1 Pro with Media Center are all genuine, I am against piracy

But to be fair this Windows loader 2.2.1 postedo n My Digital Life Forums cannot be detected by Windows and will not be de-activated no matter how many updates you do

but that's not our main point here, the main point still exists...Webroot has too many FPs
Userlevel 4
@Shawn:

Thank you for agreeing that this is a major nuisance for a user.

I hope that one day this would be fixed because False positives, be it files OR Wenbfiltering are the only reason that blew me away from Webroot.
I will keep my 3 year license which is for 5 PCs until one day Webroot matures more to enable me to use my system properly without headaches. Until then, I will continue to use my NOD32 license and suffer from a huge performance hit but at least I have no false positives.

It electrifies my body when I receive an FP
Userlevel 4
I keep monitoring the forums in hope that this nuisance will ever be reoslved but in vain....
 
sigh...
Userlevel 4
The main problem with these FPs, is because they are so many, now when I get a virus I don't know if it's an FP or a REAL virus, I cannot trust Webroot 😞
Userlevel 4
Maybe the team will fix it
BTW:i don't get the false positives
Userlevel 4
Patience is key.

Reply

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept or continue browsing you agree to our cookie policy. Learn more about our cookies.

    Accept cookies Cookie settings