so much for real-time protection - Windows Defender

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

so much for real-time protection - Windows Defender

Ran an eicar test file to see WD flex its real-time protection muscles. I
was assured that there's an entry in the signatures to cover the eicar code.
There is but...

1.) Nothing in real-time not so much as a peep.
2.) custom scan that included folder location of test file did produce a
rather lackluster alert completely at the end of the custom scan. More of a
results window than a real alert. But at least I was able to Remove the test
file via WD.

I am not impressed at all with WD and am so close to dumping it for way more
reasons than this silly episode. I've had nothing but flaky behavior. Where's
the beef?!

Here are other observations so far:
======================
http://www.microsoft.com/athome/sec...&cr=US&r=5037b5d2-c459-40e9-af92-1616c566e2f7
 
bcool said:
so much for real-time protection - Windows Defender

Ran an eicar test file to see WD flex its real-time protection muscles. I
was assured that there's an entry in the signatures to cover the eicar code.
There is but...

1.) Nothing in real-time not so much as a peep.
2.) custom scan that included folder location of test file did produce a
rather lackluster alert completely at the end of the custom scan. More of a
results window than a real alert. But at least I was able to Remove the test
file via WD.
Click to expand...

Eicar gets mentioned in these newsgroups from time to time and the test
always works. Was WD running with realtime protection enabled when you
downloaded Eicar?

Bob Vanderveen
 
also check your antivirus program to see if it "grabbed" it first
Look in the quarantiine file- some antivirus programs will grab it silently
and just quarantine it- others will come up and scream that it grabbed it.
When i did this test my AVG grabbed it before WD had a chance to
robin
 
Thank you Dave. It does get wearisome advocating doesn't it especially
against flawed conclusions. Sorry to stress you out. This particular issue
has been resolved. Apparently WD does not respond to the MSDos version of
Eicar (eicar.com) in the same manner that it does with the .zip version. My
ire with WD is not related to this incident anyhow. It stems mostly to what
I perceive is inconsistent behavior when I work from my limited user account.
It will take time I suppose to iron these quirks out. Mostly I just want my
alerts to come to my sysray icon and not to the Event Viewer. And when
there's an alert about software, I would like to be able to apply a decision
even if I'm working in my WINXP SP2 Limited user account.
Thanks again.
 
Please see my response to Dave.
This particular issue has been resolved.

I have many more that I'm still troubleshooting.
Thanks.
 
Please see my response to Dave.
This particular issue has been resolved.

I have many more that I'm still troubleshooting.
Thanks.
 
Back
Top