Author Topic: Behavior Shield Advanced Threat Protection  (Read 4118 times)

0 Members and 1 Guest are viewing this topic.

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9243
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #15 on: January 13, 2019, 09:12:15 AM »
MartinZ told it uses 3rd party service to find phony processes.

Wouldn't hurt if they explained what 3rd party services and in what way. Till now CommunityIQ was required for advanced protection so I naturally only used that and had everything else off. Which disabled this new feature and I didn't even know about it.
Referred to MartinZ. Let's see if that gets us a reply.

I can't see the point of having an in-line context menu Help function if this isn't described. 

OH, OH, seems that they have already got rid of the old very useful context sensitive help (the ? icon within sections), which is even worse.

I even tried the old F1 key for help but this is just generic, the path that Avast seem to be going down is bad, things being dumbed down, removal of some functionality and configuration being less flexible.

I disagree actually. Tons of settings were unnecessary before and way to extensive for no logical reason. New ones are much better quite frankly.

I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
Visit my webpage RejZoR's Flock of Sheep

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 59841
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Behavior Shield Advanced Threat Protection
« Reply #16 on: January 13, 2019, 09:47:10 AM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862
Windows 8.1 [x64] - Avast Premier 19.6.2383.BC - CC 5.59 - EEK - Firefox ESR 60.8 [NS/AOS/uBO] - TB 60.8 [EM] - ACP/ASB/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9243
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #17 on: January 13, 2019, 04:11:13 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...
Visit my webpage RejZoR's Flock of Sheep

Offline igor

  • Avast team
  • Serious Graphoman
  • *
  • Posts: 11667
    • AVAST Software
Re: Behavior Shield Advanced Threat Protection
« Reply #18 on: January 13, 2019, 05:01:42 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...

Can you elaborate a bit? I always thought the difference between moderate and aggressive was basically just the threshold (how popular the executable is)...
I'm not 100% sure about hash whitelisting, but I would guess it's the same... and I'm rather sure the digital-signature whitelisting is the same.

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5864
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #19 on: January 13, 2019, 06:16:35 PM »
Can someone address the question/s in the OP's original/first post.  :)
***HP ENVY 15K LT W10 Pro 1903 64Bit/750GB HD/16GB Ram/Avast Premier 19.6.2383 /VS 5.01/ASB/Mbam/Secureline b 5.4/SANDBOXIE/Prey Project
**HP Compaq 8510p LT W10 Pro 1903 64Bit/1TB HD/8GB Ram/Avast Premier BETA 19.6.2383 /VS 5.01/ASB beta/Secureline b 5.4/SANDBOXIE/Prey Project 
     
*Dell Inspiron XPsp4 PRO 32Bit/Avast(since 2000)18.8.2356/OSA/WP/Comodo FW 3.14/Secureline/Comodo IceDragon v.40
<LAYERED SECURITY SOFTWARE PROTECTION

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40977
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #20 on: January 13, 2019, 07:37:31 PM »
Can someone address the question/s in the OP's original/first post.  :)
I'm waiting for a reply in the developers forum which isn't likely to happen till Mon at the earliest.
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.5.2378, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5864
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #21 on: January 13, 2019, 10:04:23 PM »
Can someone address the question/s in the OP's original/first post.  :)
I'm waiting for a reply in the developers forum which isn't likely to happen till Mon at the earliest.

+1  Yes :)
***HP ENVY 15K LT W10 Pro 1903 64Bit/750GB HD/16GB Ram/Avast Premier 19.6.2383 /VS 5.01/ASB/Mbam/Secureline b 5.4/SANDBOXIE/Prey Project
**HP Compaq 8510p LT W10 Pro 1903 64Bit/1TB HD/8GB Ram/Avast Premier BETA 19.6.2383 /VS 5.01/ASB beta/Secureline b 5.4/SANDBOXIE/Prey Project 
     
*Dell Inspiron XPsp4 PRO 32Bit/Avast(since 2000)18.8.2356/OSA/WP/Comodo FW 3.14/Secureline/Comodo IceDragon v.40
<LAYERED SECURITY SOFTWARE PROTECTION

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9243
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #22 on: January 13, 2019, 10:40:12 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...

Can you elaborate a bit? I always thought the difference between moderate and aggressive was basically just the threshold (how popular the executable is)...
I'm not 100% sure about hash whitelisting, but I would guess it's the same... and I'm rather sure the digital-signature whitelisting is the same.

Hardened Mode in Moderate triggered even on legit apps just because they "behaved" suspiciously. Flipping it to Aggressive all of a sudden allowed them to run those, but blocked all that weren't whitelisted. It was actually much more bearable mode to live with thanks to whitelisting and also more secure at the same time because it blocked everything that wasn't whitelisted.

Or you guys just had Moderate mode entirely broken and wasn't even using whitelist for Moderate mode even though it should have. So, I really don't know how you have it set up now without the Moderate/Aggressive modes as selection.

I'd also appreciate the explanation of the new Advanced Threat detection feature that requires sharing with 3rd parties... We don't know what it shares and who are said 3rd parties...
Visit my webpage RejZoR's Flock of Sheep

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40977
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #23 on: January 13, 2019, 10:50:50 PM »
@RejZoR,
Already asked for an answer in the Developers Forum. Hopefully we'll get a reply on Monday. :)
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.5.2378, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1871
Re: Behavior Shield Advanced Threat Protection
« Reply #24 on: January 15, 2019, 09:41:33 AM »
@RejZoR,
Already asked for an answer in the Developers Forum. Hopefully we'll get a reply on Monday. :)
Any update?
PC- Windows10 EDU 64Bit,Avast Free V.19.6.2383,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40977
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #25 on: January 15, 2019, 11:36:45 AM »
Nothing yet. I've posted that the Forum troops are getting restless. :)
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.5.2378, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline MartinZ

  • Moderator
  • Advanced Poster
  • *
  • Posts: 1000
  • Product Manager
Re: Behavior Shield Advanced Threat Protection
« Reply #26 on: January 15, 2019, 12:20:43 PM »
We are testing cooperation with Morphisec. Currently in beta only.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40977
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #27 on: January 15, 2019, 12:28:27 PM »
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.5.2378, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5864
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #28 on: January 16, 2019, 05:37:49 PM »
I'd prefer to have an explanation on how this whole process works both within the UI and the 3rd. party sharing and how it all affects the "Advanced Threat Protection"
I am confused and don't see the answer. :-\
***HP ENVY 15K LT W10 Pro 1903 64Bit/750GB HD/16GB Ram/Avast Premier 19.6.2383 /VS 5.01/ASB/Mbam/Secureline b 5.4/SANDBOXIE/Prey Project
**HP Compaq 8510p LT W10 Pro 1903 64Bit/1TB HD/8GB Ram/Avast Premier BETA 19.6.2383 /VS 5.01/ASB beta/Secureline b 5.4/SANDBOXIE/Prey Project 
     
*Dell Inspiron XPsp4 PRO 32Bit/Avast(since 2000)18.8.2356/OSA/WP/Comodo FW 3.14/Secureline/Comodo IceDragon v.40
<LAYERED SECURITY SOFTWARE PROTECTION

Offline MartinZ

  • Moderator
  • Advanced Poster
  • *
  • Posts: 1000
  • Product Manager
Re: Behavior Shield Advanced Threat Protection
« Reply #29 on: January 16, 2019, 06:24:52 PM »
the connection to UI is that you can check the advanced protection ( in beta) but you can't do that if you have unchecked the privacy setting to share usage data with 3rd parties (in this case Morphisec) if you don't give us consent  we can't sent the data to Morphisec and therefore we can't turn on the feature. Does this explanation help?