fidmas, tried downloading webmon from Download.com and it poped a filerep alert. however, i do see that it is not a very popular software from the website (only 15 downloads last week at the time of viewing, total downloads only 11000 plus) thus the reason for trigger? *need confirmation.
Actuall Webmon is one that avast never complained about. My little program "RunWebmon.exe" gets started at bootup, and delays the running of Webmon a couple minutes. it's my RunWebmon that avast bitched about.
dun agree that Avast! should not sandbox programmes already on the pc as many users download software/cracked stuff that maybe malicious but they have no idea that it is as it seems to work as they want it to (eg. perhaps a photo viewer programme could be modified in a way that upon execution, it runs the viewer but also runs a malicious script in the background)
I can understand that point of view. However, if he's been running this malicious thing for years, it has already done its damage. It really becomes the user's responsibility. I actually have not that much gripe with avast warning you of a program on Heuristics grounds and offering to run it sandboxed. But, not just sandboxing anything it doesn't know about! The REAL problem is avast sandboxing "Startup" programs and preventing the system from coming up! In my case, I couldn't even bring it down afterward. :-(
perhaps u could try turning off the autosandbox 1st then add all programmes that u think are unpopular with normal users to exclusion before turning it on?
if u think they are popular, maybe u want to report it as a bug report? so that Avast! can improve the filerep feature
Yeah, I tried just that. One big problem is that avast can be perfectly happy with some program one time and then bitch about it another. Actually, if you stop it and run it again, it may not get caught the next time. Avast doesn't understand that they can't whitlist every perficly good program/utility written for Windows. If they challenge every program people run, people will just start to get used to ignoring the warning, and whitelist everything.
For me, I'd rather sandbox everything new, that's at all questionable. Then look in the sandbox to see what damage it's trying to do, if it's not obious, It's actually fun watching Malware running things and creating registry keys and installing files, in the Sandboxie sandbox. Of course, as with any sandbox, you have to realize that
while it's running, it may have access to "read" information from your real persomal files.
just inputing my thoughts here
Thanks. I guess it's a matter of choice. I never really cared that much untill V7 stopped my system from booting.
Just "my" thoughts. :-p