There must be an option so that CCE will not auto-delete suspected/ malicious files. It can just give the report after the scan and then user can decide what to be deleted, what to be quarantined and what to be left alone.
II tried it on one of my laptops and it instantly deleted the audio driver thinking of it as malware. No way to stop this or even get this back. Too bad.
Hi aigle,
Sure, you are right
Well I am one of those who tested products like and CCE, CTM, & CIS. I was never too vocal about either of those… just few comments
CCE & CTM are dead for me forever
But there were several discussion about CIS and similar strategy by its AV.
Definitely there must be options for just reporting/alerting instead of auto-quarantining/auto-deleting
But at the moment that is going nowhere, unfortunately, because of “popular demands” … meaning “less alerts”
Hundreds of wishes about making alerts more understandable were simply ignored
Users had accidents like this in the past, now you experienced “it” & users will have much more & more dangerous than just audio driver being deleted ( I don’t mean to neglect your current problem by saying that … I hope you got it right)
TVL/digital signatures/whitelisting is not reliable technology at all at least nowadays (not going into details & OffTopic here. That matter was discussed starting years ago )
So again, probably the developers will change their mind and give us a choice
By “us” I mean two categories of users thinking:
Cheers!