When the antivirus detects malicous processes, which it suggests to put in quarantine but fails to do so, Defense+ could step in and kill the process. Thereafter the antivirus could easily put the malicious file(s) in quarantine.
Do we still see users who are getting significant false positives is really the question? I Haven’t been following the results. Generic signatures and class matches can really affect this problem. Still seems OK if it is easy to unquarantine and mark as safe and not get caught in a loop.
I just had a thought against this: FP. If the suspected file is Falsely labeled as viral/malicious, and it is an important file, having D+ kill it then allowing the AV to quarantine it could disrupt and destabalize a system.
Not a good thing.
I recant my vote and change it to Nay (for the time being).
I never allow the AV to automatically quarantine anything due to FP’s (this is true with any on-demand AV I have installed also).
Detect it, show me, allow me to decide if I want it quarantined/killed.