I found out today that certain types of infections detected by Webroot are not reported to the SecureAnywhere console. I found that detected items in the registry are not noted. According to support, this is by design.
In what world is it acceptable to not report detected infections and cleanup? The detection scan and cleanup scan afterwards are both reported in the SecureAnywhere console, but the actual malicious threats found and removed were not.
In this case, there was a malicious run key added to the registry. Webroot found and removed the run key, but wasn't able to detect the process that added the run key in the first place. If the removed key and data was properly logged in the SecureAnywhere console, I would know that an undetected threat may be present on the system, but if this information isn't reported, it makes performing this determination impossible.
Anything that triggers an infection detection status needs to be reported in the console. If not, an unknown threat could be present on the machine, and no one would have any idea until it was too late.