Showing results for 
Search instead for 
Did you mean: 

Update on Winlogin 4005 & Terminal Servers - November 22, 2016

Community Guide

Re: Update on Winlogin 4005 & Terminal Servers - November 22, 2016

We previously had an RDS server with the 4005 error, which we moved to Silent Audit mode as a result of the problem.  After installing, I moved the system back to our normal server policy.  So far no issues.


I have since updated all client RDS servers with this version and am monitoring further.

We are SysAdmins.
We walk in the wiring closets no others will enter.
We stand on the bridge, and no malware may pass.
We engage in tech support, we do not retreat.
We live for the LAN. We die for the LAN.


Re: Update on Winlogin 4005 & Terminal Servers - 13th September 2017



Working closely with our customers, Webroot has identified an issue that manifests itself in the form of existing Terminal Server sessions becoming un-responsive with users no longer being able to log in. The affected Terminal Servers have required restarting in order for normal service to be resumed. For customers who have experienced this, an update to WSA is available now and Webroot support will provide assistance as required. The fix will also be rolled into the next general release of WSA which is forecast to be automatically deployed in October. Forthcoming product bulletins will advise of the exact date.


Before applying the agent build we have created to address this issue, please ensure that you have applied the below Microsoft patches. These patches were designed specifically to address 4005 errors/RDS connection issues.


Before installing the following agent build please ensure that you have removed the agent currently installed and ensure that C:\Program Data\WRData has been removed (if not please delete this folder:

Please ensure that you reboot the server after applying the above update. If you experience any further issues, please update your support ticket and the escalation team will get back to you promptly.


Thank you for your patience whilst we have investigated and developed the update. It is deeply appreciated by us all at Webroot.




Webroot Global Escalation Team”