why webroot dont find viruses from the first scan and may need another scan to find

Hi TH. The risky, even scary, aspect of this Webroot approach of leaving malware files untouched unless they are executed by the user is that the user may share that file with a friend or family member, or co-worker, who are less well protected or have a different AV software. So the Webroot user is complicit in spreading malware and potentially infecting the PC of the third party. This is the most difficult part I have with the Webroot philisophy and in my view there are two things that could happen that would not impact upon the size of Webroot and that is:
 
a) when an unknown file arrives then scan against the Webroot remote database AND virustotal. Anything suspect get blocked immediately.
 
b) When carrying out a schedule or manual scan of a file, same process of checking with WR and VT.
 
c) When sending a file, same procedure as above.

@ wrote:
@ did you read what Kit said to another skeptic? Read here and down the thread: https://community.webroot.com/t5/Webroot-SecureAnywhere-Antivirus/Scanning-PC-suspiciously-fast/m-p/6636#M215
 
Also it's highly unlikely that a common user would share a malware file so give me a break. I don't collect malware so how would someone get Malware from me?
 
Thanks,
 
Daniel

 
Sorry TH, but in the real world this is what can, and actually does, happen, and I'm speaking from the experience of seeing it happen.
 
For example, a professional or other worker is expecting an invoice or a Fedex parcel in the next hours or day. They may need to leave the office, or they are working on a project off-site but during that time period they receive an email from what appears to be Fedex or their supplier with an attachment, they download it but Webroot does not alert them that it contains a trojan downloader or another malware. They then put the file on Dropbox or Onedrive, still no alert from Webroot. Their remote assistant / accountant / project worker who uses another AV (they do not work for the same company) picks it up at some point and processes it which then unleashes a malware attack on their PC and perhaps other co-workers.
 
Some people may arrogantly exclaim that those people should know better not to open unexpected attachements, but the attachment was fully or partly expected, and those people are in a hell of a rush working hard and don't think about internet security by and large. Some professionals work a 12 hour day or longer and late at night they can make a mistake when otherwise they might notice that something is not quite right with an email or attachment.
 
So this is nothing about collecting malware, this is about real-life business workflows that occur in the real world. Webroot is great software, quite revolutionary, I have it installed on 5 PCs, but in my view, and not just my view alone, there is a key weakness that could easily be addressed without adding bloat and truly make Webroot better.