Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,134 Topics
- 3,648 Replies
Deployed several agents in multiple sites. When a threat appears and then goes away (seemingly by itself), how do you know what the disposition of the threat is (e.g. some AV would indicate is it is in quarintine or deleted at least from the agent GUI). If you are managing via GSM, how do you know the disposition? Is there a log that can be retrieved from the agent? By GSM?
I have a client that has a few workstations that live not connected to the internet. We connect them periodically (once a month) to apply updates etc, but they stay disconnected most of the time. They do get files added to them every couple of days via local network or through USB drive. So I would like to make sure they have protection still. Most new AV's use the cloud for scanning and those solutions wont work. Will Webroot work under this scenario for daily scans. We use it on the rest of the workstations but they are all connected to the internet.
I had always been told that webroot was a particularly good product against new viruses and ransomware because of the "learning" system in place. The q3 2016 effitas report doesn't really indicate this though, and there aren't very many other in depth reports like this around. Does webroot have a response to this or upcoming plans to better this field in particular. Any specifics? [url=https://www.mrg-effitas.com/wp-content/uploads/2016/11/MRG-Effitas-360-Assessment-Q3-2016.pdf]https://www.mrg-effitas.com/wp-content/uploads/2016/11/MRG-Effitas-360-Assessment-Q3-2016.pdf[/url]
Hi, I am currently using Webroot secure anywhere. Today suddenly i found one malware on my USB drive, which shows my folders in it as short cuts and becomes inaccessible. I tried scanning it with webroot but didn't detect anything. Now any USB drive plugging to my lap top shows the same problem. Please Help. I plugged the same drive to another PC with Casperesky anti virus, then it reported infections detected and removed. Why Webroot is not detecting anything. I am really feel unsecure with webroot.
If I select an endpoint in the console, I can go to Agent Commands -> Files & Processes -> Consider all items as good. I can also go to the Overrides tab and create overrides for specific programs. Are these equivalent? If I consider all items as good, does it just apply to that single endpoint? is there some way to see what it considered good? I do not see a list or report. I have also noticed that even if I create an Override, or Consider good, the program still shows up in the Endpoints with Undetermined Software report. Is this expected? Is there some way to clean up this report?
Best practices guide recommends using Silent Audit profile on new client machines. It suggests "After using the Silent Audit policy for a day or two, you can create overrides to address unknowns and work with support to correct any false positives you may have encountered." In the "Addressing Unknowns" it appears to be re-active guidance to use the report to see if the program on a host is in the unknown list. And then how to create overrides from the report. Is it possible to use the report pro-actively to create overrides? If not are there other tools that could do this? Is dwell time significant? Given two program with same first seen and same last seen but different dwell times, does it suggest one is monitored more frequently? Does it indicate how long the file was in a monitoring state (i.e. a long dwell time suggesting program is alway active and a shorter dwell time suggesting how long the last monitoring event ran)? Thanks, Greg
Can I get a clearer understanding of setting exceptions that aren't Md5? Setting the Path Mask: Is this format correct when trying to set an exception for an entire file? %ProgramFiles(x86)%Open Dental In this case I want to set an exception for the Open Dental program.
On Monday we rolled out the new Web Threat Shield feature that was announced as part of the release on November 16th. There have been a few questions regarding this feature, and we are working with our product and support teams to get these questions answered. In the meantime, you can [url=https://community.webroot.com/t5/Announcements/Product-Update-Bulletin-28-0-16th-November-2016/m-p/275854]review the release notes here[/url], and we will post an update here as soon as we have more information. Thank you for your patience!
I removed Webroot from my computer 3 months ago because Windows 10 was crashing with the “DRIVER_IRQL_NOT LESS OR EQUAL (kbdclass.sys)” error message. I had to reinstall the OS 3 times. According to my web research the problem is a conflict between Webroot and the Microsoft wireless keyboard driver. As soon as I removed Webroot the crashes stopped. Has this problem been fixed in Webroot so it is safe for me to start using it again? I am afraid to try it because I don’t want to have to reload all the software and files on my computer again.
After uninstalling SecureAnywhere v220.127.116.11 (Windows 10) both ethernet and wireless connections become unidentified. If I restore point back to when Webroot was still on, network works fine. Remove Webroot and reboot, networks go unidentified again. SFC = no integrity problems. Removed NIC drivers and reloaded, nope. Any thoughts? Been working on this for two days now.
Already have an account? Login
Login to the community
No account yet? Create an account