Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,128 Topics
- 3,621 Replies
Endpoint Protection Agent 22.214.171.124 - what has changed?
Hi all, Currently we run the Webroot SecureAnywhere Business Endpoint Protection agent in version 126.96.36.199 on some workstations and 188.8.131.52 previously (most of the workstations are Windows 10). We also run an asset management cloud software (called Samanage) with a client agent on each workstation. The workstations with 184.108.40.206 Webroot agent get recognised by Samanage but the workstations that run 220.127.116.11 don't. Does anybody know if the name of the Webroot agent changed somehow to cause this and if so where it is saved?
No reg key needed for Microsofts Meltdown and Spectre updates
Folks, To quote Microsoft [i]"Based on our analysis of available data, we are now lifting the AV compatibility check for the March Windows security updates for supported Windows 10 devices via Windows Update."[/i] More information is here:- [url=https://blogs.windows.com/windowsexperience/2018/03/13/march-2018-windows-security-update-expanding-our-efforts-to-protect-customers/#0h3TXP1qbqUMkot0.97]March 2018 Updates[/url] We are looking to remove the reg key setting feature of WSA and will notify you when that will be happening. Regards, Jonathan Senior PM WSA for Business Microsoft Meltdown and Spectre updates [u]Information from MSFT for I.T pros[/u] [url=https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in]https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in[/
FYI: Management console issiue
Partial Outage Webroot Management ConsolesIdentified - The issue has been identified and a fix is being implemented.Feb 24, 09:03 UTCInvestigating - Webroot Management Consoles is currently experiencing a partial outage. We are investigating the issue and working on a speedy resolution. Thank you for your patience.Feb 24, 08:37 UTC
I have tried everything to remove Webroot SecureAnywhere from one of our servers w/o luck.
I have sent numerous uninstall commands, waited 10 minutes and rebooted the server. No Dice. I have tried to uninstall the program from Program and Features however receive a message that I cannot do this as Webroot is cloud managed and the uninstall must come from the web portal. So...No Dice. I have tried to uninstall it from the command prompt but it will not uninstall from there as I run into the same message as when trying to remove it from Programs and Features. So...NO DICE. I have sent the deactivate command and rebooted the server which did not uninstall the program as I understood that it would. SO...NO DICE! I have tried disabling the WRSA service and trying these again, all without success. Very frustrated!! There has to be a way to uninstall the program!!
Can't boot in safe mode to run a virus scan.
On bootup getting the following message. Can't even boot in safe mode. I was hoping to boot in safe mode to run a virus scan. C:Windowssystem32dwmapi.dll is either not designed to run on Windows or it contains an eroor. Try installing the program again using the original installation media or contact your system administrator or the sofware vendor for support. Then I press OK and it just cycles over again.
Reset Stat Counter For Local Agent
I've got a support request for this one, but I figured I'd ask this anyway just in case someone else knows the answer, if not I should hopefully have the answer and will post it here for posterity. -------------------------------------------------- We're unable to reset the counter on the local agent as we use the secure anywhere portal and it won't allow us to make that change on the agent, but I also see no reset statistics option in the secure anywhere portal? Basically we want to avoid a scenario where the users overreact over recently found threats as they've all been eliminated. Thanks
Can malicious software uninstall Webroot?
I started getting pop-ups on my browser (Chrome for PC). I looked in the system tray, and the Webroot icon was there. That's curious, I thought. So I clicked on the Webroot icon. It vanished! That's weird, I thought. So I used Explorer to go restart Webroot, and the whole Webroot folder was missing from c:program files and c:program files (x86). Weird. So I visited the GSM console, and found that my endpoint had been deactivated. Oh oh... So I ran a few different malicious software removal programs. Hitman Pro found and deleted a Chrome extension and deleted it. I reinstalled Webroot, and the icon came back.
New Business Solution Agreement
Sorry, but I don't have time to pour over the new agreement. I'm afraid to click off on it and be possibly be bitten later. It would be nice if someone could post the differences between the new and previous agreements. Until then, I am unable to administer my endpoints and I need to badly. There seems to be some malware hijacking yahoo accounts on some of them.
New. A page came up and froze computer. I am a novice and dont know what to do. HELP PLEASE !
Verry new user. NEED HELP A page came on my computer and said FBI has locked your computer. No phone numbers only a message that said i could of violated some laws. And i have to pay a fine of 300.00 to unlock. but it had to be a credit card from green dot its like a.gift credit card. and i had to do it within 12 hours or i will be possibly in trouble. CAN someone tell me if it sounds like it a SCAM. And what i should do. FYI: Webroot seemed to clear it up and unlock computer.
SecureAnywhere Endpoint Protection crashing issues
We had a virus make its rounds to a couple of our PC's in our network and Webroot saw it and cleaned it up but i'm having lingering issues with the Webroot program afterwards, it is crashing and won't run and the service is stuck in the "Starting" mode and will not actually start. This has caused one of the PC's to not talk back with the console so it won't take the uninstall command i have coming to it. Others have either needed a reboot or a restart of the application or even just a scan to be sent to it and it fixes itself but i have one lingering PC that just won't talk back to my console. The Virus was: [i]MICROSOFT.VBE.INTEROP.FORMS.DLL[/i]%assembly%60.0 KBMalware.Script.GenNov 27th 2015, 10:57Nov 27th 2015, 10:570 sec Any ideas on what i can do to get this PC to get it back up and working?
Can I password protect access to Advanced Settings in Webroot SecureAnywhere on an endpoint?
We'd like to be able to have the webroot accessible on the endpoint from the system tray so that the user can do things like "Scan Now". But if the user brings up the application, we don't want them to access "Advanced Settings". Can we password protect "Advanced Settings"?
Exclaimer Signature Manager software and Webroot
Good morning - We have an issue with Webroot and Exclaimer Signature Manager software. We use this software to manage email signatures and throughout the day, users will report that their signature just disappeared (no signature appears when composing a new email or replying to an email) and then after a non specific amount of time the sig will reappear or sometimes the user can log off and log back on to get the signature back, but this is extremely inconvenient. This happens at random times to random users throughout the day, there is no pattern either concerning the user(s) affected (with the exception of 1), the time of the day it disappears, the time it takes to reappear or the amount of times this happens per day. When I remove Webroot from the machine the issue disappears (tested over a 3 day period to a known user who is affected everyday and the signature never disappeared over those 3 days). I've added an exclusion to Webroot to avoid scanning the following folder and
What happens if somebody @ Webroot goes rogue?
This was an interesting question put to me by a client who was a bit weary of onboarding to a cloud based solution with Machine Learning etc... He asked me this and I will post to you: What would happen if an employee of Webroot or an account admin was compromised, or went rogue and changed the rules so that every system was essentially unusable? Thanks John
How do I see and manage Web Threats for my users via the console?
Is it possible using the console to see and manage Web Threat websites that have been flagged when my users try to access them? Currently I have supression turned on so that my users cannot allow sites themselves when prompted by WebRoot. I am having to turn it off, access the site, allow it, then turn supression back on. It's not an ideal process. I've been unable to find anywhere within policies, groups, settings so far to manage website access. I've also noted that wehn I do allow a site, not entry is placed in the overrides area which is where I would have expected to find it. Perhaps I'm missing something? Thanks in advance.
Infection Alert - missing important info
Here's an example of an infection alert we receive: An endpoint has recently detected an infection: Site Name: ABC Hostname: ABC-RDS Group Name: Desktops Policy Name: ABC Desktops Keycode: XXXXXXXXXXXXXXXXXXXXX Infection List: INSTALL.EXE, Adware.Installcore, %cache%, [url=http://snup.webrootcloudav.com/SkyStoreFileUploader/upload.aspx?MD5=5E5D720DCE18612641FEB11E7E8F7AC3]http://snup.webrootcloudav.com/SkyStoreFileUploader/upload.aspx?MD5=5E5D720DCE18612641FE[/url] Here's the problems I have: 1) Alert does not indicate what was done with the infected file (was it quarantined?) 2) Path included (%cache%) is incomplete, i.e. which user profile is this (it's a terminal server) Am I missing something here? This seems like basic stuff that should be included.
Gartner's Top 10 IT Security Myths
As some of you may know, this year's [url=http://community.webroot.com/t5/Events-Conferences/Gartner-Security-amp-Risk-Management-Summit-2013/m-p/43930#.UbjwotjV2L0]Gartner Security & Risk Management Summit[/url] is going on right now in Washington D.C. Yesterday, a Gartner analyst revealed a top 10 list of IT Security 'misperceptions' or myths as well as what they believe is the cure for all 10. (Networkworld posted the full article [url=http://bit.ly/11A3g3o]here[/url].) They are as follows: 1. It won't happen to me. 2. Infosec budgets are 10% of IT spend. 3. Security risks can be quantified. 4. We have physical security (or SSL) so we know your data is safe. 5. Password expiration and complexity reduces risk. 6. Moving the CISO outside of IT will automatically ensure good security. 7. Adhering to security practices is the CISO's problem. 8. Buy this 'tool' and it will solve all of your problems. 9. Let's get
Allow user configuration within policies under WSA
Do I have the ability within my MSP WSA console, to assign the ability to make changes to the endpoint user interface? In other words, I've allowed the endpoint GUI in a specific policy but when the end user opens the GUI, they cannot make any changes. I get the attached message below.[img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/25333i202C40B013AD4B41.png[/img]
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.