Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,137 Topics
- 3,618 Replies
Webroot for business Web shield
Dear, In the console of webroot for business there is an option to activate the web shield. Can somebody explain me how this is working? Will there be an addon installed in the browser? Is there any check on a search or website you try to access? thank you!
How do you whitelist a compiler exe file ? It seems that Webroot is erasing my compiler created EXE
When I compile a new program Webroot is preventing the new EXE file from being written to my local C: drive. Also when I copy an EXE file from my network to my local drive, the file will not copy. When I close Webroot down, I can do the above without a problem. Our IT company can't seem to find a solution. Thanks, Bill Eyring
Can somebody audit our GSM?
Hi, Who do I contact within Webroot in order for them to take a look at our GSM policies etc.. to ensure that they are in good order? As part of our companies internal auditing this summer, we have to provide a clean bill of health or recommendations on what we need to do to improve our security policies, and Webroot is on that list. Thanks John
Primary Browser Doesn't Work
Looking through the updates to the GSM this morning and I noticed that the Primary Browser report has basically no clue what browser is the primary one on my endpoints. All, but two of my endpoints are using IE as their primary browser based on the report. I know this to be incorrect because I set the primary browser to Firefox on almost all my endpoints. There's one that requires IE as the primary, but this is due to a software on it and it's a server that only I use. I even have Firefox installed on it and use it for anything other than that software and it can't be set as the primary due to the software. OS doesn't appear to matter. I've got Windows XP through Windows 10 desktops and Windows Server 2003 through Windows Server 2012 R2 servers. The reporting is reading incorrectly on all these OSs. Apparently there is a bug in the software that is misreading this information from the endpoints. Just thought you might want to fix the issue.
Can't access the intranet after Install
Hi, I've installed Webroot on over 20 of our clients in the office and everything works except for 2 users. their internet connection will only work if I place them in "silent audit". How can I get them to work on the default policy. What is the default policy interfering with? we've looked at poroxy settings, firewall settings etc and nothing has come up. Thx
MODERATE RISK ICON
Hello, My client and I are concerned about the MODERATE RISK ICON(s) next his site in search engine results. Besides being a fairly new site what are reasons behind it and what can we do to upgrade his status to TRUSTWORTHY? URL: saratogaproxy.com Thanks in advance Karl Bischoff
Anyone Know What's Going on With this C:Program file?
So I guess we've seen this file before right? [url=https://community.webroot.com/t5/Endpoint-Protection-and-GSM/File-named-C-Program/m-p/77475#M3612]https://community.webroot.com/t5/Endpoint-Protection-and-GSM/File-named-C-Program/m-p/77475#M3612[/url] But I've seen it again on another system now, and when I called support I couldn't seem to get a straight answer as to what's calling it. Best theory I got so far was perhaps an update rollout is doing a reinstall which might cause it, since it does seem to happen on install. I'm just trying to decide how concerned I should or should not be. Thanks,
Infection Alert - missing important info
Here's an example of an infection alert we receive: An endpoint has recently detected an infection: Site Name: ABC Hostname: ABC-RDS Group Name: Desktops Policy Name: ABC Desktops Keycode: XXXXXXXXXXXXXXXXXXXXX Infection List: INSTALL.EXE, Adware.Installcore, %cache%, [url=http://snup.webrootcloudav.com/SkyStoreFileUploader/upload.aspx?MD5=5E5D720DCE18612641FEB11E7E8F7AC3]http://snup.webrootcloudav.com/SkyStoreFileUploader/upload.aspx?MD5=5E5D720DCE18612641FE[/url] Here's the problems I have: 1) Alert does not indicate what was done with the infected file (was it quarantined?) 2) Path included (%cache%) is incomplete, i.e. which user profile is this (it's a terminal server) Am I missing something here? This seems like basic stuff that should be included.
Webroot advanced agent commands and registry adjustments
I'm trying to make a registry adjustment on my remote endpoints, and am limited in my options as the majority of our laptops aren't on the same network as I am. I was excited when I found the "Advanced" options under Agent Commands. Three of these looked viable, however I couldn't get any of them to work. [b]Run a DOS command: [/b] reg.exe add "HKLMSOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsgwx.exe" /v Debugger /t REG_SZ /d "C:WindowsSystem32systray.exe" /f [b]Run a registry command:[/b] add "HKLMSOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsgwx.exe" /v Debugger /t REG_SZ /d "C:WindowsSystem32systray.exe" /f[b]Download and run a file:[/b] [list] [*]Have Webroot download and run a BAT file containing the DOS command above.[/list] When the command is run locally on a computer, it works great. Has anyone had any success via any of the methods above?
WRSA.exe in Vista operating system context on 8.1
In Windows 8.1 under Task Manager > Details I see WRSA.exe is running under the Windows Vista "Operating System Context." I'm curious if Webroot staff have any comment on that. I'm not claiming this is an issue since it doesn't seem to be that important based on my research - just curious about their thoughts.
I installed the client on Windows 10 pc. THe install went quicker than normal and now the console will only show an aborted scan and any attempts to make a change to settings results in a subscription expired message. I went to uninstall and the program is not even listed in the list of installed applications.
Research: Enterprise Antivirus Security: How does your solution stack up?
More than 55,000 new malicious software programs are registered [i]each day [/i]by AV-Test an independent antivirus (AV) research institue. Any one of these can have a mild to devastating impact on the organization, randing from wasted IT staff hours to damages to consumer confidence or losses of dollars in the instance of a regulatory violation. In fact, the average organization experiences a malware attack every 73 days, Osterman Research found in a 2011 study, in which 44% of participants said that a single malware attack had cost them as much as $10,000, while another 27% reported financial impacts as high as $50,000. Too few IT decision-makers address malware threats adequately, chalking up security breaches as a cost of doing business, the researchers noted, adding, "The costs [of malware] are typically higher than many organizations realize, but with the right knowledge and technologies, it is possible to reduce the impacts of malware." Canalys Research has likew
As a reseller, where do I see suggested prices to my charge clients for the DWP component only?
As a reseller, where do I see suggested prices to my charge clients for the DWP component only? I am aware different customers will have different needs and require varying -TBD attention to support them (change requests for policy, new installs, whitelisting a domain, adding exceptions, requesting usage reports, etc., etc.). Still these questions must be asked by all resellers and some average range of charges must be known out there as "standard". I don't want my customers to feel like they are being gouged but I need to make $ as well. I could market bullet points what I offer that others perhaps do or perhaps don't and charge them accordingly 1x to 2x what the going rate is for less services. But I do not kn ow what x is.without contacting resellers and asking them and since they might see me as a competitor, they may not reveal this nor might their website. Thanks
WordPerfect X6 Timed Backup Access Denied error
I have a client who we just switched to Webroot. Since the switch, the users are all getting Timed Backup: Access Denied errors every few minutes. I ran an Undetermined Software report for the site but nothing related to WordPerfect showed up in the report. Online research seems to indicate an issue with Webroot and WordPerfect X6 and X7. Is there a way to determine what is causing the conflict and/or a way to remedy the situation?
79 percent of sysadmins want to quit
[url=http://www.reddit.com/r/sysadmin/comments/24mruf/79_percent_of_it_administrators_want_to_quit_due/]http://www.reddit.com/r/sysadmin/comments/24mruf/79_percent_of_it_administrators_want_to_quit_due/[/url] Does that match with your experience? Are you in the 79 percent?
Registry-infecting reboot-resisting malware has NO FILES
The Register has an article this morning about a new form of malware that maintains infection on machines and steals data without installing files. The malware is persistant through even after reboot. The malware resides in the computer registry only, yet isn't visible using RegEdit. Anyway, is webroot aware of this new malware and can webroot protect against it? The Register's article is here: [url=http://www.theregister.co.uk/2014/08/04/registryinfecting_rebootresisting_malware_has_no_files/]http://www.theregister.co.uk/2014/08/04/registryinfecting_rebootresisting_malware_has_no_files/[/url] Gdata Security Blog on it: [url=https://blog.gdatasoftware.com/blog/article/poweliks-the-persistent-malware-without-a-file.html]https://blog.gdatasoftware.com/blog/article/poweliks-the-persistent-malware-without-a-file.html[/url]
We just got our first client that has more than 1 or 2 Macs. We put SecureAnywhere on 14 of them, and since then, multiple Mac users report that their Outlook freezes several times a day, and they have to force quit and reboot their machine. Some of these users have very large mailboxes in 365. The user who called it in her mailbox is 49 Gig. I figured that it might be hanging when webroot is scanning the offline cache file, so I went to create an Override for the path ~/Library/Group Containers/UBF8T346G9.Office/Outlook/Outlook 15 Profiles, but when I click Path/File to install the Overide, it says endpoints must be running version 9.0.1 or higher. The Mac agents that I just downloaded 2 weeks ago are version 188.8.131.52. So #1, is there any wasy for me to exclude the Outlook cache folder on a Mac, or #2, is there any other known issue that I did not find with a search that might be going on here? Thanks ahead, Lon
Two computers - Webroot blocking differently
Two computers on my network, on one Webroot blocks a certain website page due to indicated detection of malicious content, on the other machine Webroot does not block this same page. Why would this be? They are identical Windows 7 machines and both show in good standing on my Webroot Group Management screen.
Agent not on latest version PLUS not showing in console
Refresh configuration is stating the end point is on the latest agent version but when checking the version number it's older than the latest. Additionally, these end point are showing as "not seen" in the console for quite some time.
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.