Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,129 Topics
- 3,624 Replies
Find Current User Who Triggered Alert logged into RDP Server
Hey All, I have a client that has WSA installed on all their endpoints as well as their server. There are roughly 10-20 simultaneous logged in users to the RDP server at any given time and we have gotten alerts that there was action taken against malware being executed on the server. I have the alert setup to display the current user, but when they are logged into the RDP session, the alert comes through but doesn't show the logged in user in the alert email. Is there a way to tell in the GSM or tweak the alert to show who is logged into the RDP server and triggered the malware alert? Thanks John Nerds On Site
Can Webroot replaced Symantec Anti Virus PLUS Malwarebytes?
We are using Symantec Endpoint Protection and Malwarebytes in our computer. we have about 300 computers and servers total. At first we only have Symantec. Then we got hit by Ransomware so we got Malwarebytes which proven really effective with eliminating malwares. Malwarebytes support told us to keep Symantec as Symantec can clean infected files while malwarebytes will delete the infected files. Can anyone tell me if Webroot has features that Symantec and malwarebytes both offer?
SecureWeb - Can't post images to Sharepoint
Using SecureWeb Browser, on an Android 4.2.2 tablet. On my Sharepoint site, I wish to post an image from my tablet. There is a Camera icon that should prompt me to pick an application to use to find the photo. This works in Chrome and in Android's default browser, but not SecureWeb. Therefore, I am unable to post images to my Sharepoint site will using your product. Thoughts? Thanks, Schmev
Recommendation for Global Default Overrides for MSP
Hi, what is recommended best settings for global default overrides for msp? We have 50+ separate SMB sites, and a lot of them have unique applications that are not in the Global database so we find there are alot of overrides / good to be made for each account. Should we bother to seperate these overrides out and apply to the individual site policy, or simply take all the programs that we know are good and simply add them to the global "good" overrides. Thank you!
Issue where webroot stops a Microsoft surface from going into standby/hibernation
Hello, I currently have a few surface users who are currently experincing low to no battery after the install of webroot. At the end of the day they hit the standby button putting the surface to sleep and come in the next day expecting battery life to find there is none. I have done the normal check of the policy to see if its set to not allow scans under battery power and I have also checked to see if theres anything else on the policy settings that could affect it. Has anyone had the same issue or perhaps could point me in the right direction to help out these users. Thanks you for your time. Steve
MAC - Installation Alert email stuck in infinite loop and clients not shown in web console
I switched to Webroot about two months ago and have been pushing it out to through GPO to all our Windows clients. I set up an Installation Alert to be sent to me so I knew which clients had Webroot installed so I could uninstall our previous AV (Panda). This workes like a charm and the migration has gone smoothly. Now for about ten ago I noticed the mac install .dmg and had it installed on our MAC clients. The installation ran as expected on all MACs but two... The Installation Alert email for MAC client #1 are sent to me repeatedly - like one to two times every hour (since installation five days ago), but the client doesn't show up in the web console. Looking at the client everything looks legit and for what I can tell is doing it's job. The Installation Alert email for MAC clinet #2 has been sent to about 10 times in the last five days, but the email doesn't include all the information it should but just two lines (and the client doesn't show up in the web conso
Trojans Found on PC... Java/Blacole.KB & Java/Maljava.EW... Are they Valid Trojans?
Hello Experts, These two Trojans were found on a pc during a scan from another software provider, results were Infected, Signature, Trojan, but was not able to cure either of them. Ran another scan using WebRoot software and no threats were found. Are these Trojans a valid threat? If so, how are they to be cured? Thanks, Dee
Undetermined Software does this get added to the "Global Pool"
Hi all This is my first question to the forum. When you "Generate a Alll Undetermined Software Report" Then select "Files" and apply "Good" to a policy. For example for Windows 10 (which comes up as Undetermined). By doing the above process does this get sent to webroot? I would think that if "X" people running webroot all say that this file is "Good" than it would automatically be moved out of the applied "Good" exception group to be applied to good "Gobal Pool". Or is my thinking just a pie dream and no such process exists. If so how do webroot get to find out about new files, as this I would see as fairly critical to the system. Thanks Mark.
Ticketmaster and similar sites blocked.
We use the WSS on our small Windows based network. While it does a good job, there are sites that apparenly dont allow our proxy based connection to their servers. We have noticed this on Craigslist, Ticketmaster and others. Are there any work arounds short of using another service or a hard wired device? Thanks
Cybercriminals use sophisticated PowerShell-based malware
Any update on this would the AV can penetrate and destroy on or while this is running on a machine. [url=http://www.computerworld.com.au/article/542449/cybercriminals_use_sophisticated_powershell-based_malware/?utm_medium=newsletter&eid=-6787&utm_source=computerworld-today-pm-edition]http://www.computerworld.com.au/article/542449/cybercriminals_use_sophisticated_powershell-based_malware/?utm_medium=newsletter&eid=-6787&utm_source=computerworld-today-pm-edition[/url]
MD5 for Web Shield
Hi everyone, I just checked something out. The Webroot was blocking website so I was wondering how to unblock it without turning off the Web Shielding. I used a MD5 calculator to recalculate the full domain and I created override marked as "good" and guess what - it started working... Is that possible? I veryfied that with other dangerous addresses and it works fine too. Thanks
New licensing model for PDQ Deploy
They're simplifying their licensing: [list] [*][b]Free [/b] [*][b]Pro[/b] - $250 per administrator/year (req's key) The [b]Pro level will include[/b] the Basic subscription. [*][b]Enterprise[/b] - $500 per administrator/year (req's key + activation) The [b]Enterprise level will include[/b] what was formerly known as the Advanced subscription. The Enterprise level [b]also introduces multi-user support [/b]for Deploy and Inventory (starting in 3.1 versions). This is a commonly requested feature for our customers who have more than a single admin.[/list]More details [url=http://www.adminarsenal.com/pdq-licensing/]here[/url]. Anyone a current PDQ users? They seem to make a pretty good product.
I need a security solution for a server and 15 end users
Hello, I need to purchase and install antivirus for a client's office network, consisting of : [list] [*]one server on Windows Svr Std 2012 R3 [*]15 laptops and desktops on Windows 8.1[/list]I was thinking of getting 15 Webroot SecureAnywhere User Protection and one Webroot SecureAnywhere Web Security Service, but I'm not sure the Web Security Service is the right product. Is it compatible with the server operating system? If I put this security product on the server, are the end user devices still in need of individual protection? Thanks a lot!
couple of issues/questions
So I get an email with the following: Please find below a summary of endpoints encountering threats recently: DRFD-LT-1521, DRFD, BNP, *Don't ever post your keycode in public - admin* This is not giving me much info, so I decide to go to the console and pull up this machine. So on the console, the machine (DRFD-LT-1521) says Thread Detected under status, and I click "view". Once the new view window pops up there is nothing in there. What does this mean? Can the threat email I get have more information in it? Why is it so vague? Is there a way to know what items the system has already dealt with or not? If the issue was resolved why is it still showing on the console a threat? Thanks for your assistance on these questions. Rich
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.