Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,128 Topics
- 3,621 Replies
Getting Started Guide - Webroot Small Business AntiVirus
[img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/32359i98A805D20EC796AC.jpg[/img] Welcome to the Webroot Small Business AntiVirus discussion forum! This forum has been created especially for our small business customers to discuss the Webroot Small Business AntiVirus product, small business cybersecurity tips and tricks, and just small business discussions in general. Please introduce yourself and let us know a little bit about who you are. Also, here are some helpful links to get you started in the Webroot Community: [url=https://community.webroot.com/t5/Small-Business-KB/tkb-p/SmallBusinessKB]SMB KB[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/Community-Guidelines/ta-p/185782]Community Guidelines[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/How-Do-I-Edit-or-Delete-My-Post/ta-p/185763]Editing and Deleting Posts[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/How-Can-I-Keep-Track-
System Optimizer cleaning results
I would like to be able to see the results of System Optimizer on all the PCs. It would be nice if there was a report for that but I don't see one. How do I view how much data System Optimizer cleaned to show my clients how much storage space Webroot is helping them free?
Webroot blocking WMIADAP.EXE.
Hi Guys, Just wanted to know if anyone experienced WR blocking this file. It gave me two minutes to decide and I got some mixed answers while looking online in general so I didn't get to respond whether to allow it or block it. Oddly enough when I looked into the quarantine/block files, it wasn't there. Thanks in advance.
I am posting here because the DNS FIltering forum has a grand total of 2 threads and no activity in several weeks. Does the WebRoot DNS Filtering alter the TCP/IP v4 DNS properties of the client it's installed on? I have seen clients that are unable to access the internet, and on investigation found the TCP/IP v4 settings DNS address set to a local static IP instead of "Auto", so that it receives the DHCP determined DNS IP. Restoring the DHCP DNS setting instantly resolves the issue. The only thing suspect was WebRoot DNS Filtering, as I could see how it might redirect DNS requests of the client to itself in order to filter. And if it needs to do that, that would be fine except that it ain't working, can't surf and can't send / receive email when WebRoot is handling DNS.
Mac High Sierra - Webroot icon disappeared.
It was running normally yesterday, then I turned off computer. This morning, when turning on my Mac, I could see Webroot started (it's also showing in Activities Monitor), but the icon on the top tray disappeared. I tried to run Webroot manually, nothing appears on my screen. GSM is not available either: We are currently hard at work improving Webroot SecureAnywhere, which unfortunately means the SecureAnywhere website is temporarily unavailable. We apologise for any inconvenience this may cause, but promise the site will be back up very soon and running better than ever! Thank you for your patience. Something changed in Webroot, and it affects to my installation?
No reg key needed for Microsofts Meltdown and Spectre updates
Folks, To quote Microsoft [i]"Based on our analysis of available data, we are now lifting the AV compatibility check for the March Windows security updates for supported Windows 10 devices via Windows Update."[/i] More information is here:- [url=https://blogs.windows.com/windowsexperience/2018/03/13/march-2018-windows-security-update-expanding-our-efforts-to-protect-customers/#0h3TXP1qbqUMkot0.97]March 2018 Updates[/url] We are looking to remove the reg key setting feature of WSA and will notify you when that will be happening. Regards, Jonathan Senior PM WSA for Business Microsoft Meltdown and Spectre updates [u]Information from MSFT for I.T pros[/u] [url=https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in]https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in[/
Primary Browser Doesn't Work
Looking through the updates to the GSM this morning and I noticed that the Primary Browser report has basically no clue what browser is the primary one on my endpoints. All, but two of my endpoints are using IE as their primary browser based on the report. I know this to be incorrect because I set the primary browser to Firefox on almost all my endpoints. There's one that requires IE as the primary, but this is due to a software on it and it's a server that only I use. I even have Firefox installed on it and use it for anything other than that software and it can't be set as the primary due to the software. OS doesn't appear to matter. I've got Windows XP through Windows 10 desktops and Windows Server 2003 through Windows Server 2012 R2 servers. The reporting is reading incorrectly on all these OSs. Apparently there is a bug in the software that is misreading this information from the endpoints. Just thought you might want to fix the issue.
Webroot forensics questions
Hi Webroot community! I have a few questions about Webroot forensics. [b]Background[/b] User clicks URL in phising e-mail and manually downloads and runs payload from the resulting landing page. First seen (endpoint) 09:42. A minute, or so, after initialization it had run it's course and encrypted about 10GB worth of data across 3 different servers. The server where the webroot client is installed only had a few hundred megs encrypted - the users profile folder and foxit reader install directory. Most of the files being encrypted was a fileserver and an application server (servers without webroot). At 09:48 the process is determined bad (DD). What is expected behaviour after DD? Remediation/rollback? Does the client only report back to the webroot network at set poll interval or does it treat threats differently? How long should I wait for webroot to do it's thing? Is there a way for me to observe webroot remediation in real time (not indirect
How to install using GPOKnowledge Base
[b]This solution addresses Webroot SecureAnywhere Business – Endpoint Protection[/b] To install SecureAnywhere using GPO, you should have experience with Microsoft’s Active Directory and the GPO editor. You can also watch a video on how to use GPO at [url=https://www.youtube.com/watch?v=raP0jQHyFYE]How to Deploy Using Group Policy - SecureAnywhere Business[/url]. [b]To install SecureAnywhere using GPO:[/b] [list=1] [*]From the following location, download the SecureAnywhere MSI installer to a network share:[url=http://anywhere.webrootcloudav.com/zerol/wsasme.msi]http://anywhere.webrootcloudav.com/zerol/wsasme.msi[/url] Downloading the file makes it accessible to all endpoints on which you will deploy SecureAnywhere. [*]Go to the server that is the domain controller for the deployment group. [*]Open the GPO editor on the domain controller and create a policy for the deployment group. [*]Assign SecureAnywhere to all endpoints that belong to the Organizational Unit where t
Downloading and running the installerKnowledge Base
[b]This solution addresses Webroot SecureAnywhere Business – Endpoint Protection[/b] You can deploy the SecureAnywhere installer file using one of these methods: [list] [*]Install SecureAnywhere on each endpoint. [*]Send emails to end users, so they can install the software by clicking on the link provided in the email template. [*]Rename the executable file using your keycode. This method is useful if you plan to use your own deployment tool and if you prefer not to use MSI commands to run the installation in the background. [*]Use additional commands with the executable file to deploy it in the background. [*]Use command-line options with the installer to deploy to endpoints that are behind a proxy server. [/list][b]To use the SecureAnywhere installer:[/b] 1. On the endpoint, download the SecureAnywhere installer file. The installer file is available from the [b]Resources [/b]tab or by clicking this link: [url=http://anywhere.webrootcloudav.com/zerol
How to submit a ticket to Business SupportKnowledge Base
[b]This solution addresses Webroot SecureAnywhere Business – Endpoint Protection [/b] To submit a support ticket for Webroot SecureAnywhere Business Endpoint Protection, [url=https://mysupport.webrootanywhere.com/supportwelcome.aspx?SOURCE=ENTERPRISEWSA]click here[/url]. If prompted, log into your account. If you prefer to speak with a support representative by phone, [url=https://www.webroot.com/us/en/business/support/contact]click here[/url] for a list of our telephone numbers.
Cracks and key Gens detection
So I ran into one of our users and found they had a bunch of Cracks, Key Generators and pirated software and wondered why webroot did not detect the cracks/key gens? We really want to sweep these from our organization. Any suggestions on settings that I may be missing? or is a no go?
How to move endpoints to another group in the endpoint consoleKnowledge Base
[b]This solution addresses Webroot SecureAnywhere Business – Endpoint Protection[/b] The first time you add endpoints to SecureAnywhere Endpoint Protection, they are assigned to the Default group. You can then move endpoints to the appropriate groups. [b]To move endpoints to another group:[/b] [list=1] [*]Click the [b]Group Management[/b] tab. [*]From the [b]Groups [/b]panel on the left, select the group that contains the endpoints you want to move.[b]Note[/b]: For this procedure you must select a specific group, not [b]All Endpoints[/b]. [*]From the [b]Endpoints[/b] panel on the right, select one or more endpoints.[b][i]Tip[/i][/b]: You can select all endpoints within the selected group by clicking the [b]Hostname [/b]checkbox at the top of the list (first column). [*]Click [b]Move endpoints to another group[/b] from the command bar.[b]Note[/b]: If the group has more than one page of endpoints, the dialog prompts you to ap
Anyone Know What's Going on With this C:Program file?
So I guess we've seen this file before right? [url=https://community.webroot.com/t5/Endpoint-Protection-and-GSM/File-named-C-Program/m-p/77475#M3612]https://community.webroot.com/t5/Endpoint-Protection-and-GSM/File-named-C-Program/m-p/77475#M3612[/url] But I've seen it again on another system now, and when I called support I couldn't seem to get a straight answer as to what's calling it. Best theory I got so far was perhaps an update rollout is doing a reinstall which might cause it, since it does seem to happen on install. I'm just trying to decide how concerned I should or should not be. Thanks,
Infection Alert Emails Not Sent via TLS
I just enabled a feature of our email service that tells me when incoming emails were not sent via TLS. It is telling me that Infection Alert messages from email@example.com are not utilizing TLS. This is probably minor, but it could constitute a security risk in some cases.
Webroot Chrome Extension High CPU Spikes with new Chrome v65
For reference, I detailed here: [url=https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391]https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391[/url] I am seeing a real issue when the new Chrome v65 combines with the Chrome web extension. I have opened a ticket, but I want others to be aware, as well as chime in if they are seeing the same issue. One of our HTG partners mentioned an issue, and I decided if to see if I could replicate it, and found I could. I would highly recommend not using the extension at this time based on what I have experienced.
Webroot SecureAnywhere for Mac not updating with the -poll command
Hello All, Seeing if anyone has run into this one before. I have configured a policy to have all endpoints check in every 15 minutes. This only works on PCs. To get Macs to update, I am attempting to use the sudo /usr/local/bin/WSDaemon –poll command to force the endpoint to contact the cloud. It doen't error, and I get no return status. However I also don't see the "Last Seen" date and time on the console update. Anyone experiencing the same?
DWP for Mac - Uninstalling on its own?
iMac 2001 macOS Sierra Version 10.12.3 (16D32) I've installed DWP Mac 1.0.057 Installer on our student iMacs in our lab and for some reason the DWP is just disapearing and the proxy is being removed from the browsers?? On the initial install it displays the DWP icon on the top menu bar. I apply the proxy setting to each of the browsers and then "HIDE" the button. [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/29706i3A9A625573F30D87.png[/img] However, for some reason the proxy settings are not "sticking"?? After a few days of use the browers are reverting to their previous non-proxy settings?? Is there a way to verify that the DWP starts every time the iMac starts? (If it has updates and restarts.) ** Also, is there some way to confirm the DWP is running once I "HIDE" the button? ** HELP! Thanks, JB
I received this kind of phishing: the spammer sent a PDF file, with a link in it. The file is clean, so it passed the checking. However, I believe that if I click to the link in the file, I will have trouble (what kind of trouble, I don't know, but it's definitely a bad site!). So, my question is: if I click to that link, will webroot give me any warning, or prevent my browser open the link?
Last seen incorrectly?
I am using my Mac everyday, but from GSM, Endpoint shows that the last seen of my computer was 2 days ago. Of course, Webroot is running and activated "green" on my computer. It was scanning yesterday too. But it looks like that the activities were not connected to GSM. Any error in GSM? Or something else?
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.