Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,128 Topics
- 3,621 Replies
Webroot SecureAnywhere for Mac not updating with the -poll command
Hello All, Seeing if anyone has run into this one before. I have configured a policy to have all endpoints check in every 15 minutes. This only works on PCs. To get Macs to update, I am attempting to use the sudo /usr/local/bin/WSDaemon –poll command to force the endpoint to contact the cloud. It doen't error, and I get no return status. However I also don't see the "Last Seen" date and time on the console update. Anyone experiencing the same?
Webroot blocking WMIADAP.EXE.
Hi Guys, Just wanted to know if anyone experienced WR blocking this file. It gave me two minutes to decide and I got some mixed answers while looking online in general so I didn't get to respond whether to allow it or block it. Oddly enough when I looked into the quarantine/block files, it wasn't there. Thanks in advance.
System Optimizer cleaning results
I would like to be able to see the results of System Optimizer on all the PCs. It would be nice if there was a report for that but I don't see one. How do I view how much data System Optimizer cleaned to show my clients how much storage space Webroot is helping them free?
Webroot Chrome Extension High CPU Spikes with new Chrome v65
For reference, I detailed here: [url=https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391]https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391[/url] I am seeing a real issue when the new Chrome v65 combines with the Chrome web extension. I have opened a ticket, but I want others to be aware, as well as chime in if they are seeing the same issue. One of our HTG partners mentioned an issue, and I decided if to see if I could replicate it, and found I could. I would highly recommend not using the extension at this time based on what I have experienced.
Unmanaged by policies
In the dashboard, it shows I have 2 devices unmanaged by policies. But in Policies tab, in Unmanaged menu, it shows: No sites currently use this as their default policy Any idea why that please? [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/33142i17B1DE05A9E1B5D0.png[/img]
Keylogger.Aobo.r for Mac
Today, Webroot found a threat in a backup. It is a Info.plist file. VolumesTime Machine-sikkerhetskopierBackups.backupdbUser MacBook Air2015-12-13-144330Macintosh HDApplicationsMicrosoft Office 2011OfficeShared ApplicationsProofing ToolsDutch Hyphenato When I see in GSM, it shows MD5 00000000000000000000000000000000. I wonder what does it mean? I am going to check that backup soon, but wonder if anyone sees this keylog before and can share any experience?
failed positive Skype
When I start Skype on my Mac, Webroot shows Suspicious Activity Detected: SYstem Folder Modified /Users/myusername/Library/LaunchAgents/com.skype.skype.shareagent.plist /Applications/Skype.app/Contents/MacOS/Skype Why Webroot marks Skype as a suspicious activity? Is that a false positive? I also noticed a similar notification when I installed Office 2016 for Mac at the first time. The installation file is downloaded directly from my Microsoft account, so I assume that it's clean. But Webroot still warned.
Auto upgrade agent releases
I installed a Mac agent a few days ago, it was 188.8.131.52. Today, I installed on another Mac and noticed in GSM, it shows version 184.108.40.206. So, I went to the first Mac and checked the version again, it's still 220.127.116.11. The question is: does the agent update automatically to the new versions or not? It seems that I have no option for updating manually either in GSM or the current Mac installation, so I assume it will be upgraded automatically, but when?
Different version of Mac and Windows Endpoints?
I just installed Endpoints on a Mac High Sierra and a Windows 7 computer and noticed the different versions. - On Mac, it is 18.104.22.168. - On Windows, it is 22.214.171.124. I assumed that it is correct? Just don't want to confuse customers, when they see that. Another question is that if there is an alert when an agent will be updated? Is that the same Endpoint Installed in Alerts configuration? Thanks.
Labtech plugin broken since 3.0 update in Nov 2017
Anyone else's Labtech plugin been broken since the 3.0 update? When we updated the plugin from 2.5 to 3.0, the plugin dashboard showed most agents as "non-GSM" and lacked information for them. After 3 months working with support on the issue, we're still nowhere, and can't reliably monitor our ~5,000 agents.
Webroot Mac agent showing orange, says some features disabled
One of our internal Macs is showing the Webroot icon in gray with the exclamation point in the menu bar. In opening it, I have found it says that some important security features are disabled. Of course, I cannot tell what they are because the system is managed by policy from the GSM console, so when I click, it doesn't let me look at what might be off. As far as I can see, the shields are on, and we are using an internal policy that uses fairly common settings on the Mac side. Is it possible to find out what settings would definitively cause a system to report like this if they are off? Thanks for any assistance.
can i add a password or PIN when Turn off webroot secureAnywhere temporally?
Hi folks, We can add the option "shutdown webroot" check here: [url=http://prntscr.com/ico9f6]http://prntscr.com/ico9f6[/url] on the policies manager for the agent, i get a captcha when click on shutdown but is there an option we can set a admin password or PIN when that option is selected? that way only the admin can shut it down.
Endpoint Protection Agent 126.96.36.199 - what has changed?
Hi all, Currently we run the Webroot SecureAnywhere Business Endpoint Protection agent in version 188.8.131.52 on some workstations and 184.108.40.206 previously (most of the workstations are Windows 10). We also run an asset management cloud software (called Samanage) with a client agent on each workstation. The workstations with 220.127.116.11 Webroot agent get recognised by Samanage but the workstations that run 18.104.22.168 don't. Does anybody know if the name of the Webroot agent changed somehow to cause this and if so where it is saved?
22.214.171.124 Release Question
Finally 126.96.36.199 has been released. My growing issue with WebRoot is that it is taking months for you to resolve issues like this. That version of Windows 10 launched October 17, 2017. It took you three months to release a version of your product that works. Meanwhile your partners have spent countless hours trying to debug issues that ultimately were caused by WebRoot. For many of my customers I have had to move on to other products that were fully compatible with Windows 10 Fall Creator's update. There are several WebRoot related issues over the past year that has taken WebRoot months to resolve. Why is WebRoot non responsive towards these issues? How can I have confidence in a product that I have to disable key parts of the program in order for it to work? Does this same lackadaisical approach apply to protecting my customers from viruses and malware?
No reg key needed for Microsofts Meltdown and Spectre updates
Folks, To quote Microsoft [i]"Based on our analysis of available data, we are now lifting the AV compatibility check for the March Windows security updates for supported Windows 10 devices via Windows Update."[/i] More information is here:- [url=https://blogs.windows.com/windowsexperience/2018/03/13/march-2018-windows-security-update-expanding-our-efforts-to-protect-customers/#0h3TXP1qbqUMkot0.97]March 2018 Updates[/url] We are looking to remove the reg key setting feature of WSA and will notify you when that will be happening. Regards, Jonathan Senior PM WSA for Business Microsoft Meltdown and Spectre updates [u]Information from MSFT for I.T pros[/u] [url=https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in]https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in[/
Mac DNS hijacking malware : Mami
Hi, When will webroot detect this? Accoding to Virustotal, it still doesn't: [url=https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection]https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection[/url] Background can be found at: [url=https://objective-see.com/blog/blog_0x26.html]https://objective-see.com/blog/blog_0x26.html[/url]
Webroot blocked file in folder with path override
We recently experienced that webroot blocked a good file as a threath, even if it was placed in a folder where we have a path override. Tested with Eicar that the override works, so why did it block the file. Anyone else experienced this? Any solution?
SecureAnywhere + Windows 10 + Roaming Profile
Dear community, does anyone have windows 10 running with roaming profiles? I experience some problems, eg. "roaming profile cannot be synced completely - access denied." Once I remove Webroot from the workstation the error disappears. Any ideas?
New Whitelisted folders are not getting pushed out to the clients
New Whitelisted folders we added on Dec 8th and are still not getting pushed out to our Windows 10 computers. I whitelisted 4 folders for our PrimeSUITE application and it fixed the issue immediatly but I had to uninstall and reinstalled Webroot to make sure each computer got the new changes. On other computers I tried the wrsa.exe -poll command over and over but it did not help. We have over 500 computers so I can't continue to do this manually on every computer. Users keeps having issues with PrimeSUITE and I have to uninstall Webroot and reinstall Webroot to resolve the issue so that they get their folders whitelisted.
Whitelisting D:SQL DATA folder even though Webroot skips SQL files anyway
I know Webroot skips SQL files but won't a virus scan run much quicker if you whitelist an entire SQL folder. For example lets say you have one million .mdf files located in the D:SQL DATA folder. By whitelisting the D:SQL DATA folder Webroot will not even look at those .mdf files. As a computer programmer for many years I know that the code is asking “Is this a .mdf file?” If Yes, then skip it, “Is this a .mdf file?” If Yes, then skip it, “Is this a .mdf file?” If Yes, then skip it, and it will have to perform this line of code one million times. It’s quicker for Webroot to ask “Is this the D:SQL DATA folder?” If Yes, then skip the entire folder along with the one million files located within and move on. Even though Webroot skips .mdf files doesn't it the very least have to check the file type and determine that it is a .mdf file and therefore skip that file. Sounds time consuming and could slow things down.&nb
Getting Started Guide - Webroot Small Business AntiVirus
[img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/32359i98A805D20EC796AC.jpg[/img] Welcome to the Webroot Small Business AntiVirus discussion forum! This forum has been created especially for our small business customers to discuss the Webroot Small Business AntiVirus product, small business cybersecurity tips and tricks, and just small business discussions in general. Please introduce yourself and let us know a little bit about who you are. Also, here are some helpful links to get you started in the Webroot Community: [url=https://community.webroot.com/t5/Small-Business-KB/tkb-p/SmallBusinessKB]SMB KB[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/Community-Guidelines/ta-p/185782]Community Guidelines[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/How-Do-I-Edit-or-Delete-My-Post/ta-p/185763]Editing and Deleting Posts[/url] [url=https://community.webroot.com/t5/Introduce-yourself-to-the/How-Can-I-Keep-Track-
Is Webroot blocking port 1433
Hi, I am using a VPN to connect to a client's SQL Server database but I am unable to connect. One of the troubleshooting tips is to make sure that my firewalls aren't blocking the port that SQL Server usually listens to which is Port 1433. Is there a way for me to check this and if it is blocking it can I tell the firewall to allow connecting using that port. Thank you Steve
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.