Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,127 Topics
- 3,620 Replies
Labtech plugin broken since 3.0 update in Nov 2017
Anyone else's Labtech plugin been broken since the 3.0 update? When we updated the plugin from 2.5 to 3.0, the plugin dashboard showed most agents as "non-GSM" and lacked information for them. After 3 months working with support on the issue, we're still nowhere, and can't reliably monitor our ~5,000 agents.
Reset Stat Counter For Local Agent
I've got a support request for this one, but I figured I'd ask this anyway just in case someone else knows the answer, if not I should hopefully have the answer and will post it here for posterity. -------------------------------------------------- We're unable to reset the counter on the local agent as we use the secure anywhere portal and it won't allow us to make that change on the agent, but I also see no reset statistics option in the secure anywhere portal? Basically we want to avoid a scenario where the users overreact over recently found threats as they've all been eliminated. Thanks
I am posting here because the DNS FIltering forum has a grand total of 2 threads and no activity in several weeks. Does the WebRoot DNS Filtering alter the TCP/IP v4 DNS properties of the client it's installed on? I have seen clients that are unable to access the internet, and on investigation found the TCP/IP v4 settings DNS address set to a local static IP instead of "Auto", so that it receives the DHCP determined DNS IP. Restoring the DHCP DNS setting instantly resolves the issue. The only thing suspect was WebRoot DNS Filtering, as I could see how it might redirect DNS requests of the client to itself in order to filter. And if it needs to do that, that would be fine except that it ain't working, can't surf and can't send / receive email when WebRoot is handling DNS.
Unmanaged by policies
In the dashboard, it shows I have 2 devices unmanaged by policies. But in Policies tab, in Unmanaged menu, it shows: No sites currently use this as their default policy Any idea why that please? [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/33142i17B1DE05A9E1B5D0.png[/img]
I received this kind of phishing: the spammer sent a PDF file, with a link in it. The file is clean, so it passed the checking. However, I believe that if I click to the link in the file, I will have trouble (what kind of trouble, I don't know, but it's definitely a bad site!). So, my question is: if I click to that link, will webroot give me any warning, or prevent my browser open the link?
Auto upgrade agent releases
I installed a Mac agent a few days ago, it was 188.8.131.52. Today, I installed on another Mac and noticed in GSM, it shows version 184.108.40.206. So, I went to the first Mac and checked the version again, it's still 220.127.116.11. The question is: does the agent update automatically to the new versions or not? It seems that I have no option for updating manually either in GSM or the current Mac installation, so I assume it will be upgraded automatically, but when?
Webroot SecureAnywhere for Mac not updating with the -poll command
Hello All, Seeing if anyone has run into this one before. I have configured a policy to have all endpoints check in every 15 minutes. This only works on PCs. To get Macs to update, I am attempting to use the sudo /usr/local/bin/WSDaemon –poll command to force the endpoint to contact the cloud. It doen't error, and I get no return status. However I also don't see the "Last Seen" date and time on the console update. Anyone experiencing the same?
Webroot blocking WMIADAP.EXE.
Hi Guys, Just wanted to know if anyone experienced WR blocking this file. It gave me two minutes to decide and I got some mixed answers while looking online in general so I didn't get to respond whether to allow it or block it. Oddly enough when I looked into the quarantine/block files, it wasn't there. Thanks in advance.
System Optimizer cleaning results
I would like to be able to see the results of System Optimizer on all the PCs. It would be nice if there was a report for that but I don't see one. How do I view how much data System Optimizer cleaned to show my clients how much storage space Webroot is helping them free?
What do you want to see in the GSM Dashboard?
All, I'm requesting some help in defining what should be on the GSM Dashboard. Our current theory is that the default dashboard layout should provide Admins with a mix of information covering that you need to know now and that which is of interest but not urgent. For example, Need to know now [list] [*]number of devices that require attention [*]devices that have not reported in for the last 7 days [*]detection trend over the last 7 days [*]Infected devices[/list]Of interest but not urgent [list] [*]total number of endpoints [*]total number of endpoints reporting in over the last 30 days [*]Devices count grouped by WSA Agent version [*]Number of endpoints in each site [*]List of Operating systems and count for each [*]Browsers and versions [*]Other AV and version [*]Last reported threat by site[/list] There's lots of way we can slice up the data and I'd like to give you a default dashboard that is immediately useful which you can modif
Webroot Chrome Extension High CPU Spikes with new Chrome v65
For reference, I detailed here: [url=https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391]https://community.webroot.com/t5/Security-Industry-News/Chrome-Releases-Stable-Channel-Update-for-Desktop-Tuesday-March/m-p/315569/highlight/true#M40391[/url] I am seeing a real issue when the new Chrome v65 combines with the Chrome web extension. I have opened a ticket, but I want others to be aware, as well as chime in if they are seeing the same issue. One of our HTG partners mentioned an issue, and I decided if to see if I could replicate it, and found I could. I would highly recommend not using the extension at this time based on what I have experienced.
failed positive Skype
When I start Skype on my Mac, Webroot shows Suspicious Activity Detected: SYstem Folder Modified /Users/myusername/Library/LaunchAgents/com.skype.skype.shareagent.plist /Applications/Skype.app/Contents/MacOS/Skype Why Webroot marks Skype as a suspicious activity? Is that a false positive? I also noticed a similar notification when I installed Office 2016 for Mac at the first time. The installation file is downloaded directly from my Microsoft account, so I assume that it's clean. But Webroot still warned.
Can Webroot protect against Zbot malware?
Because of the great protection Webroot has provided for our home computers we are considering deploying your product on our 120 computers at our business. Most recently two of these computers were infected with a malware indentified as a Zbot. Once these computers were infected a pop up message began asking the user for our network admin User ID and Password. (Fortunately we do not give our employees that information so the problem was limited to these two computers.) The pop up was relentless. Delete it and it immediately reappeared. The two computers were rendered useless. Our IT service provider advised the only solution was to wipe the hard drives clean and do a reinstall of the OS because the Zbot got into the registry. This solution was painful in that the two units had to be pulled from service. Our two employees were unproductive until the problem was resolved. I was surprised that this Zbot couldn't simply be qu
Different version of Mac and Windows Endpoints?
I just installed Endpoints on a Mac High Sierra and a Windows 7 computer and noticed the different versions. - On Mac, it is 18.104.22.168. - On Windows, it is 22.214.171.124. I assumed that it is correct? Just don't want to confuse customers, when they see that. Another question is that if there is an alert when an agent will be updated? Is that the same Endpoint Installed in Alerts configuration? Thanks.
Webroot Mac agent showing orange, says some features disabled
One of our internal Macs is showing the Webroot icon in gray with the exclamation point in the menu bar. In opening it, I have found it says that some important security features are disabled. Of course, I cannot tell what they are because the system is managed by policy from the GSM console, so when I click, it doesn't let me look at what might be off. As far as I can see, the shields are on, and we are using an internal policy that uses fairly common settings on the Mac side. Is it possible to find out what settings would definitively cause a system to report like this if they are off? Thanks for any assistance.
Webroot blocked file in folder with path override
We recently experienced that webroot blocked a good file as a threath, even if it was placed in a folder where we have a path override. Tested with Eicar that the override works, so why did it block the file. Anyone else experienced this? Any solution?
126.96.36.199 Release Question
Finally 188.8.131.52 has been released. My growing issue with WebRoot is that it is taking months for you to resolve issues like this. That version of Windows 10 launched October 17, 2017. It took you three months to release a version of your product that works. Meanwhile your partners have spent countless hours trying to debug issues that ultimately were caused by WebRoot. For many of my customers I have had to move on to other products that were fully compatible with Windows 10 Fall Creator's update. There are several WebRoot related issues over the past year that has taken WebRoot months to resolve. Why is WebRoot non responsive towards these issues? How can I have confidence in a product that I have to disable key parts of the program in order for it to work? Does this same lackadaisical approach apply to protecting my customers from viruses and malware?
Endpoint Protection Agent 184.108.40.206 - what has changed?
Hi all, Currently we run the Webroot SecureAnywhere Business Endpoint Protection agent in version 220.127.116.11 on some workstations and 18.104.22.168 previously (most of the workstations are Windows 10). We also run an asset management cloud software (called Samanage) with a client agent on each workstation. The workstations with 22.214.171.124 Webroot agent get recognised by Samanage but the workstations that run 126.96.36.199 don't. Does anybody know if the name of the Webroot agent changed somehow to cause this and if so where it is saved?
No reg key needed for Microsofts Meltdown and Spectre updates
Folks, To quote Microsoft [i]"Based on our analysis of available data, we are now lifting the AV compatibility check for the March Windows security updates for supported Windows 10 devices via Windows Update."[/i] More information is here:- [url=https://blogs.windows.com/windowsexperience/2018/03/13/march-2018-windows-security-update-expanding-our-efforts-to-protect-customers/#0h3TXP1qbqUMkot0.97]March 2018 Updates[/url] We are looking to remove the reg key setting feature of WSA and will notify you when that will be happening. Regards, Jonathan Senior PM WSA for Business Microsoft Meltdown and Spectre updates [u]Information from MSFT for I.T pros[/u] [url=https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in]https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in[/
Mac DNS hijacking malware : Mami
Hi, When will webroot detect this? Accoding to Virustotal, it still doesn't: [url=https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection]https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection[/url] Background can be found at: [url=https://objective-see.com/blog/blog_0x26.html]https://objective-see.com/blog/blog_0x26.html[/url]
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.