Webroot SecureAnywhere Discussion & Update Thread

Discussion in 'other anti-virus software' started by Triple Helix, Jun 6, 2014.

  1. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    5,285
    @Triple Helix

    Dan, thanks for getting back to me with that. :thumb: Much appreciated for the quick action by Webroot to reverse the determination on this. :)

    I have removed the initial detection action from "Threats Identified" listing in my WSA.
     
  2. SOG

    SOG Registered Member

    Joined:
    Mar 9, 2009
    Posts:
    33
    I use WSA and the IPVanish VPN and have not contacted Webroot on the following: does anyone know why a search engine request of IPVanish receives the WSA green tick of trustworthiness but a click on the web entry is met with a page block by WSA? Likewise, since a recent software update by IPV, any startup of the VPN on my PC is blocked by WSA which I have to override.
     
  3. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    The only reason it's by a General Policy by Webroot on VPN's/Proxies so you can just bypass and continue on to the VPN's service site! My VPN is even blocked so I just bypass. Also Submit a Support Ticket so they can whitelist the new IPV files.

    2016-10-17_12-29-25.png

    2016-10-17_12-25-57.png 2016-10-17_12-22-30.png
     
    Last edited: Oct 17, 2016
  4. SOG

    SOG Registered Member

    Joined:
    Mar 9, 2009
    Posts:
    33
    Thanks Trip, I've sent a whitelist request to Support. I do override as you suggest but my experience is a bit different to those screenshots you have put up. My search engine results don't show the 'no entry' sign - stop hand in red circle. I see a white tick in a green circle with the trustworthy tag; which makes the subsequent block odd.
    Do you know why Webroot is averse to VPNs?
     
  5. m0unds

    m0unds Registered Member

    Joined:
    Nov 12, 2015
    Posts:
    219
    I had several long conversations with Webroot staff about their VPN policy back in August. Their threat intelligence support folks initially told me it's because "WSA won't function if you use a VPN", which as we know, isn't accurate.

    When I pressed about it, they got a "real" answer for me from engineering which was that VPNs defeat content policies and allow "unrestricted internet use". That's it.

    There are products with Brightcloud (Webroot's reputation + url categorization service) integrations, and business product lines that can apply policies to their endpoints to deny access to certain types of content on the web (pornographic stuff, filesharing, forums, yadda yadda) and they (Webroot) made a business decision to apply negative reputation to VPN sites because you can use a VPN to circumvent content policy.

    IMO, they should just ensure that their categorization data is complete and accurate and leave it to businesses to determine whether they care if their users can access VPN providers' websites. That's how every other AV or security appliance company I've ever worked with handles this stuff. Additionally, I don't really think they should be blocking anything but malicious content by default, especially in a product where a user can't exclude a site without first encountering a block page.

    At any rate, I later spoke to someone in their PR dept about it, because as a customer and integrator (1000+ installs), I still feel like it's a silly decision. They have no plans to reverse it. They did mention they were investigating making the block page for VPN sites more friendly for consumer integrations (WSA) so we'll see if they end up doing that.
     
  6. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    We Beta Testers with a BETA keycode are still testing the active Web Filter Driver which gives more accurate information about Web Sites so that is the difference (with the Browser Extensions) hopefully they will push it out to all users soon. As to there policy on VPN's all I can say is you can bypass the block and continue to whatever VPN you would like to use or look at, to me it's not a big deal but it's there policy.

    2016-10-19_11-23-29.png
     
  7. SOG

    SOG Registered Member

    Joined:
    Mar 9, 2009
    Posts:
    33
    @m0unds: thanks for that explanation, that sorts out my experience precisely.

    @Triple Helix: thanks for your help. Webroot have whitelisted the .exe and my scan is clean, plus the program now launches without a block. Do I take it, from your beta comments, that Webroot are hardening their position against VPNs and further steering enquirers away? I find it puzzling that they are changing their rating from trustworthy, on my browser extension, to the red no entry symbol that you see. Although, I suppose, it does deal with the contradiction of the subsequent page block. But, it's a bit of a stretch to rate the site as unsafe and call that accurate, no?

    Maybe we should introduce them to mirimir?
     
  8. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    Update: The bank-provided WSA updated automatically to the newest version 9.0.13.50 last night with no problems, so its update schedule seems to be about a week after than the standard version.
     
  9. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    I hate to repeat myself but: "As to there policy on VPN's all I can say is you can bypass the block and continue to whatever VPN you would like to use or look at, to me it's not a big deal but it's there policy."
     
  10. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    Thanks for the notification!
     
  11. zfactor

    zfactor Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    6,102
    Location:
    on my zx10-r
    does webroot endpoint turn back on windows defender? i have a client who i set up and somehow (on windows 7 x64) windows defender keeps getting turned back on, as well as allow remote connection, and other things. i keep turning them off and they mysteriously keep getting turned on. just curious
     
  12. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,639
    Location:
    Under a bushel ...
    Daniel, does the bank version provide malware protection or only identity / phishing protection? Are you able to be more specific about what the banking version doesn't have versus the normal AV version?

    Just wondering if the banking version is sufficient AV protection, assuming it will switch off Windows Defender, if detected?
     
  13. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    As you know Windows Defender on Win 7 and Win Vista is not the same as Win 8 and 10 it's only a Anti-Spyware. On Win 8 and 10 WSA installs itself as the AV in Security/Action Center and turns off the newer Windows Defender which is a full Anti-Malware. So in these cases it's Security/Action Center that controls how Windows Defender on Win 8 and 10 but since it's only an Anti-Spyware on Windows 7 and Vista Security Center will leave it on unless you Turn it off manually!

    HTH,

    Daniel
     
  14. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    I will check and reply back!
     
  15. Jo Ann

    Jo Ann Registered Member

    Joined:
    Jan 6, 2007
    Posts:
    619
    Fwiw, I have been using the banking version for well over a year. As far as I can tell it is the 'normal' SecureAnywhere AntiVirus edition (without functional limitations) ...and I do trust it insofar as providing 'sufficient AV protection'.
     
    Last edited: Oct 21, 2016
  16. zfactor

    zfactor Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    6,102
    Location:
    on my zx10-r
    i do turn it off but somehow it keeps turning itself back on
     
  17. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    Maybe it's a Windows issue as WSA has no control of Security Center. If you feel it's a Webroot issue contact Webroot support as I don't see any reports here or at the Webroot Community!
     
  18. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    It appears to provide full malware protection, both according to the Windows security center and my limited testing with the AMTSO drive-by download and PUA test.
     
  19. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    On my W7 x64 HP, the bank version of WSA turned off Windows Defender automatically, BUT Windows Update kept giving me "important" definition update notices for WD until I turned off Windows Update checking completely. In my previous experience with another AV product, if you allow the WD definition to update, it will turn WD back on automatically.
     
    Last edited: Oct 21, 2016
  20. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
  21. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    Notice to Beta Testers as there is a new Beta out now: v9.0.13.58

    Thanks,

    Daniel

    2016-10-21_16-54-06.png
     
  22. SOG

    SOG Registered Member

    Joined:
    Mar 9, 2009
    Posts:
    33
    Apologies for being a **** *** and causing you to repeat yourself; I did get it first time around regarding their policy at Webroot. I was, however, trying to figure out why we were getting different web filter signals from the same search engine enquiries but, it matters not and my issue is resoved. Once again, thanks for taking the time and your kind help with that, much appreciated.
     
  23. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    Okay let me explain! We Beta testers with a BETA Keycode have the Web Filter Driver Active as it's still in Beta. It gives more correct info from Web Sites then the current Extensions (On Supported Browsers) can give on there own so hopefully they will release the Driver to all users very soon but again there is no time table for it's release.

    HTH,

    Daniel ;)


    2016-10-21_21-32-17.png
     
  24. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    5,285
    I got it shortly after, booting up the Surface Book, this morning. See my post in the Voodooshield thread, earlier. :)
     
  25. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    Notice to Beta testers that v9.0.13.62 is now out so happy testing.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.