Webroot SecureAnywhere Discussion & Update Thread

Yea I told you to Contact the Real Webroot Support and get all your files Whitelisted! Webroot Customer Service

Daniel

 

It looks like my WRData Folder Size problem started a few days ago when i installed a new version of Mozy Home. WSA started to monitor a Mozy Process which made the DB File grow in size by the minute. So under System Control i changed it from monitor to allow and then deleted the big db.db files. No more growing db.db files anymore.

 

Yes that's one way to do it But why don't you want to contact support and get your files all whitelisted as it could help other users of WSA with that program? Just open a ticket and tell them what you want! Webroot Customer Service

 

I did click on one of your links and gave my email and i got a email back with a password to use when they contact me.

 

Is there a fake Webroot support? Seriously, I am curious to find out what support he contacted that wanted the 300 $$$

 

Yes there are many fake one's for all AV's not just Webroot. https://community.webroot.com/t5/We...e/Third-Party-Support-Company/m-p/63877#M4656 and here: https://community.webroot.com/t5/In...-the-victim-of-a-webroot-scam/m-p/78831#M2033

TH

 

Great thanks and please let us know what they say!

Thanks,

Daniel

 

Yes I know, the person in the first thread says

If he called webroot then he called webroot no? I don't understand, did the conversation get hi-jacked when the "support buddy" came along or what happened exactly. I have read it several times but I don't get it. Unless he did not call webroot but someone else, dialed the wrong number or whatever.

I for one don't know the number to a fake support center somewhere that I can call. So I don't understand how this can go wrong if I am the one calling the official support. Just trying to get my head around it

 

This is not an authorized Webroot Support Channel = Scam: http://www.smtechservices.com/Webroot-antivirus.aspx only Webroot Customer Service and or http://www.webroot.com/us/en/company/contact-us no others except the Best Buy Subscription service via Geek Squad in the US only! http://www.webroot.com/us/en/home/products/geeksquad-dl

Thanks,

Daniel

 

So fact is he did not call Webroot like he said, but a "service specialist" or whatever they are claiming they do this and that. Well, then that explains it. So he didn't talk to a Webroot tech at all, it was the "smart buddy" all the time then I guess.

@Dragon1952
Where did you find the "webroot" phone support number?

 

I was in a hurry when i did a search and typed in Webroot for a search. Instead of taking my time and finding the right link i clicked on one that looked good and called them. This guy was good and used Logmein to connect to my computer. I did not give him my credit card number after his sales pitch and that was the end of it. I smelled a rat from the start of the call because he did not sound like a normal cust serv person and did not ask me the normal questions about my account.

 

And you have been on Wilders for almost 2 years and you haven't learned how to tell what, who is the correct support channels and to watch out for scammers?

Daniel

 

I understand, well it's good to hear your system seems to be O.K. anyway. Luckily he didn't do anything worse than ask 300 from you!

Next time..in a hurry or not...go to webroot.com.

 

I am watching the USA and Fin Basketball Game on ESPN now so all is good and my WRData Folder is good...lmao

 

Is there any way that I could get more technical info about this module? I mean not just standard info, but I want to know how it is implemented.

 

Not really as it's always being updated in the WIN Cloud: http://www.brightcloud.com/platform/webroot-intelligence-network.php and if necessary a program update.

Daniel

 

Brightcloud sounds pretty good and could help a lot.

 

Does WSA protect against Memory Malware like MBAE does now or do they have plans to in the future to have that protection.

 

Yes WSA's Realtime Shield is always keeping an eye on your system for any type of malicious activity from all vectors.

Daniel

 

From what I understand it's the Identity Shield that protects browsers (and selected applications) against exploits. So in my understanding only those applications Identity Shield targets are protected against exploits. Do tell if you're positive that's not the case!

 

From my understanding WSA does nothing against memory only malware which on top of that resides in the browsers memory. The realtime shield does nothing against it because it's a memory only attack. The identity shield would protect the browser if the malware were resident in some other process's memory and tried to interfere with the browser but this is not the case here. I would be really surprised if WSA could detect memory only attacks.

 

WSA does not protect you from the Exploit itself (Say Flash or Java or even a Windows Exploit) but any Malware that's trying to use an Exploit to download and execute and if the site is marked bad by BrightCloud then the Web Shield will block it as well. It's always best to keep all software updated to minimize attack vectors but WSA is always there to protect you!

http://www.brightcloud.com/platform/webroot-intelligence-network.php

Thanks,

TH

 

Yes it does as WSA is always looking for Malicious activity (Realtime Shield) no matter where it is and if it executes that means it's trying to run in memory right?

http://www.webroot.com/En_US/SecureAnywhere/PC/WSA_PC_Help.htm#C3_Shielding/CH3a_WhatShieldsDo.htm

TH

 

Yeah Triple Helix, but Dragon was explicitly referring to memory only malware, unless I'm understanding him wrong. Attackers can do quite some damage without dropping and executing payloads from your disk. The could steal files, your address book or use you as part of a bot net for a limited amount of time.

http://malware.dontneedcoffee.com/2014/08/angler-ek-now-capable-of-fileless.html

 

I stand on what I have already said but if you want a better answer ask a question at the Webroot Community and one of the Threat Researchers will answer for themselves.

Thanks,

TH