Webroot SecureAnywhere Discussion & Update Thread

It looks like WSA does not have anything now for memory only Malware similar to what MBAE does. WSA and others might be working on it for the future.

 

No need to IMHO but if you want to feel free! Like I said it would be nice to get a clear answer from one of the Threat Researchers at the Webroot Community so go and ask a question.

TH

 

I would like to know if it protects the browser by injecting code into it, like Trusteer Rapport does. And I also wonder how it protects cookies + how does it "isolate untrusted extensions from browser data". I noticed that Webroot always does quite well in "anti-banking trojans" tests, without actually having to provide a "safe browser", that´s quite impressive.

 

Yes, I they have indeed a completely unobtrusive and effective identity protection .

 

I agree and have a look at the Picture below and it protects much more than TR.

TH

 

Anybody noticed GUI glitch?
Text in popup alert (word "Blocking") is cut-off when you click on "View Event Details".

 

I have not seen any GUI issues and haven't heard of any until now? Can you Disable your other security software and try WSA on it's own then enable EAM and run for a while and if all is fine enable AppGuard. Also make sure WSA has full access to the System and the Internet and not being blocked by AppGuard or EAM.

Thanks,

Daniel

 

Currently, I'm running WSA alone in VM.

 

Sorry I have not seen that and no other reports. Also I have it installed on 5 VM's can you let me know What OS and if it's 32bit or 64bit.

Can you please do a clean reinstall of WSA and Please follow the steps closely!

• Make sure you have a copy of your Keycode
• KEEP the computer online for Uninstall and Reinstall to make sure it works correctly
• Download a Copy Here
• Uninstall WSA and Reboot
• Install with the new installer, enter your Keycode and don't import any settings as you can set it up as you like once it's done
• Let it finish it's install scan
• Reboot once again

And check again and let me know!

Thanks,

Daniel

 

While removing Blocked entry from "Active Connections" list, radio button is first switched to "Allow" (?) and then process gets removed.

Daniel, regarding text glitch.....it could be due to my VM......I have already noticed this while running some older WSA version a year ago.
Windows 7 Pro SP1 x86 on VMware Player 6.0.3.

I will try it later today on my production machine.

 

Yes till you run the app that was blocked it's a smart outbound Firewall meaning if it is marked good in the Cloud it will auto allow it's really to stop malicious communication to the command base and works with Windows Firewall inbound or a third party Firewall. http://www.webroot.com/En_US/SecureAnywhere/PC/WSA_PC_Help.htm#C4_Firewall/CH4a_ManagingFirewall.htm

Thanks,

Daniel

 

OK, thanks.

 

Good let me know how it goes! Can you tell me what WSA Product you are using? http://www.webroot.com/us/en/home/products/compare

Thanks,

Daniel

 

WSA AntiVirus

 

Thanks!

 

And that´s why I wonder how stuff is implemented. Almost everyone seems to be negative about Trusteer, but you never hear anyone complain about the "identity protection" module in Webroot.

 

I believe that most co's would see it as a bad move to publicly divulge detailed technical info about how aspects of their product/s work, as this could potentially aid both competitors and bad guys alike.

And maybe the users aren't having many issues with the identity shield, so few complaints?

 

No problem with TR or WSA, sometimes criticism sticks as a matter of habit... like it happened with Norton. Just try it yourself before coming up with the final verdict.

 

I have V8.0.4.123 now. Is this a new update.

 

Yes the latest release is now v8.0.4.123 but no change log at this time.

Thanks,

TH

 

Yes I guess so, but perhaps I will try on the Webroot forum.

That´s true, finally a positive note about Trusteer.

 

Does anybody know if Webroot's real-time shield uses some sort of caching technology so that certain files don't get scanned every time?

 

yes, you will see the first scan is the longest then if you rescan right aftert that it takes literally just a few seconds. i dont remember exactly how it works they way they do it but yes subsequent scans are much faster

 

Those are on demand scans, does this apply to the real-time shield as well?

 

Have other people noticed that when you manually add other applications to ID shield protection such as Office, Mail client, PDF viewer etc, that when they're updated you have to add them again?