@ShaunS it'll do deep scans regularly (you can adjust the schedule) to find stuff that isn't running yet, but the initial scan just does running processes. Agreed with Dashrender on the email filtering - should be part of the spam filter to pick up any obvious trojans.
Posts made by Nic
-
RE: Webroot
-
RE: Webroot
It won't filter the emails, but it will pick it up at the time they try to run them. We also have anti-phishing technology in case they click on a link from a phishing email.
-
RE: Webroot
Oh, and what are you using to monitor and restrict bandwidth? If you don't have anything in place, our Web Shield product lets you set quotas for bandwidth, and restrict categories like streaming video and music.
-
RE: Webroot
@ShaunS Good questions - the data averages about 3MB a day per machine, for communication back and forth of the MD5 files and answers. For offline status, it remembers already identified files. If you introduce anything new that is unknown, like from a USB drive, then it will do the monitoring and journaling until it gets back online to check the status. It also has heuristics to watch for malicious behavior, like modifying suspicious parts of the registry, or copying files to suspicious locations, and can shut malicious unknowns down that way.
I feel your pain on being in a rural area with bad Internet. I worked at one job in northern California where our options were 26k dialup or satellite. We ended up using satellite with a couple of dialup lines bonded for backup. Good times. The funny thing was that processing credit cards was faster on the dialup than the satellite, because of the latency and all the back and forth to establish the secure connection. 500ms ping times FTW!
-
RE: Webroot
Sure, happy to help out. I can get you a keycode to play with and answer any questions you have. @ajstringham has explained it well. We have a gigantic database of files, domain names and IP addresses. Everything that runs on your machine gets an MD5 signature, which is sent up for comparison. Known good files are allowed to run. Known bad aren't. Unknowns are monitored and all the changes journaled in case it has to roll back. Then it sits back and watches the unknown for suspicious behavior and also signals it as something for research by our threat team. That means the scans are very fast - the only time you'll notice a performance hit is for an unknown, due to the journaling. When that happens you can see the unknown in the agent and contact support to get it sorted out quickly. Since we have millions of endpoints out there, new files get categorized quickly and we can analyze a lot of data. We also have OEM partners who use our database to power their own devices, firewalls or sites, and the data from those gets fed back to us too.
For the business app you have a portal where you can see all your machines and kick off scans, issue remote commands or scripts, and manage policies. We also do mobile protection and a light-weight MDM solution (basically lock, wipe, locate and set policy) that is included with the business endpoint service.
There's also a web content filtering service that we use that is powered by the same reputation database that can allow you to block unwanted sites (porn, gambling, etc.) It lets you lock down their proxy settings so they are still filtered even when off your network. That's a separate product from the AV though.
Hope that helps and let me know if you need more info or want a code to test out.
-
RE: Standing Out from the MSP Masses
I'm a prepper. I have to practice at least a half-dozen complete run-throughs to feel comfortable on stage.
-
RE: Reputation?
@art_of_shred said:
@Katie said:
@Bob-Beatty It is spelt correctly for English-speakers.
Spelt is a grain. The past-tense of spell is spelled.
Spelt is an alternate spelling for UK/Aussie English
-
RE: What are you listening to? What would you recommend?
@ajstringham are those free for distribution? you know this is a public board right?
-
RE: Common issues in Quickbooks
@scottalanmiller yeah, but they'll never go to allowing the option to use your own DB.
-
RE: What are you listening to? What would you recommend?
@ajstringham this is probably his most well known song:
Youtube Video -
RE: Common issues in Quickbooks
@ajstringham the move did speed things up somewhat, and allowed for larger list limits. I haven't played with the last couple years versions so not sure how much faster it is now.
-
RE: Common issues in Quickbooks
@ajstringham that's what they used before moving to SQLAnywhere (Sybase's embedded database). The problem was they had all this legacy code, and the only way to get it working at first was to do an emulation layer to duplicate the c-index interface. They've been slowly removing that and talking to SQLAnywhere directly, but that takes a lot of time.
-
RE: Common issues in Quickbooks
@ajstringham some old flat file database called c-index or something like that. That's the reason QB is so slow.
-
RE: Standing Out from the MSP Masses
@ajstringham ah, that was probably it. You're showing up now.
-
RE: Standing Out from the MSP Masses
@Dashrender I wouldn't have come to work here if they'd had a sucky product
Actually one of the things I did when I was interviewing was download and install the software on my gaming pc to make sure it did a good job.
-
RE: Standing Out from the MSP Masses
@Aaron-Studer I sent you a chat message