I had ransomware when I purchased webroot and when it was installed, it said "no threats found" but I did have ransomware..???
Page 1 / 1
Hello jcwray, Welcome to the Webroot Community Forum. :D
Please submit a Support Ticket Webroot may want to take a look at your logs. This is a free service with your paid subscription.
Please submit a Support Ticket Webroot may want to take a look at your logs. This is a free service with your paid subscription.
Hi jcwray
Welcome to the Community Forums.
Sorry to hear about your predicament, but if I may just add to what ProTruckDriver has posted...whilst WSA can well protect you from ransomware and even rollback the actions of ransomware should such a piece of crapware in fact get through, this is only the case if WSA is on your system protecting it before the ransomware attack.
This is due to the nature of the ransomware attack, i.e., the encryption of files, etc., and the nature of WSA approach to the results of the attack; when WSA detects a file that it cannot determine as to being good or bad it marks it as 'undetermined' and starts journalling any actions it takes. If later that file is determined to be bad WSA can use the journalled activities to undo the actions of the files, i.e., in the case of ransomware roll back the encryption process...but as you can see this requires WSA to be in place before the attack.
Therefore, should you indeed have suffered a ransomware attack and have encrypted files WSA itself will not be in a position to deal withthe results of that.
But as ProTruckDriver has correctly advised itis best to contact the professionals on the Support Team for them to assertain what the position is and if they can provide you with assistance.
Regards, Baldrick
Welcome to the Community Forums.
Sorry to hear about your predicament, but if I may just add to what ProTruckDriver has posted...whilst WSA can well protect you from ransomware and even rollback the actions of ransomware should such a piece of crapware in fact get through, this is only the case if WSA is on your system protecting it before the ransomware attack.
This is due to the nature of the ransomware attack, i.e., the encryption of files, etc., and the nature of WSA approach to the results of the attack; when WSA detects a file that it cannot determine as to being good or bad it marks it as 'undetermined' and starts journalling any actions it takes. If later that file is determined to be bad WSA can use the journalled activities to undo the actions of the files, i.e., in the case of ransomware roll back the encryption process...but as you can see this requires WSA to be in place before the attack.
Therefore, should you indeed have suffered a ransomware attack and have encrypted files WSA itself will not be in a position to deal withthe results of that.
But as ProTruckDriver has correctly advised itis best to contact the professionals on the Support Team for them to assertain what the position is and if they can provide you with assistance.
Regards, Baldrick
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.