I just got a Webroot block on Facebook saying there was a keystroke monitoring risk. I closed it and the tried again and got the same message. A few minutes later tried again and no blocking. What gives?
Page 1 / 1
Hi skinnerd
Welcome to the Community Forums.
As I just posted to Janeybopper this may well be a False Positive (FP) which do sometimes occur in a dynamic environment that is the world of threat evaluation, etc.
For the future if this happens again for this site or for a site where you see the Webroot Block Page, but are sure that the website you are trying to reach is safe, just click on the 'Unblock and proceed' button in the bottom right hand corner of the block page and that should (i) let you proceed, (ii) whitelist the site on your local system so that future attempts to reach it are not blocked & (iii) also alert the Web Threat Researchers that there has been an override and therefore should act as a prompt to check/review the site.
Hope that helps?
Regards, Baldrick
Welcome to the Community Forums.
As I just posted to Janeybopper this may well be a False Positive (FP) which do sometimes occur in a dynamic environment that is the world of threat evaluation, etc.
For the future if this happens again for this site or for a site where you see the Webroot Block Page, but are sure that the website you are trying to reach is safe, just click on the 'Unblock and proceed' button in the bottom right hand corner of the block page and that should (i) let you proceed, (ii) whitelist the site on your local system so that future attempts to reach it are not blocked & (iii) also alert the Web Threat Researchers that there has been an override and therefore should act as a prompt to check/review the site.
Hope that helps?
Regards, Baldrick
Thanks for your reply, I thought it might be something like that but in this day and age when big companies are getting hacked I am reluctant to override a warning like that, even for a big trusted company like Facebook. I would rather have a few false positives like that than to get infected with some Trojan or phishing or other problem. Glad I have signed up for WebRoot.
Hi skinnerd
No worries...and if you do not want to override you can do the following as well:
Check on the reputastion of the site concerrned by going to this website where you can enter the url and get a look at the information that backs up/drives the Web Threat Shield. And if you feel that this is incorrect you can file a URL Reputation Change Request via this site, just read the onsite instructions...they are easy to follow.
And if that does not resolve the issue for you after a while then you can always Open a Support Ticket to let the Support Team know and they can look into this for you, etc.
Hope that helps further?
Regards, Baldrick
No worries...and if you do not want to override you can do the following as well:
Check on the reputastion of the site concerrned by going to this website where you can enter the url and get a look at the information that backs up/drives the Web Threat Shield. And if you feel that this is incorrect you can file a URL Reputation Change Request via this site, just read the onsite instructions...they are easy to follow.
And if that does not resolve the issue for you after a while then you can always Open a Support Ticket to let the Support Team know and they can look into this for you, etc.
Hope that helps further?
Regards, Baldrick
Hello and Welcome to the Webroot Community!@ wrote:
Thanks for your reply, I thought it might be something like that but in this day and age when big companies are getting hacked I am reluctant to override a warning like that, even for a big trusted company like Facebook. I would rather have a few false positives like that than to get infected with some Trojan or phishing or other problem. Glad I have signed up for WebRoot.
Can you please Save a Scan Log and from the Log near the Bottom of it showing the Blocks can you post them: http://www.webroot.com/En_US/SecureAnywhere/PC/WSA_PC_Help.htm#C11_ReportsandViewers/CH11a_SavingScanLog.htm it would be much apprecatied.
Example:
Sat 31-01-2015 10:00:00.0215 Blocked website: http://widgets.fie.futurecdn.net/css/shared/hawk.0.1.1.min.css (Rep: 37/Cat: 29/Det: BC)
Sat 31-01-2015 10:00:00.0244 Blocked website: http://widgets.fie.futurecdn.net/css/trdresp/topdeals.0.2.2.min.css (Rep: 37/Cat: 29/Det: BC)
Thanks,
Daniel 😉
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.