Google what you ask about webroot & you'll see
Posts: 9
Registered: 12-22-2012
How Would Webroot Clean Ransomware?
Options
08-18-2013 04:30 AM
This is just a hypothetical question that an IT guy posed to me at work when I told him I was using Webroot to protect my home PC.
Can someone with a good knowledge of Webroot explain how it would clean up a piece of nasty ransomware that it didn't catch and let slip by? For argument's sake, assume that the ransomware has locked up the PC and the Webroot GUI cannot be accessed.
My thinking is that Webroot will eventually identify the ransomware on its own (working in the background via the cloud while the PC is locked up) and clean up the infection automatically. Is that correct?
Re: How Would Webroot Clean Ransomware?
[ Edited ]
Options
08-18-2013 08:47 AM - edited 08-18-2013 09:01 AM
1.) WSA is not like other solutions. It journals and monitors suspicious processes. So while it may let the program run temporarily, once the system is sure of its diagnosis, it can roll back pretty much all the changes to the PC it made.
2.) WSA reports its findings and current status to their servers. If you contact Webroot support they can look at what your PC has reported, mark it as bad, and the next time WSA checks in with the servers it will remove it. As a business customer, I have this ability as well. I have done this exact procedure where I review suspicious files reported, marked them as bad, and 15 minutes later WSA removed the infection. Pretty neato.
3.) Webroot support to remove viruses that make it past protections is free, so you should open a support case or give them a call. In the meantime I would leave the computer off until you hear back from them.
You can find information about contacting them here: