The company's antivirus product erroneously flagged files in a Windows folder as malicious
The incorrect detection lasted for two hours, between 1PM and 3PM Mountain Standard Time in the U.S., and resulted in files being flagged as W32.Trojan.Gen. As suggested by the name, this is a generic detection signature intended to catch Trojan programs.
For now, Webroot has provided a solution on its community forum that involves logging into the Webroot online console and manually creating override rules for all of the erroneously blocked files.
Webroot is making progress on a resolution and will update you when that’s available. In the meantime:
1. Affected customers should not uninstall the product or delete quarantine, as this will make quarantined files unrecoverable.
2. We have rolled back the false positives. Once the fix is deployed, the agent should pick up the re-determinations and perform as normal.
3. Customers should ensure that endpoints are on and connected to the Internet to receive the resolution. Once files have been removed from quarantine, some endpoints may require rebooting
If you are affected by this here is the solution for you
W32.Trojan.Gen. False Positive Fix - April 24 - Webroot Community
Webroot False Positive - Update April 25 - Webroot Community
The incorrect detection lasted for two hours, between 1PM and 3PM Mountain Standard Time in the U.S., and resulted in files being flagged as W32.Trojan.Gen. As suggested by the name, this is a generic detection signature intended to catch Trojan programs.
For now, Webroot has provided a solution on its community forum that involves logging into the Webroot online console and manually creating override rules for all of the erroneously blocked files.
Webroot is making progress on a resolution and will update you when that’s available. In the meantime:
1. Affected customers should not uninstall the product or delete quarantine, as this will make quarantined files unrecoverable.
2. We have rolled back the false positives. Once the fix is deployed, the agent should pick up the re-determinations and perform as normal.
3. Customers should ensure that endpoints are on and connected to the Internet to receive the resolution. Once files have been removed from quarantine, some endpoints may require rebooting
If you are affected by this here is the solution for you
W32.Trojan.Gen. False Positive Fix - April 24 - Webroot Community
Webroot False Positive - Update April 25 - Webroot Community