• Endpoint Agent 9.0.43.71
• Core 1.13.0.11

• Restored delivery of new path override configurations applied in the management console.

• Introduced Real Time Agent Communication (RTAC) for Agent Commands, enabling near-instant command delivery on macOS.

• Endpoint Agent 9.0.43.62
• Core 1.13.0.11

• Hardened real-time agent communication when operating through proxy connections.

• Endpoint Agent 9.0.43.59
• Core 1.13.0.11

• Introduced Real Time Agent Communication (RTAC) for Agent Commands, enabling near-instant delivery and execution.
• This is the final supported build for Windows 8, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2. Version 9.0.43.59 may continue to run on these platforms, but OpenText will no longer provide support for the agent on these operating systems.

• Introduced additional logging to improve visibility into processes added to the WRYES scan queue.
• Extended scanning to include child processes of unknown processes to increase detection efficacy.
• Scan operations now terminate upon encountering a scan error to improve performance and reduce interference with the system.

• Implemented additional security hardening.
• Improved background scanning and introduced optimizations to ensure smooth ejection of removable media on macOS.

• When a system is placed into Isolation, access to server shares is now disconnected and blocked.
• The isolated state is now automatically cleared when the agent is shut down.

• Resolved a blue screen (BSOD) issue.

• Implemented additional security and performance hardening.

• Improved scanning behavior for iCloud content.
• Enhanced the installation experience.
• Removed the “Monitoring services running on system” option from Advanced Settings > Real-Time Shield to reduce unnecessary alerts for benign system services. This change does not affect overall protection.

• Improved logging to support enhanced diagnostics.
• Implemented additional security hardening.

• Improved the installation experience to provide better usability and visibility.
• Enhanced the ability to restore items from quarantine.

• Improved performance on systems that are offline at the time of user login.
• Added policy control to disable the WRYES module, which is enabled by default.
• Added an option in the agent user interface to disable the WRYES module under Advanced Settings > Shields.

• Enhanced the EDR and MDR installation flow to provide a smoother setup experience.
• Implemented additional security hardening.

• Endpoint Agent 9.0.41.32
• Core 1.11.0.9

• Rebranded the Windows agent to OpenText, including updates to logos, user interface strings, system tray icon, Windows Security Center presentation, and Explorer context menu entries.
• The Core components WRCoreService and WRSkyClient are now packaged with the installer to improve initial availability.
• Hardened the installation process for the WRPillr module.

• Resolved a Windows system crash related to blocked USB storage devices.

• As part of the ongoing transition to OpenText Cybersecurity, Webroot Business Endpoint is being rebranded as OpenText Core Endpoint Protection. During this transition, some references to Webroot may still appear.
• Added device-level GSM policy support for selective installation and uninstallation of EDR and MDR components.
• Improved the interactive installation experience.
• Implemented additional security hardening.

• Introduced an integrated installation experience for Endpoint Detection and Response (EDR) and Managed Detection and Response (MDR) on macOS.

• Endpoint Agent 9.0.39.112
• Core 1.9.0.30

• Added support for entitlement and installation of new Endpoint Detection and Response (EDR) and Managed Detection and Response (MDR) capabilities.

• Resolved an issue affecting the installation of NVIDIA software.

• Updated communication protocols to better manage system load during periods of high activity.

• Updated communication protocols to alleviate performance issues during user login.

• Updated copyright information.

• Resolved various bug fixes.

• Proxy handling is now more closely aligned with the SkyCommandsClient module.

• Resolved an issue where an incorrect MSI version could be displayed in Add/Remove Programs.

• Now includes additional threat telemetry for detections.

• Added support for isolating and un-isolating macOS systems from the network via agent commands.

• Added support for Windows Server systems.

• Resolved a blue screen (BSOD) issue present in WREDRS Module version 1.1.0.2.

• Now transmits additional process data to the cloud.
• Added support for isolating and un-isolating Windows systems from the network via agent commands.

• Introduced hash processing enhancements to improve performance.
• Updated copyright information to reflect OpenText as the legal entity.
• This is the final build provided for Windows 7 and Windows Server 2008 R2.

• Resolved an issue where the WRSVC service could fail to start on Windows Server 2022.
• Resolved an issue where quarantined files stored as .dat files could be re-detected by the agent.

• Now transmits additional process data to the cloud.

• Resolved WRCore update issues that originated in Core Build 1.7.0.43.
• Resolved an issue where the Unisolate command could fail due to a DNS-related error.

• Resolved issues affecting WRCore updates that were identified in Core Build 1.7.0.43.

• Resolved CVE-2023-7241, a local privilege escalation vulnerability.

Additional information is available here.

• Added support for future EDR modules.
• Introduced module-based configuration management.
• Updated company name and copyright information in Core.exe.

• Resolved issues related to file locking during compilation.

• SkyCommands is a Core Endpoint Protection internal capability that expedites agent command delivery and execution.
• Running as WRSkyCommandsClient.exe on business endpoints, SkyCommands governs and processes agent commands to provide faster and more reliable component communication.
• The client was initially deployed to a limited set of devices on January 24 and expanded weekly, reaching full deployment on February 14.

• Added support for macOS 14 (Sonoma).
• Updated copyright attribution to identify OpenText as the copyright owner.

• Added support for future efficacy modules.
• Hardened protection for core services.
• Improved compatibility hardening with the DNS agent.

• Resolved a blue screen (BSOD) issue reported in the field.

• Updated the installer screen to clarify terms and conditions information.
• Updated the scan engine to detect the latest threats.

• Microsoft service protection is now enabled by default.

• Resolved issues and introduced enhancements to Agent Commands to support the new delivery system.

• Resolved an issue where proxy settings were not communicated correctly between components.
• Resolved a system crash that could occur during reboot when removing malware.
• Resolved a system crash that could occur when journaling file changes on network locations.

• Updated the agent to comply with Microsoft requirements for anti-malware products.

• Resolved an issue where the agent could reference an incorrect C:\Program path.
• Resolved an issue where the uninstall flag was not sent to backend systems.
• Resolved an issue with the Phishing Shield state when disabled via Web Threat Shield.
• Resolved a crash related to Shadow Copy services.
• Resolved an issue where the agent language was not displayed correctly in the management console.

• Resolved an issue where the application could crash after a scan completed when no network connection was available.
• Resolved an issue where updates could fail.
• Security and reliability improvements.

• Added an agent command to remotely restore a file from Quarantine on Mac devices.
• Added an agent command to remotely initiate a full scan on Mac devices.

• Resolved a false positive detection involving Apple's Malware Removal Tool (MRT).
• Resolved an issue where the operating system version was not updating correctly.

• Updated signing to conform to Microsoft signing requirements.
• Removed support for the legacy Internet Explorer extension.
  • The Edge extension remains supported.
• Incorporated Real-Time Anti-Phishing into wrUrl.dll.
  • The previous standalone RTAP DLL, wrPhreshPhish.dll, is removed from the system after reboot.

• Resolved an issue obtaining the console allow list.

• Hardened malware removal behavior to avoid interference with legitimate applications.
• Updated the agent to comply with Microsoft requirements for anti-malware products.

• Resolved an issue where OpenText Core Endpoint Protection could interfere with VPN connectivity.
• Resolved an issue where Windows 11 systems could be misidentified as Windows 10.
• Resolved a duplication issue during operating system updates for systems installed using the “-clone” option.
• Resolved a program compatibility issue related to oplock management.
• Resolved a program compatibility issue related to managing the LSP chain.
• Resolved network-related issues introduced in version 9.0.32.59.

• Chrome Extension - released May 1st, 2022
• Edge (Chromium) Extension - released May 9th, 2022
• Firefox Extension - released May 9th, 2022

• Improved information and updated OpenText branding on the extension settings page.
• Enhanced telemetry.
• Added dynamic real-time anti-phishing support for standalone mode.

• Changed the installation package format from DMG to PKG.
• The single PKG installer now automatically detects the operating system and adjusts the installation process for older macOS versions.
• Added a new command-line installation script for the PKG installer, supported by the Mac team.
• Added support for native Apple uninstallation.

• Resolved an issue where System Optimizer would not execute.
• Resolved an issue where subsequent scans were taking as long as the initial scan.

• Resolved an issue where quick scans were taking as long as full scans.
• Resolved a user interface issue where some text overlapped on the main screen.

• Updated user interface branding and logos to include OpenText.
• Added an agent setting in preparation for an upcoming feature to enable policy-based blocking of read, write, and execute access to USB-attached storage.

• Included an additional fix for an issue where Google Chrome failed to load when Identity Shield was enabled.
• Resolved various additional bug fixes.
• This is the final build provided for Windows Vista and Windows Server 2008 systems. These platforms will not receive updates in any later versions.

• Improved extension manageability.
• Enhanced real-time anti-phishing capability.
• Added support for expanded allow list functionality.

• Resolved various bug fixes.

• Introduced a bridging release to support upgrades to future PKG-based agent installers.

• Improved scan performance, resulting in faster scan times.

• Resolved issues that could cause high memory consumption during scans.

• Resolved a service issue that could result in a 1067 error.

• Components updated to version 1.2.1.43 include:
  • Improvements to update and uninstall behavior.
  • Compatibility with the latest security features in Intel processors.

• Introduced foundational updates to support transitioning from a DMG-based installer to a PKG installer.

• Resolved a UI issue where the scan progress bar could occasionally stop while the scan continued in the background.

• Resolved an issue affecting the latest Intel processors.

• Updated user interface text to use “Allow” and “Allow List”.
• Added a “Control Active Processes” entry to the system tray menu.

• Resolved a blue screen (BSOD) issue involving VSS Admin.
• Resolved an issue where Google Chrome failed to load when Identity Shield was enabled.
  • Additional fixes are planned in the 9.0.31.x build for systems where Chrome issues persist with versions 9.0.30.71, 9.0.30.72, and 9.0.30.75.
• Resolved various additional bug fixes.

• Added support for real-time anti-phishing in standalone mode.
• Removed legacy jQuery dependencies and obsolete permission requirements.
• Reduced and optimized memory and CPU usage.

• Resolved minor bug fixes.

• Added support for real-time anti-phishing in standalone mode.
• Removed legacy jQuery dependencies and obsolete permission requirements.
• Reduced and optimized memory and CPU usage.

• Resolved minor bug fixes.

• Resolved an issue affecting search result annotation on Google searches.

• Resolved an issue affecting search result annotation on Google searches.

• Resolved an issue affecting search result annotation on Google searches.

• Added a checkbox on the options page to suppress (“Do not show again”) the license prompt in the standalone version.
• Extended checks for integrated mode beyond the previously used one-week period.

• Resolved various bug fixes.

• Improved the uninstall process for managed endpoints.

• This release builds on previous updates to prepare for Foreign Code Shield (FCS), our newest Evasion Shield. Foreign Code Shield uses advanced techniques to detect and block malicious PE files from executing and places them into quarantine.
• The release also introduces a Metrics module that collects additional endpoint telemetry, including CPU and memory utilization.
• Files with version 1.2.1.24 are added or updated in the following locations:
  • C:\ProgramData\WRCore\SkyClient\DB
  • C:\ProgramData\WRCore\CoreService
  • C:\Program Files\Webroot\Components
  • C:\Program Files\Webroot\Core
• The following processes are introduced:
  • WRCoreService.x64.exe (1 instance)
  • WRSkyClient.x64.exe (1 instance)
  • WRSvcHost.x64.exe (2 instances - FCS and Metrics service hosts)
• Note: 32-bit systems have corresponding 32-bit versions of these files.

• Resolved various bug fixes.

• Added support for iframe blocking.
• Renamed the extension from “OpenText™ Core Endpoint Protection Filtering Extension” to “Web Threat Shield”.

• Resolved an issue with the display of search annotation tooltips on search.yahoo.com.

• Added support for iframe blocking.

• Resolved an issue with the display of search annotation tooltips on search.yahoo.com.

• Added support for an integrated Chrome browser extension.

• Added ComponentInstall.log and ComponentUninstall.log files for newly installed MSI components. These logs are located in %ProgramData%\WRData.
• The following component locations have been updated to version 1.1:
  • C:\ProgramData\WRCore\CoreService
  • C:\ProgramData\WRCore\SkyClient\DB
  • C:\Program Files\Webroot\Components
  • C:\Program Files\Webroot\Core
  • C:\Program Files\Webroot\Core\WRCore.x64.sys (previously located in C:\Windows\System32\drivers)
• Updated versions (v1.1) of the following processes are introduced:
  • WRCoreService.x64.exe
  • WRSkyClient.x64.exe
• A new file is added to the following location:
  • C:\ProgramData\WRCore\CoreService\Components\FCS\WRFCSUser.x86.dll and WRFCSUser.x64.dll

• Resolved a compatibility issue with Malwarebytes Anti-Exploit when used with Internet Explorer.
• Resolved a potential agent crash that could occur during system shutdown.

• Migrated from a kernel extension-based model to Apple's Endpoint Security API to support upcoming macOS platform changes.

• Resolved an issue where the uninstall link in the WSA About section did not function correctly.
• Corrected an intermittent upgrade issue.
• Resolved additional minor bug fixes.

• Resolved a crash that could occur during uninstallation.

• Resolved an issue that caused repeated Full Disk Access (FDA) prompts.

• Resolved an issue with the keycode prompt when the “Never remember history” setting was enabled.

• Added automatic installation support for the Microsoft Edge (Chromium) extension.
• Added extension installation support for Firefox version 74 and later.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Enhancements to facilitate additional threat detection.

• New files are added in the following locations:
  • C:\ProgramData\WRCore\CoreService
  • C:\ProgramData\WRCore\SkyClient\DB
  • C:\Program Files\Webroot\Components
  • C:\Program Files\Webroot\Core
  • C:\Windows\System32\drivers\WRCore.x64.sys
• Two new processes are introduced:
  • WRCoreService.x64.exe
  • WRSkyClient.x64.exe

• Resolved an issue affecting silent deployment on macOS Catalina.

• Includes features introduced in the previous Windows Build 9.0.27.49.

• Resolved issues affecting network connectivity with devices such as Canon printers and online games.

• Resolved an issue that prevented WRAgentData.plist from being updated reliably on macOS Catalina.

• macOS Catalina requires Full Disk Access (FDA) to function correctly.

• Web Threat Shield is no longer installed automatically. A solution is in progress to allow direct download from the browser extension gallery.
• The right-click context menu is no longer available on macOS Catalina.
• When launching OpenText Core Endpoint Protection on macOS Catalina, the user interface may not open automatically. Open the UI via the system tray icon.

• Efficacy enhancements.
• Driver performance enhancements.
• Added additional handling for detection and remediation of malware within IMG and ISO files.

• Resolved an issue where proxy settings applied at installation or via the UI were not always honored.
• Improved script scanning performance to prevent performance degradation.
• Resolved a loss-of-network issue on Windows Server 2003.

• Added support for macOS Catalina.

• Resolved various bug fixes.

• Additional changes to support the ELAM (Early Launch Anti-Malware) driver.
• Added a new DLL, "WRSkyClientConnect.x86.dll", deployed alongside WRSA.exe. When enabled, this component manages Sky traffic from endpoint components, including the WSA agent.
• Additional work to support an upcoming efficacy feature.

• Resolved an issue where a process could continue to be monitored despite having a "Good" determination.

• Added compatibility with macOS 10.14.5.
• Improved detection efficacy for archive files.

• Improved network communication for the Webfilter service.

• Added support for network isolation for UWP applications, including a firewall rule for 127.0.0.1.
• Added a new rule from a recent hotfix to the default rules for all extensions.
• Real-time anti-phishing lookups now occur only when explicitly enabled in the configuration.

• Resolved an issue where applications launched from network shares could fail to start.
• Resolved an issue affecting Citrix network printing.
• Resolved system performance degradation.

• Resolved various bug fixes.

• Added support for the ELAM (Early Launch AntiMalware) driver.
• Added a registry value to record agent command status in WRLog.
• Added support for a future Windows 10 update.

• Resolved an issue where the WRSVC recovery option could be set to "Take no action".
• Resolved a false positive detection involving the StorageCraft backup application.
• Fixed an issue introduced in version 9.0.23.32 where applications accessed via network shares could become slow or unresponsive.
• Resolved an issue where WSA could delete files even when the logged-in user lacked sufficient permissions.
• Added a mandatory upgrade field to SecurityProductInformation.ini to comply with Microsoft requirements.
• Prevented unnecessary User Account Control prompts after updating.
• Improved management of Windows system resources.
• Resolved GDI-related issues that could result in screen tearing.
• Fixed an issue where the Web Threat Shield plugin failed to load during WSA installation.
• Resolved a cloud error response that could stop communications until a system reboot.
• Fixed an issue where shutting down WSA shortly after startup could fail.
• Resolved an issue where the Windows time format could change after threats were detected during learning scans at installation.
• Resolved an issue where WSA did not always install correctly on Windows XP.
• Ensured complete removal during uninstallation.
• Corrected an issue where the copyright year in WRusr1.dll was incorrect.
• Improved the reliability of registry scanning.
• Fixed an issue where uninstalling OpenText Core Endpoint Protection did not always remove OpenText Core DNS Protection.
• Resolved an issue that could produce mismatched MD5 reports.
• Fixed an issue where a zero-length file could be created when generating a crash dump.
• Resolved cases where restoring items from Quarantine could fail.
• Resolved scenarios where OpenText Core Endpoint Protection did not shut down correctly.
• Fixed a networking issue affecting Windows XP and Windows Server 2003 introduced in version 9.0.24.28.

• Resolved an issue where applications launched from a server share loaded slowly.

• Added a registry key that records executed agent command status in the WRLog.
• Added support for the Windows 10 RS5 update.

• Resolved an issue where WSA did not always install on Windows XP.
• Added a mandatory upgrade field to SecurityProductInformation.ini to comply with Microsoft requirements.
• Prevented unnecessary User Account Control prompts after updating.
• Improved management of Windows system resources.
• Fixed an issue where the Web Threat Shield user plugin would not load during WSA installation.
• Resolved a cloud error response that could stop communication until a reboot was performed.
• Fixed an issue where shutting down WSA shortly after startup could fail.
• Resolved an issue where the Windows time format could change after a threat was detected during a learning scan at installation.
• Ensured complete removal during uninstallation.
• Corrected an issue where the copyright year in WRusr1.dll was incorrect.
• Resolved cases where WSA did not shut down correctly.
• Fixed an issue where restoring from Quarantine could fail when many threats were present.
• Resolved an issue where a zero-length file could be produced when WSA created a crash dump.
• Fixed an issue that could produce mismatched MD5 reports.
• Improved the reliability of registry scanning.

• Added support for policy enforcement on IPv6 networks for roaming users.
• Enhanced logging via WPP to allow full debug logging without impacting DNS-Protection agent performance.

• Resolved a caching issue observed in the previous 1.2 release.

• Removed the Firefox package for versions 48 and earlier.

• Added support for the Windows 10 RS5 update.
• Added support for Firefox version 62.

• Added new script detection and remediation capabilities for obfuscated files.
• Implemented changes required to support upcoming Windows 10 RS4 and RS5 features.
• Updated the library used for SHA-256 operations.

• Resolved WSA execution errors on Windows 10 (Boot Camp) and Windows Server 2012 and 2016.
• Improved resource management.
• Fixed a WSA crash that occurred when updating configuration during exit.
• Resolved false positive rootkit detections on Windows 10 services and Windows applications.
• Fixed an issue where System Analyzer could hang on launch.

• The poll interval for the Business Mac agent can now be managed via policy.
• Added a new setting, "Automatically scan removable media", available under Advanced Settings > Scan Settings.
• Added a new setting, "Operate background functions using fewer CPU resources", available under Advanced Settings > General.
• Added on-demand scanning for files and folders via the right-click context menu.
• Displays a warning message when System Integrity Protection is disabled.
• Displays a warning message when Gatekeeper is disabled.
• Performance improvements.

• The kernel extension (kext) is now displayed correctly in Finder.
• The UI now displays all items in Quarantine after a daemon restart.
• The "Reset All" button now correctly resets Enable Scheduled System Optimization to the default setting, including frequency and time values.
• Hardened the driver interface to mitigate potential vulnerabilities.

• Resolved a crash in Internet Explorer.

• Added script remediation functionality to the Script Shield feature (disabled).
• Journaling now flushes writes in a way that reduces load on Windows.
• Ensured LastPass DLLs remain present after WSA uninstall and reinstall.
• Handled conflicts with certain internal disk drives that could prevent Windows from shutting down.
• Agent grabword data is sent back to OpenText™ Core Endpoint Protection.
• Reduced overall time required to install WSA.
• Removed files from the journal once they are determined to be good.
• Prevented excessive journaling to reduce disk space consumption.
• Changed the journal retention period to 60 days.
• Removed compression from the WSA installer.
• Ensured virtual machines start correctly on Windows 10 hosts when WSA is running.
• Automatically uninstalled the DNS-P agent when DNS-P is disabled on the website or the license key expires.
• Prevented multiple or consecutive WSA trial installs on the same computer.
• Addressed increased memory usage when Crypto Prevent is installed.

• Resolved a timeout issue with cloud communications during long scans.
• Fixed a crash on Windows Server 2003 caused by an invalid pointer.
• Resolved high CPU usage in Windows Explorer and Google Chrome.
• Fixed an issue where the Welcome Screen could hang after installing version 9.0.19 on Intel Sandy Bridge CPUs.
• Resolved an installation failure with an “Insufficient permissions” error on Windows 10 (Boot Camp) and Windows Server 2012.
• Fixed an issue where WSA failed to uninstall on Windows 10 under certain conditions.
• Resolved an issue where the Netlogon service might not start after reboot on Windows 10.
• Fixed an issue where Terminal Servers could become unresponsive (4005).

• Improved how the Toolkit6 application displays data.
• Ensured Safe Search icons display correctly in the Bing browser.
• Additional Threat Intelligence improvements when using web search engines.
• Disabling Web Threat Shield via policy now turns off all related features.
• Internet Explorer 8 support on Windows XP is restricted to Web Threat Shield version 1.6.0.16.

• Resolved a blue screen (BSOD) issue when using Steam.
• Fixed an issue where entering an incorrect whitelisting password appended invalid characters to the original blocked URL.

• Resolved sporadic loss of connectivity observed on DNS-Protection Agent 1.2.0.148 by enhancing NIC monitoring and detection.

• Additional fine-tuning of detection and failback behavior in environments using static DNS IP configurations to ensure graceful recovery.
• Improved provisioning retry logic after agent installation.
• Note: This update includes all previously released enhancements from DNS-Protection Agent 1.2.0.148.

• Added intranet and local network support for roaming users on VPN.
• Improved network detection to better support roaming user network changes.
• Added support for DNS traffic over TCP in addition to UDP.

• Fixed a crash in Internet Explorer when loading content from a file instead of a URL.

• Miscellaneous enhancements to the upgrade process.
• Improved accuracy when detecting virtual adapters and virtual machines.
• Enabled automatic re-provisioning of the agent upon service restart.

• Microsoft-signed executables are now trusted locally.
• SHA256 hashes are included in PE data uploads.
• Added support for Unicode registry values.
• Improvements to the agent upgrade process.
• Reduced the occurrence of false positive detection of Windows 10 rootkits.
• Restored quarantine files are returned to their original location.

• ID Shield no longer causes high CPU usage with Firefox Quantum.
• Prevented unnecessary triggering of OneDrive file downloads.

• Improved detection of install, uninstall, and update events for supported browsers.
• Added support for Punycode URLs.
• Whitelisting is now supported for certain Arabic characters.

• Fixed base64 encoding and decoding for Mozilla-based browser extensions.
• Resolved an issue where whitelisting URLs with non-Latin characters failed in Internet Explorer.
• Corrected disable and uninstall behavior of the driver on Windows Server 2016.
• Resolved access issues when using IMVU.

• Resolved various bug fixes.

• Improved performance through the use of HTTP pipelining.
• Whitelisted IP addresses used by DNS-P.
• Added support for Firefox ESR.
• Added support for Firefox Quantum.
• Port numbers in URLs are respected during reputation and phishing lookups.
• Added further logging details for browser extensions, with all logging using UTF-8 encoding.
• IE browser extensions send only the required number of communication requests to OpenText™ Core Endpoint Protection during navigation.
• All browser extensions treat URLs with query parameters consistently.
• Use originating URLs for file downloads when the URL has been whitelisted.
• Prevented bypass of the whitelist when a port is added to the URL.

• Resolved issues related to co-existence with Surfright HitmanPro.
• Resolved issues related to co-existence with Transticket.
• Whitelisting no longer fails when special characters are used.
• When AdvancedMD services are used, device performance does not degrade.
• Reads string values from the Windows registry correctly.
• The block page is now displayed correctly for HTTPS URLs.
• WTS installation no longer fails if the WSA client version is unavailable.
• Fixed an issue where, when using Microsoft Edge on Windows 10, whitelisted sites were not always respected.

• Resolved an issue with file operations following the Windows 10 Fall Creators Update.
• Resolved an error displayed by VMware Workstation (Viewer) 14 after updating to the Windows 10 Fall Creators Update.
• Prevented blocking of sandbox deletion for third-party application Sandboxie after updating to the Windows 10 Fall Creators Update.

• Addressed mismatch issues logged in agent log files that could cause high CPU usage.
• Added additional tracing and logging to assist with troubleshooting field issues.

• Optimized source and destination IP identification.

• Agent will support PCs running Windows OS – 7, 8.1, 10 and Server editions 2012 and 2016.
• Single integrated agent to support network and device protection. Deployed using policy management in Console.

• Ability to configure DNS Settings to automatically redirect via client.
• Domain resolution and content filtering by category.
• Automated SSL Certificate installation to support SSL sites blocked by category.
• Support for Roaming WIFI (OpenText™ Core DNS Protection agent while using wifi from a public hotspot, airport, hotel, etc.) including public spots that engage in DNS Hijacking.
• Support for Intranet, VPN, Internal DNS Forwarders.
• Fail back option to resolution of the domain and uniterrupted Internet connectivity if unable to connect to OpenText™ Core Endpoint Protection DNS resolvers.
• Deployed via WSA-B Policy Enablement.

• Improved detection efficacy when making determinations for critical system processes.
• Enabled installation when TLS version 1.1 or greater is available.
• Added data gathering for phase 1 of the malicious scripts shield.
• Extended the data set transmitted for use with machine learning.
• Further optimized cloud communications.
• Handled the /disable command-line option correctly.
• Improved hash calculation for non-PE files.
• Ensured In Product Messaging (IPM) displays special characters correctly.
• Enabled select IPMs to trigger re-acceptance of the EULA.
• Updated the WSA copyright message to 2017.
• Added support for Windows 10 Fall Creators Update.
• Added support for Windows Server 2016.
• Enabled installation and removal of the DNS-P Agent.

• Prevented browser crashes in certain scenarios when integrated with Mozilla Firefox.
• Prevented loss of internet connectivity during WSA removal.
• Protected against the WSA driver being written to disk as a zero-byte file.
• Prevented agent crashes when Backup and Sync is in use.
• Resolved a memory leak that could result in a 4005 event on terminal servers.
• Ensured plugins are removed cleanly during uninstallation.
• Ensured journaling files are always present at the time of WSA installation.
• Ensured data is sent back for GSM to clear the 'Needs Attention' state in a timely manner.
• Ensured files can be restored from quarantine while System Analyzer is running.

• Added compatibility with macOS 10.13 (High Sierra^®).

• Resolved various bug fixes.

• Resolved various bug fixes.

• Added agent support for policy control.
  Note: The complete policy feature will be available later this summer, after the console component is released.
• Added Web Threat Shield settings.

• Resolved a false positive involving Time Machine backups.
• Resolved various bug fixes.

• We’re upgrading our web extensions used with Firefox. This will be a silent update for users with newer versions of Firefox. Users with Firefox version below 48 will be prompted by the browser to approve this change:
  
  
• We’ll also be making a variety of improvements to our Search Annotations.
• Based on customer feedback, we’ll reduce risk levels from 5 to 3. (The new categories will be: Trustworthy, Suspicious, and High Risk).
• We will no longer block specific categories (e.g., “proxy”). Instead, we’ll block by reputation only.
• Finally, we will provide clearer reasons for website that are blocked.

• Added the ability to uniquely scan files using SHA-256 hash values to improve detection of highly targeted MD5 hash and file size collision scenarios.
• Added SHA-256 file hash calculation to agent log files.

• Applied stabilizing patches addressing 4005 errors and script lock-up issues.
• Resolved various bug fixes.

• Hardened the browser plugin.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Updated the block page design and styling.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Resolved a bug fix.

• Applied stabilizing patches addressing the 4005 error and a script lock-up issue.

• Hardened scheduled scan behavior.

• Fixed a blue screen (BSOD) issue involving Microsoft wireless keyboards.
• Resolved a 4005 winlogon error.
• Resolved various bug fixes.

• Hardened agent cloud communication.
• Added new agent commands available from the Management Console.
• Implemented a command-line method to force agent check-in to the cloud.

• Resolved various bug fixes.

• Added support for installation on macOS 10.12 (Sierra^®). Only installer versions 9.0.3.39 and later support installation on Sierra^®.

• Resolved various bug fixes.

• Ensured update capability on macOS 10.12 (Sierra^®). OpenText™ Core Endpoint Protection strongly encourages all Mac users to update to agent version 9.0.2.45 or later before upgrading the operating system to Sierra^®.

• Removed obsolete databases.

• Resolved various bug fixes.

• Enhanced the agent identification system for partners.

• Resolved various bug fixes.

• Extended capability to roll out new features.

• Hardened uninstall routines.
• Added virtual machine awareness to Web Filtering.
• Enhanced threat intelligence used by Web Filtering.

• Resolved various bug fixes.

• Further improvements to the scan engine.
• Improved scan performance.

• Resolved various bug fixes.

• Improved update reliability.
• Further improvements to the scan engine.

• Resolved various bug fixes.

• Further improvements to the scan engine and detection efficacy.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Implemented Microsoft Windows 10 user experience requirements.

• Resolved an issue affecting scheduled scans.

• Updated behavior to conform with Microsoft user experience requirements for Windows 10.

• Resolved various bug fixes.

• Added support for sending new Mac data points to the cloud.
• Added a new method for differential feature activation.
• Added in-product messaging guidance following a license swap.
• Updated the user interface to support EULA reacceptance.
• Added support for sending real-time threat detection reports to the cloud.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Resolved various bug fixes.

• Added a new method for differential feature activation.
• Updated the user interface to support EULA reacceptance.
• Added in-product messaging guidance following a license swap.
• Hardened service startup behavior.

• Resolved various bug fixes.

• Hardened cloud communication.
• Further improvements to the scan engine.

• Added compatibility with UEFI and Secure Boot on Windows 10.
• Improved stability of Microsoft Edge when interacting with WSA.
• Improved compatibility with Thomson One 5.0.

• Updated the installer user interface.
• Delivered user interface enhancements.
• Added support for OS X 10.11 (El Capitan^®).
• Further improvements to the scan engine.

• Added collection of additional scan data.
• Further improvements to the scan engine.

• Resolved various bug fixes.

• Introduced a new, enhanced web filtering system.
• Delivered user interface enhancements.
• Improved overall detection efficacy and stability.

• Resolved various bug fixes.

• Added additional support for Microsoft Edge.
• Improved detection efficacy.
• Further improvements to the scan engine.

• Resolved various bug fixes.

• Added agent support for advanced overrides.
• Added a user interface for the installer screen.

• Resolved various bug fixes.

• Added correct operating system version reporting for Windows 8.1 and later.
• Added compatibility with Windows 10.
• Improved path normalization for Internet Explorer cache paths.
• Further improvements to the scan engine.
• Aligned agent state definitions.

• Resolved various bug fixes.

• Added a new agent status data value.
• Aligned agent state definitions.
• Updated default settings.

• Updated state and messaging for expiring business PC endpoints.

• Fixed a crash affecting Windows 10 systems.

• Improved session management.

• Added support for immediate remediation when the policy setting “Automatically block files when detected on execution” is enabled.
• Enhanced cloud detection logic.
• Improved detection and remediation of malware running in memory.

• Hardened rollback routines.

• Resolved a false positive detection issue.
• Hardened license key obfuscation for business customers.

• Hardened persistence of configuration settings.
• Further improvements to the scan engine.

• Added ZIP file scanning support.
• Updated behavior to hide the license key by default for business customers.
• Improved performance of scanning with advanced detection routines.
• Improved compatibility with JAMF Casper software.
• Updated the copyright date displayed in the user interface.

• Suppressed an erroneous browser extension installation message.
• Resolved two crash issues.

• Added additional portable executable (PE) data points.
• Streamlined build configurations for specific partners.
• Updated System Analyzer for Business.
• Updated the copyright date displayed in the user interface.
• Further improvements to the scan engine.

• Fixed an issue affecting scans of very large files.
• Resolved an issue with URL handling in Google Chrome.

• Added support for the new web filtering rollout.
• Updated the user interface for tray messages.
• Further improvements to the scan engine.
• Enhanced journaling and rollback support for very large change journals.
• Enhanced the console data set.
• Improved LSP chain repair during remediation.

• Resolved a conflict with the Kaseya remote keyboard.

• Improved compatibility with 64-bit Internet Explorer on Windows 8 systems.

• Further improvements to the scan engine.

• Further improvements to the scan engine.

• Added support for OS X 10.10 (Yosemite^®).
• Added System Optimizer for Mac (Consumer Only).
• Improved detection of phishing sites.
• Simplified the installation process.

• Further improvements to the scan engine.

• Further improvements to the scan engine.

• Further improvements to the scan engine.

• Resolved a false positive detection involving Kaspersky Internet Security 2015.

• Further improvements to the scan engine.

• Resolved issues that could prevent scans from starting.
• Fixed an issue where the temp folder could be deleted by System Optimizer.
• Resolved issues affecting scanning of Novell NSS shares.

• Added proxy bypass key functionality.
• Added an active threats registry key.

• Addressed various compatibility issues.

• Updated time display to support renewal processing.
• Further improvements to the scan engine.

• Further improvements to the scan engine.

• Resolved issues affecting scanning over certain network configurations.
• Resolved hardware compatibility issues on Dell Vostro systems.

• Added logic to allow recent updates to Chrome components.
• Further improvements to the scan engine.

• Added browser support for Web Filtering in Chrome and Firefox.
• Added new engine detection capabilities.

• Further improvements to the scan engine.

• Further improvements to the scan engine.

• Improved stability when analyzing system changes.
• Improved text layout in some localized environments.
• Improved proactive blocking of Cryptolocker-style threats.

• Resolved compatibility issues with Hyland Software applications.
• Resolved compatibility issues with certain Google Chrome instances.
• Fixed incorrect warnings related to some Citrix components.

• Improved scanning of folders on network drives.
• Added detection for the Expiro virus.
• Improved compatibility with AdBlock.
• Improved enforcement of locked keycode changes when centrally managed.
• Improved generic blocking of threats such as Cryptolocker.

• Fixed minor user interface issues with Backup & Sync.
• Fixed handling of deactivate commands sent from the Management Console.

• Improved protection against untrusted browser helper objects (BHOs).
• Improved protection against Cryptolocker.
• Improved generic protection against threats attempting to steal user information.

• Resolved an issue that could delay system shutdown on Windows Server 2003.
• Fixed an issue preventing the agent from installing when no user was logged in.
• Reduced CPU impact during file infector scanning.

• Improved stability and compatibility on some Mac platforms.

• Added automatic cleanup of old rollback data.
• Updated My Account behavior to hide remaining days when the keycode is hidden.
• Reduced CPU usage during scans.
• Improved registry reading performance under high contention.
• Improved detection of script-based viruses.
• Improved uninstallation speed.

• Fixed issues related to language file updates.
• Resolved password management compatibility issues in Internet Explorer 11.
• Fixed an issue preventing execution of new agent commands sent from the Management Console.

• Resolved an issue that could cause excessively long learning scans and high CPU usage on systems with limited memory when WSA scanned very large in-memory processes for file infectors.

• Added pre-install proxy configuration options.
• Added context-sensitive help throughout the user interface.
• Added handling and detection for potentially unwanted applications (PUAs).
• Added access to Backup & Sync from within Windows Explorer.
• Added compatibility with Windows 8.1.
• Hardened scan progress handling against active rootkits.
• Automatically reset hijacked desktop backgrounds on Windows XP after cleanup completes.
• Added detection for a new set of VBScript threats.
• Introduced a refreshed user interface with improved access to key features.
• Added real-time anti-phishing protection to block phishing websites, including those seen by a single user.
• Introduced OpenText™ Core Endpoint Protection Infrared with a multi-layer defense engine for advanced persistent threats.
• Simplified configuration options across the product.
• Added automatic adaptive installation to tailor OpenText™ Core Endpoint Protection during setup.
• Improved malware cleanup and detection across the product.
• Reduced memory, CPU, and disk resource usage for a lighter footprint.
• Improved scanning of locked files.
• Improved active threat cleanup to reduce the need for system reboots.
• Updated localized UI wording from “Support/Community” to “Help and Support.”

• Improved compatibility with other security solutions and third-party products.
• Improved UI performance on lower-end graphics cards.
• Corrected login screen behavior to show when a user is deactivated in Backup & Sync.
• Ensured Backup & Sync settings are retained when logging in as a different user.
• Resolved compatibility issues with Malwarebytes Anti-Exploit.

• Updated the build number to allow compatibility with Windows 8.1.

• Extended blocking of Shell registry changes to HKU keys.
• Improved stability on Windows 8.1.
• Improved compatibility when receiving network data on Windows 8.
• Improved compatibility with foreign keystrokes and certain keyboard configurations.
• Improved compatibility with AuthenTec fingerprint sensors.

• Prevented Novell authentication packages from being disabled during malware cleanup.

• Addressed an issue that could potentially drop the first keystroke on localized platforms.
• Resolved a crash that could occur when prompting for an email address during installation on localized operating systems.
• Improved compatibility with Google Chrome’s nacl64.exe.
• Improved RealTime Shield functionality.
• Improved compatibility with the newer version of ExploitShield, now part of Malwarebytes.

• Added central management for controlling System Cleaner settings and controls in the online management console.
• Added heuristics to detect a new AutoCAD virus.
• Improved performance when installed alongside Citrix environments.

• Addressed compatibility issues with proxy settings during and after installation.
• Resolved incompatibility with ESET’s self-protection on Windows 8.
• Corrected processing of the detection configuration option when the program launches.
• Updated EICAR handling so it is submitted as an executable file and displayed within the console.

• Addressed proxy setting checks during automatic installation on localized operating systems.

• Added automatic proxy detection for SME environments.
• Improved compatibility with F5 VPN.
• Improved application performance on XenApp servers.
• Improved handling of proxy configuration.
• Improved compatibility with DiskDirector.
• Improved malware cleanup of registry-based threats.
• Improved System Analyzer malware detection.
• Improved support for virtual machines and cloned environments.

• Resolved issues removing some detected malware components on reboot.
• Resolved issues updating protection statistic values on Windows XP in SME environments.
• Resolved network-level compatibility issues on terminal servers.
• Improved compatibility with the Kaseya Agent Internet Access Protection Extension.
• Resolved issues that could trigger multiple scheduled scans.
• Resolved browser compatibility issues with Sandbox 4.1 beta.
• Improved stability in certain SME environments.

• Added support for a NoStatistics registry value (DWORD) under HKCU\Software\WRData, which disables behavior statistics on the status screen when set to 1.
• Improved agent shutdown speed.
• Improved behavior logging in Windows Event Logs.
• Improved Identity Shield functionality on Windows Server 2008.
• Improved kernel-level keylogger protection.
• Improved the migration process for Prevx users to OpenText™ Core Endpoint Protection.

• Fixed an issue with changed settings and local database data during shutdown.
• Improved compatibility with Jeeves GARP software.
• Fixed issues identifying cloud-managed configuration settings.

• Improved performance on Windows XP.
• Improved System Cleaner functionality.
• Improved System Analyzer functionality.
• Improved RealTime Shield functionality.

• Improved compatibility with recent Windows XP changes.

• Improved detection and cleanup of ZeroAccess threats.
• Improved compatibility with third-party applications, including Adguard Ads Blocker, CycleServer, Google Video Chat, Instant Text 7 Pro, Keyboard Express, RoboForm2Go, and ShortKeys.
• Improved compatibility with hotkey-based applications.
• Improved Identity Shield behavior.
• Improved keylogging protection.
• Improved padlock icon behavior.
• Improved scan functionality and reporting.

• Fixed an issue using the Alt+D shortcut in Opera when Identity Shield was enabled.
• Fixed keystroke entry issues on some localized keyboards.

• Improved compatibility with OmniPass password management software.
• Improved Identity Shield behavior.

• Improved system performance and reduced background overhead for OpenText™ Core Endpoint Protection.

• Addressed unnecessary Firewall prompts.

• Improved Identity Protection compatibility with Firefox.
• Improved keylogger protection on Windows 8.
• Improved scan functionality.
• Updated the Identity Shield padlock indicator back to yellow to improve accessibility for visually impaired users.

• Fixed compatibility issues with Google Toolbar.
• Fixed a System Cleaner issue affecting Pegasus Email configuration files.
• Fixed issues with the "Scan with OpenText™ Core Endpoint Protection" and "Permanently Erase with OpenText™ Core Endpoint Protection" context menu options.

• Added additional logic to address Zero Day threats.
• Expanded support for Citrix XenApp, XenDesktop, and Virtual Desktop Agent (VDA) environments.
• Improved firewall prompting behavior in SME environments.
• Improved filename normalization and scan functionality.
• Improved handling of active threats, applications running from servers, and DLL scanning on network shares.
• Improved Identity Shield functionality and protection against information-stealing threats, including malicious browser helper objects.
• Improved installation functionality.
• Updated the Identity Shield padlock indicator to display a green color.
• Expanded OpenText™ Core Endpoint Protection coverage to protect HTTP sites in addition to HTTPS.

• Fixed a login issue on Windows 8 systems.
• Fixed Firefox support issues on Windows 8 when using Identity Shield.
• Fixed issues with user account switching.
• Fixed issues with update handling.

• Added support for new Identity Shield installation functionality.
• Improved Firewall administration from the Management Console.
• Improved scheduled scanning when no users are logged in.

• Added additional license logic for Identity Shield and Firewall capabilities.
• Introduced a new user experience, scan screens, and pre-install process.
• Added a new trial license key procedure.
• Added more granular control over System Cleaner scheduling.
• Added Zero Day Shield, USB Shield, and Offline Shield for layered protection.
• Improved infected system file repair.
• Improved support for Terminal Server environments.
• Improved ease of use and simplified configuration options.
• Improved antimalware engine effectiveness to block remote code exploits.
• Improved handling of digital certificates.
• Improved handling of terminated scans.
• Improved status reporting.
• Improved trial build installation experience.
• Improved performance and reduced UI overhead, particularly on lower-powered systems.
• Improved malware detection efficacy and System Cleaner results.
• Added support for Windows 8.
• Improved compatibility with other security solutions.

• Fixed multiple issues reported by customers.