Jump to content

Imperator

Members
  • Content Count

    14
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Imperator

  • Rank
    New Member

Recent Profile Visitors

1,936 profile views
  1. That seems to have worked. No block occurs with either gsyncit version when running v1.10 of AE. Thanks for the help.
  2. When I open Outlook 2013 with the gsyncit add-in enabled an AE block occurs. Running Outlook in safe mode or disabling the add-in produces no block. This occurs on the version of gsyncit that I had installed (v.4.2.292) and the latest (v.5.0.72). Logs attached. Win10 Pro x64, fully updated as of 9/18 PS - Not sure if this is related but it appears to be: mbae-userdata.zip
  3. Hello Rsullinger, Thank you for taking the time to address my question. We are running MBMC version 1.6.0.2816. I will upgrade to 1.6.1 as you suggested and will report back my findings.
  4. Is it possible to exclude the PUM object type 'NoSMHelp' from being flagged and removed? Our current policies have the scanner action for PUMs set to 'Show in results and check for removal'. I of course understand that changing the action to 'Show in results list and do not check for removal' or 'Do not show in results list' will exclude it, but this is undesired as we do want PUMs to be logged and flagged for removal; just not 'PUM.Optional.NoSMHelp'. I also understand that we could find the object in the threat list and right-click the object and select 'exclude this object' or manually
  5. After upgrading to 1.07 and changing the profile to 'browser' there are no longer any issues with opening/using spotify. Thank you very much for your assistance, it is much appreciated!
  6. Hi pbust, I've sent you a PM with an archive of the mbae data directory. As for the profile, I had set it to use the 'mediaplayer' profile. When looking through the profile list I only see a profile for 'browser' and not 'ChromeBrowser'... I assume that profile doesn't exist in the 1.05 version of MBAE (which is what I am currently running). I will upgrade to the newer 1.07 release of MBAE and recreate the custom shield with the profile you indicated. After which I will provide an update on the situation.
  7. As the title states, MBAE for Business is detecting and blocking exploit code in Spotify. I just installed MBAE on the test system so this is the first run of the program. I have the latest version of both MBAE and Spotify. I've had no issues with Spotify in the past and MBAM and Symantec Endpoint Protection have not found anything malicious on the system or with Spotify. Would this be a false positive? I'd rather not make an exception for Spotify so it can be protected in the event of a real threat. Furthermore, Spotify is installed on many machines in the company so it could prove to be a
  8. What a shame. Here is my +1 vote in favor of this feature to be added in a future release. All I can do I guess. Thank you for the clarification!
  9. Hello, I am wondering if there is a way to adjust the duration of inactivity before the logged in user's session expires. I have not been able to find this in the documentation or on the forums. Any help will be appreciated.
  10. Hello Lazz, Your first inclination was "right on the money". The client clock was 6 minutes fast, as compared to the server. When I read that last snippet of the log the time issue didn't stand out to me but once you brought it up, it was a "duh" moment for me. I synced the client clock to match the server and presto! No error message & the client appears in the console now. I can certainly still send you the sccomm.log file if wish, but the I believe the issue has been resolved. Thank you very much for the quick response/resolution!
  11. Hello, I am trying to remotely deploy the client to a machine (through the management console) but I receive the follow message after the deployment "completes": I am deploying the client to a W7 Pro, fully updated, fresh install, no odd configurations, etc. I re-imaged the PC a 2nd time, but I still get this error. I have tried a local manual install, using an msi package created by the management console. but I still end up with the same error. I imaged a different workstation (same base image) before attempting this deployment and that first deployment had no issues. So the client ap
  12. Hello! A colleague of mine uses a toolbar in Firefox called SEO Toolbar by SEOmoz which when enabled is producing IP block messages from Malwarebytes for the IP: 199.15.234.7 independent of the actual web page he is on. When the toolbar is disabled, no block messages are produced. I believe this is a false positive as I am under the impression this IP is an "authorization" server for the toolbar or something along those lines. Any help would be appreciated. Thank you! protection-log-2012-10-10.zip
  13. Imperator

    putty.exe

    I too have begun to receive warnings from Malwarebytes for PuTTY 0.62 beta across our network. A fresh copy of PuTTY still gets flagged. Every time the alert is warning that PuTTY.exe is infected with Trojan.Swrort. Malwarebytes Anti-Malware (PRO) 1.61.0.1400 Malwarebytes Anti-Malware (Corporate) 1.61.0.1400 Database version: v2012.05.01.05 Windows 7 SP1 x64 & x32
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.