gonzo

Staff
  • Content count

    2,635
  • Joined

  • Last visited

1 Follower

About gonzo

  • Rank
    Staff

Profile Information

  • Location
    Bat Country
  • Interests
    radio propagation, baseball history, rock music, useless trivia, spirited debates, BEER

Recent Profile Visitors

35,648 profile views
  1. Try this: When you start Chrome, a profile that has been pushed to the cloud by the sync process which contains malware (such as the PUPs you refer to) is stored there until you login to Chrome again, causing the malware to come back to your PC. Follow the steps listed in the above post to see if that fixes it.
  2. Why are updates so large?

    I would recognize @bdubrow as an authoritative voice on this issue. She will be fully aware of any product updates, and has specifically mentioned two days worth of issues with signature updates. As @canna said, signature updates are usually small and quick. The dates you mention do coincide with dates that @bdubrow mentions however.
  3. ransomware

    1.80 does not have Anti-Exploit technology in it. That is a separate product.
  4. ransomware

    I've been waiting for your reply! If you have that version of client, you are most likely completely up-to-date. That makes me feel better knowing your admins have kept up with the newer releases and kept you safer in the process.
  5. Read this section about Windows Action Center in the User Guide. Change the setting for Malwarebytes to "Never" and see if that fixes your problem.
  6. ransomware

    The client (end-user) should have version 1.80. There are two other number groups after that, but they are not significant. The client went to that version a little over 2 years ago. The Management Console is version 1.8, but you would not be able to see that unless you are the Malwarebytes administrator at your site and have access to the server.
  7. ransomware

    I hope your school is not using what we called Malwarebytes Enterprise Edition (MEE), because that is ancient and was replaced 3.5 years ago by another product that has continued to evolve. Ransomware is not "a" thing, it is a collection of things. Many or all of the ingredients may be present, but only after the process has begun can you tell that it is what you believe it is. A poor analogy (which I will use anyway) is that you can have eggs, flour, water, salt and whatever else, but its not a cake until you combine them in the right order and prepare them in the prescribed manner. Ransomware is similar in that regard. You can wait, get screwed and know for sure, or recognize the extreme possibility and take precautionary steps. I hope that answers it better.
  8. ransomware

    I'm not sure what Malwarebytes Enterprise is, but a Windows or Mac version of Malwarebytes would use signatures designed for those operating systems as well as heuristics based on characteristics of those operating systems. The same would hold true for Mobile. While you may have the same program that runs on multiple operating systems (Windows, Mac and/or Mobile), they are put together differently based on the rules and requirements of the environment. The way that ransomware would attack also differs from one OS to another. All of that being said, I'm not surprised at what you reported.
  9. You will need to pursue this in your support ticket. Also, please clarify to them whether you have Endpoint Protection (new program) or Endpoint Security (older program). They are completely separate entities, and I bring that to your attention based on your last reply. The names of our products are very similar and unless you have been with us for a while, you may not be aware of that. The Support person you are working with is also new (I believe).
  10. Q1: Not the case. That is the build number associated with the version 3.0.3 release. The next one would be 3.0.4 or 3.1, depending on the significance of the update. I stay out of that part, so I don't know which it would be. Q2: This page tells you what version is current, and what changes were incorporated into the version. It also shows older versions. When they update the product, you will need to download the new one and install it. The Windows version can download updates for you, but I don't think the Mac version does yet.
  11. Whitelisting website - need wildcard ability!

    Damn! I was hoping. I can understand why it is done. A single subdomain may become infected, so unblocking all with one command could cause you worse problems. They're helping you, though it doesn't seem like it. The notification allows you to add an exclusion for that specific server/IP each time, so once you have all of their servers excluded, you wouldn't see any more notifications. That keeps you protected and slowly gets you to where you want to be. Sorry I don't have a better answer.
  12. Whitelisting website - need wildcard ability!

    Have you tried using "example.com" as your exclusion? I believe that will also exclude subdomains. Try it. Let us know.
  13. Adding to what @Aura said, if your email address is an entry in someone else's address book AND it had been compromised, it is likely that everyone that person knows got an email similar to the one you received. The best way for you to handle things like this is to: Not respond to things that make no sense Never click an "unsubscribe" link (this validates your email address as a live one, causing you to receive even more of these) Hover over links to find out where they actually go (regardless of who they say they are), and ignore any that raise doubts on your part Bad guys look for easy prey. Don't be the easy prey. You could always raise a question on this forum if you are unsure, and people will be glad to help you stay safe.
  14. Blocked Site need advice

    @pjm1128, What geographical area are you in? Its not being blocked right now for someone in Florida, so I'm gathering data.
  15. Blocked Site need advice

    Verified here as well. I will report it through internal channels also.