Jump to content

REGITDept

Honorary Members
  • Posts

    201
  • Joined

  • Last visited

Posts posted by REGITDept

  1. Dear MB Community,

    MB Supports are unable to help me (Case # 4263358), so I wanted to share the issue with the community about this in case someone else out there are having the same problem.

    The issue:

    Our users are encountering Exploit blocked "Exploit.OfficeSpawningBatchComm" when viewing certain Excel files. I have tracked it down and found out that when the users have Bluebeam 2019 add-on "BluebeamExcelLinkAddIn" for Excel it will caused MB to block. We do not want to exclude this detection from our policies such as turning off "Protection for Office spawning batch commands" because what if a malicious hacker is taking advantage of this?

    Attached you will find the Debug Logs for MB on one of the many affected clients.

    Thanks.
     

    Screenshot 2023-05-23 135507.png

    MWB_REGSVSOLIS.REG.LOCAL_Diag_2023_06_05_17_03_09.zip MWB_REGSVSOLIS.REG.LOCAL_Diag_2023_05_30_14_58_37.zip

  2. 23 hours ago, AdvancedSetup said:

    Hello @REGITDept

    Please reply to your current ticket:  3578792

    Attach this new log but make it clear this is another client.

    Basically I think they'll want you to create a new Policy that disables a setting and then move the client to that new policy but your support agent will provide you with more details.

    Thank you

     

    I just got their email today.

    I'm concern that instead of having the issue fix on MB's side. The workaround is to lessen the security on our side. That's not reassuring at all.

    Thanks.

  3. On 9/7/2021 at 11:01 AM, AdvancedSetup said:

    Thank you for the follow up @REGITDept

    It's possible that it was just some odd combination of running processes that triggered it. If it does return please let us know and we can review at that time.

    Thank you again and have a great week

     

    Good morning AdvancedSetup,

    The issue came back this morning. Attached are the logs you requested.

    Thanks.

    Malwarebytes Diagnostics.zip

  4. On 9/3/2021 at 12:11 PM, AdvancedSetup said:

    Hello @REGITDept

    One of my colleagues asked that we get enhanced debug logging for this.

    Can you please enable that on the system. Then reboot the system and gather logs again and submit to your ticket.

    On Nebula you Control+Right-Click the MB tray icon and there's an option to Enable Debug Logging

    Once completed please go ahead and turn off the enhanced logging

    Thank you again

     

    Dear AdvancedSetup,

    I'm unable to reproduce the issue to grab you the logs. Perhaps it was fixed?

    Thanks.

  5. 13 minutes ago, AdvancedSetup said:

    Hello @REGITDept

    One of my colleagues asked that we get enhanced debug logging for this.

    Can you please enable that on the system. Then reboot the system and gather logs again and submit to your ticket.

    On Nebula you Control+Right-Click the MB tray icon and there's an option to Enable Debug Logging

    Once completed please go ahead and turn off the enhanced logging

    Thank you again

     

    This will have to be next week because the user is already off for the week.

    Thanks.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.