Simon_2016

I noticed this new command under tasks this morning. I've 13 workstations pending a command.service.restart.

After having checked the installation files I could see that although the MalwareBytes .Net prereqs had been installed successfully, the actual agent hadn't. Several restarts/uninstalls later it still wouldn't go on. Uninstalled Symantec SEP and the agent deployed. The discovery and deploy tool advises each time that the install was successful, surely, this shouldn't be the case.

Hello, I have installed MalwareBytes on a Windows 7 desktop in a domain environment using the Discovery and deployment tool and receive two warnings when selecting the endpoint from within the dashboard: Unable to retrieve endpoint asset information. If the problem persists, contact Malwarebytes support. AND Unable to retrieve endpoint agent information. If the problem persists, contact Malwarebytes support. Can you please help? Thanks Simon mb-check-results.zip

Hello, I'd like to get this resolved soon, Is there anything else we can try? Thanks Simon

Hello, I've asked whether or not access to cdn's and in particular https://data-cdn.mbamupdates.com are restricting exe downloads and I've been told no. Using wireshark I can see (after stop/starting MalwareBytes Anti_exploit service) that the endpoint is successfully reaching out to 52.22.111.103 which is Sirius.mwbsys.com by my reckoning. I can't see any attempted connections to data-cdn.mbamupdates.com which seems to translate to 92.122.164.242. I can get a copy of these logs over to you if you have a secure method? Thanks Simon

Hello, Please see the attached C:\Programdata\Malwarebytes anti-exploit logs in zip format from a client that is affected. I have also checked that the automatic update box is ticked on the client. Thanks Simon MBAE.zip

Hi Ron, I've now added that additional URL https://sirius.mwbsys.com but the clients are still reporting old versions of Anti-exploit. How can I get the logs securely to you? When I open them they appear as gibberish. Thanks again Simon

Thanks for getting back Ron. I've had the 'Automatically upgrade anti-exploit on clients' enabled for almost a week now and the clients aren't receiving the latest MBAE version. I've added the following to the firewall: https://data.service.malwarebytes.org https://data-cdn.mbamupdates.com https://keystone.mwbsys.com Any ideas? Thanks Simon

Thanks for getting back Ron. I upgraded the anti-exploit agent on the management server by running the mbae-setup1.09.2.1413.msi Thanks Simon

Hello, I've upgraded the management console and server to 1.8.0.3443. I've upgraded the anti-exploit agent on the same management server to 1.09.2.1413 However, when I run the client push update in order to update all clients it lists v 1.09.2.1291 and not 1.09.2.1413. How do I get the server to push out this edition? Thanks Simon

Hello, I've upgraded the management console and server to 1.8.0.3443. I've upgraded the anti-exploit agent on the same management server to 1.09.2.1413 However, when I run the client push update in order to update all clients it lists v 1.09.2.1291 and not 1.09.2.1413. How do I get the server to push out this edition? Thanks Simon

Hello, I had MalwareBytes with the protection and anti-exploit modules installed and 'enabled'. It was unable to stop Jaff ransomeware last week from encrypting multiple files. After disconnecting the workstation from the network and running a manual scan it was able to deal with the virus. Has anyone seen this type of behaviour? The database and definitions were up-to-date. Any thoughts appreciated. Thanks Simon

Hello, I have a newly installed Management server. The Anti-Malware license is not being accepted. However the exploit license is. Another sysmptom, related or not is that the Update database icon is greyed out. Any help greatly appreciated.