Jump to content

StroTech

Members
  • Content Count

    50
  • Joined

  • Last visited

About StroTech

  • Rank
    Regular Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Thanks for the reply, I checked those logs and while I did see a similar error, it did not include a hash value. Also, it seems to be working currently. I also just updated to the latest management server version, maybe that will help.
  2. Malwarebytes Anti Exploit Keeps changing to unlicensed So far it has happened two times. I had to re-enter the license information to get it back to licensed. I do not understand why this might be happening. Is there something I can do to make sure it does not happen anymore?
  3. https://support.malwarebytes.com/docs/DOC-1257 Already checked everything at the above help doc. When visiting https://keystone.mwbsys.com on our management server I got "OK".
  4. Hi, is this still being looked into? i have not gotten an email or a response
  5. Ok, sounds good. When do you think we might hear something?
  6. Practically all of our computers today detected this same thing: The only ones that have not detected it yet have not been online or have not yet run an auto scan. I am assuming this is a false positive, but want to make sure.
  7. Anti Exploit not updating on some machines, multiple versions behind We have a few machines that are multiple versions behind our other machines. Cannot figure out why they are not updating like the rest. What info do you need?
  8. Our network is locked down and we cannot get the latest version of anti exploit from the posted link https://malwarebytes.box.com Also, is there a way to replace the version of anti exploit that we have on our malwarebytes management server? When we install it on a new computer, it does not seem to be updating to the latest version of anti exploit on its own. I would like to replace it with another copy in case it has some problem.
  9. k, how long should it usually take for a fresh install with an older version of anti exploit to get updated to the current version of anti exploit? Right now A computer we reinstalled the endpoint security on has version 1.11.2.55. Just reinstalled it yesterday.
  10. Also, is it ok to take a recent version of the anti exploit installer and put it into the package template folder on the malwarebytes management server? Then create an installation package.
  11. All of the computers are getting updated to that version, so will have to wait and see if the issue persists. I do have another question. Should the Malwarebytes Management Server automatically update its Package Template folder? Currently it still has version 1.11.2.55 of Anti Exploit. I know after it is installed that it will automatically update to the latest on the client, but is the package template folder version not supposed to get auto updated for future installation packages?
  12. Hello, had two exploit notifications after I updated Office 365, wanted to check and make sure they were false positives: "2018-07-12T10:00:51.226-05:00";"usernameh";"11412";"C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE";"9948";"explorer.exe";"2";"502";"301";"0x18061784";"";"0x00020000";"0x18230000";"0x18134000";"0x1822F308";"";"";"";"";"" "2018-07-12T10:01:17.062-05:00";"username";"2300";"C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE";"9948";"explorer.exe";"2";"502";"301";"0x1B8B1784";"";"0x00020000";"0x1BA70000";"0x1B974000";"0x1BA6F1F8";"";"";"";"";"" We also had an exploit detection with adobe reader dc and pdfcreator: 7/11/2018 1:02:51 PM Exploit code executing from stack blocked BLOCK username Adobe Reader C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe Attacked application: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe; Parent process name: PDFCreator.exe; Layer: Protection Against OS Security Bypass; API ID: 450; Address: 0x00C6D000; Module: ; AddressType: ; StackTop: 0x00C70000; StackBottom: 0x00C6B000; StackPointer: ; Extra: Total count: 1. Please let me know what else you need.
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.