Jump to content

fittan

Members
  • Posts

    8
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. My bad.mdmregistrationhandler_64.zip...attached should be the correct file.
  2. mdmregistrationhandler.zip Attached is the zipped detected file. How can I generate full detection log? I am running Malwarebytes Endpoint Nebula. On the client, there's only option to "Start thread scan". There is no tabs, or any options to pull log. On the server (cloud.malwarebytes.com), I also can't find any option to pull log. Please advise. Thanks.
  3. Hi, I received a ton of notifications this morning (3 AM EST) that a file in my DesktopCentral agent (by ManageEngine) is a malware. Can someone confirm if this a false positive or not? Thanks. Malware.AI.28863885 Quarantined C:\PROGRAM FILES (X86)\DESKTOPCENTRAL_AGENT\BIN\MDMREGISTRATIONHANDLER_64.EXE
  4. Hi, I recently converted from ES to EP and is very frustrated with the whole experience and/or management interface. Maybe I am missing something. Can someone review following points and let me know if this is the "norm" or I am missing something. Thanks. 1) No ability to determine if clients have up-to-date definitions or policy. Under Endpoint Security console, you can quickly see all client and their latest definitions version, engine, policies etc. With the new cloud console, you only the client and "Last seen at". It is also not possible to customize columns. So to determine client definition version, I need to click every single client and then exit and repeat for however many clients I have. 2) No longer received email notifications of blocked websites. Under Endpoint Security, whenever a client visit a malicious website, I get notified via email. In some ways, this is how I know that the agents are working. With EP, this notification is no longer available. 3) On the client, the Malwarebytes icon is useless. When I click on icon, the only option is to perform a manual scan. With ES, I was able to view latest definition, policy applied and even some logs. 4) Unable to identify infected computers From "Dashboard", under "Endpoints" section, it shows Online, Offline and Infected computer. I have 3 "Infected" computers. However, I can't click on the "3" to identify which computers are infected. The only option is "Manage Enpoints" which brings me back to main screen. In short, there is no way to quickly identify which are the infected computers. 5) The Malwarebytes Endpoint Agent service keeps shutting off. On a daily basis, this service on 1/2 my clients keep shutting off by itself. The main Malwarebytes Service is still UP, but this agent (which reports to the cloud) will be off automatically.
  5. Hi, I just converter from ES to EP. I was able to download and run EICAR test virus. Why doesn't EP detect it? And if it doesn't, how can I be assured that the real time scanning engine works? Thanks.
  6. Thanks I have a similar script that runs from the server (using the sc command). However it is so annoying as I have to check and sometimes manually start the services.
  7. Hi, I have the latest malwarebytes anti-malware and anti-exploit running on about 40 clients (all windows 10). The problem is that everyday I have 5 to 6 clients and their malwarebytes services stopped for no reason. Sometimes it is the anti-exploit service, sometimes it is the MBAMservice and sometimes it is the MEEClientService. I would then have to manually start up the services or reboot the computer. Is this a common problem? By the way, I have checked the event logs and there is nothing. Also no other AV running. Only Windows defender and malwarebytes. Thanks.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.