Jump to content

CHMOD_777

Staff
  • Posts

    92
  • Joined

  • Last visited

Everything posted by CHMOD_777

  1. Hello @jlbrown, I see that you were noticing a high number of entries in a system.log. I'd like to have you collect logs from the endpoint and submit them to us via a support ticket. Please see the links below for instructions on how to collect the logs as well how to submit a new ticket. Collect Logs https://support.malwarebytes.com/hc/en-us/articles/360038522294-Collect-Malwarebytes-Endpoint-Agent-diagnostic-logs Create New Ticket https://support.malwarebytes.com/hc/en-us/requests/new Warm Regards,
  2. Hello @fyang, I see that you were having some difficulties with trying to disable the service. It is likely that you have the "Service and Process Protection" function enabled. Please see the screenshot below for more information regarding this. Additionally, if you have the tray icon enabled, you can always hold "CTRL" + "Right-Click" the tray icon and selection the option that says "Stop Malwarebytes Service." Warm Regards,
  3. Hello @GMSMRM I currently have a support ticket with you regarding this issue but haven't heard back from you. I'll send you another follow-up on the case so that we can discuss further. Warm Regards,
  4. Hello @AlexLeadingEdge, I see that you were having some difficulties with scans failing. It could either be the machine is not connecting to the cloud console, in which case you may want to restart the endpoint, or the "Malwarebytes Endpoint Agent" service. If the plugin is not installed, that would also cause it to fail. When you look at the list of services, do you see the "Malwarebytes Service?" It should be directly under the aforementioned "Malwarebytes Endpoint Agent" service. Regarding uninstalling and redeploying Malwarebytes, you can use the uninstall utility, MBST, linked below. MBST CLI Utility: https://support.malwarebytes.com/hc/en-us/articles/360038524734 Installing Malwarebytes: https://support.malwarebytes.com/hc/en-us/articles/360039025273-Add-endpoints-in-Malwarebytes-Nebula An excerpt from the installation link Windows MSI: msiexec /i "<fullpath1>\Setup.MBEndpointAgent.msi" /quiet /log "<fullpath2>\Setup.MBEndpointAgent.msi.log" NEBULA_PROXY_SERVER=http://<ip> NEBULA_PROXY_PORT=<port> NEBULA_PROXY_USER=<user@domain> NEBULA_PROXY_PWD=<password> GROUP=<gggggggg-gggg-gggg-gggg-gggggggggggg> @ECHO. %ERRORLEVEL% returned by MSIEXEC Windows command line switches /i - Runs installation. Example: msiexec /i "<fullpath1>\Setup.MBEndpointAgent.msi" /passive /x - Runs uninstall. Example: msiexec /x "<fullpath1>\Setup.MBEndpointAgent.msi" /quiet /quiet - Optional. Runs silent installation. /passive - Optional. Runs installation and shows GUI progress box. /log - Optional. Outputs to the specified file. This is equivalent to the switch “/L”. If a software deployment tool is being tested where /log cannot be used, a registry setting can force logging. For more information, see Additional MSI References below. Warm Regards,
  5. Hello @SmoothOperator, Thank you for the recommendation. I have taken this and forwarded this information over to our Development and Engineering team for review. Warm Regards,
  6. Hello @DeanAnderson Currently, the latest version of Anti-Exploit is 1.13.2.146. I'd like to make sure you have this version installed and see if you are able to still replicate this issue. Warm Regards,
  7. Hello @ymitech I found another post of yours relating to a similar topic. As I've replied on the other, I will go ahead and merge these two posts into one, so we may continue off the original. Warm Regards,
  8. Hello @ymitech We're sorry to hear that you are having some difficulties logging in to update card information. Would you mind taking a screenshot of the specific Malwarebytes Product you are using so that we may verify and determine the steps that will be necessary to help resolve this. As both @exile360 and @Porthos suggested, we will likely want to have you open up a support case at the following link in order to better assist you and keep personal your information off a public forum. Business Support: https://support.malwarebytes.com/community/contactsupport/pages/business-support Warm Regards,
  9. Hello @straffin Unfortunately, there is not a method to run cloud based scans through the command line. The only command line utility for running scans would be the MBBR Utility which you mentioned you are familiar with above. Warm Regards,
  10. Hello @rapw2013 Can you please take a screenshot of where you are searching including the options you are using to search for endpoints? Additionally, what version of the Malwarebytes Management Console are you using? Warm Regards,
  11. Hello @rapw2013 Rather than trying to remove the endpoints from "Admin" tab, you'll want to be in the "Client" tab, select the endpoints you wish to remove, right click, and then select "Remove Client(s)". Please see the screenshot below detailing this. Warm Regards,
  12. Hello @straffin If you are looking for command line scanning, you might be interested in Malwarebytes Breach Remediation which is a command line scanning utility. Please see the link below for information on how to use the tool. Please note that scans run from MBBR will only display the results locally, and that information will not be pushed to the cloud console. MBBR Admin Guide: Malwarebytes Breach Remediation Windows Administrator Guide Warm Regards,
  13. Hello @straffin I see that you had some questions regarding having users initiate a scan. If you have the tray icon enabled, they can do so by right-clicking the Malwarebytes Tray icon and selecting Run scan. Please see the screenshot below. Warm Regards,
  14. Hello @Kernel Glad you were able to get this resolved. When you get "Failed to restore from Quarantine" you'll want to verify that the endpoint is indeed online and communicating with the cloud console via the "Malwarebytes Endpoint Agent Service." Warm Regards,
  15. Hello @JeffIT Glad to see that you have gotten this issue resolved. Our Team will be sending out a Root Cause Analysis to those affected regarding this issue. Warm Regards,
  16. Hello @MagCCB We are glad to hear that you are enjoying the new Multi Factor Authentication feature. Regarding the "whitelist" feature, I implore you to use the "Send Feedback" request at the bottom left of the console. This feedback goes directly to our development team who takes these kinds of request very seriously. Its feedback such as this which helped spur and expedite the development of this very MFA feature. Please see the screenshot below which details where the feedback item is. Warm Regards,
  17. Hello @j_french Unfortunately, there is not a method of adding network paths. Items for exclusion need to be a local address on an endpoint that has Malwarebytes deployed to it. I have linked the Malwarebytes Endpoint Security Admin Guide below. Malwarebytes Endpoint Security Admin Guide: https://support.malwarebytes.com/docs/DOC-1723 Warm Regards,
  18. Hello @dman110168 I wanted to reach out and let you know that I have created a case and sent you instructions on how to collect logs. I'd like to have you send those up for analysis. Warm Regards,
  19. Hello @dman110168 Just to verify, no changes the policy have been made regarding communication and updates? Have there been any configuration changes to the server, IP address, etc? Warm Regards,
  20. Hello @Wenger I see that you were having some difficulties activating Web Protection. I wanted to have you verify which product you are using as you posted in the Incident Response Section of the forums.. If that is indeed the product you are using then you will be unable to activate Web Protection as that feature is not included in Incident Response, only Endpoint Protection and Endpoint Protection and Response as those include active Real Time Protection Engines. Warm Regards,
  21. Hello @torrey I see that a case has been opened regarding this issue. I will continue to support you via the case you have opened up. Warm Regards,
  22. Hello @torrey, In that case, you'll just want to run the full installer with all items checked. It will notice the products already installed and skip them. Warm Regards,
  23. Hello @torrey, Can you try an uninstall and redeploy to this endpoint to see if it works on the second time. Warm Regards,
  24. Hello @torrey When looking at your Management console's client tab, are you seeing the 3rd icon for Anti-Ransomware in the client list? Is that icon on any of the endpoints? Warm Regards,
  25. Hello @torrey What errors are you receiving when you try to install the Anti-Ransomware component? Warm Regards,
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.