JoesCat

Ok good enough then!

I have two policies I've created to disable everything, and nearly disable everything (real time protection, updates, Etc.) for troubleshooting purposes. When I'm working on an endpoint with problems, I want my AV solutions out of the way in case they're interfering somehow. But whenever I move an endpoint to one of these policies, it seems upon the next refresh a red ominous alert appears at the lower right indicating a restart is required to uninstall. The option to postpone is there, but . . . I DO NOT want to uninstall! In fact, I'd like the opposite - an option in the console to intentionally install MBEP at will should an endpoint be knowingly retiring (separate but related item).

Thanks Dyllon! I'm finally getting back around to this . . . I have not located my license key. In the portal, under my name (upper right corner), there is a "My Account" selection. None of the "tabs" on the left, including License Information, show the key. There is only a listing showing the license for Malwarebytes Endpoint Protection, Subscription, and the expiration date (late this year). Update, I just looked and found our "Product Key" in my original purchasing email, in the form of XXXXX-XXXXX-XXXXX-XXXXX-XXXXX . That must be it.

And only WinXP endpoints. Win7 does not exhibit this behaviour.

Added info: I added a new endpoint (that was getting a lot of detections and quarantines in the old product), and submitted a scan+quarantine. Now in the dashboard I have 2 "Infected". Four items were found and quarantined on this new endpoint. Nothing else occurred in the scan apparently - no "Found" or "Blocked". So if all four items the scan found were quarantined, why does the "Infected" count in the dashboard increment up?

On the cloud console dashboard, Infected: 1 . Now what? Where to go to see what's still showing as "infected"? The only place I found, which would be highly inconvenient as the deployment grows, is under the "Detections" left pane item, scrolling through ALL of the entries. Under Action Taken, some were "quarantined", some "blocked", and only one was "Found", just a registry value, "PUM.Optional.DisableShowMyComputer" , "HKU\S-1-5-21-2342763795-823332892-3551160719-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|START_SHOWMYCOMPUTER". I'm pretty sure it is benign. Yet there's nothing to click on to allow it for all endpoints like the old Enterprise for Business product.

Attached! Thanks in advance for the help! Addition.txt FRST.txt

I've installed 2 MalwareBytes Endpoint Protection on Windows XP Pro endpoints. On each, now everytime someone logs on, a File Explorer window opens to the Program Files folder for MalwareBytes. That's going to confuse the population of users (and entice experimentation). I've yet to figure out what's causing it! It's not in the Startup folder in the Start menu, nor did a registry search give me an obvious clue why it's happening. I found the entry to start the task tray icon, and that's working. Please help, I'd like to get rid of this annoyance.

Please add a "Refresh" button to all Cloud Console pages.

Coming from MalwareBytes Enterprise for Business, I had policies perfected for functionality and scan schedules. I could put everything required in a single policy - protection settings, and the desired scan schedules. I even had short names to simplify the list - "MW - S - ES" would essentially have malicious website protection, the "silent" option GUI, and Evening Scans. Done. Now, with MalwareBytes Endpoint Protection for Business, it's more convoluted thus far for me at least. Yes, there are still policies, but they are more limited, a step backward. No Silent install configuration, and "limited" only allows end users to postpone required reboots. NO scheduling included, that is now elsewhere. For scheduling scans, of course, you have to create them - no great extra step by itself - BUT, you can ONLY assign GROUPS - which only contain POLICIES. What were you thinking? You add an endpoint, assign it to a group (which is merely assigning it to a policy), then put that group into a schedule you create to finally achieve the desired settings. Too many layers without the justified breadth of diversity IMO.

MalwareBytes Endpoint Protection for Business (Windows): I know this is a huge request, but there is effectively no GUI for end users. Only an (apparently) non-functional tray icon. I don't even see a Start menu folder. Tinkering around, I discovered you can CTRL+RightClick and start a threat scan - but not a hyper scan or anything else. In our previous (and still many current) MalwareBytes Enterprise, I had set up policies for "silent", "limited", and "power" users. Please consider adding a useful GUI, at least for power users to I can allow those more technically proficient and trustworthy to be able to make at least temporary changes . . . like for a time period before settings revert back to the policy.