Jump to content

Bastionpoint Technology

Members
  • Content Count

    9
  • Joined

  • Last visited

Everything posted by Bastionpoint Technology

  1. The fix that Rbuck117 posted appears to be the official fix. Support reported back to us that the issue was resolved, but no details on what that resolution/fix was. On the new installs of Anti-Exploit that we have done, the Memory patch hijack protection setting for Microsoft Office is unchecked by default. So we have disabled that setting in our MBAM Console. Our issue with applying the policy to our endpoints via the MBAM Console appears to have been us making too many policy changes in a short period of time.
  2. We are seeing this too. It is affecting about 200 of our endpoints and we have been unsuccessful in pushing a new policy to our endpoints via the MBAM console to affect that change. We are having to manually touch each computer to work around this issue. We have 20+ man hours into dealing with this so far. I'm attempting to escalate this issue with support.
  3. We had Anti-Exploit block it today. Version 1.09.2.1384. 5/16/2017 12:35:10 Exploit payload process blocked BLOCKC:\Windows\System32\cmd.exe C:\Windows\System32\cmd.exe \C copy \Y C:\ProgramData\HP\HP ENVY 5540 series\HPUDC\TH6AL2T0G70671_USB\UDC_device.json C:\ProgramData\HP\HP ENVY 5540 series\HPUDC\TH6AL2T0G70671_USB\UDC_device_2.json
  4. Hi. We are seeing MBAM 1.8 with definitions v2016.01.27.01 - v2016.01.27.04 detecting C:\ProgramData\Labtech and subfolders and files as PUP.Optional.Linkury. I'm not uploading individual files because it appears to be triggered by the existence folder. Thanks! MBAM-log-2016-01-27 (10-25-21).txt
  5. I had a false positive on the Java Updater this morning. Scan log attached. mbam-log-2011-12-01 (09-26-46).zip
  6. MBAM quarantined pfussmon.exe which is the Fujitsu "ScanSnap Manager" TSR that monitors the scanner for a button press and launches the scanning software. Running a scan in developer mode also found two instances of chksti.dll, which had not been quarantined (yet?). After looking at the file details, chksti.dll appears to be legit, and also part of the ScanSnap software. offending-files.zip mbam-log-2011-11-28 (18-12-12).zip
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.