Jump to content

Remote Desktop and MalwareBytes


Recommended Posts

I am running Windows 8.1 Pro.  For some reason, must exit MalwareBytes (running at startup) or I will never be able to connect to the session via rdp.  I am using a VPN client to establish a tunnel to my comapny and then RDP from my client to my work servers.  If I exit MalwareBytes (in system tray) I can establish a connection to the servers at my company with no trouble.  See attachment.

Link to post
Share on other sites

I am running Windows 8.1 Pro.  For some reason, must exit MalwareBytes (running at startup) or I will never be able to connect to the session via rdp.  I am using a VPN client to establish a tunnel to my comapny and then RDP from my client to my work servers.  If I exit MalwareBytes (in system tray) I can establish a connection to the servers at my company with no trouble.  See attachment.

The screeshot mentioned above is attached.  I could not find where to edit my original post to include it there.post-170002-0-95599900-1406474448_thumb.

Link to post
Share on other sites

New members can't edit posts.

 

It seems you have answered your own question.  Disable Malwarebytes before entering into a RDP Session via VPN.

 

Okay, but why is malwarebytes preventing the connection in the first place?  It should not be doing this, and if it does, it needs to at least tell the user that it is preventing the connection.  

Link to post
Share on other sites

  • 10 months later...

HI,

 

Okay, now that windows 10 is coming out, I would like to try to figure out why two things keep happening:

 

1.  I still have to kill malwarebytes when I establish a vpn and then try to RDP to my server corporate server infrastructure.

2.  Malwarebytes will not auto update.

 

I think I have attached all of the logs requested.

 

 

FRST.txtCheckResults.txtAddition.txt

Link to post
Share on other sites

Open Malwarebytes and check History > Application Logs > Protection Logs for evidence of a block.  Also, what kind of VPN is it, and what protocol does it use?  You may need to add exclusions for the VPN process (if it is coming in to the protected box) or RDP (if the protected box is a secondary connection).  Also, an exclusion for a specific IP that is making a connection (while making sure that it is as hardened as you can make it to assure protection).

 

I know this is kind of vague, but you have a much better view of your environment than I do.  I have seen various security products block some VPN protocols and allow others, so a bit of experimentation may be needed.

Link to post
Share on other sites

Thanks for the reply!  I am running the vanilla windows 8.1 Pro L2TP /IPsec vpn with the MS-CHAP v2 protocol.  I can establish the VPN tunnel without any problems but cannot connect to the servers via RDP when MalwareBytes is running. I am using NIS and to provide virus protection and that never has any problems with RDC.  All of my evidence seems to point to something in MalwareBytes.  I will give the application logs a review and post back here if I have any questions, or run into a dead end.   

Link to post
Share on other sites

  • 2 years later...
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.