Jump to content

Recommended Posts

Our IT company recently purchased and deployed managed Malwarebytes to about 950 machines. We started getting calls of found infections and it was getting insane! I did research and found NOTHING on the issues. It kept generating infected files "winupdate.exe" in all of the user profiles and system directories. I finally figured out what it was. We manage all machine updates on the workstations so I thought to test that theory and remove Kaseya services. Sure enough once Kaseya was disabled no more infections found. I know these are false positives but it is generated a large headache to deal with them. I have a log file of the infections and a log file after Kaseya was removed (no infections) attached. Let me know if you need anything more. I also saw a few posts on here unresolved, so I hope this helps with future support to them.

Thanks!

mbam-log-2011-03-07 (16-16-33)-INFECTED.txt

mbam-log-2011-03-07 (16-22-12)-CLEAN.txt

Link to post
Share on other sites

  • Staff

Ok this is more than likely a settings/exclusions issue.

Please contact corporate support at:

To qualify for business support services, you MUST HAVE a valid annual subscription and able to provide the following information for verification purposes.

Cleverbridge Order Reference Number:

Organization name:

Approved Contact name:

To contact our Corporate Support Team, please send email with the requested information to: corporate-support@malwarebytes.org

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.