Comments
-
Dear @StanOrch When did the subscription expire? More than 90 days or less than that? How many devices are there with the protection still installed, but blocked by the password? Please send email to support@watchguard.com So we can provide personalised help on this matter. Explain your problem on the opening email, and we…
-
Hello, @Jeroen_SSP The patch is classified, otherwise you would not have been able to update the program. The issue is with the new modified executable file. As the program updated, they also modified the main exe file for the program, and by modifying the md5 for the file, they create a new unknown file for the AV. So we…
-
Hello, @Jason24 We do have something that might help you on conduct a controlled upgrade on one of those mentioned role server. First of all, you should apply the General Bet Practices for upgrading altogether: https://www.pandasecurity.com/en/support/card?id=700039 When these specific devices are ready to upgrade, start…
-
Hi, @Bruce_Briggs Most of those minor changes come in the form of released Hotfixes, but not as released version as such. What I mean is, we do release the hotfix but not install it on all devices, as not all devices might need the hotfix. So that is released and it is available for whomever needs it. We send it as an…
-
Hi, @Bruce_Briggs . I will try to cover all your points. If I miss something or I am not too clear on anything, just let me know. * In order to see the version available for your devices, click on the dented wheel at the top right, and select About. This will provide the version which can be installed on your devices. To…
-
Hello @Bruce_Briggs When the Network admin is checking on the WatchGuard EDR/EPDR/EDR core, a quick glance at the notifications bell can be performed. By antivirus Status, I mean the health status on the protected network: Checking the status page, the detections, the health on the installed protections, etc, etc. Regards,
-
I completely understand your concern, but that is our notification an update is available. It can easily be check by the Network administrator while reviewing on the antivirus status. It will be there for a couple of months before forcing the upgrade from our premises. I understand this could be disappointing, but we do…
-
Hello, @Bruce_Briggs We always provide the option for a manual upgrade, before forcing it: Just if after sometime, you have not manually deployed the upgrade, we do force it for security reasons. But prior to forcing it we will allow some time for you to plan the upgrade.
-
Please, open a case to support, as information from the devices is needed in order to check the connection problem.
-
Where is the X mark located?
-
Hello, @Ahmed Connection problem is not always related to allowing the URLs through the firewall. It also covers the security over the communications between the device and the cloud, and that is device related. You might need local certificates updated, security and ciphering suites, TLS enabled, etc. Please try the…
-
Thanks for the Feed Back, @Bruce_Briggs. Have a nice Weekend.
-
Hello, @Bruce_Briggs If a restart is being constantly asked, it means the device is not able to: uninstall the previous version during the reboot, or install the newer during restart. This behaviour could be due to several reasons, among them: Device not being able to execute shutdown and restart scripts (policies) Damage…
-
Yes, I am afraid my explanation was not fully explained: EDR core will not block any unknown file. Of course known malware or pups will be blocked. Yes. In resume, EDR core will send a notification when an unknown file is being executed, but in no case this unknown file will be blocked. But if the file being executed is a…
-
Yes, We do recommend to have the hardening mode for the first two weeks after installing, and then change to Lock. So you are fully protected. No unwanted executions will be allowed on your devices. Have a nice day! David
-
Hello, @BerndW If you set your Operation Mode for the Advanced protection Module to Lock, you are protected against any unknown execution or any known malware, no matter the source of its execution (local, network, ...) Here is our Layer detection Model to show how our protection works:…
-
Hello, @Bruce_Briggs That sounds like EDR or EPDR, but not EDR Core. Thank you for opening a case, we will get back to you through that path, with data requests in order to study this more in depth.
-
Hello, EDR core should not block files at all. It is prepared to only send notifications when a unknown file is trying to be executed. By creating exclusions, you do ignore those excluded files or folders, and will not be noted, no notification will be sent for those files/folders. But in any case, should EDR core block…
-
We have already identified the source of the problem and we are working on a fix that is scheduled to be automatically deployed early/mid next week. In the meantime, if you do not want to disable AntiExploit on the profile for the devices, you can Set Chrome as default web browser to also avoid the incident. This can be a…
-
Hello, Richard, I am not sure of us the causing root for this issue As far as I am concern we do not interact or integrate with Edge. David
-
Yes, It says blocked, I have not doubt of your words. But it must be EDR or EPDR. If it is blocking it, there must be a detection on the online console and from there you should be able to unblock it. I am sending a PM to you. David
-
Hello, Robert_Vilelmsen Are you sure it is being blocked by EDR core? EDR core does not have Blocking capabilities, only informs on suspicious or unknown files. It can be EDR or EPDR. Could you please confirm? Regards, David
-
Hello, SkyJaxx. We keep the recovery keys for an unlimited time. The problem is the information stored on the online consoles: if more than 90 days go pass the expiration date without renewal, you will not be able to access the data directly, but will have to contact our technical support line in order to get that info.…
-
Hello, SkyJaxx Plesae check for any ID stored by us on our database from the online console by clicking here: If a recovery key does not match the search query, some modification had to be made, but foreign of our agent (no configuration changes have been made on this computer), which has caused a new "Recovery Key ID" to…
-
Hello, Panda_BD on the online console, open one of the detection lines. and check the origin MAC address. check the IP assign to that MAC, by opening a MSdos console and executing the command: ARP -a That will give you the IP (all devices should be turned on and also part of the network, otherwise the IP will not be…
-
Hi, mchavez PM sent. Let us know if there are further issues.
-
Hi, Cicciopalla. I have just sent you a PM. David
-
Hi, svt11 Please try the following in order to check if It is panda the cause for the fall on speed: Please create the Administrators panel, for the local machine: FOR THE AETHER CONSOLE: Access the Aether console Click on the SETIINGS tab Now access on the left hand column “Per computer Settings” Copy the Default profile,…
-
Mr or Ms rv@kaufmann.dk is got a point here. The file missing is part of Microsoft Visual C++ library. Try the solution provided on previous message on this thread, and if that does not solve the issue, please contact the Tech support for data collecting in order to know the exact problem on your device. Regards, David
-
Hello, Harya. You can check the web help: https://www.pandasecurity.com/en/support/card?id=50072 You can also schedule scans from the online console, but are more general than the local scans: https://www.pandasecurity.com/en/support/card?id=50007 Hope this helps David.