on Jun 2, 2017If you are using additional security software alongside the Malwarebytes cloud platform, there are some recommended exclusions you should put in place. Exclusions help prevent your security software from conflicting with the Malwarebytes cloud platform's operations. In this case, security software can range from your network firewall to antivirus software.
We recommend that you configure your exclusions according to the External Access Requirements and Antivirus and Firewall Exclusions sections in this article. To ensure you are using the most current exclusions for the Malwarebytes cloud platform, refer to the Malwarebytes Administrator Guide, Before You Begin section.
External Access Requirements
If you use a firewall or other device to control your Internet access, exclude the websites as listed here. The Malwarebytes Endpoint Agents use the websites below reach the Malwarebytes services. You must exclude all websites on port 443, outbound.
https://cloud.malwarebytes.com
https://data.service.malwarebytes.com
https://telemetry.malwarebytes.com
https://data-cdn.mbamupdates.com
https://data-cdn-static.mbamupdates.com
https://keystone-akamai.mwbsys.com
https://socket.cloud.malwarebytes.com
Antivirus and Firewall Exclusions
You may need to define exclusions for your antivirus and firewall applications. We recommend that you exclude the Malwarebytes folders and files in your antivirus, firewall, or other similar security software running in your environment.
For Windows Endpoints
%ProgramFiles%\Malwarebytes Endpoint Agent
%ProgramData%\Malwarebytes Endpoint Agent
%ProgramFiles%\Malwarebytes\Anti-malware\
%ProgramData%\Malwarebytes\MBAMService
%ProgramFiles%\Malwarebytes Endpoint Agent\Plugins\Incident Response\Logs
%SystemRoot%\system32\drivers\ESProtectionDriver.sys
%SystemRoot%\system32\drivers\farflt.sys
%SystemRoot%\system32\drivers\mbae.sys (mbae64.sys on an x64 system)
%SystemRoot%\system32\drivers\mbam.sys
%SystemRoot%\system32\drivers\MBAMChameleon.sys
%SystemRoot%\system32\drivers\MBAMSwissArmy.sys
%SystemRoot%\system32\drivers\mwac.sys
For Mac Endpoints
/Library/Application Support/Malwarebytes/Malwarebytes Endpoint Agent
/Library/Application Support/Malwarebytes/Malwarebytes Endpoint Agent/UserAgent.app
/Library/LaunchDaemons/com.malwarebytes.EndpointAgent.plist