Malwarebytes endpoint agent exclusions

Document created by drossler Employee on Jun 2, 2017Last modified by rsullinger on Sep 8, 2017
Version 4Show Document
  • View in full screen mode

For the cloud platform, there are some recommended exclusions to put in place if you are using other protection software. These can range from network firewalls to anti-virus software. To ensure our product can work side by side with those other vendors, please enter in the exclusions below:



(All on Port 443, Outbound)




Endpoint Agent Files

  • %ProgramFiles%\Malwarebytes Endpoint Agent
  • %ProgramData%\Malwarebytes Endpoint Agent
  • /Library/Application Support/Malwarebytes/NebulaAgent/ (Mac)
  • /Library/LaunchDaemons/com.malwarebytes.NebulaAgent.plist (Mac)

IR/EPP Files

  • %ProgramData%\Malwarebytes\MBAMService
  • %ProgramData%\Malwarebytes Endpoint Agent\Plugins\Incident Response\Logs


Registry Keys

  • HKLM\Software\Microsoft\Windows\CurrentVersion\Setup\SysprepExternal\Generalize\E85C5BD4-F8FA-4D8C-94F7-DDBDB00F974B
  • HKLM\Software\Microsoft\Windows\CurrentVersion\Setup\SysprepExternal\Generalize\2947892B-C390-476F-90AB-CD0D5F421614
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall