Follow along with the video below to see how to install our site as a web app on your home screen.
Note: This feature may not be available in some browsers.
6/14/2024 11:09:07 AM WerFaultSecure.exe CloseFile C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MsSense.exe.5564.protected.dmp SUCCESS
6/14/2024 11:09:07 AM WerFaultSecure.exe QueryNameInformationFile C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Platform\10.8735.26020.1009\MsSense.exe BUFFER OVERFLOW Name: \ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Platform\10.8735.26020.100
dir /s /a "C:\Program Files\Microsoft Monitoring Agent\Agent\Health Service State" > "%userprofile%\Desktop\Dirlist.txt"
MsSenseS.exe;MsSenseS.*
6/14/2024 1:05:07 PM svchost.exe CreateFile C:\Program Files\Microsoft Monitoring Agent\Agent\Health Service State\Monitoring Host Temporary Files 19\1108\MsSenseS.exe PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
Sorry not sure what you mean by Microsoft Defender Endpoint extensions installed on the serverOther question? Are the MDE.windows extensions still installed on both servers or only the problem server?
I mean VM extensions as described here: Automatic extension upgrade for Azure Arc-enabled servers - Azure ArcSorry not sure what you mean by Microsoft Defender Endpoint extensions installed on the server
Maybe I've found another clue and that's an outdated MMA (Microsoft Monitoring Agent) see the reddit post below.All the ones I've found with defender not installed I've never been able to onboard.
Arh ok. I don't think these servers are Azure Arc Enabled. There's normally a service that runs called Windows Azure Guest Agent and it's not on theseI mean VM extensions as described here: Automatic extension upgrade for Azure Arc-enabled servers - Azure Arc
Thanks will have read. MMA is the old version of UA I think its EOL Aug 2024 so there is also another piece of work to migrate devices that are onboarded with MAA and migrate those to UA. The devices I'm looking at now have never been onboarded. Most devices I've come across do have MMA installed, but the ones I'm looking at are not onboarded.Maybe I've found another clue and that's an outdated MMA (Microsoft Monitoring Agent) see the reddit post below.
Additional reference: Server migration scenarios for the new version of Microsoft Defender for Endpoint - Microsoft Defender for Endpoint
Has Sysnative Forums helped you? Please consider donating to help us support the site!