I am seeing a problem with the Elastic Endpoint service on a couple of windows servers. When trying to start the service we get the error:
The Elastic Endpoint service failed to start due to the following error: Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
There is no corruption on the server and the file is 100% valid. This started happening after a reboot. The Elastic Agent runs fine. When I try to run the process manually I get the following crash details:
Faulting application name: elastic-endpoint.exe, version: 220.127.116.11, time stamp: 0x63212a86 Faulting module name: ntdll.dll, version: 10.0.17763.3887, time stamp: 0x494079d6 Exception code: 0xc0000005 Fault offset: 0x0000000000015fff Faulting process id: 0x944 Faulting application start time: 0x01d9302b6b7af2ba Faulting application path: C:\Program Files\Elastic\Endpoint\elastic-endpoint.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 41e35abc-1d67-4473-9189-2a62864737e4 Faulting package full name: Faulting package-relative application ID:
There are no crash dumps in C:\Program Files\Elastic\Endpoint\cache\CrashDumps
Is this a known issue?