Jump to content


Honorary Members
  • Posts

  • Joined

  • Last visited

Everything posted by ky331

  1. Thank you for your prompt reply. I've scanned the file again this morning, and as you said, it appears to be "clean" now. But it was definitely detected when I ran the scan listed above.
  2. c:\windows\installer\81a1f1.msi Microsoft Office PowerPoint Viewer 2003: This installer database contains the logic and data required to install Microsoft Office PowerPoint Viewer 2003. VirusTotal Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 3/18/21 Scan Time: 5:29 PM Log File: 11942e08-8831-11eb-86f1-3c970e22bc87.json -Software Information- Version: Components Version: 1.0.1217 Update Package Version: 1.0.38351 License: Premium -System Information- OS: Windows 10 (Build 19042.867) CPU: x64 File System: NTFS User: UserName-Computer\UserName -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 338725 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 34 min, 35 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Warn PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.4281115181, C:\WINDOWS\INSTALLER\81A1F1.MSI, No Action By User, 1000000, 0, 1.0.38351, A7359B1262C0B94BFF2CA22D, dds, 01163114, 6E2CE38930B1CC1BBB03A8D97D4E371E, E2F3DA489FD17FF346ADB26AC57DC4F4DDE4F38F7D152FA41F299E132B88344A Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
  3. Same on Win 8.1. Not only did the icon disappear, but when I open protected programs, I'm not getting the requested system-tray notification tooltips. A reboot didn't change anything. I've reverted to x.257
  4. MajorGeeks (and sometimes Neowin) always "jumps the gun" on Firefox by a day. FF 76 will be "officially" released later today (Tuesday, 5 May).
  5. MBAE will work with MB Free... (It will also work with MB PREMIUM, if you disable MB's anti-exploit protection, should you have a reason to do so). HOWEVER: Every time you install or update MB's program, it will automatically remove any MBAE installations. Meaning, after updating MB (FREE or PAID), you will have to reinstall MBAE. Hake, while you're here... what's the latest version of MBAE that you consider XP-compatible?
  6. Anti-Exploit only works with files by NAME (e.g., brave.exe), NOT by its path. By protecting brave.exe, you are protecting ALL files of that name, regardless of path, and regardless of whether it's the brave browser, or some other distinct program that shares the same name. So after you enter brave for the "first" browser, mbAE will tell you that it's already been added, when you attempt to enter it for the "second" browser.
  7. MalwareBytes Anti-EXPLOIT is NOT blocking PM (on my 32-bit Win 8.1 system) [as it had been with PM 28.0] So it appears that they fixed it on their end.
  8. Pale Moon Extensions Default Full Zoom Level 5.6.1-signed Encrypted Web 5.1.5 Lazaruns: Form Recovery 2.3.1-signed.1-signed uBlock Origin uBlock Origin Updater 1.6.3 WOT 20131118.1-signed Plug-ins Adobe Flash Intel Identity Protection Technology (Web Component & Updater) ----------------------------------------------------------------------- Computer Security Specs 32-bit Windows 8.1 (fully up-to-date with August 2018 updates), Panda 18.x Free Anti-Virus, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, MBAM Free, MBAE Premium, WinPatrol PLUS 32.0.2014.5 , Zemana AntiLogger Free, CryptoPrevent 7.4.2 (I believe Panda was at 18.1 when I first upgraded to PM 28.0 ; it has since updated itself to 18.6 "Dome") ------------------------------------------------------------------------- I know you'll probably say it's overkill with all that security, but so far as I can tell, everything plays well together. The bottom line: PM 27.9.4 ran fine with all the extensions/add-ons/security cited above... the problems stated when I tried to update PM from 27.9.4 to 28.0.0. I did so using the program's internal updater. When PM wouldn't start, I thought maybe something went wrong, so I downloaded the full-installer and ran it. Again, PM wouldn't start. Disabling MBAE's shielding of PM is what worked for me. And for the time being, that's how I'll keep it on my 8.1 system. P.S. I ran a critical scan for viruses with Panda, and a threat-scan for malware with MBAM, and nothing showed on on either.
  9. No, I haven't. Nor do I intend to pursue this issue any further: PM is currently my "third-choice" browser... I typically use either IE or FF. Moreover, PM is working on my primary system (Win7). I basically started this post as a "heads-up" to others, who I thought might be experiencing this same issue. You've indicated you CAN run PM 28 with the latest MBAE shielding it... so it's clearly not a "universal" (cause and effect) problem. Based on the general lack of response, I think I'm just gonna move on. Thanks for your input.
  10. I know... I've been following their forum and noticed that there too.
  11. Thanks for the offer, but I'll pass. I have PM installed on two different systems... Win7 and Win8.1... so if I want, I can compare the files on these. On Win7, I'm running MBAM 3 Pro, and had no problem using PaleMoon 28. On win8.1, where I'm running the latest MBAE beta, that's where the problem occurred.
  12. I'm not sure how to determine whether or not mozglue.dll is "corrupted"... but I find it interesting that it's cited as the cause of "similar" problems with launching PaleMoon here: https://forum.palemoon.org/viewtopic.php?f=3&t=19955&p=148339#p147846 Moonchild commented (later in that thread): Mozglue.dll "is where the memory allocator lives and what ties most components together. The fact it crashes in that dll most likely means there's a memory inflation issue".
  13. A bit more information (if it helps): With MBAE "protecting" PM, event viewer documents the problem as Faulting application name: palemoon.exe , version: Faulting module name: mozglue.dll Exception code: 0x80000003 Fault offset: 0x00003686 ------------------------------------------------------------------------- Just wondering: since no one has replied here, is no one else experiencing this issue?
  14. Just tried upgrading to the new PaleMoon v.28, but mbae is blocking the program from fully loading --- it starts to load into memory, but then "drops out" of RAM. When I deactivate the PaleMoon shield in mbae, then PaleMoon runs normally. Using 32-bit Windows 8.1 Malwarebytes Anti-Exploit.zip
  15. Malwarebytes new EXTENSION for FIREFOX is blocking Discover (Card/Bank) site as malicious/phishing https://www.discovercard.com/cardmembersvcs/loginlogout/app/ac_main moz-extension://38f08724-5bf6-4a9e-be6b-200035170586/redirects/blockedMalware.html?url=https%3A//www.discovercard.com/cardmembersvcs/loginlogout/app/ac_main&host=www.discovercard.com&category=phishing
  16. I'm still waiting for an official answer to the original question. Given that part of the problem is hardware/firmware related (requiring a BIOS/UEFI update), and part of the problem (to the best of my understanding) is based on the precise exploitation of "timing loops", I would hazard a guess that such vulnerabilities are beyond the scope of what MBAE monitors. I'd be happy to learn I'm wrong about this.
  17. Snoopx: Hopefully, you have a copy of the older version to install it. After you do so: Double-Click on MBAE in your system tray to open it. Click on the SETTINGS tab. UNcheck the box to "Automatically upgrade to new versions". That stops the AUTOMATIC (i.e., without prompting you to confirm) updates. HOWEVER, you will now be presented with a "nag screen" prompting you to allow the update EACH TIME YOU REBOOT. You need to click CANCEL whenever you're presented with this confirmation dialogue if you want to keep the older version in use.
  18. Same here... with x.41 on XP/SP3, programs (Firefox, PaleMoon, Adobe Reader) either don't finish loading... or if they do load and open, will sooner-or-later freeze. I am keeping v.24 on my own XP system, and disabling MBAE (due to auto-updates) on my wife's systems. No problems under win7/sp1
  19. If you had MalwareBytes Anti-EXPLOIT 1.09.x FREE installed on your machine, it will (either prompt you to, or automatically) update to 1.10.x... which will be remaining in "perpetual BETA" status. There is no more "general" (or "non-Beta") version available. Among other changes, what used to be premium features are now available to ALL/free users! Opened up Premium shields to Free users as part of MBAE Beta Opened up addition of custom shields feature to Free users as part of MBAE Beta
  20. What will happen to MBAE --- which "doesn't like" EMET --- once Microsoft embeds EMET into Win10, per the following: After previously stating it was dropping support for EMET in July 2018, Microsoft announced yesterday plans to embed its vaunted EMET security toolkit in the Windows 10 kernel during the operating system's major update, scheduled for October-November 2017. https://www.bleepingcomputer.com/news/microsoft/microsoft-will-embed-emet-into-windows-10-starting-this-fall/ [This needs to be addressed both for MBAE as a separate program, as well as in terms of its inclusion in MBAM premium.]
  21. Would it be possible for you to post, in this forum, the specific bug fixes being made in each new build? A change-log (history). I'm sure most users/testers would appreciate this. (In the past, it seemed the same change-log was shown for multiple increments of the program.)
  22. Open MBAE, and go to SETTINGS. The third box there should say "Show system tray notification tooltips". CHECK that box to show information, UNcheck the box to NOT show things.
  23. Just installed x.1208. Quick/preliminary testing showed no problems... seems to be working fine on Win8.1, Win7x64 SP1 (with EMET 3.x) and WinXP SP3 (+EMET 2.x). Note: These older versions of EMET don't seem to cause compatibility issues as occur with EMET 4.x and newer. So I'm just leaving well-enough alone here.
  24. It looks like you've released BOTH a new "stable" version , as well as a new beta version, today (2 August). I had assumed the 1.08 series was "done", and was figuring you'd release 1.09.x as soon as you considered it stable. So why the DOUBLE release today? That can be very confusing for those testing your program: should we test the new "stable", or the new "beta"???
  25. MBAE works with filenames... either using popular programs (such as Internet Explorer and Firefox)... or, in the paid version, user-added programs, as specified/added by the user. It does NOT monitor anything else. So, if you change the name of a program, you've effectively "hidden" it from MBAE's "sight". One must distinguish between general anti-virus / anti-malware programs, whose goal is to try to offer you overall protection, and must consider that programs can be renamed to try to avoid protection... vs. anti-exploit, whose specific goal is to monitor only those programs that are regularly exploited (browsers, including add-ons like Flash; and in the paid version, Reader and Office).
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.