Jump to content

gotsuia

Members
  • Posts

    7
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Very strange. If I open Firefox 23 only, will get blocked; if I open IE9 only, nothing happened. If I open them together, certainly one of them will get blocked(maybe IE, maybe FF),also, open two IE will get blocked too.
  2. MBAE version 0.09.3.1000, HitmanPro.Alert version 2.0.10.45, In Windows 7 32-bit, I open two browser at the same time, for example(IE+Firefox), and MBAE will still report that it block an exploit, which was hmpalert_update.exe. Also that HitmanPro.Alert can run(inject dll to browser) under Sandboxie 4.04 without any other configuration, but MBAE can't, I think you can take a look of their product.
  3. I didn't notice Woomera have posted the same problem, please move my post to his thread.
  4. In Windows 7 32-bit, if user open two browser at the same time, for example(IE+IE, IE+Firefox),MBAE will report that it block an exploit, in mbae-default.log it was 2013-07-29 12:42:15 - 9 (5232)Internet Explorer the file C:\Users\xxx\AppData\Local\Temp\hmpalert_update.exe has been blocked 2013-07-29 12:42:15 - Alert MessageBox from (5232)C:\Program Files\Internet Explorer\iexplore.exe Also that HitmanPro.Alert can run(inject dll to browser) under Sandboxie 4.04 without any other configuration, but MBAE can't, please take a look of this problem, too.
  5. OK, thank you for take a look of the problem.
  6. When I have some exe program be protected by Microsoft EMET(use wildcard *), for example their name is「1.exe」、「ie.exe」「system.exe」, MBAM will detect that registry malicious. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\1.exe (Security.Hijack) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ie.exe (Security.Hijack) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\system.exe (Security.Hijack) Can you fix these?Thank you.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.