-
Posts
65 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by kola1
-
-
I just had one of my machines update from V4 to V5 on it's own :(
I wonder if there's any way to prevent that from happening. I'd like to say on V4 for as long as I possibly can. -
2 minutes ago, Porthos said:
@kola1 It is best to keep the defaults.
Thanks for the tip. Do you know if the V4 installer publicly available for a download somewhere? I'm assuming that V5 is soon to replace it, I wonder if there an EOL date planned for V4? Because I'd like to stick with it until either I'm forced to update or V5 gets a better UI.
-
I had to re-install MBAM on one of my machines today and got the new V5 for the first time.
At first launch, I thought that maybe I have downloaded it from the wrong website on accident because it looks so much like a freemium fake AV. But this is the latest and the greatest MBAM, I guess :(
I do not like the new UI, It's ugly, it's cluttered and tries to upsell me something that I will never buy. I don't want your VPN. I'm not interested in it. I'm here for MBAM. I'm only here for your AV. Stop being AVG and throwing things in our face to buy. WTH was wrong with the old UI? It was clean, it was functional, it was familiar, and most importantly it didn't shove Avast-like freemium upsells in your face. I'm very much glad that there are other people like me that do not like the change.Is the V4 EOL now?
Also, why can't I change the start time in scheduled scans? It's locked to "At idle time" and won't let me change it.
-
Hello,
MBAM is blocking nilear for us at work.IP 40.142.95.109
api.nilear.comThank you.
-
Malwarebytes
www.malwarebytes.com-Log Details-
Protection Event Date: 10/31/22
Protection Event Time: 7:23 AM
Log File: 820a78eb-590e-11ed-8d7a-b8aeed7f5b1f.json-Software Information-
Version: 4.5.16.217
Components Version: 1.0.1792
Update Package Version: 1.0.61722
License: Premium-System Information-
OS: Windows 10 (Build 19044.2130)
CPU: x64
File System: NTFS
User: System-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\ScreenConnect Client (648002a410d363d9)\ScreenConnect.WindowsClient.exe, Blocked, -1, -1, 0.0.0, ,-Website Data-
Category: RiskWare
Domain: server-nixde3ff2ff-relay.screenconnect.com
IP Address: 145.40.106.4
Port: 443
Type: Outbound
File: C:\Program Files (x86)\ScreenConnect Client (648002a410d363d9)\ScreenConnect.WindowsClient.exe(end)
-
I see that there's another person that has an exact issue as mine.
I'm willing to bet now that this is not just an isolated case at this point and the problem stems from within the MBAM program itself, since I've done everything possible to troubleshoot outside of reloading Windows from scratch again.
-
21 hours ago, AdvancedSetup said:
Please run as requested otherwise go ahead and wait for the Helpdesk to reply to your ticket
Thank you
I've cleared temp/cache files. The problem is still there.
Luckily I got a response from the support already. I hope they can figure out what the heck is going on.
Thanks for all the help.
-
22 minutes ago, AdvancedSetup said:
Hello @kola1
No promise this will fix the issue but please go ahead and run the following fix and we'll see. Make sure you disable all other security software temporarily.
Please download the attached fixlist.txt file and save it to the Desktop or location where you ran FRST from.
NOTE. It's important that both files, FRST or FRST64, and fixlist.txt are in the same location or the fix will not work.NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system that cannot be undone.
Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt) or wherever you ran FRST from. Please attach or post it to your next reply.Note: If the tool warned you about an outdated version please download and run the updated version.
NOTE-1: This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity. Depending on the speed of your computer this fix may take 30 minutes or more.
NOTE-2: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications will be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed. The use of an external password manager is highly recommended instead of using your browser to store passwords.
The following directories are emptied:
- Windows Temp
- Users Temp folders
- Edge, IE, FF, Chrome and Opera caches, HTML5 storages, Cookies and History
- Recently opened files cache
- Flash Player cache
- Java cache
- Steam HTML cache
- Explorer thumbnail and icon cache
- BITS transfer queue (qmgr*.dat files)
- Recycle Bin
Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.
The system will be rebooted after the fix has run.
fixlist.txt 546 B · 0 downloads
Thanks
It looks like it just cleans a bunch of temp files. I'm wondering if this is any different than running CCleaner with all options checked?
2 hours ago, Porthos said:Be ready for a longer than usual wait. Since your license is good we can do just as much here and possibly faster. Be aware this a holiday weekend and both the help desk and staff members on the forum might be away until after the holiday.
The staff member that posted earlier @AdvancedSetup in the topic can get you up and running but I believe he is off for the long weekend.
Understandable. I'm not in a rush. I hope that MBAM realtime protection is still working and it's just not updating the definitions until next restart.
Here is a video clip of exactly what is happening, so that it's easier to understand. Apologies for the shakiness as I was filming it one handed.
Thanks
-
It seems that the only issues I have with MBAM always have something to do with licensing. I've created a ticket 3102139. I hope that someone can help me figure this out.
-
If this https://keystone.mwbsys.com/ is what MBAM needs to connect to the license server, then at least I have no problem reaching the domain with Firefox when MBAM decides to stop updating and give me the error message. So there doesn't appear anything to be preventing MBAM on my system or network from reaching that particular server.
I'm just pulling my hair out as to why MBAM decides to temporarily working if I disconnect the machine from the internet and immediately connect it.
-
I've rebooted the modem and the separate router. The issue sadly still persists. I've even tried connecting to the hotspot on my smartphone.
-
12 hours ago, kola1 said:
I don't know if this helps but when I disconnect the laptop from the wireless AP and then reconnect, MBAM is able to perform an update and doesn't give me the license error message.
But the problem eventually reappears after anywhere between 15 minutes to a couple of hours.
-
I don't know if this helps but when I disconnect the laptop from the wireless AP and then reconnect, MBAM is able to perform an update and doesn't give me the license error message.
-
21 minutes ago, Porthos said:
Makes complete sense.
It's just so weird. MBAM works just fine sometimes for about 15 minutes. Sometimes for a couple of hours, but eventually the error message comes back.
I'm not able to ping some of those domains that you've provided even when MBAM appears to be working, but I'm guessing they are setup not to reply to external pings or something; however, when MBAM license message appears, I'm able to navigate to keystone.mwbsys.com with my browser and get the OK message. Which from the description look like what MBAM needs to reach for license validation.
I've attached separate logs when MBAM is working and after it throws me the error. In addition, I've enabled logging of dropped connections in Win firewall and I've included that log as well.
Thanks so much.
mbst-grab-results-not-working.zip mbst-grab-results-working.zip pfirewall.log
-
6 hours ago, Porthos said:
@kola1 Here is the article.
https://support.malwarebytes.com/hc/en-us/articles/360038516734
Man, I have no clue what is going on with MBAM on my machine. I've been doing some forum digging and other people have been having the same error pop up in the past, but they were able to fix it by removing Malwarebytes domains out of their HOSTS file.
I've never had any reasons to tamper with mine. I've got a freshly imaged, up-to-date, less than one year old laptop. I'm not on the buggy 2004 build. I'm not even running any other incompatible AVs, besides Windows Defender of-course.
I've deactivated MBAM. I've deactivated in the online console. Uninstalled it using my latest paid Revo and the official MBAM removal tool. I've applied all of the auto-magic fixes in the Malwarebytes Support Tool. I've used DISM, SFC, reset Windows firewall to defaults, reset TCP/IP stack, reset winsock. Restarted a few times before finally reinstalling and activating MBAM.
I'm seriously running out of ideas at this point. Would it make sense if I collect logs when MBAM is working and then collect them again when it's misbehaving so that someone can potentially compare them together and help me figure out what is going on?
-
Hey, I'm literally having the same issue as you
Try opening up elevated command prompt or power shell (aka open it as administrator) and run these commands, one after another. Then reboot your machine. See if this helps.
netsh winsock reset netsh int IP reset
-
So far I've been opening and closing all of the different programs, including vmware and MBAM seems fine at the moment.
Would I be able to get the actual domain name that MBAM uses to check license, so I can try running ping test, nslookup, and tracert to see what in the heck is going on when MBAM starts acting up again?
I guess I can try using Wireshark but I would like to be sure I'm looking for the right thing.
Thanks
-
14 minutes ago, Porthos said:
The only thing I see that sticks out to me is the VM ware network listing.
Looks like this guy also has the same problem. Can anyone check if there have been many people with open tickets for the same thing? It could be a known issue.
-
I was wondering the same. I've never seen that option before. Must be new.
- 1
-
2 minutes ago, Porthos said:
The only thing I see that sticks out to me is the VM ware network listing.
That looks like virtual adapters that are part of the vmware Workstation. I can try uninstalling it temporarily I guess. It would really suck if that was the issue because I need it for school.
The oddest thing is that MBAM works just fine for a little while sometimes 20 minutes to couple of hours before throwing the error message.
I ran the usual:
DISM /Online /Cleanup-Image /RestoreHealth sfc /scannow chkdsk C: /f /r /x netsh winsock reset netsh int IP reset
Rebooted the machine. It's been maybe more than 15 minutes so far and MBAM has been OK. It really boggles my mind what triggers the problem.
-
I've got the eero system. I don't believe that it's blocking it because as soon as I reboot the machine, MBAM starts updating and the message doesn't show up.
Start seeing the message a few hours after using the PC.
So the issue must be either in Windows or MBAM itself.
I'm super confused because the Windows install is maybe only one and a half months old and I had the error message pop up for the first time when I installed MBAM.
-
2 hours ago, exile360 said:
Glad to hear it, I hope the issue is resolved, but please keep us posted if any issues do occur. AdvancedSetup also mentioned that he is going to review the logs to check for issues, so if there is a problem with the system's connection, he should be able to help.
1 hour ago, AdvancedSetup said:So is all working okay for you now @kola1
Darn. The error message is back again. What exact domain is it trying to reach? I want to know if the issue is my router, PC, or MBAM.
-
4 minutes ago, AdvancedSetup said:
So is all working okay for you now @kola1
For now no issues so far. Deactivating MBAM and reinstalling it didn't work but deactivating the license twice (in the web account and MBAM itself) seems to have done the trick, even though I didn't reinstall it the second time. I'll definitely post again if the issue persists, if that's OK.
Thanks
-
24 minutes ago, exile360 said:
Glad to hear it, I hope the issue is resolved, but please keep us posted if any issues do occur. AdvancedSetup also mentioned that he is going to review the logs to check for issues, so if there is a problem with the system's connection, he should be able to help.
Thank you so much! This forum is great. I've always had good luck finding help. Way better than some other companies' support forums.
I'd give thumbs up if I could
Malwarebytes 5
in Malwarebytes for Windows Support Forum
Posted
Not sure what to say. It went from 4.6.9 to version 5. Skipped 4.6.10 🤷♂️ I don't like that.