Jump to content

LiquidTension

Staff
  • Content Count

    2,880
  • Joined

  • Last visited

2 Followers

About LiquidTension

  • Rank
    Malwarebytes Staff

Recent Profile Visitors

6,276 profile views
  1. Thanks for sending across the latest data. We're currently reviewing it.
  2. We are in the process of working on a solution for the issue. In the meantime, you can install version 3.6.1 if you wish. This version does not experience the same issue. Here's a link to the installer: https://malwarebytes.box.com/s/plo5hdm39who0lwld7j1y5e55rum8z33 Once installed, you will need to disable one of the settings to prevent being notified about the 3.7.1 update (which does experience the issue). Open Malwarebytes. Click Settings. Turn the, "Notify me when full version updates are available" setting off.
  3. Thanks for the file. I see some adware present that I'd recommend getting cleared up first. Please consider creating a topic in the Windows Malware Removal section to have the machine cleaned up. Afterwards, if you're still unable to activate Malwarebytes Premium, please return to this topic and let us know. The source of the activation issue is most like related to your VPN. We can explore this further once the machine is cleaned up.
  4. I apologise for the confusion - I believe you've misinterpreted my post. I am not claiming the events logged to the System log are warnings. I am referring to the Malwarebytes service internal logging. As I mentioned, the Malwarebytes Self-Protection logging (in one of Malwarebytes' own log files) coincides at the same time as the Schannel errors you're seeing in the Event log. Therefore, as a means of troubleshooting and narrowing down the specific source of the Schannel errors, I recommend temporarily disabling Self-Protection, rerunning a scan and checking if the Schannel errors still occur. If they don't, we've successfully narrowed down the specific source of the errors. This will help help us investigate exactly why those errors are being logged to the System log.
  5. Thanks for the file. The Schannel Event Log errors coincide with the following Malwarebytes events: 03/18/19 " 10:36:43.018" 2566754 0350 1cbc WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "ObjCallback: Process (\Device\HarddiskVolume15\Windows\System32\services.exe) thread access for protected process \Device\HarddiskVolume15\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe with access 10" 03/18/19 " 10:36:43.206" 2566942 02a4 17a0 WARNING MBAMChameleon PreProcHandleOperationRoutine "mbamwatchdog.c" 725 "ObjCallback: Process (\Device\HarddiskVolume15\Windows\System32\csrss.exe) thread access for protected process \Device\HarddiskVolume15\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe with access 1fffff" These events originate from the Self-Protection component in Malwarebytes. They're normal/expected. As a test, try disabling Self-Protection in Malwarebytes and check if the Schannel errors still appear. To do so: Open Malwarebytes. Click Settings. Click Protection. Scroll down to Startup Options and turn the Self-Protection module setting off.
  6. Hello, Please carry out steps 4 and 5 in the topic linked below so we can investigate the issue: https://forums.malwarebytes.com/topic/190532-having-problems-using-malwarebytes-please-follow-these-steps/
  7. You could also try running the following command from an elevated Command Prompt: "C:\Program Files\Microsoft Security Client\mpcmdrun.exe" -RemoveDefinitions This rolls back the current definition update to a previous version.
  8. Hi @DSperber, The Schannel error you're seeing is typically related to network communication between a client and server. Here's a user who reported seeing the same error: https://forums.malwarebytes.com/topic/236708-scan-produces-schannel-error/ Note that this user also has Microsoft Security Essentials installed. Could you try disabling/uninstalling MSE and then check if the error is still exhibited during/after running a scan with Malwarebytes. It would also help if we could obtain some troubleshooting logs to see if any errors in Malwarebytes' service logging coincide with the errors in your Event Log. Steps on how to provide the logs can be found here: https://forums.malwarebytes.com/topic/190532-having-problems-using-malwarebytes-please-follow-these-steps/
  9. Hi @slovokia, Thanks for providing the data. We recently made some changes to how files are queried against some of our internal systems during an online scan. To test, please could you try running the same scan whilst the machine is disconnected from the Internet and check what impact this has on the completion time. Could you also try out latest components package version (1.0.563) please. Details here: https://forums.malwarebytes.com/topic/242280-ladies-and-gentlemen-mb371/?do=findComment&comment=1304385 ----- Please do the following as well: Press the Windows Key + R on your keyboard at the same time. Type eventvwr.msc and click OK. Expand Applications and Services Logs. Expand Microsoft followed by Windows. Scroll down the list and expand CodeIntegrity. Right-click Operational and click Save All Events As.... Name the file codeinteg and click OK. Navigate to the location of the file. Right-click the file and click Send to followed by Compressed (zipped) folder. Name the Zip file EventLogs.zip and send the file to me.
  10. Hello, This issue is not being caused by Malwarebytes. The 1.289.1521.0 definition update released by Microsoft appears to be the cause. The following screenshot is captured from a machine without any Malwarebytes software installed. There are various other reports of this issue: https://answers.microsoft.com/en-us/protect/forum/all/microsoft-security-essentials-real-time-protection/e58f2bb3-f423-4948-85d1-684925f671e3 https://superuser.com/questions/1415239/microsoft-security-essentials-log-indicates-it-keeps-crashing https://www.askwoody.com/2019/windows-defender-security-definition-problems/ https://techdows.com/2019/03/microsoft-security-essentials-windows-defender-0x800106ba-error.html https://social.technet.microsoft.com/Forums/en-US/18ab60a3-3b26-4a07-b68d-84085ce66ce5/scep-crashing-pcs Microsoft will likely address this by reverting the update or releasing a fix.
  11. Thanks for the information. I've responded to your topic in the other forum section. We can move any further discussion there.
  12. Hello, I've reviewed the logs and found no evidence of malware present on the computer. As I mentioned in your other topic, our Research team have confirmed the IP is safe. There's no apparent need for a fixlist. Do you have any other concerns or issues with the computer currently?
  13. Hello, I'm sorry to hear about your continued issue. Do you have Macrium, Acronis or similar backup software installed on the computers? Please could you provide troubleshooting logs from a few of the affected computers. Steps on how to do so can be found here: https://forums.malwarebytes.com/topic/190532-having-problems-using-malwarebytes-please-follow-these-steps/
  14. Unfortunately, we've been unable to reproduce the issue (due to the limited information provided, it's possible we aren't using the correct testing conditions). We'd appreciate if you could upload the dump file and other log file for analysis. Thank you!
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.