zerohearne
Honorary Members-
Posts
34 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Everything posted by zerohearne
-
mbae compatiblilty with MSFT Device Guard
zerohearne replied to zerohearne's topic in Malwarebytes Anti-Exploit for Business
Understood. Thank you for your reply. -
Hi! I'm a bit confused atm. Malwarebytes 3 load time was kind of slow since its launch. I've recently updated to the latest version and it loaded much quicker (tray icon). yesterday I had to restore my system from a system image and ever since the load time went back down for MBAM, I tried reinstalling it but its load time is bad again... I have a very fast system, MBAM loads from a (Samsung 640 evo pcie) any tips that might help getting the load time back to the way it was? version 3.1.2
-
Signature-less anomaly detection
zerohearne posted a topic in Malwarebytes for Windows Support Forum
Hello! just curious, what are the basics behind signature-less anomaly detection? Is it a new layer of security? What does it do? What does it protect against? -
I'm about to enable Virtualization Based Protection of Code Integrity and after running the Device Guard Readiness Test for Incompatible HVCI Kernel Driver Modules it found some mbae processes. this is a common procedure in enterprise IT system so I would think this wouldn't be an issue. Please let me know if I can continue with the VBP deployment. DG Readiness PowerShell Data.txt
-
I went exploring in the exploit protection setting and noticed not every mitigation is checked. For example Bottom Up ASLR enforcement is disabled. Will selecting these boxes improve security?
-
I've noticed that all my Windows App Store programs are also not showing any dll injections. I think it could be conflicting with its sandboxing protocols and since Edge employs some of these sandboxing technics it might be the reason why its also not showing I could be completely wrong but that's the only link I can think of in this case. Skype.exe, steam, internet explorer, iTunes all show dll injections. The ones that aren't showing any that i've tested so far are the Photos app, Movies & TV/media player and Edge. Let me know what else I can do to help. MB-CheckResult.txt
-
hi I was just checking up on the dll injections to make sure everything was working correctly but there wasn't any dll injections for Edge nor the "Microsoft.photos.exe" app, I've checked both 32 & 64 bit dlls but non have shown up, other programs do tho. Steam.exe shows up and so does skype.exe I've also ran the mbae-testing tool and that worked fine.
-
well it'll take some time, its a lot of shields but if its the only way I'll give it a shot. Thanks for the help guys <3
-
I believe this is what you were talking about. Archive.zip
-
I'm sorry, how do I do that?
-
Hi! I've been using MBAE for quite sometime now and i've began to encounter some bugs in the current and past versions of the software. #1: When I shield and application all the other applications running MBAE stop working and require a system reboot. #2: When I shield a new application it takes a reboot for the new shield to get into affect, in the past the shielding was instant. #3: The amount of applications I can shield has reached its limit, when I attempt delete an old shielded application nothing happenings and all applications running MBAE stop working requiring a reboot.
-
False Positive with Micorsoft Office componet
zerohearne replied to zerohearne's topic in Anti-Ransomware Beta
Thanks. OfficeClickToRun.zip