Jump to content

exile360

Experts
  • Content Count

    23,922
  • Joined

  • Last visited

Everything posted by exile360

  1. OK, this is just weird. Where'd everybody go?: I've never seen this happen before. There's always at least 1 other user on. Maybe because of the holiday weekend (kinda)? Or maybe the site is doing some kind of maintenance, but I didn't see any pop-ups/notifications on the webpage about anything like that so I dunno. Either way, it's creepy.
  2. Ah good, so he just reset the activation count for you so that the other seats weren't tied up from those previous installations. Good, I'm glad to hear it If you do have any future trouble please don't hesitate to post here on the forums or to contact Malwarebytes Support and we'll do our best to get any issues sorted out for you. Thanks
  3. Greetings, Please include the entire ZIP file as it also includes installation logs and other data that can help Support and the Developers to track down issues with the installer. Thanks Never mind, the logs shouldn't be necessary. I just checked and it shows that you had gotten version 3.3.1 which was an older build known to have this issue with its installer. The most recent version, 3.5.1 doesn't have this issue so it shouldn't happen again as long as future versions remain bug free. Now that you have the newest version installed, is everything working OK?
  4. Yep, I'm pretty sure that the reason Malwarebytes breaks when restored like that is due to its configuration files that store its settings etc. because Malwarebytes detects the discrepancy between the date/time info in its configurations files and the current date/time when the system is restored and brought back online. Normally you can just install the latest version of Malwarebytes over the top of the existing installation in these cases and it should fix it without having to mess with your license info.
  5. For anyone affected by this issue who is running with Web Protection disabled, if you are using Chrome (or any Chromium source code based browser, including SRWare Iron, Chromium etc.) or Firefox (or any other Mozilla source code based browser) you may install the Malwarebytes browser extension beta. While it doesn't replace entirely the functionality of the Web Protection component, it can at least help make your web browsing much safer than having no protection. It doesn't necessarily block all of the malicious content that the Web Protection module does, but it does have the ability to block some things that Web Protection doesn't because it uses signature-less behavior based detection to block specific types of web threats including tech support scam sites, clickbait links (which are often host to malware and/or exploits), phishing sites, ads and ad tracking servers and more. When used alongside the Web Protection component it can actually make your browsing faster since it connects to the Web Protection component in Malwarebytes 3 to augment its functionality so when this issue with Web Protection is fixed, you can keep using the plugin to reap its benefits, but until then at least you'll have some protection when surfing the web. The plugins are available at the following links along with more info about them: Chrome Firefox For the moment they are free for anyone to use, however I do not know if that will be the case once they come out of beta as they may be integrated into Malwarebytes 3 as one of its Premium features for paid users. I haven't received final confirmation on what the company plans to do with them after testing is completed so I definitely recommend taking advantage of them for now while they are still available to everyone free of charge (even if you aren't using the paid version of Malwarebytes).
  6. While I don't have the specific technical details on the plugins, I can offer this link to the Malwarebytes Privacy Policy which applies to all of their websites and services as well as their software, including beta software like these browser plugins/extensions.
  7. Yes, it certainly may since the rootkit scan in Kaspersky happens in the background on some type of schedule and/or when the system is idle I believe. Info about that particular issue can be found here and while I do not know if it is still true, there was at least at one time another issue with Kaspersky, although that second issue did not cause Web Protection to turn off; it simply prevented Web Protection from actually blocking any sites.
  8. OK, if you would, please try disabling each protection component in Malwarebytes one by one, rebooting the system after disabling each, then testing to see if it helped. Once you've isolated the offending module please let us know which it was (assuming disabling any of the protection modules helps). If that still doesn't do it, right-click on the Malwarebytes tray icon and select Quit Malwarebytes then click Yes when prompted by User Account Control. Once Malwarebytes is no longer running at all, test again to see if RoboForm works and again, please let us know what, if anything, worked to allow RoboForm to function. Thanks
  9. It could have been a database update in Kaspersky that caused it. Since Kaspersky updates frequently, what it will detect can change at any time. You can check Kaspersky's history and quarantine to see, but even if nothing is found, I still don't believe it is due to malware because an infection wouldn't allow you to reinstall Malwarebytes and run a scan. In fact, deleting mbam.exe doesn't even break the real-time protection in Malwarebytes 3 Premium, so it wasn't a security risk anyway. All it would do is deny you access to the Malwarebytes UI. Even scheduled scans run through MBAMService.exe, not mbam.exe, so it wouldn't even prevent those from running. If you're concerned about it happening again in the future then you can make sure that Self-protection is enabled under Settings>Application in the Startup Options section (though if you had self-protection disabled due to any of the current known issues with that component, then I'd skip it if I were you and just keep an eye on things to make sure that Malwarebytes remains installed and functional; you can do this by ensuring the tray icon is always there and that it doesn't display any alerts about protection being disabled and you can even double-click on it every time you start your PC to make sure that mbam.exe is still present since it is the process used to display the main UI). By the way, if self-protection was already active, then theoretically the only way it could have been removed would have been by Malwarebytes itself, either by its protection or by one of its installers (my initial theory, though supposedly all of the upgrade issues have now been fixed so it's less likely). You can take a look in your Malwarebytes quarantine too to make sure mbam.exe isn't in there. If there was a corrupt database or a problem with protection at some point, it could have occurred that Malwarebytes detected and deleted its own file. I've seen it happen before, though admittedly it's been a really long time since the last time I saw it happen to anyone. Still, it isn't impossible and if self-protection was active at the time this occurred, then it's definitely the most likely scenario because there isn't much that can bypass Malwarebytes' self-protection driver.
  10. Greetings, It appears that one of the plugins/extensions installed in Chrome is most likely causing this. That website, boostbox.com.br is a known Cryptocurrency mining website and this is why Malwarebytes blocks it. The fact that it shows as being blocked whenever you open Chrome leads me to believe that there is probably a plugin installed in your browser that is trying to use your CPU for mining Cryptocurrency. You can find more information here, here as well as here (that last site indicates that boostbox.com.br is in fact a cryptocurrency mining website). If you scan with Malwarebytes and it is not detecting any Chrome extensions, then you may need to scan using ADWCleaner and hopefully it will find and remove the plugin/extension in Chrome that is causing this. If it does not, then please follow the instructions in this topic and create a new topic in the malware removal area of the forums containing the requested logs and information by clicking here and one of our malware removal specialists will help you to check and clean your computer. If you would prefer to receive help privately via email then you may contact Malwarebytes Support by filling out the form on this page and they will respond to you as soon as they are able to.
  11. Yep, that's what we figured out. Disabling all protections in the settings page while still showing both components as active for the current page is where it gets confusing, though I can understand the decision since it's based strictly on creating exclusions for the current page for each component, something that would remain even if all protections were enabled again. I guess the main issue is the fact that you're using on/off switches for exclusions which makes it seem like it's just a pair of enable/disable functions for those protection components themselves which is where the confusion came from. I guess implementing something that was more indicative of excluding the current page from each component would be the clearest option to resolve this. I understand why you guys created it this way as it's not uncommon for modern controls to look like that for the sake of touch compatibility, but I guess switches make it seem more like you're turning something on/off in a more global way and with the wording as it is, I'm sure you can see why we got confused. Here are a few examples of how some other plugins handle their options for their toolbar icon menus (each of these is from Chrome): Items circled in RED are global settings that control the plugin for all sites. Items circled in ORANGE are for the current page being viewed in the browser. I'm not suggesting that you follow any of these implementations to the letter or anything; I just wanted to provide a few examples of how other vendors have dealt with this issue in their own plugins as it might spark some ideas for you and your team.
  12. Greetings, It sounds like this may be caused by a known issue with Web Protection in Malwarebytes. If you disable Web Protection does the issue go away? Also, just in case the Developers require any info to fix it, would you please post the following logs?: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Thanks
  13. You're welcome. Hopefully they will implement it at some point. Are you guys using AD in your environment? I'm just asking in case that turns out to be a factor for the feasibility of their implementation of the feature, assuming they do decide to include it at some point.
  14. Greetings, My apologies that no one responded to you sooner, I guess your thread got overlooked by the Business Support folks. I do not know if they plan to implement this functionality, however it should theoretically be possible, especially if you're using Active Directory in your environment. I will forward this as a feature request to the Product team for their consideration for possible implementation in the future. If you have any additional ideas, suggestions or feedback please don't hesitate to let us know. Thanks
  15. Greetings, No, you don't need to run an antivirus alongside Malwarebytes to be fully protected, however Malwarebytes is designed in such a way that if you wish to run an active antivirus alongside it you may do so should you desire to have that additional layer of protection that an antivirus would provide. Please refer to the information in this post for more information. You should also find the information on this page to be quite informative. It breaks down the various layers included in the paid version of Malwarebytes 3 and how each functions to stop attacks in their tracks using many different techniques to defend your system. If there is anything else we might assist you with please don't hesitate to let us know. Thanks
  16. Not yet unfortunately. We don't have any ETA on the next release yet, however I have heard that it is expected to be available pretty soon (though how soon exactly I have no idea so it could be days, weeks or even a month or more at this point; it all just depends on how long development and testing take).
  17. Greetings, That looks legitimate. You should receive your license key shortly but please let us know if you do not.
  18. Greetings, To start with, I noticed that you have a Killer Networking device in the system. Some of their older drivers are known to cause problems with Web Protection so please start by updating to the latest driver for that device by downloading and installing their latest driver package for your OS from here. Please be sure to restart your system after installation of the new driver is completed (even if you aren't prompted to do so) just to make certain that the new driver is loaded into memory. Once that's done, if Malwarebytes still isn't working properly then please do the following: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Please let us know how it goes and if the issue is now corrected or not. Thanks
  19. Yep, that is odd. I suspect it's just a GUI bug and that nothing will be blocked once the main settings are all disabled. I'll report the issue to the Devs.
  20. Yes, that should be sufficient. Once a member of the support team shows up they'll collect the data you provided and analyze it and share it with the Devs. Thanks for all your help in troubleshooting this issue. Do you know if disabling self-protection eliminated the BSOD's or not, or was the last one that occurred after already disabling self-protection and restarting the system?
  21. Yes, they would, but there shouldn't be anything personally identifiable or sensitive in a Windows crash dump. That said, if you still aren't comfortable with it then you can instead send @dcollins a private message containing the link to download the memory dump. He's a member of Malwarebytes Support that works here on the forums.
  22. Greetings, Please do the following so that we can take a look at what's going on with your Malwarebytes installation: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Thanks
  23. Greetings, If this issue is being caused by mbamchameleon.sys then that is the self-protection driver in Malwarebytes and for now until the issue is resolved, hopefully in a future release, you should be able to work around the issue by disabling self-protection. To do so, open Malwarebytes and navigate to Settings>Protection and locate the Startup Options section near the bottom and switch the Enable self-protection module setting to Off then restart the computer and as long as the self-protection driver was the root cause of the issue, it shouldn't happen again as long as self-protection remains disabled. Additionally, just to make sure the Developers and Support team have all the info they need, please do the following: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Finally, you mentioned that you have the memory dump. I'm sure the Developers would find it helpful in tracking down and fixing this issue so please upload it to WeTransfer.com using the Send as>Link option and then post the link here. To access the Send as setting you need to click the blue ... button with a blue circle around it.
  24. Excellent, so you can keep Ransomware Protection on then and just keep Self-Protection disabled and it should be OK. That's good news since self-protection is really just sort of a last resort in case the system gets infected with something that tries to kill Malwarebytes, but theoretically that shouldn't happen anyway since Malwarebytes should detect and stop the threat before it ever gets to that point.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.