Jump to content

exile360

Experts
  • Content Count

    21,472
  • Joined

  • Last visited

Everything posted by exile360

  1. This topic is from 2017; in the future I'd recommend creating a new topic of your own, even if it seems like the same issue because often times completely different issues/circumstances can cause seemingly identical symptoms/problems, especially since there have been many Malwarebytes versions released since this topic was created over a year ago. I understand you were just expressing the fact that you seem to be dealing with the same issue and seeking help, but unfortunately the solutions for each may be very different. Normally an automated reply would respond asking for logs using the correct/latest version of the support tool, however it only replies when you create a new topic in this area, so because you responded to another user's thread, the bot did not reply to you.
  2. I doubt they could ever do that without setting off just about every spam filter on Earth due to the sheer number of users/customers they have, not to mention the fact that Malwarebytes doesn't collect the email address of every user of the Premium version (i.e. trials, not to mention licenses purchased through third party resellers as well as retail boxed versions which only require a valid license key and never prompt for registration via email), so while that certainly would have kept the customers who purchased the software direct from the Malwarebytes website informed, none of the other users would have received the notification/email, and again, I'm sure attempting to do so would have set off spam filters everywhere because mail servers are way more strict about that sort of thing these days (i.e. sending out too many duplicate messages to too many users at the same time). I'm not saying they've handled everything perfectly; I just don't think email would be the solution, especially since a lot of people seldom check the email addresses they use when purchasing software as they'll often keep a separate address for that sort of thing (signing up for websites, registering software etc.) with a different address for actual personal communication which they check much more regularly, that way they cut down on the amount of spam/advertising emails/promotions and such that show up in their personal inboxes.
  3. There is a conflict with Avast, however that is not the only cause for this issue (as I mentioned, there are currently multiple AV conflicts with build 508 of Malwarebytes) and it is indeed happening on some systems where no third party AV is installed. So basically it's the same symptoms with multiple causes which may or may not be the result of the same change to the code in the Web Protection component in build 508 (i.e. there may be multiple causes/changes in the code resulting in different issues which need to be tracked down and fixed, but only the Developers can know that for certain). Whether it is caused by specific hardware/drivers is also currently unknown at this time, but that is one area they are exploring, collecting info on network adapters from affected users.
  4. exile360

    What are you listening to?

    One of my all time favorites from way back in 1991, long before "Nu-Metal" or any of the other Hip Hop/Metal blends/genres emerged on the scene, Public Enemy and Anthrax were getting down and dropping Thrash Metal with a Hip Hop beat and hardcore lyrics to match: Bring the Noise, 'nuff said!
  5. Yes, and while I know this isn't always the cause (sometimes the issue is caused by the Ransomware Protection component, and sometimes it's not a conflict with an AV at all), we have seen many reports where that indeed was the case, particularly with Avast, Bitdefender and ESET and I've also seen some reports about similar issues with AVG, Avira and Kaspersky with the latest Malwarebytes release.
  6. The program folder for your AV (generally under Program Files or Program Files (x86)) as well as the data folder for your AV, usually under C:\ProgramData should be excluded from Malwarebytes. You may also exclude any drivers etc. that belong to your AV from Malwarebytes, for example the driver files stored under C:\Windows\System32\drivers that belong to your AV (don't exclude the entire folder, just the individual driver files belonging to your AV) which can be determined using a tool such as MS Sysinternals Autoruns (under the Drivers tab; it should list your AV vendor as the company name/in the description column).
  7. exile360

    Warning for Windows 7 KB4480970 (SMBv2 shares)

    Interesting, I wonder if this has anything to do with the kind of vulnerability that plagued SMBv1 (the EternalBlue exploit employed in the original WannaCry/WannaCrypt0r attacks/epidemic)? I disable all the sharing/remote stuff on my systems so if it broke anything with that I would not have noticed, so thanks for the info as I'm sure there are plenty of users who do use this functionality, especially for local shared network storage setups.
  8. exile360

    Thanks for monitoring the Streams!

    Nice, it looks like Malwarebytes blocked the server hosting the malware. I love it when that happens With regards to the types of threats you've been facing, can you provide any more details so I can check into how Malwarebytes is doing and give the Researchers a poke if needed to point them in the right direction? I would like to make sure that they stay on top of whatever it is you've been dealing with to ensure you and other users have the best protection possible. You mentioned that the threat overwrites the boot sector, which definitely sounds like a nasty MBR/VBR rootkit, and if it's coming through your games then it's probably some kind of Trojan or file-less malware (like some malicious shell code or Powershell script etc.), but I don't want to make assumptions so if you have any info at all about the threats you've been seeing please let us know because I know there are a lot of different threats and attack vectors out there these days (usually employing some kind of exploit).
  9. I do believe there's an issue with Avast's Web Protection conflicting with the Web Protection in the latest build of Malwarebytes 3 so it's possible that if you disable the web shield in Avast or the Web Protection in Malwarebytes that you'd be able to eliminate the issue until it is fixed.
  10. Odd, I was just finally able to replicate the system freeze on my own box. After having Ransomware Protection enabled for several hours, it finally froze the system while I was watching Netflix through SRWare Iron (a Chromium based browser, though I doubt that's relevant). Initially I could close programs except the browser which had become unresponsive, probably because it was the process being analyzed at the time by Ransomware Protection, though that's just my guess based on the behavior. Anyway, the system froze and I ended up having to force a shutdown via the power button and upon restarting the system I quickly disabled Ransomware Protection to prevent further lockups. My system is fully patched with Windows Updates, including those you mentioned above and when the freeze occurred those updates had already been installed for several hours prior to any trouble (I patched manually early yesterday via Windows Update as I always do every Patch Tuesday).
  11. exile360

    Do I also need an antivirus?

    You're welcome, I'm glad to be of service
  12. exile360

    Win10 logon and other slowdown

    You could try performing a clean install to see if that helps. It's possible that one of the newer drivers, DLLs or other core files remained when you installed the previous version resulting in the behavior persisting even after installing the previous release. To perform a clean install just follow the instructions below; just be sure to opt out of having the tool download/install Malwarebytes for you otherwise it will try to install the latest version again (though that might be worth a shot as well if reinstalling the previous version doesn't correct the issue): Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Clean button, and allow it to restart your system and then reinstall your preferred build of Malwarebytes
  13. exile360

    Do I also need an antivirus?

    Greetings, Malwarebytes is classified as an antivirus replacement, meaning it isn't necessary to use an antivirus with it to be fully protected, however it is also designed in such a way that it should not conflict with your antivirus if you wish to keep one installed as an additional layer of defense. Also, rather than paying for an antivirus on top of Malwarebytes, I would suggest using one of the many free AVs that are available which provide basic virus protection without all the bloat you mentioned (i.e. all those additional features most people don't really need or use). Currently Windows 10 includes Windows Defender which actually is a full, free antivirus, and it should work just fine with Malwarebytes Premium, and if you are running an older version of Windows such as Windows 7, then you may install Microsoft Security Essentials which is also free and uses the same antivirus engine as Windows Defender in Windows 10. Other free options are the free versions of Avast, Avira, AVG, Bitdefender, Kaspersky free, and Sophos Home; all of which are free for home users. You can find out more about Malwarebytes being an AV replacement in this post from the FAQ. I hope that helps to clear things up and if there is anything else we might assist you with please don't hesitate to ask. Thanks
  14. Greetings, Is the issue alleviated by disabling the Web Protection component in Malwarebytes? If so, then you may keep it disabled for now until the issue is resolved, hopefully in the next release, and to supplement the disabled protection you may install the Malwarebytes browser extension beta which is available for both Chrome (and other Chromium based browsers) as well as Mozilla Firefox. It blocks all the same sites as the Web Protection component, but only for your browser rather than the entire system; it does however add ad blocking, tracking server blocking (for privacy), clickbait site blocking, as well as new behavior based blocking for new/unknown sites of specific malicious categories such as tech support scam sites and phishing sites. It is also fully compatible with the Web Protection component in Malwarebytes 3 so once the issue has been addressed you may continue using both together to augment your protection against web based threats. You can find out more and download the extension at the following links: Chrome Firefox I hope this helps, and if there's anything else we might do to assist you please let us know. Thanks
  15. Yes, they definitely will get it fixed, the only question is when, but I know that the Developers are working hard to track the issue down and get it fixed, and all of this info that affected users have been providing has been crucial in assisting their efforts so I know they appreciate it.
  16. exile360

    Win10 logon and other slowdown

    Ah, I see, so it's also impacting system performance while the system is running, not just during startup/shutdown. Yes, in that case the only mitigation (aside from installing a previous build) would be to keep the Ransomware Protection component disabled, at least until this issue is addressed, hopefully in the next release. Honestly I generally keep it turned off anyway since it is by far the least proactive protection component in Malwarebytes since it only monitors process behavior for ransomware activity, meaning you'd actually have to already be infected for it to detect a threat/attack on your system, and I know that the other more proactive modules are very unlikely to allow that to happen (especially the Exploit Protection component, since the vast majority of ransomware attacks start with an exploit that attempts to execute some malicious script and/or downloader to download and launch the actual ransomware executable on the system, meaning the ransomware itself should never even reach your system in the first place as long as Exploit Protection is active, not to mention all the other layers/modules that it would have to bypass to get that far to the stage of execution into memory and attempting to encrypt your files/data) and it does slow things down a bit, even when not having any bugs/issues like the one you're experiencing just by its very nature.
  17. Apologies, you mentioned a refund in your comment so I assumed you meant a cancellation. As far as I know there is no way for Malwarebytes to modify the duration of a license key/subscription and I'm not aware of any kind of compensation for issues like this. That said, you can contact Malwarebytes Support directly and speak with them about it if you wish as it couldn't hurt to ask. They may be contacted via the options in the link I provided in my response above. As for why they haven't rolled everyone back, I'm not certain that would be possible since the program would recognize that the currently installed/running version is newer than the one being hosted on the update servers so it wouldn't even download it, and even if it were somehow forced to (which is not a capability the product currently has as far as I know; it must see a newer/higher version number as I understand it to even initiate the download), it wouldn't launch the installer after downloading for the same reason, because it would identify it as an older build of the product. This would also disrupt all of the users unaffected by this issue if it were somehow possible, though I don't have any exact numbers on how many users have received the new build vs the number of users affected by these issues (I'm running Windows 7 Pro x64 here and have had no issues with it so far, and I installed it on the day it was first released, though obviously that's just a sample size of 1 so not exactly definitive evidence of how many may or may not be affected).
  18. exile360

    Win10 logon and other slowdown

    I have seen other reports from some users having the same problem with the Ransomware Protection component causing hangs/long delays during system shutdown and/or logon with the latest version of Malwarebytes. So far the only workaround I know of is to disable Ransomware Protection just before you plan to shut down your system to avoid the issue.
  19. Yes, getting a refund shouldn't be a problem if you wish to cancel your subscription. You'll need to contact the e-commerce vendor that processed your purchase/renewal and both of their contact info can be found in this support article. If you aren't sure which one handled your account you may refer to your confirmation email from your original purchase if you still have it, but if not then you should be able to contact either vendor and they will confirm whether you made your purchase through them or not. If you have any trouble then you may contact Malwarebytes Support directly via the options found on this page and they will assist you.
  20. Greetings, The issue with too many activations can be fixed, either by logging into/creating an account at My.Malwarebytes.com as detailed in this support article, or if that fails, by contacting Malwarebytes Support directly via one of the options found on this page. As for the other issues you've been experiencing, it may help to perform a clean installation to start from scratch (you should be able to re-enable the free trial afterwards so that you do not lose your protection while waiting for your license to be reset). Instructions for doing so may be found below: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Once that is done, if the issues with Web Protection still persist then please do the following so that we may take a closer look at your Malwarebytes installation and system configuration to hopefully determine what might be causing it and offer aid in finding a solution: Run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Please let us know how it goes and if the issue persists, please post the requested ZIP file so that we may troubleshoot the problems further. Thanks
  21. exile360

    Computer locking up

    Greetings, It sounds like you are being affected by a known issue with component update 1.0.508 of Malwarebytes as reported by several other users as being discussed here. It may be helpful if you would please follow the instructions in the Troubleshooting section of this post and post the requested logs and information in the first thread I linked to. You will also find the two workarounds in the second topic I linked to which provide instructions on how to eliminate the issue until the problem in the latest build of Malwarebytes has been resolved by the Developers. I would also recommend installing the Malwarebytes browser extension beta if you use Chrome (or any other Chromium based browser such as SRWare Iron or Vivaldi) or Mozilla Firefox as it will supplement the protection that would normally be provided by the Web Protection component in Malwarebytes 3, though only for your web browser rather than the entire system since it is just a browser plugin, though it does have certain advantages including blocking for many ads, tracking servers (to protect your privacy), clickbait sites as well as advanced behavior based blocking for new/unknown sites of certain malicious types such as tech support scam sites among others (capabilities beyond those contained in the Web Protection component of Malwarebytes 3) and once the issue with Web Protection is corrected you may continue to use the browser extension alongside it as they are fully compatible with one another. You can find out more and download the browser extension at the following links: Chrome Firefox I hope this helps and please let us know if there is anything else we might assist you with. Thanks
  22. I have a Samsung 960 PRO and am using the same driver on Windows 7 on an Intel Z170 board (IRST+Samsung SecNVME drivers; both must be installed to function/for the best speed/performance) and have had no issues with build 508 of Malwarebytes. I do however typically keep Ransomware Protection disabled as I've pretty much always done so since learning of its function as being more of a reactive tool than a proactive one (it only detects an already active/installed threat based on behavior, and since I trust the other layers/modules to prevent any threats from getting in, this module seems redundant and not worth the performance degradation caused by enabling it). I have tested with it on to see if I could replicate any of the issues being reported but haven't seen any of them show up so far.
  23. exile360

    Just a Lot of Questions

    One good resource for learning about modern threats and attack methods as well as new vulnerabilities and security risks is the Malwarebytes Blog, just remember that not everything they talk about there (and this goes for other security/news sites as well) is relevant to home PC/device users as some of the topics that come up from time to time deal with threats that only target specific companies, organizations and government entities (such as APTs and the like). One must realize that a hacker or criminal organization orchestrating an attack would not go to the trouble and risk to infiltrate a home user's system that has nothing of great value on it. In other words, no one is going to break out their latest 0-day exploit kit and one-off attack code to try and get your Steam account password or credit card details because the ROI isn't there. That's why home users have to worry more about things like scams (tech support scams, fake 'prizes' where they want to get your info and things like that) and run of the mill malware and exploits hosted on the web (malvertisements, tech support scam sites, Trojanized cracks/warez). Another good resource is WildersSecurity.com. They have a large community and cover a lot of different subjects, including tons of different types of security software and tools as well as discussing threats etc. Regarding what David H. Lipman says above, I have to agree. This is why I'm still running Windows 7 on my own system and plan to never 'upgrade' to Windows 10 and plan to put 7 on any new system I might acquire in the future. I also don't use a smart phone. I have an old flip phone that I use to make calls and the occasional text and it never goes online/on the web. I don't use social media unless you count these forums and the occasional comment on YouTube (no Facebook, Twitter, Instagram etc.) and I do a lot of things to protect my privacy including blocking advertising, tracking and social networking sites from connecting to my system/browsers via my HOSTS file along with Malwarebytes, the Malwarebytes browser extension beta, Adblock Plus and Ghostery. I also disable, modify and outright break/cripple system components and capabilities that I do not use, including the webcam in my laptop (which is painted over at this point so that it is physically disabled along with being disabled in the Device Manager), any extra network protocols besides IPV4 for connecting to the internet on my network connections (no file/printer sharing, no remote access etc.; all that stuff is turned off and/or disabled), and since I don't use them, things like tablet PC services, remote desktop/remote management and other 'features' in Windows that I don't use are all turned off/disabled or removed (where possible). My approach is a bit excessive and it's not just for the sake of privacy, it's also for performance (fewer services/processes running in the background/running at system startup etc.). Unfortunately Microsoft has figured out that users like myself do these things, and since they want to keep that telemetry data flowing (since, as David mentioned, you are the commodity; why else would Microsoft have offered Windows 10 for free to everyone who had 7/8/8.1?; they've always charged hundreds of dollars for their operating systems, but suddenly their latest and greatest and supposedly "last version of Windows ever" is free? I don't think so...it costs something, and it's very expensive, it's just not measured in dollar amounts), they've made using the HOSTS file, as well as keeping many of these unnecessary items disabled impossible, either through changes in the OS or, as David mentioned, through updates that reset things back to their defaults. They also wish to follow current trends, which is why their operating systems now cater more to mobile devices/tablets and smart phones than traditional laptops and desktop PCs because they see the success of Apple/the iPhone and Google/Android devices and want a piece of that pie. Thankfully, due in large part to the fact that the current generation of gaming consoles has gotten quite long in the tooth with no new hardware expected until at least 2020, more gamers are returning to/getting into PC gaming, so the desktop PC enthusiast scene is helping to keep traditional PCs alive, which is one of the key reasons Microsoft hasn't been able to kill off traditional desktop/laptop PCs in the past few years even though everyone, including them, was predicting that the smart phone and tablet would have replaced them almost completely by now (with the exception of some business use cases, of course).
  24. Thanks for the info. Hopefully the new update will prove effective in correcting these issues for at least some portion of the affected users. I will report this update to the team and will try to keep track of any incoming reports from Avast users as to whether or not this new update helps with the issues.
  25. Greetings, Since you upgraded to Windows 10 it is possible that this issue is being caused by a new feature in Windows 10 called fast startup. Please try disabling fast startup to see if that resolves the issue. Restart your system after disabling it then check to see if Ransomware Protection functions as it should after doing so. You may find more information and instructions on how to check and disable fast startup at the following links: here here If that wasn't the issue or if the problem still persists after disabling fast startup then please try performing a clean install of Malwarebytes by following the instructions below: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here If the problem still continues then please do the following so that we may take a look at your Malwarebytes installation and hopefully determine what is causing this issue and help you to correct it: Run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Please let us know how it goes and please post the requested ZIP file if the issue still persists. Thanks
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.