Jump to content

exile360

Experts
  • Content Count

    21,153
  • Joined

  • Last visited

Everything posted by exile360

  1. Greetings, Please do the following to perform a clean installation of Malwarebytes 3 and hopefully that will resolve the issue: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Please let us know how it goes and if you have any further problems getting the software to work. Thanks
  2. exile360

    License Auto-Pause

    Unfortunately it would be easy to abuse this by keeping the licensing servers blocked and updating the databases offline, though if they got tougher on enforcement by requiring frequent check-ins with the licensing server to retain the paid features I suppose that would be OK, but I don't know how all users would feel about that. It would help a great deal to curb piracy though.
  3. exile360

    Malwarebytes lifetime on ebay

    Unfortunately it's not just up to Malwarebytes. They must contact ebay, and ebay must take action to take the accounts down or force the sellers to remove the listings, and given how many scams and takedown requests I'm sure ebay receives, it likely isn't a fast process sadly.
  4. exile360

    MS Office 2013 Blocked/False Error Message

    Greetings, Yes, there appears to be an issue with Exploit Protection and some MS Office installations. There is a thread about the issue here with some additional details as well as instructions on a workaround (disabling protection for the specific MS Office applications being blocked). It may also be possible to disable even less protection if we can determine which specific protection aspect is affecting the programs in question. If you wish to try, you may re-enable Exploit Protection and open Malwarebytes and navigate to Settings>Protection and click on the Advanced Settings button under the Exploit Protection section and using the checkboxes in the various tabs in the advanced settings interface, try disabling each one by one until you discover which specific protection is at fault and then leave all the others enabled so that you don't lose those other shields/protections. Here is are images of what the interface looks like with its default settings (the last tab of settings is specific to Java and is unlikely to affect any MS Office applications):
  5. exile360

    1.0.058 and W7

    Yes, if they do a public beta (unlikely for a patch, but still possible) it will be posted in a pinned topic here first, and assuming it doesn't receive a public beta (which is far more likely for a patch/bugfix release) it will be posted in a pinned topic here and you can check the release notes which will be included in the post to see which issues have been fixed/what changes have been made.
  6. I'd do a clean install just to be on the safe side since this issue seems to be related to the configuration files etc. since it has to do with your license reverting (something that's stored in the config files and registry) so running the clean function in the Support Tool before installing any other build would definitely be a good idea.
  7. exile360

    1.0.058 and W7

    Yeah, the Developers and QA guys have been hard at work on this issue ever since it first showed up in the new build, so a fix is definitely in the works. I don't know what progress they've made, but given the similarity between these recent issues and past issues with the same components of protection, I'm sure they already have a good idea of where to look in the code to fix it and I expect a patch isn't too far out at all.
  8. Any time Malwarebytes uses third party resources they give credit (they have to, it's required by most EULA's) so that wouldn't be an issue. The problem I have with it is linking to some web resource which not only wasn't generated by Malwarebytes, but could also change at any time or be taken down and also would better be served in some kind of online guide rather than within a product. As for integrating third party libraries etc., I'm sure they would if they ever saw a need, but it probably wouldn't be worth the effort in this case based on the purpose of the tool as I mentioned. It's really limited in scope as far as what it is and what it does, though some of these suggestions would likely be better for requests/suggestions for new products and/or resources (like something for the Techbench project or the blog or something like that). I could certainly see the benefits of scanning multiple drives simultaneously, but again, ADWCleaner is a really specialized tool, not a flat file scanner like an AV like AVG so it doesn't even scan more than one drive in sequence, much less have a need to do so simultaneously. Besides, as it is both it and Malwarebytes pretty much max out on resources/threads just scanning files on the main OS drive, so trying to add more by scanning other disks at the same time would just bottleneck things even further (the scan engine in Malwarebytes is really tuned to leverage all available CPU cores and threads to scan as many files at the same time as possible, so even though it only shows one object/location being scanned at a time in the UI, it's actually scanning at least as many as there are available cores/threads for your CPU, which in my case means it scans literally 8 files simultaneously any time it is scanning because I have a 4 core CPU with Hyperthreading). As for donations, as I mentioned, Malwarebytes doesn't accept them and they haven't ever since they became a corporation. Most companies don't and it likely has to do with the fact that it kinda looks bad for a company that sells products for money to have their hand out asking for donations in any of their tools/products when they already are charging for some of the services and solutions they offer. To be frank, Malwarebytes is doing pretty well and I don't think they need the donations. They appreciate the enthusiasm and support of the community and happy users who they've helped to clean up their systems of course, but their thanks is sufficient reward, and even then, not a requirement at all. They really take pride in the fact that they help make the web safer for everyone, and if someone wants to help support their efforts financially they can purchase a license (and just give it away if they have no use for it on their own devices) and if that's not sufficient or they don't have enough for a license, they can just donate the money to their favorite charity. The only profit Malwarebytes seeks from their free offerings like ADWCleaner and the free version of Malwarebytes is to promote their products and brand, positive word of mouth and of course to inform users about their paid offerings with whatever in-product messaging they have about the Premium version etc. It would be different if it was just one independent developer with little or no resources, but Malwarebytes is a multi-million dollar corporation now. They're perfectly content for users to just tell their friends about Malwarebytes' tools and products if they got some benefit out of them like using them to successfully clean up their PCs. That's more than sufficient thanks for the work they do on these free tools and they don't expect anything more than that for providing them, and of course even that is optional (though it's likely to happen anyway if a user does have a positive experience using one of their tools because that's how people are; when they have a good experience with something they tend to tell their friends about it).
  9. exile360

    1.0.058 and W7

    Greetings, You can likely enable all protection except the Web Protection component for the time being as that appears to be the module causing this particular issue (though there is another issue that causes some systems to lock up during shutdown which I believe is caused by Ransomware Protection, but if you aren't seeing that issue then you should be OK just disabling Web Protection). In the meantime to supplement the disabled protection component you may want to install the Malwarebytes browser extension beta if you haven't done so already. It's available for both Chrome and FIrefox as well as most browsers based on Chromium such as Vivaldi and SRWare Iron (alternatives to Google Chrome based on the same Chromium source code just without Google's tracking and marketing/advertising embedded in them). The extension blocks the same sites and servers as Web Protection in Malwarebytes 3 but obviously only does so for your browser rather than the entire system the way that Web Protection would. With that said, the extension has some capabilities beyond Web Protection in that it also blocks many ads and tracking servers to speed up browsing and protect your privacy and also includes new behavior based blocking technologies targeting tech support scam sites, phishing sites and other malicious site types and also includes a new block list for blocking clickbait sites/ads/links. The extension is fully compatible with the Web Protection component in Malwarebytes 3 so even after this issue is resolved you may keep the browser extension installed if you wish to continue to have the added benefits that it provides. You can find out more and download the extension at the following links: Chrome Firefox
  10. Sorry, 38. was the one that was supposed to have the ?, not 37 (though I think you figured that out). I just wasn't familiar with what context switching was (I'm not a dev so it's outside my wheelhouse). I see your point regarding the on/off switches, but when they literally say On and Off it's hard to argue for colorblind users, at least in my opinion, since it's literally black text on a white background. The coloring of the switch background is also a factor since it's a dark color vs a light color, so even if they are colorblind, the difference between on and off should still be quite obvious. Regarding PUA in Defender, I'd leave that to either Microsoft themselves or some third party tool designed for locking down Windows systems, not a third party standalone remediation tool. It just doesn't seem like a feature one would expect from a tool like ADWCleaner. If it were ADWBlocker or Windows Security Lockdown tool then it would be a different story, but that's not the tool's intended purpose and would just add a feature that I don't think most users would expect or want (though I could be wrong of course).
  11. Greetings, Please open Malwarebytes and go to Settings>Application and below where it says Windows Action Center select the option Never register Malwarebytes in the Windows Action Center and then restart your system and verify that Windows Defender is now enabled and working again. Please let us know how it goes and if you have any further issues. Thanks
  12. Greetings, Please try disabling the Ransomware Protection component to see if this makes any difference. To do so, right-click on the Malwarebytes tray icon and click Ransomware Protection: Enabled and select Yes if prompted by User Account Control. If you are unable to do so because of the freezing, please try booting into Safe Mode and open Malwarebytes and navigate to Settings>Protection and under Startup Options disable the option Start Malwarebytes at Windows startup then reboot and let your system start normally, then when you are ready, launch Malwarebytes manually and try disabling the option for Ransomware Protection, either via the right-click context menu for the Malwarebytes tray or in the main Malwarebytes UI via the switch next to Ransomware Protection under Real-Time Protection in the upper right side of the main Dashboard tab or by turning it off under Settings>Protection. Once you have Ransomware Protection disabled, please test to see if the issue is now resolved and let us know how it goes. Thanks
  13. Greetings, You may need to exclude Malwarebytes from Kaspersky. To do so, please have Kaspersky's real-time protection ignore the items listed in this support article. Please let us know if there is anything else we might assist you with. Thanks
  14. exile360

    Can't enable Ransomware Protection

    Greetings, It sounds like you were able to sort things out on your own, well done If this issue returns or if you have any other problems please let us know, and if you can't provide the logs from the Support Tool if needed, please let us know that as well and we'll figure out another way to try and diagnose the issue.
  15. exile360

    Windows 1809 system tray icons

    You're welcome Yes, Microsoft enables it by default but there's no information/notification about it without digging into your settings so you'd never know it unless you already knew about the feature. Yep, it's bad for SSD's (potentially at least) and with a fast SSD you really don't need it anyway more than likely, plus it can cause a lot of issues with other software and hardware (instability, failed startups, drivers not loading properly etc.) so I'm definitely not a fan of this feature. I applaud their efforts to try and speed things up and I understand why they'd want to in order to provide more of a light switch on/off type of experience for their customers, but if it comes at the potential cost of system stability, it's really not worth it in my opinion. Please let us know if the issue returns or if there is anything else we might assist you with. Thanks
  16. Probably can't do that; what if they're using some other antivirus/anti-malware software that conflicts with it and has deliberately disabled it? Adblock Plus and other ad blockers already have this capability, and there are plenty of free third party extensions and lists that provide this functionality; also, since ADWCleaner is a remediation-only tool, not a protection/prevention product, it wouldn't make much sense for it, at least in my opinion Again, outside the purview of ADWCleaner; it's just a remediation tool, nothing more This might be a good idea, but not for ADWCleaner (refer to 2 and 3 above) so maybe for Malwarebytes? Modern systems very seldom (if ever) run low enough on RAM to ever page anything to disk/the paging file, and contrary to what some may believe, unused memory is wasted memory. Please refer to this article, this article, this article, this article, and this article. In a nutshell, when people complain about apps consuming too much RAM (especially when they still have several GB free/not in use by anything at all) it only reveals how little they understand computers and software. Again, please refer to 2, 3 and 4 above; besides, ADWCleaner strictly uses signatures and heuristics for detections so any behavior monitoring would serve no purpose for it, though this sort of thing could be useful for a rollback tool (such as the one included with some of Malwarebytes' business products, however it already has this functionality as I understand it) While this is true, that's really the purpose of Malwarebytes Premium and promoting some unknown third party resource in an official Malwarebytes product isn't going to happen I'm pretty sure. Why? It's a remediation scanner. There's nothing wrong with performance optimizations like multi-threading etc., but you can only optimize the code so much before you reach the point of seriously diminishing returns, and going this far would not only dramatically increase the risk of conflicts and instability, but would be a serious sinkhole of dev effort that likely wouldn't be worth it just for a scanner that as it is only takes a few minutes to run on most systems (especially since so many now have SSD's). Also, actual bad RAM is an extreme rarity these days. It used to be a lot more common years ago, but modern RAM is mass produced on such a large scale with only like 3 actual RAM chip manufacturers (Samsung, Micron and Hynix) and they're very good at what they do as they've been doing it for so long and their processes are so mature, and they do extensive testing on their modules (especially DDR4 thanks to tech like XMP for Intel boards/CPUs and the equivalent AMP profiles for AMD boards/CPUs) that arbitrarily testing a user's RAM probably wouldn't serve any real purpose. This is also a task for a diagnostics tool, not a basic PUP/adware scanner/remediation tool, again, at least in my opinion (the Techbench program would be a better place for this I think, as it is targeted specifically at PC repair techs). Not sure that this belongs in a basic/narrow focus tool like ADWCleaner; probably more suited to Malwarebytes, and even then, only if such methods are actually being used by the bad guys, otherwise a tool like FRST or ComboFix would be a better place for this. I don't know, but I suspect it has a pretty small set of dependencies as it is, as it's already quite portable and I believe much of its internal structure is essentially scripts, though that's based on what I know of much older versions (prior to Malwarebytes' acquisition of the tool) so that may have changed, but I think Malwarebytes being cross-platform (which it essentially is, with versions for Mac and mobile platforms already) would be the place for requests like this, especially since they've already stated that they plan to discontinue this tool eventually once its capabilities have been fully integrated into Malwarebytes (that's also a big reason not to invest too much time/effort/cost in developing new major features for it etc.) 50/50 on this one. Every program that has a splash screen gets complaints about/requests from users to disable/remove it because they think it wastes resources that could better be used to get the program loaded faster. I don't care much either way, though I'm not really the biggest fan of them either as I see little use in them (and I can always check Task Manager to determine if a program is running/loading etc. anyway if I really want to). Again, protection/prevention is beyond the scope of this tool. As above; not a protection/prevention tool/product. Same as before; this tool is for one-time cleanups, not advanced prevention/diagnostics etc., and it would seriously cannibalize the business products to include such a feature in a free end user tool. Probably not; refer to comments about the limited shelf-life of this tool/its planned integration into Malwarebytes Don't know about colorblindness, I think it's already pretty good in this regard, but improved DPI scaling would be good for accessibility. I could go either way on this one. While I see the advantages, it's another one of those "nice to haves" that might not be worth the effort, especially if this tool isn't going to be around much longer. As long as they display On/Off I see little value in this. Why? I'm not opposed to using a PNG (actually, I think they already are, though I may be mistaken), but I'd only want these changes if they required minimum effort, again, due to the likely short-term lifespan of this tool. This tool is relied upon by forum helpers throughout the world too frequently to switch from a basic text formatted log that can easily be copy/pasted/read on forums so I'd advise against this. No need for auto-updating documentation since users are required to download an entirely new copy whenever a new build is published given the fact that it's a standalone and virtually portable tool. Not sure about this one since again, forums, and many helpers like the logs just copy/pasted into replies, not zipped/attached and it's not like they take up all that much space anyway, nor is space at a premium these days given the ever dropping cost of SSD's per GB and increasing sizes available. Nah, it's used outside Malwarebytes too much for this to be of much value. Before Malwarebytes acquired it, it was and remains a very popular tool on help forums as I mentioned previously. See my thoughts above regarding drive space, free RAM and I'll also add that generally speaking, internet speeds are also quite fast these days and getting faster (fibre, 5G etc.) Totally not worth it in my opinion for such a basic, fast tool that's specialized to detecting PUPs/adware on Windows (only 1 Researcher/Developer as far as I know also) and the gains would definitely not be worth the effort (hardly anyone would notice any performance boost from it, especially given its quite basic functionality which is way more disk speed limited than anything else, not CPU/architecture/memory limited), and again, a lot of work for such a short-term tool. It doesn't install; it just extracts a few things and runs, using static storage locations for convenience more than anything, and it does work offline as it includes a full set of databases (though obviously it's always best to update when possible to get the latest/best detection capabilities). All connections should be encrypted as I understand it. Anything beyond that would likely not be worth the effort. What update packages? It downloads signatures, that's it, otherwise if a new version is available then the user needs to download that instead (an entirely new copy of the tool), but if they just downloaded it then they should already have the latest one. This isn't a tool designed to keep around on a system constantly; it's a portable, disposable tool to detect/remove PUPs/adware. A security vendor exploiting/violating UAC or any other OS level security is a bad look and a poor practice. We're the good guys, not the bad guys so probably not gonna happen. And again, standalone/portable/disposable tool, not a long-term tool to keep around and run every day. Probably counterproductive since I suspect it uses a deliberate order that tracks with certain heuristics functions and signatures built into the tool (lots of "if a=n then b" type stuff I suspect), and again, it's pretty fast as it is. It's already pretty widely known so not much use in this, plus it probably doesn't meet MS' requirements for going up on the Windows Store nor would it be worth the efforts to make it so. Also, Malwarebytes is a company, they don't accept donations. If someone wishes to support them/their efforts financially they can purchase a license for one of the products, such as Malwarebytes Premium. Probably not necessary, especially since any adware likely to be blocking this tool would need MBAR to detect/remove the rootkit components first anyway (SmartService Yelloader etc.) and there are ways to use Chameleon to protect other tools... What for? ADWCleaner is a really specialized tool primarily designed to target active/installed PUPs/adware, not a full AV scanner that needs to scan every drive/folder on the system (that's why there's no option to select where to scan). Not useful since ADWCleaner itself is newer than the operating systems and threats the pre-date it's current supported technologies (no signatures for really old PUPs/adware); I'd recommend an old copy of Spybot S&D and/or Ad-Aware SE for such systems/threats which actually did exist back then. ? Way beyond the scope of this tool. Some of this would be good for (and is already integrated into) Techbench. Probably doesn't happen frequently enough for it to be worth it, but for Malwarebytes maybe (assuming those types of issues are still at all common in that product, which I don't believe they are these days). Again, not a protection tool. hpHosts is freely available for anyone who wishes to use it, plus I'm sure many users would be upset if ADWCleaner started editing their HOSTS files/blocking sites without their consent or knowledge all of the sudden when they run it.
  17. Greetings, I noticed your logs showing that you have Avast installed. It's possible that Avast is slowing up the scan because it's also analyzing the files as they are being checked by Malwarebytes when it's scanning. You could try temporarily disabling Avast then scanning the drive to see if that makes a big difference. If it does, you could try creating exclusions for Malwarebytes in Avast to see if that helps. To do so you'd need to exclude the items listed in this support article from Avast's real-time protection. Once that's done you should try the scan again to see if it is any faster.
  18. exile360

    Windows 1809 system tray icons

    Greetings, Please check to see if you have fast startup enabled in Windows, and if so, please disable it then restart your system and test to see if the issue is resolved. Fast startup has been known to cause problems with Malwarebytes and other software due to the way that it works. You may find info on where to find the setting and how to disable it here as well as here. If that did not resolve the issue then please do the following so that we may check your Malwarebytes installation for any problems and hopefully find a solution: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Please let us know how it goes. Thanks
  19. If there's anything on the system causing it to revert to an earlier state such as a backup solution, registry backup/restore solution, System Restore etc., that may also be the cause, otherwise it could either be the issue Firefox and I mentioned about too many installs in which case you'd need to login to My.Malwarebytes.com to deactivate your previous installs/devices or contact Malwarebytes Support directly to get them to do it. Another possibility is that Malwarebytes has somehow gotten corrupted and is reverting to its backup configuration files to attempt to repair itself. If that's the case, then the best thing to do would be perform a clean install of Malwarebytes and then activate it again and hopefully it will stick this time: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced tab on the left (not Start Repair) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here
  20. I think that as long as you don't enable the option for the scheduled scan itself in the scheduled scan edit dialog under the advanced section, the scheduled scan will still run normally, without rootkit scanning enabled even if the rootkit scanning option is enabled under the main settings area.
  21. Color me completely unsurprised. Windows 10 - the most unstable, insecure Windows ever!
  22. Well, true 'packed malware' isn't really the same thing as a bundled installer (which is likely what these Imgburn installers are). When you hear the term 'packer' or 'malicious packer' etc. in technical/threat research discussions, what they're referring to is actually a specific type of compression and compression used for obfuscating code to prevent analysis (i.e. scanning etc.) of the file's contents. In the case of these installers, it's probably just that they're using some off-the-shelf installer package technology which isn't typically scanned by most AV/AM vendors so the bad components aren't seen directly until the installer extracts them to a temporary location in preparation for installing them (something I've seen happen often, and in fact have had Malwarebytes detect/block/quarantine such components during the install of an otherwise good/safe program, leaving me with only the program I intended to install on my system in the end). In this case, it sounds like some of these aren't just bundling stuff directly into the package, but may also be downloading additional components to try and install them (hence the web blocks from Malwarebytes). With all of that said, nothing stops Malwarebytes or the AV vendors from detecting these installation packages directly. It's just a matter of the Research team acquiring samples and analyzing them then generating signatures to target them, assuming they are deemed to be PUP or malicious.
  23. exile360

    Taking a look at 7-Max

    The only reason I'd likely run an older OS like that would be if I wanted to set up a rig for playing older games that aren't compatible with modern Windows versions (though before long I'm going to be one of those guys who's hanging onto an unsupported OS since I fully intend to stick with 7 at this point, even after support for it ends in 2020 because I just can't bring myself to use Windows 8/8.1 and especially not Windows 10 because I value my privacy and control over my system too much).
  24. I guess they have it set to automatically prompt you to check for updates when enabling the trial to make sure you're fully up to date and get the best protection possible, which makes sense since you always want to keep your real-time protection software up to date so that it can do the best job possible. As for the other issues, I really don't know, and my only guess is that it has to do with what I mentioned before about reinstalling the software too many times, but the only way to confirm that would be to try activating it with your license key so once you do that it should tell us more about what's going on.
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.