Jump to content

exile360

Experts
  • Content Count

    24,621
  • Joined

  • Last visited

Everything posted by exile360

  1. Greetings, I was speaking with dcollins about your issue and had a couple of ideas. First, I'm thinking that because of the way that Ransomware Protection in Malwarebytes functions, being a real-time monitor of system file and memory activities, it's likely that this is the component causing the CPU spikes so I'd suggest starting by disabling Ransomware Protection temporarily to test and see if that eliminates it. Next, I have a hypothesis that there is some scheduled and/or idle tasks executing when the system is idle that are causing this behavior as Malwarebytes monitors them, thus consuming additional resources as this occurs so the next step would be to try and track down what this idle/scheduled task might be. It could be something in Task Scheduler or a background scan, optimization or update process being performed by some other software or a native Windows component so you'll need to watch for any spikes in any other threads/processes/services to see. It could even be something executed through a driver which would make it more difficult to track down as it would not be displayed in Task Manager, so using a more advanced diagnostic/logging tool such as Process Monitor and/or Process Explorer by MS Sysinternals might be necessary (though it's also possible that running either of these tools constantly might consume too many resources for the system to go into idle mode and the idle task to trigger/launch so it's not a bullet proof plan unfortunately). Anyway, I hope this helps and please keep us updated on anything new that you find out and hopefully dcollins will have good news for us upon his return with info from the Devs on the memory dump's contents.
  2. By the way, for anyone who might be curious, it turns out, according to a colleague, that this is being caused by AVG's Fake Website Shield component so if anyone has issues with Malwarebytes not working properly alongside AVG, that is most likely the reason and disabling that component of AVG should resolve it, allowing you to run both in tandem without issue. If anyone does continue to have problems, then please create your own thread in this forum and we will assist you as soon as we can. Thanks
  3. I found out from a colleague that apparently this is most likely being caused by AVG's Fake Website Shield component, so if you just disable that Malwarebytes should function properly. Please try that and let us know how it goes. Thanks
  4. I just got some more info about this issue from a colleague. Apparently this is caused by the Fake Website Shield component in AVG, so disabling just that feature should allow the two programs to work in tandem without issue. Please test that to confirm, and if the issue persists please let us know. Thanks
  5. Excellent, I'm glad to hear it and you're very welcome If you need anything else please don't hesitate to ask.
  6. Greetings, Until someone from the team responds, I did a quick search and found info indicating that the above registry entry may be created by Norton SafeSearch, which I believe is their search toolbar add-on for IE. If you have it installed, I would suggest you try disabling it temporarily to see if that eliminates the detection, if you don't have Norton installed or its browser add-on then it could be a threat or PUP attempting to pass as a legit entry in which case additional measures may be needed to remove it. If you have any trouble, you should be able to disable the entry via MS Sysinternals Autoruns by checking under the Internet Explorer tab (be sure to right-click Autoruns and select Run as administrator if it doesn't show up) and then unchecking the box next to that entry if found that way you can restore it later if this was a false positive on the part of ADWCleaner.
  7. Greetings, First, to deal with the Windows Update issue I would suggest trying the fixes listed here, though one of the downloads is no longer available it still provides manual instructions for accomplishing the same thing as the MS Fixit tool (the reset Windows Update instructions). If that worked, go ahead and try installing the latest AMD driver for your graphics card from this page (I would suggest either the latest optional (I guess "beta", but I'm not sure as they don't make it very clear) version 18.8.1 found here or the latest (stable I'm guessing?) build version 18.5.1 located here. If you continue to have trouble with your graphics drivers, then please follow the instructions found here as well as here (they're pretty basic but may be helpful if the installation issues persist). Hopefully that gets it done, but if not then please do the following: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Next, download and run Speccy to give me info on your hardware: Provide System Specifications: Please download Speccy from here and save the ZIP file to your desktop or another location where you can easily find it. Right-click the file select Extract All... then click Extract in the window that pops up and it should be extracted to a folder in the same location as the ZIP file you downloaded. Open the extracted folder and then double-click on the version of Speccy appropriate for your system (select Speccy.exe if using a 32 bit Windows version or Speccy64.exe if you are running a 64 bit version of Windows) and click Yes, OK or Allow if prompted by User Account Control. Once the program starts it will analyze your system, please be patient as it may take a few moments to complete. Once it finishes and none of the areas say Analyzing click on the File button at the top and select Save Snapshot... Save the file to your desktop and click Ok to confirm Go to your desktop and right click on the file you just created and hover over Send to and select Compressed (zipped) Folder Please attach the zip file you just created to your next post
  8. Greetings, This is a known issue with Spywareblaster (as well as the Immunize function in Spybot Search & Destroy) as documented in this thread. The team is aware of the issue and should have it fixed in the next release of ADWCleaner. In the meantime, that thread also explains how to create exclusions for these items in ADWCleaner if you no longer want them to be detected for now until the issue gets resolved.
  9. Yes, please, as it could at least show why it was detected in the first place just in case there is some other issue at play here (such as a bug etc.). Thanks
  10. Greetings, I don't know if it's related or not, but your User Account Control settings seem to be off default: Consent Prompt Behavior Admin: Off By default, that setting should be enabled. I also noticed a lot of compatibility entries in your logs for other software, and I don't know if that's related either but it could be that those are only necessary because of the altered UAC setting. More info on this setting can be found here with the default value being 5 which according to the table on that page means: And also that: Which basically means that Windows will trust its own components without prompting for approval via UAC but third party programs will require your consent to receive elevated privileges should they require them. Given the fact that the vast majority of software has now been designed to be fully compliant to and compatible with UAC, I'd suggest configuring it to the default setting to reduce the probability of issues with third party software (including potentially Malwarebytes). Much of the Malwarebytes installation info that the log was supposed to show is also missing, and this could be why if the tool wasn't able to query everything that it needed to due to incorrect permissions/privileges. I also see that you are running ESET IS, and while it should be compatible with Malwarebytes, it is possible that exclusions are needed to get the two to work properly together. The items to exclude from ESET's protection components can be found here. Finally, I don't know if you've tried this already, but it may help to perform a clean installation of Malwarebytes as install corruption may be the reason for the issue. To do so please follow the instructions below: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here
  11. Greetings, For any issues related to licenses your best bet is to contact Malwarebytes Support directly. You may do so via the options found on this page. They should be able to look up your license and reset the activations for you so that you may register the software on your laptop again.
  12. If you didn't have to disable ZoneAlarm to get Malwarebytes working again then it should be OK, but please do let us know if it happens again. I'll also make a note of this for the team to make sure they test with ZA for full compatibility so that we can document any issues and necessary steps for anyone using the two together.
  13. OK, thanks for confirming that. Now there are a few things we can try to fix this issue. First, please try excluding Malwarebytes' files from AVG's various protection components and scanner as best you can. The items which should be excluded are listed here. Next, you can try disabling individual components of AVG until you discover which one specifically is causing the problem. Once we know that, it may help to further troubleshoot the issue, and if it's a component which isn't essential, it's possible you could just leave it disabled for the time being until AVG get this issue sorted. Please let me know how everything goes and if you were able to find which component of AVG is at fault. Thanks
  14. Greetings, I see in your logs that you have AVG installed. A recent AVG update seems to prevent Malwarebytes from running on Windows 10. To verify, please temporarily disable AVG and then see if Malwarebytes will launch. Please let me know how it goes. Thanks
  15. Greetings, To start with, please check your settings in the antivirus component of ZoneAlarm. As I recall, ZoneAlarm uses Kaspersky AV as its AV component and there is a known compatibility issue between Kaspersky and Malwarebytes where if the rootkit scanning/idle scan component of Kaspersky is active, it may prevent Malwarebytes protection from working properly so that's a place to start. Next, please try performing a clean install to see if that resolves the issue: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Please let us know how it goes and if the issue persists. Thanks
  16. If dcollins has any other ideas then please follow his advice, however given your description of the errors and behavior, it sounds like it's possibly corrupted boot files/partition table or even a failing drive/bad sectors/data corruption which is along the lines of what you theorized as well. It could even be a simple matter of a bad connection, but then it likely wouldn't consistently get to the login screen like that so I'm betting more on the corruption side. Registry corruption is the most likely culprit or corrupt/missing boot files/system files in my opinion. Your best bet if you have files on the drive you can't lose that you don't have backed up elsewhere would probably be to do a repair install of Windows, that way it keeps the data and just repairs/reinstalls the OS/system files and registry. Most of your installed software should still work afterwards, but some may not since they might not be able to recreate necessary data in the registry, so those that don't work will need to be installed again after the OS is back up and running. Instructions on performing a repair install can be found here as well as here. Specifically with regards to Malwarebytes' role in all this, it is very unlikely that performing a scan, especially where no threats were detected, would cause corruption of the system so I suspect the timing was just a coincidence and that something else occurred during the last shutdown that caused this situation (anything trying to write to the registry during shutdown and failing to complete on time could cause it; this usually occurs during power loss events, but it is possible during a normal shutdown under some circumstances as well). If you have an SSD it may be even more likely as certain settings designed to protect data which might result in slower performance might be disabled for the sake of speed. Once you have Windows up and running again you can check by right-clicking on Computer in the START menu and selecting Properties then clicking the link for Device Manager, locating your drive in the list of installed devices (it should be under Disk drives if you expand that section), double-clicking on it (or right-clicking on it and selecting Properties), then looking at the Policies tab. Ensure that the first checkbox Enable write-caching on the device is checked (it sounds counter-intuitive given what it mentions about power loss, but for SSDs this does actually need to be checked/enabled) and that the second setting Turn off Windows write-cache buffer flushing on the device is NOT checked (this is the one likely to cause issues like this with SSDs; it has been known to sometimes improve performance, but it has also been known to cause corruption in situations like this during shutdown when it isn't able to complete an operation resulting in corruption of data). Also, if you haven't already and you do have an SSD, I would highly recommend installing the drivers for it from the manufacturer, especially if it is an M.2/NVMe SSD as the native Windows driver is notorious for causing issues with the more modern SSDs, including data loss and slow performance and I'd also suggesting checking to make sure that the management software (if available) from the manufacturer is up to date along with the drive's firmware (they should all be available from the manufacturer's support site but if you need help finding them, let me know what model and manufacturer your drive is and I'll do my best to locate them for you).
  17. Verified, the same occurs on my own installation (Windows 7 x64 SP1, fully patched, 1920x1080 resolution, DPI/scaling 100%). I'll report it to the team. Made it just in time for this week's report
  18. Greetings, To start, it's possible that this may be caused by a feature in Windows 10 called Fast Startup. You can check by disabling it as instructed here as well as on this page. If Fast Startup was enabled, try disabling that first, then reboot your computer and see if Malwarebytes now functions normally. If it does not, then the problem could be compatibility with AVG and you might need to enter exclusions in one program or both for the other. The items to exclude from AVG's scanning and protection can be found here and to exclude AVG's files and processes from Malwarebytes you will need to use the instructions in the Exclude a File or Folder section of this support article. If that did not resolve the issue, then it would be best to provide us with some more details about your system and Malwarebytes installation. To do so, please follow the instructions below: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Please let us know how it goes and if necessary, provide the ZIP file mentioned above. Thanks
  19. Greetings, This should be fixed by reinstalling the latest version. To do so, just download and run the latest installer from here and then open Malwarebytes and go to Settings>About and verify that the two numbers shown in the below image match what shows in your version: If they don't match, then go to Settings>Application and click on the Install Application Updates button to have the program download the latest components then return to the About tab to verify. If everything is working normally now, go ahead and restart your computer to verify that it continues to function properly and that the latest components are loaded into memory. If the problem with protection persists after that, then please do the following so that we can take a look at what is going on with your installation: Download and run the Malwarebytes Support Tool Accept the EULA and click Advanced Options on the main page (not Get Started) Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Thanks
  20. Greetings, Yes, reinstalling the program should fix this. There seems to be an issue that occurs occasionally with one of the program updates that causes this and I believe the team is investigating it. In the meantime, the installer for both free and Premium is the same, the only difference is that free converts to Premium once your license information is entered so all you need to do is download and install the latest version from here and then restart your system, then open Malwarebytes and go to Settings>About and verify that both of the following version numbers match what is shown in the image below: If the second number doesn't match, then go to the Application sub-tab and click on the Install Application Updates button and allow it to download and install the patch, then once it is installed, verify that the version info matches the above image and restart your system to make sure that the latest components are loaded and that Malwarebytes is now working properly. Please let us know how it goes. Thanks
  21. Yep, that makes sense since Malwarebytes can't actually scan network attached storage devices (you can't have it scan any files/folders on network drives as it is unable to access them due to permissions quirks in Windows in how it implements network storage). I don't know if or when it will be fixed, but it is likely that it will be mentioned in the change log/release notes for the version that fixes this issue, and it's likely that it will be included in the next release so I'd suggest keeping an eye on the pinned topic at the top of this area of the forums for announcements of the next release to see when it gets fixed.
  22. Slipknot is back. Been listening to this album on repeat, over and over for a while now. It's deep, it's dark, in places quite sad (it's a tribute album for bassist Paul Gray who passed prior to the album being produced): I highly recommend it to fans of Slipknot or thrash metal in general, and while the above entry is partially censored, I'd highly recommend picking up an unedited copy (I bought it in MP3 format when it came out on Amazon) to get the full impact of the lyrics which are very intense. Being a longtime Slipknot fan, I have all their albums and while I always liked the first two more than Vol. 3: (The Subliminal Verses) (though I did still love that album, don't get me wrong) due to their heavier sounds, especially Iowa their second offering, .5: The Gray Chapter is like a perfect blend of the two styles, emitting the heavier sounds and thrash metal double bass and similar (drop B I think?) guitar tuning giving that lower, growlier sound to the riffs on most tracks. It's also very much a concept album, by which I mean much if not all tracks are in some way connected to others on the album telling an overarching story along the lines of many Pink Floyd albums (though not to the same degree as some cases like The Wall, which was basically a movie on disc). With that said, I actually think I found a pattern in some of the songs indicating a different ordering to the tracks (similar to what some other artists have done in the past like Tool on Lateralus, where it is clear that some of the songs are out of order/should be arranged before or after different songs on the album) so this is the order I listen to the album most often: If going by track number, this is the order of tracks for my custom arrangement: 10 1 2 16 7 12 13 6 8 9 3 4 5 11 14 15 This custom order is based on everything from the sound effects/melodies at the beginning and end of each track to lyrics as well as the melodies of specific "hooks" or verses in the songs where they sometimes match or sound similar to components of other songs found elsewhere on the album. Also bear in mind that this is the original release version of the album, not the special edition with the bonus tracks (5 I think, with 2 numbered and 3 hidden) so I haven't accounted for those additional tracks in my custom order.
  23. No, you don't need to download it again. The problem these users were having was that .ISO files were associated with WinRAR meaning they looked and acted like archives instead of disc images. Just open WinRAR if you have it installed and change the setting I mentioned above and as soon as you hit OK the ISO file should have a different icon and you should then be able to burn the disc image rather than having WinRAR open the disc image's contents. You can tell if this is the problem by looking at the copy of Kai Linux you downloaded. If it looks something like the image below then that means .iso files are associated with WinRAR and you need to change that setting I mentioned above: Once it's changed the .ISO file should look something like this:
  24. Ah, I see. Malwarebytes doesn't require admin privileges to update databases, so if those aren't happening then something else may be going on unrelated to permissions. Definition updates run through the service which runs with SYSTEM (higher than admin) permissions so it shouldn't have any trouble updating those even under a limited user account. With that said, if you're referring to Component updates, those are different and probably do require admin privileges because they have to replace program files/components which reside in locations that are protected by UAC/permissions so those are more like program version updates.
  25. Yeah, they're definitely one of the go-to resources on the web for security products and tools. They have tons of great info and discussions there all the time and even host several areas that operate as the official support forums for various vendors' products.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.