Jump to content

exile360

Experts
  • Content Count

    28,341
  • Joined

  • Last visited

Everything posted by exile360

  1. Right, this is why we have things like digital signing for applications and executables, security certificates and similar technologies and systems in order to help curb this very type of malicious activity. This new notarization feature/system is simply a similar type of program being leveraged to help accomplish the same things, enabling users to have more trust in the knowledge that the files they are downloading, and apps they are executing on their systems are safe and valid.
  2. Please try setting an alternate DNS such as Google DNS or OpenDNS as instructed in this article or this article and see if that allows you to get back online. Please let us know how it goes. If it works, then you may continue troubleshooting and providing logs to get your normal connection settings working again. Thanks
  3. My system fans just went nuts and my CPU temp spiked above 80C; something that rarely occurs outside of gaming or performing any other CPU intensive task, but all I was doing was watching a video in Firefox on Amazon. I checked Task Manager and saw that the Antimalware Service Executable (i.e. Microsoft Defender Antivirus Service) was the culprit so I checked, and no scan was running, no update was in progress so I set about trying to determine why this was happening. I started terminating applications starting with the most obvious, Malwarebytes, however the issue still didn't go away, so then I decided to start closing apps and as soon as I killed Windows Media Player, which I had left open after listening to a song earlier, and the issue instantly stopped in its tracks. I don't know what WMP was doing, as it shouldn't have been doing anything since it was just sitting there idle, however it was certainly doing something and Defender was very interested in it. I suspect it could have been performing one of its telemetry tasks or searching for media to automatically add to its library, but either way, it was nothing that I told it to do and it was causing my system to get much warmer than I normally like (normally, when gaming or performing any resource intensive task, I will crank up the fans to max using the built in fan control software in order to avoid letting my system's components get too hot under load). I just thought I'd post about it to make others aware in case they come across anything similar. Just for info, the song I listened to was an MP3 without any DRM (purchased/downloaded from Amazon in the past) so it definitely wasn't any sort of DRM/licensing causing the CPU spikes, and all album info/art/track info etc. had already been downloaded long ago, so it wasn't that either. The song was not playing at the time and WMP was sitting completely idle (at least as far as anything I had told it to do).
  4. Greetings, There is a known issue with the installer of some past versions of Malwarebytes which can cause this behavior. Please see if the following instructions fix the issue: Download and run the Malwarebytes Support ToolAccept the EULA and click Advanced tab on the left (not Start Repair)Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Please let us know how it goes and if the issue is resolved or not. Thanks
  5. Yes, no harm in being careful and doing backups. If the data is important to you, then the more backups you can create, the better. You might also consider purchasing a new internal SATA drive to install and use for backups, as they are much cheaper than external drives and you would still be able to backup all the data (and you could even create a full image backup of the entire drive if you wanted) and it would be a lot faster (and more secure) than uploading everything to the cloud.
  6. Greetings, If it works anything like the consumer version (which it does in most ways), then it is both. Most of the databases are stored locally, however there are cloud components which rely on real-time data from the cloud. This is also true for the consumer version. I hope this helps.
  7. Greetings, It is possible that the endpoint is infected with a PUP (Potentially Unwanted Program) or malware. I located this Malwarebytes Labs entry regarding the second URL which indicates its use in malicious activity. I would recommend working with Support directly to check the endpoint and get it cleaned up if infected. You may do so by filling out the form on this page, making sure that you indicate that you are a business customer to get you to the right branch of support. I wish you well and hope that the issue is quickly resolved. If there is anything more, please let us know. Thanks
  8. You can also much more easily just right-click the drive in Windows Explorer and select Scan with Malwarebytes rather than having to configure a custom scan. That's what I do whenever I want to scan a new drive or folder to check for threats.
  9. Sounds great, thanks for posting your results
  10. To more easily exclude all of the detections for the software, open Malwarebytes and launch a scan by clicking the Scan button on the main dashboard and once it completes, view the results and click the checkbox at the very top left within the column header to clear all of the checkboxes for all of the detections, ensuring that all of the detections belong to the program you wish to exclude, then click Quarantine or Next and when prompted on what to do with the remaining detections (the ones that were unchecked in the list), select the option to always ignore them and they will be added to your Allow List so that they will no longer be detected by real-time protection or future scans. Keep in mind that this will not exclude any future updates/installers for the program, so I would advise temporarily disabling Malwarebytes' Malware Protection component whenever performing a new install or upgrade/update of the program to a new version to avoid having it blocked and quarantined by Malwarebytes, then perform a scan to ensure that once the new version is installed, no changes have been made that need to be added to the Allow List, then re-enable Malware Protection. I hope this helps.
  11. I've never seen a browser or plugin capable of handling cookies as well as IE. Its settings and notifications for cookie handling basically make it into a sort of 'cookie firewall', where you are able to allow once, block once, allow always (whitelist), or block always (blacklist) each individual cookie from each individual site/server/tracker etc. It makes keeping the essential cookies and blocking all the others a piece of cake, and I've never seen its match in all the apps, browsers and plugins I've tried or seen. It's too bad IE is no longer a viable option as a browser.
  12. Greetings, Thank you for reporting this. If you would, please provide a copy of the protection log showing the detection to aid Research in correcting the FP. Thanks
  13. Greetings, Please do the following so that we may take a look: Download and run the Malwarebytes Support ToolAccept the EULA and click Advanced tab on the left (not Start Repair)Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Thanks
  14. Greetings, Please use the Export function to copy the log to the clipboard and paste it here into your reply, and also do the following: Download and run the Malwarebytes Support ToolAccept the EULA and click Advanced tab on the left (not Start Repair)Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply Thanks
  15. While I cannot speak officially, I seem to recall those files being created for the purpose of installing updates, so they will likely be recreated the next time new threat signatures/databases are downloaded. I might not be recalling that accurately though, so I concede to whatever LiquidTension or any other staff member says.
  16. Thanks, yes, that would be great, and thank you for testing it. I will be sure to report your findings to the Product team as well if you do decide to test and report.
  17. Thanks, yes, and frankly, Ransomware Protection is by far the least proactive of all four protection modules anyway, since it relies on your system first becoming infected with active ransomware which attempts to encrypt your data as it is a behavior based defense measure, and since by far the most common attack vector for getting ransomware onto systems is through the use of exploits, and since it is among the most proactive protection components (and also extremely effective, since it too is based on behavior; it's just able to catch the attack much earlier in the kill chain, before the ransomware payload is even downloaded), Exploit Protection should guard against most such attacks/threats, so keeping it and the other modules enabled still provides excellent protection. By the way, I checked, and I actually reported about the issue still being present for you with the latest release based on your thread in the Malware Removal area with Maurice, so the team is already aware of it, however I did put a link to this thread in my new report for this week so that they will know that the issue is still present, even after all of that extensive troubleshooting and diagnostics. Also, I noted that you haven't installed Windows Update 2004 yet due to the message about it not being offered for your device yet and I believe it may help to install the update manually using the Windows 10 Update Assistant. I had the same problem with the system I'm using right now, and I was also having problems with Windows 10 at the time (though not the same as the issue with Malwarebytes you are experiencing), and after I used that tool to manually install build 2004 of Windows 10, my system is now running great and appears to be stable. Installing it may correct the issue with Malwarebytes on your system, though I don't know for certain.
  18. I see, thank you for that information; I will be certain to bring this case to the attention of the Product team in my weekly report. I'm sorry that I cannot offer a better solution at the moment, but appreciate all you've done to report and help us to troubleshoot the issue.
  19. By the way, I apologize I didn't address the other aspects of your question, however while I do not believe the new feature extends the amount of time required for a scan to complete, it is possible that it does so I'd have to let the results speak for themselves if and when you run a scan with the new feature enabled to see if there's a difference, unless a member of the staff responds to inform us on the subject. With regards to whether it connects to the internet/the cloud; I don't believe this particular module/component does, however there already is a cloud based AI component in Malwarebytes which is the setting right above the new feature under settings labelled as Use artificial intelligence to detect threats (scans may take longer), which leverages the cloud and clearly impacts scan times as indicated in its description. Anyway, I once again hope that you find this information helpful.
  20. Greetings, I'm sorry you're experiencing problems with the software, however the issue you mentioned should have been fixed in the most recent release, so it is possible that something went wrong with the most recent update, causing it to show this behavior instead of correcting it. To try and fix it, please perform a clean installation as described below: Download and run the Malwarebytes Support ToolAccept the EULA and click Advanced tab on the left (not Start Repair)Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here Once that is done, restart your system one more time, then open Malwarebytes and go to settings by clicking the small gear icon in the upper right, then click the Check for updates button near the top of the General tab and allow it to install any available updates and verify that the problems with DNS resolution and overall system performance are gone and let us know if the problems have been resolved or not. Thanks
  21. I am glad to be of service, and please don't hesitate to let us know if you have any further questions.
  22. By the way, with regards to your other thread, I already documented it for the teams in my last report.
  23. You're welcome, I just wanted you to know that your report was not being ignored.
  24. I always report issues for the various products to the Product team as I am contracted to do so. It's simply another data point for them to help inform their decisions and awareness of issues. Keep in mind that my report goes out to a large number of the Malwarebytes staff, so while it often includes issues some or all of them may already be aware of, it also often contains at least some information at least some of them might not have been aware of. They of course get reporting from their Support staff and QA as well.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.