Jump to content

exile360

Experts
  • Content Count

    29,580
  • Joined

  • Last visited

  • Days Won

    20

Everything posted by exile360

  1. They must have changed it then. It used to prevent any Malwarebytes process from being terminated this way and would show an access denied dialog/error, otherwise it would be trivial for the bad guys to terminate it then block it from restarting itself which was the entire point of self-protection in the first place.
  2. Hey, you never know. I assumed that because MS hadn't added that feature until Vista (and I believe it's also exclusive to x64, though I may be wrong on that point) that it didn't apply to XP, but if they did it in EMET then perhaps they did it in MBAE/MB3/MBAM as well. I'll make a note of it and ask the Product team and get you an answer for sure one way or the other.
  3. Thanks for the info. I'll be sure to report that to the team for additional troubleshooting/investigation.
  4. It is normal to be able to stop the service using Services.msc, but you shouldn't be able to kill it using Task Manager if self-protection is working.
  5. It shouldn't make too much difference and you can verify that it's working by trying to terminate any of Malwarebytes processes using Task Manager (you should get an error/access denied message box because of the self-protection driver blocking it).
  6. You may be correct. I will ask the Devs to find out if Malwarebytes is doing something similar on XP.
  7. Greetings, It's possible that the issue you're experiencing is similar to the one being discussed in this topic. If you would, please try each of the workarounds mentioned in this topic under the Known Workarounds section to see if that resolves it or not, particularly the second one involving reverting to an early build of the program. Please let us know how it goes. Thanks
  8. You must have written it with that disappearing ink
  9. Greetings, While it is very unlikely that you were infected with anything, just for your peace of mind I'd suggest going ahead and following the instructions in this topic and then creating a new topic including the requested logs and information in the malware removal area by clicking here and one of our malware removal specialists will assist you in checking your system for any threats and helping you to remove any that are discovered as soon as a specialist is available. Please let us know if there is anything else we might assist you with and we'll do our best to help. Thank
  10. You're welcome, and please keep us posted on how it goes and let us know if you have any questions.
  11. It could also be that there's another issue with your system preventing it, possibly the same thing preventing the anti-exploit driver from loading though I'm really not sure.
  12. Greetings, It's likely due to the fact that the current version is no longer officially supported on Windows XP but I don't know for sure and don't have an XP system to test with at the moment unfortunately. This is a direct quote from the official Process Monitor page on Microsoft's website:
  13. It was a minor update to address an issue with licensing. You can find the details in this post.
  14. Greetings, It's possible that your browser has some kind of PUP (Potentially Unwanted Program) installed such as a plugin or extension causing Chrome to connect to unwanted sites. To check, please open Malwarebytes and click on the Scan Now button to allow it to scan your system, then have it remove anything it detects and allow it to restart your system if prompted to do so to complete the removal process. If the issue still persists or Malwarebytes didn't find anything then please run ADWCleaner and likewise have it scan your system and have it remove anything it detects, restarting y
  15. You can also install the Malwarebytes browser extension if you use Chrome (or another Chromium based browser like SRWare Iron or Vivaldi) or Mozilla Firefox. It contains the same block database as the Web Protection component in Malwarebytes 3 and also includes some additional functions such as ad blocking, anti-phishing, clickbait site blocking as well as behavioral blocking for certain common threats like tech support scam sites and fake/PUP browser plugin sites. It's compatible with Malwarebytes 3 so once this issue is resolved you can continue using it. Its only limitation is that it on
  16. I believe the OP is asking if, since ASLR is a feature implemented starting in Windows Vista by Microsoft and didn't exist in Windows XP, is there any point to this setting/function in Malwarebytes Anti-Exploit when running on Windows XP, and I believe the answer is "no" since there is no system default ASLR to be enforced, at least if I am understanding Malwarebytes' implementation of this feature correctly in that I believe, just as with their DEP enforcement feature, it relies on the system's in-built functionality to work and simply augments/enforces the system's function as implemented by
  17. I switched back to my previous configuration since I get less performance issues that way (not to mention faster startup and fewer/no errors) so I've got Web Protection on again, Ransomware Protection off and self-protection off (though I don't think that module is related to the issues, I just see no point in it since I don't expect to get infected).
  18. It most likely is pretty normal depending on what you're doing at the time since the various protection components will talk to the cloud while doing their work such as the Web Protection component while browsing and the Machine Learning/anomaly detection component I mentioned which will analyze any new/unknown process it doesn't recognize leveraging the cloud to determine if it's malicious and to help train the module/system further for improving its classification/detection capabilities.
  19. Aha, that explains it. Well done I guess Windows Defender turned itself on once the other AV was removed and must have enabled that feature (Malwarebytes can't touch Windows Defenders' settings, but Defender does sort of have a mind of its own, especially when it thinks its the only protection on the PC).
  20. OK, thanks. Have you tried disabling the other protection components individually to see if that makes a difference? If that doesn't help then you might try disabling the self-protection component by opening Malwarebytes and navigating to Settings>Protection and toggling the Enable self-protection module setting to Off under Startup Options as that could also be the issue. Please let us know how it goes in your testing, both for the protection components and for uninstalling. Thanks
  21. Awesome, I'm glad to hear it. Please let us know if there's anything else we can assist you with in the future. Thanks
  22. Awesome, thanks, I'm sure this info will prove useful Hopefully they'll be able to figure out what's causing this and get it fixed quickly.
  23. The closest thing (besides the add-ons/extensions/plugins David mentioned above, which are quite common (also beware of fake "Flash Player" updates and similar scams and only download known valid plugins/updates from their original sources) would be exploits, which are essentially malicious scripts that run inside web browsers and often attempt to exploit a known vulnerability within the browser or one of the legitimate plugins you might have installed (such as Flash Player, Adobe Reader, Java etc.), however the Exploit Protection in Malwarebytes Premium is very good at stopping these kinds of
  24. He asked for a screenshot of Event Viewer but I don't believe you ever provided it, and besides, that tool I posted above will collect much more than just those particular events so it could be far more helpful diagnostically speaking. You can take your time and do it whenever you have a free moment. You don't need to interrupt anything important for this. I'm just trying to help get the problem figured out and solved.
  25. So after testing for a while with Web Protection disabled and Ransomware Protection disabled, here are my findings: Installed .NET monthly preview update, a def update for MSE and an update for Silverlight Rebooted and Malwarebytes took several minutes to start and prevented one of my system startup programs (Hotkey Control Center; a hardware control/overclocking app for Clevo laptops like mine) from starting I terminated Control Center via Task Manager and tried launching it again After around 30 seconds it finally launched at the same time the Malwarebytes tray icon s
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.