Jump to content

exile360

Experts
  • Content Count

    26,258
  • Joined

  • Last visited

Posts posted by exile360


  1. Sounds like a plan, and in the meantime I would also highly recommend installing Malwarebytes Browser Guard.  It is a browser extension that installs on Chrome (and other Chromium based browser such as SRWare Iron and Microsoft's new Edge Chromium browser) as well as Mozilla Firefox and includes much of the same blocking as the Web Protection component in Malwarebytes but instead of operating at the network stack level, it just functions within your browser.  The advantage is that it is also able to analyze the behavior and layouts of the websites you visit for known malicious patterns (such as tech support scam sites, phishing sites and the like) even for new/unknown/previously undiscovered sites within those threat categories and it also blocks many ads as well as many trackers to protect your privacy while you browse the web.

    It is fully compatible with the Web Protection in Malwarebytes Premium so whether you keep Web Protection enabled or disabled at any point, you can at least keep your browser shielded from malicious sites via the extension.


  2. Nope, that should be just fine :)

    The only other folder you might consider excluding would be Norton's primary data folder which is likely located under C:\ProgramData, however it isn't nearly as likely to address potential issues with performance as just excluding the AV's main program folder as you already did.


  3. Greetings,

    If you can, you might exclude Norton from Malwarebytes Anti-Ransomware and it may also help performance and compatibility to exclude both Malwarebytes applications from Norton though it likely is not a requirement to do so and I don't recall any recent issues being reported with any Norton products offhand.

    I hope this helps and if anyone else has firsthand experience with Norton and its compatibility with Malwarebytes please feel free to chime in, however given how frequently we see users running a popular product like Norton on these forums, I would expect to have heard about any current incompatibilities by now, but that's just my take based on my experiences here on the forums.

    Please let us know if there is anything else we might assist you with.

    Thanks


  4. Greetings,

    This is a very old topic from 2017, however for any sales and pricing questions you may refer to the current pricing listed here, but with that said, Bytefence is not a product made by Malwarebytes and is a completely separate product and company which as far as I know is not affiliated with Malwarebytes in any way, they simply have the computing term 'byte' in their name which makes them sound a bit similar (though Malwarebytes has existed since as far back as 2004 at least).

    If you intended to purchase Malwarebytes then I would suggest seeking a refund from the other company then referring to the purchase page I linked to above.  Also, as I understand it the minimum subscription length for any licenses they sell is 1 year and I do not know of any monthly options or payment plans that allow stretching out the cost over a longer time period (though keep in mind that the pricing is only $39.99 USD to protect a single device for 1 year and you can add additional years and/or devices and receive various levels of discounted pricing on your order).

    I hope this helps and if there is anything else we might assist you with please let us know.

    Thanks


  5. The way that Windows Security Center/Action Center functions in Windows 10 is very different from previous Windows versions and how they handled registering security applications (including AVs, anti-spyware, firewalls etc.) and monitoring them.  It was far more passive previously, with security vendors simply needing to pass some basic validation testing through Microsoft and prove their efficacy for providing protection, then coding in the right data to write into certain system data files which were used for tracking the applications being monitored by Security Center/Action Center.  In 10 it's all much more closely tied to Defender and a slew of new components and functions, including I believe, the need for the security vendor to load a special application into memory which handles interfacing with the Security Center/Action Center (in Malwarebytes' case, this would be the MBAMWsc process I believe) so I don't know all that is involved in getting it working in 10, especially in the latest versions of 10 as there have been many changes to how such things work in the recent major updates for Windows 10 published by Microsoft.

    Anyway, with all of that said, if you still prefer to leave it be then that's fine.  Malwarebytes is protecting your system and that's by far the most important thing.  Registering with Security Center/Action Center is a minor function at best and really doesn't impact how Malwarebytes works on your system or the protection it provides since you still have all of its protection modules active, and of course Malwarebytes will notify you if there are any issues such as your databases being too far out of date or any of its protections failing to run or stopping or when any threats have been detected by Malwarebytes so there isn't really anything significant as far as Malwarebytes' features go that you miss out on in not having it registered in the Security Center/Action Center.

    For anyone still wishing to continue troubleshooting this issue, you are of course free to do so as we certainly want the software to work as intended, however the Developers for Malwarebytes will likely require some additional details about the systems and what is going on with them in order to try and track down a common cause and (hopefully) a fix, assuming the issue is something Malwarebytes has control over in their own code and it isn't some kind of Windows Update bug as a user above mentioned, which is certainly another possibility given Microsoft's recent track record, especially with AV/security software compatibility (users of some of the most common/prominent AV software products had to wait to install certain major Windows 10 updates due to incompatibilities with these very commonly used applications from major vendors).

    To provide logs for troubleshooting, please do the following:

    1. Download and run the Malwarebytes Support Tool
    2. Accept the EULA and click Advanced tab on the left (not Start Repair)
    3. Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply

    Thanks


  6. It's more likely some kind of driver issue I suspect, and since RAM in use by drivers can't really be seen through normal means such as Task Manager, tracking a memory leak or similar issue within a running driver can be a challenging task however I am hopeful that the Product and Devs already know the cause and are working towards a fix however I don't know for certain and it may also depend on whether or not this issue is being caused by the same problem causing some lingering net connectivity issues and crashes with Web Protection (a definite possibility as far as I know, though my own knowledge is somewhat general/hypothetical compared to those who have first-hand knowledge of drivers/coding etc.).


  7. Greetings,

    This is a known issue with some systems running the latest version of Malwarebytes.  You can try opening Malwarebytes and going to settings by clicking the small gear icon in the upper right area of the main UI then selecting the Display tab and disabling the option for hardware acceleration found there, then close and relaunch Malwarebytes and see if the issue is corrected.  If it works then that should prevent the problem from occurring again until a release is available which includes a fix for this issue.

    I hope this helps and if there is anything else we might assist you with please let us know.

    Thanks


  8. I'm not aware of any checkboxes except for the one on the EULA/agreement page which must be checked to proceed.  Beyond that I believe you just need to click the Start Repair button and it should handle the process automatically and provide instructions on anything you need to do once it finishes such as rebooting your system and allowing it to install the latest version once the system restarts.


  9. Greetings,

    Thank you for the kind words, I will be sure to pass them on to the entire Product team on your behalf in case they don't see this topic.  I'm glad that you are so happy with the value provided by Malwarebytes Premium and that you are able to afford it to help keep your devices safe.

    Anyway, thanks again for the kind words, and if there is anything we might assist you with please let us know.

    Thanks


  10. Interesting, your description of when/how the BSOD's occur would make it seem more likely that it is related to your internet connection somehow.  If you are using Malwarebytes Premium, try disabling Web Protection for a while and see if the BSOD's go away.  There is an issue being tracked which can cause BSOD's and other issues on some systems that the Developers are looking into and working on.

    Examples of this issue can be found here as well as here.  It might also be a good idea to update your network drivers.

    Bad RAM or poorly seated RAM is another possibility as far as hardware goes, so you might remove all your RAM sticks and securely replace them back into their DIMM slots to ensure that they are installed securely and maybe give memtest86 or the memory diagnostic in Windows a try to see if there are any errors.


  11. Yes, unfortunately Malwarebytes' settings are not backed up/restored by SR, however that's actually a good thing believe it or not, because back when they were stored in the registry in older versions, any time a user used a restore point to roll back their system to any earlier point their Malwarebytes installation would break and they would have to reinstall Malwarebytes to get it working again.  This is because items such as databases and logs contain data which is relevant to the current date/time and when they get out of sync the software ends up being corrupted and non-functional and while some AV/AM applications do store many settings in the registry (though most applications use at least some folders/files for at least some of their data/settings these days), they are commonly settings which are less consequential and are often entries generated by the application itself when it is launched.  I suspect this is also done for security reasons, because storing even a hash representing critical data such as the product license key could put it at risk for being stolen should the system become infected and if the application relies too heavily on anything in the registry it puts it at risk for more easily being crippled/disabled by the bad guys should an infection get through.


  12. Greetings,

    The advanced settings you discovered are for the built in Anti-Exploit (known as Exploit Protection in the Malwarebytes Premium application) which is designed to shield the system from common exploit attack vectors and methods.  It has been designed to provide protection for the most common internet facing applications at risk for exploit attacks as well as the most common applications used for opening files from the web which might have embedded exploit code (such as media players to guard against infected/Trojanized MP3's, images or video files, or office applications used for reading and editing documents of various formats) and it also includes some more universal protection layers focused on shielding the operating system as a whole (by hardening it against known exploit vectors as well as monitoring memory for exploit behaviors in processes and threads attempting to execute).  You can generally leave it configured to its defaults for the best security and application compatibility, however if you use a web browser or media player which is not currently listed in the default shielded applications you may add it manually, however you should not try to shield every installed application and process on your computer as that would be very likely to cause system instability and is not what Exploit Protection is designed to do (it is a targeted, proactive, largely behavior based exploit defense solution rather than a general HIPS/behavior blocker as might be found in some internet security suites and the like; this makes Malwarebytes much lighter, less broad sweeping, but generally more efficient and potentially more effective solution for dealing with the vast majority of commonly used exploits on the web).

    With regards to enabling any of the disabled settings, they are generally either disabled for a reason such as a known compatibility issue or conflict and aren't a common type of exploit/attack targeted at that application/type of application or system component, or they might be too aggressive and prone to false positives for some configurations.  As for disabling any of the shielded apps, there is no need as Exploit Protection only monitors those applications which are actually active/running in memory, so if you don't have MS Office installed on your system and no MS Office apps are running in memory at any time then that protection isn't actually doing anything.  Likewise, if you run Open Office then the protection(s)/shield(s) for LibreOffice should provide you with protection and will be active when running those applications.

    I mentioned that you can manually add applications to be shielded, and this is true, however I would recommend sticking strictly to the same categories of applications already protected by Malwarebytes such as regular web browsers, office applications, PDF readers/editors, media players and the like because trying to shield an application that the protection was not designed for could have any number of unforeseen consequences such as application and/or system instability.

    I apologize for the long winded reply, however those are some complex questions you raise which deserve some level of detail to address.  If anyone from the staff chimes in then I defer to their more detailed knowledge on the subject, however as a former Malwarebytes employee and longtime helper on the forums here, this is my understanding of how Exploit Protection works.

    You may also find the following resources informative:

    What is Exploit Protection
    Vulnerability exploits Malwarebytes Anti-Exploit protects against
    Security settings in Malwarebytes for Windows v4

    If there is anything else we might assist you with please let us know.

    Thanks


  13. I don't know for certain, but if I had to guess why they use files in a folder that they have full control over rather than the registry, I would say the most likely reason is security.  Even with deny (or even removed) permissions on a registry key/value, it is still much harder to defend against malicious modification or deletion than it is to protect files/folders on disk, and since Malwarebytes includes a self-protection driver in the form of Chameleon, I bet that they are relying on this structure to be able to better protect your Malwarebytes installation against malicious tampering.  It is also quite handy for storing backups as they do for the default settings with a set of default files stored in a backup folder for instances where the current configuration files have become corrupt or where one or more of them might be missing.

    It's also much better for developing cross-platform compatible applications since Windows is the only current operating system to use the registry, so I'm sure it makes things much easier for creating applications and components intended for other operating systems in addition to Windows.


  14. I don't know precisely what the app does or how it works, however if it is anything like the registry mod to add the option to take ownership of files and folders to the context menu in Windows Explorer then it should be relatively harmless (though I do NOT generally advise arbitrarily taking ownership of files and folders in Windows, especially any system files or application folders as this can cause major issues with a Windows installation and potentially put the system's security at risk).  Outside of malware removal, the only real use I've ever had for such utilities has been for use in patching system files to allow the user of custom Windows themes/alternate shell layouts (beyond just changing the color of the taskbar and START menu; like actually changing what they look like/their actual structure, appearance, dimensions and the images/components they are composed of).


  15. 1 hour ago, tkmops said:

    Thanks for the fast response. So, since this a known issue, then I don't need to run the 'support tool' at this time? When a 'fix' is in place, will it just be included in the next update, or will someone in support staff make a post in this thread to let us know to download the update/fix?

    It may still be helpful to post the logs in case there are other variables involved across the affected systems so I would still recommend providing logs just in case, especially since we have seen past issues which appeared to have the same symptoms but were actually caused by completely separate issues in the software.  To post the logs, please do the following:

    1. Download and run the Malwarebytes Support Tool
    2. Accept the EULA and click Advanced tab on the left (not Start Repair)
    3. Click the Gather Logs button, and once it completes, attach the zip file it creates on your desktop to your next reply

    If a member of the staff requires any further data they will post here to request it (anything like memory dumps or Process Monitor logs etc.).  I don't know if they will respond to every thread once the issue is fixed so I would recommend keeping an eye on the pinned release topics at the top of this area of the forums to look for new releases and changelogs mentioning this issue being fixed/addressed.


  16. If using a different mouse doesn't eliminate the problem then you might also check for a performance problem, especially if you experience any audio issues (popping sounds during audio playback, sound stuttering etc.) as this could indicate a driver conflict or system performance issue.  A few users are reporting a problem with the Web Protection in Malwarebytes on some systems, usually where they are using an NVIDIA graphics solution which includes NVIDIA's HD Audio driver (the driver used for transmitting audio through the HDMI ports on the graphics card).

    The following threads include reports of this issue:

        - https://forums.malwarebytes.com/topic/256811-network-issue/
        - https://forums.malwarebytes.com/topic/256413-intermittent-system-freezing-and-buzzing/
        - https://forums.malwarebytes.com/topic/256852-malwarebytes-causing-bad-sound/

    If you aren't using Malwarebytes Premium then please disregard, it just sounded somewhat familiar when I thought about what other users reported regarding this issue (stuttering/sluggish performance etc., which could easily cause the mouse to appear to 'jump' rather than moving smoothly as it should).


  17. Greetings,

    I thought it worth mentioning that you really don't need to run a full scan on every endpoint every single day.  This is a major waste of power/resources as the scan engine in Malwarebytes is actively maintained by the Developers and Researchers at Malwarebytes to target the specific locations used by malware as well as checking all loading points, active processes, active threads in memory as well as all common storage locations where downloads, temporary files and files from browsers and other at-risk web facing applications are stored and the locations checked can be modified at any time by the Malwarebytes Researchers whenever any new location is discovered to be in use by the bad guys and changes can be rolled out in database updates (so no application updates are required to target new locations for newly discovered threats by the default Threat scan).  Typically a Threat scan takes anywhere from under 1 minute on powerful hardware depending on the number of files and locations that it has to check, to 30 minutes or more, though average scan times tend to be anywhere from 5-20 minutes in duration.

    I will report your requests to the Product team for consideration but I just wanted to clarify things regarding how the scan engine in Malwarebytes works and is intended as it may help alleviate the issues you are trying to address with these requests.  I still like your ideas though as they could be very useful for instances where one or more devices is having issues completing scans and is good for ITs trying to keep track of the status of all the endpoints they manage so I do hope that these capabilities make it into the product at some point, though of course that decision is up to the Product team.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.