Jump to content

Blocks NPM from working

hoffs

By hoffs
in Ransomware

 Share

Recommended Posts

hoffs

hoffs

Posted
Posted

Hello,

So I today tried to install some NPM packages but it would always fail with npm related error "ENOENT: no such file or directory" which means that NPM couldn't find or access the file. But as soon as you disable Ransomware protection it instantly works fine. You can even be stuck at that point and disable Malwarebytes while its stuck and it will immediately continue after disabling. You can see more people confirming the issue towards the end of the thread here (pretty recent posts): https://github.com/npm/npm/issues/17444 .

This is kind of a false positive in a way that it seems to be blocking it but not necessarily popping the block.

Link to post
Share on other sites
  • Staff
miekiemoes

miekiemoes

Posted
  • Staff
Posted

Hi,

Sorry for the delay - We would need more info, so can you zip and attach the MBAMService.LOG, this so I can have a look why it was detected.

You can find this log in the following folder: C:\ProgramData\Malwarebytes\MBAMService\LOGS

Also, can you let us know what version of Malwarebytes you are using? Are you using MB3 or the standalone version of AntiRansomware?

Thanks!

Link to post
Share on other sites
  • Staff
tetonbob

tetonbob

Posted
  • Staff
Posted

@jladbury thanks for the log. Unfortunately it doesn't show the cause of why Anti-Ransomware would be blocking NPM. Can you please provide additional information which we can share with our Dev team?

First, run the arwlogs tool as shown in this post, then provide as an attachment the zip file it will create.

https://forums.malwarebytes.com/topic/177810-how-to-report-a-false-positive/

Also, if you could run a Process Monitor capture while reproducing the issue, it would be greatly appreciated.

https://live.sysinternals.com/Procmon.exe

The procmon capture will be too large to attach. You can use a file transfer service such as wetransfer to upload, and provide a link here or via Private Message to me.

https://wetransfer.com/

Thanks!

Link to post
Share on other sites
gootman

gootman

Posted
Posted

Any update on this. this is a new problem for me with programming. VS uses npm to compile code. I need to turn off ransomware protection in order to have it work. This wasn't the case before with malwarebytes. I now have an additional step in order to publish. Any steps I can do to tell malwarebytes to ignore npm? It doesn't show in the log

Link to post
Share on other sites
  • Staff
tetonbob

tetonbob

Posted
  • Staff
Posted (edited)

Greetings. 

We officially released 3.4.5.2467 today. This release includes a fix which should address this issue.
https://forums.malwarebytes.com/topic/225664-malwarebytes-345-patch-release/

You can download it here https://downloads.malwarebytes.com/file/mb3/

An install over the top of existing should be fine, but I'll leave that decision in your hands.

Edited by tetonbob
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.