Jump to content

Cannot update Malwarebytes- firewall issue?


lindaw

Recommended Posts

Greetings :) Please post back what Firewall you have and your avti-virus program you have so we can better help you!

For example: Malwarebytes must be excluded in the Firewall if it was a Comodo setup. If its is? then it would be these files:

In specific I have added the following to Comodo as trusted applications:

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll

C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll

C:\Program Files\Malwarebytes' Anti-Malware\zlib.dll

C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

C:\WINDOWS\system32\drivers\mbam.sys

C:\WINDOWS\system32\drivers\mbamswissarmy.sys

I have also now added the hostname:

data-cdn.mbamupdates.com

as explicity allowed for all TCP traffic both incoming and outgoing.

Post back the Make & Model and someone will post back an answer for you...

Link to post
Share on other sites

Hi -

Try this diagnostic exercise please -

If you still have problems please follow these steps -

Step 1

Click on this link and let me know what it says. It should be just a 4-digit number in the upper-left corner.

Step 2

Please download and run the traceroute utility at this link. It will run a traceroute to our update servers to see if it can find the connection issue, and then it will write it to a log, and open that log in Notepad when it is done. Please either save the log as a Text File and then attach it to a reply, or copy and paste it into a reply, and I will forward it on to our server guy.

Note that it may take several minutes to run, and it may look like it is not doing anything for a few minutes. Normally it takes longer when there are errors that it has to log, but it's rare for it to go more than 10 minutes.

Step 3

Please download TCPView from Microsoft at this link.

This utility will monitor everything that is accessing the Internet or your local network. All you have to do is run TCPView, and then run Malwarebytes' Anti-Malware and start the update. Watch TCPView to see if mbam.exe shows up in the list. It will be pretty obvious, because it highlights it in green.

I need to know what "Remote Address" Malwarebytes' Anti-Malware is trying to connect to. Once it shows up in the list, you can right-click on the line for mbam.exe, and select 'Copy' in order to paste it into a reply. It will tell me what I need to know. Below is an example of what the line you are looking for will look like inside the following code box:

mbam.exe:3656	TCP	vista-x64:52135	cdn-208-111-168-7.ord.llnw.net:http	ESTABLISHED

Link to post
Share on other sites

Hi -

Try this diagnostic exercise please -

If you still have problems please follow these steps -

Step 1

Click on this link and let me know what it says. It should be just a 4-digit number in the upper-left corner.

Step 2

Please download and run the traceroute utility at this link. It will run a traceroute to our update servers to see if it can find the connection issue, and then it will write it to a log, and open that log in Notepad when it is done. Please either save the log as a Text File and then attach it to a reply, or copy and paste it into a reply, and I will forward it on to our server guy.

Note that it may take several minutes to run, and it may look like it is not doing anything for a few minutes. Normally it takes longer when there are errors that it has to log, but it's rare for it to go more than 10 minutes.

Step 3

Please download TCPView from Microsoft at this link.

This utility will monitor everything that is accessing the Internet or your local network. All you have to do is run TCPView, and then run Malwarebytes' Anti-Malware and start the update. Watch TCPView to see if mbam.exe shows up in the list. It will be pretty obvious, because it highlights it in green.

I need to know what "Remote Address" Malwarebytes' Anti-Malware is trying to connect to. Once it shows up in the list, you can right-click on the line for mbam.exe, and select 'Copy' in order to paste it into a reply. It will tell me what I need to know. Below is an example of what the line you are looking for will look like inside the following code box:

mbam.exe:3656	TCP	vista-x64:52135	cdn-208-111-168-7.ord.llnw.net:http	ESTABLISHED

Link to post
Share on other sites

I think the first poster has left now ??

18 hours and no response ----

Hi Noknojon,

I have same problem as first poster - malwarebytes wont' update. I've run the first two of your diagnostic tests and the results were as pasted below - can you help??? Many thanks.

Traceroute Malwarebytes CDN version 1.5

03/10/2010

19:25:12.54

Phase #1

Tracerouting: data-cdn.mbamupdates.com

Tracing route to mwbyte.vo.llnwd.net [87.248.210.254]

over a maximum of 30 hops:

1 4 ms 7 ms 2 ms www.routerlogin.com [192.168.0.1]

2 29 ms 27 ms 30 ms cr1.sdprtsl.uk.easynet.net [87.87.251.187]

3 28 ms 28 ms 29 ms 80.238.36.97

4 32 ms 28 ms 28 ms te0-0-0-7.er11.thlon.ov.easynet.net [89.200.131.1]

5 27 ms 72 ms 27 ms tge11-3.fr4.lon.llnw.net [87.248.208.161]

6 34 ms 31 ms 29 ms ve6.fr3.lon2.llnw.net [68.142.88.222]

7 39 ms 29 ms 29 ms cdn-87-248-210-254.lon.llnw.net [87.248.210.254]

Trace complete.

DNS Info

Server: www.routerlogin.com

Address: 192.168.0.1

Name: ne1.wpc.edgecastcdn.net

Address: 93.184.221.133

Aliases: data-cdn.mbamupdates.com, wpc.1d00.edgecastcdn.net

gs1.wpc.edgecastcdn.net

============================================================

Phase #2

Tracerouting: llnw.data-cdn.mbamupdates.com

Tracing route to mwbyte.vo.llnwd.net [87.248.210.253]

over a maximum of 30 hops:

1 2 ms 4 ms 8 ms www.routerlogin.com [192.168.0.1]

2 32 ms 29 ms 29 ms cr1.sdprtsl.uk.easynet.net [87.87.251.187]

3 25 ms 23 ms 23 ms 80.238.36.97

4 28 ms 27 ms 30 ms ip-89-200-131-85.ov.easynet.net [89.200.131.85]

5 31 ms 40 ms 27 ms tge11-3.fr4.lon.llnw.net [87.248.208.161]

6 35 ms 30 ms 56 ms tge2-2.fr3.lon.llnw.net [69.28.171.137]

7 26 ms 29 ms 30 ms cdn-87-248-210-253.lon.llnw.net [87.248.210.253]

Trace complete.

DNS Info

Server: www.routerlogin.com

Address: 192.168.0.1

Name: mwbyte.vo.llnwd.net

Addresses: 87.248.210.253, 87.248.210.254

Aliases: llnw.data-cdn.mbamupdates.com

============================================================

Phase #3

Tracerouting: edge.data-cdn.mbamupdates.com

Tracing route to ne1.wpc.edgecastcdn.net [93.184.221.133]

over a maximum of 30 hops:

1 3 ms 2 ms 2 ms www.routerlogin.com [192.168.0.1]

2 33 ms 29 ms 29 ms cr1.sdprtsl.uk.easynet.net [87.87.251.187]

3 24 ms 23 ms 26 ms 80.238.36.97

4 27 ms 30 ms 27 ms ip-89-200-131-89.ov.easynet.net [89.200.131.89]

5 27 ms 29 ms 30 ms 195.66.224.62

6 31 ms 27 ms 30 ms 93.184.221.133

Trace complete.

DNS Info

Server: www.routerlogin.com

Address: 192.168.0.1

Name: ne1.wpc.edgecastcdn.net

Address: 93.184.221.133

Aliases: edge.data-cdn.mbamupdates.com, wpc.1D00.edgecastcdn.net

gs1.wpc.edgecastcdn.net

============================================================

Finished at: 19:25:34.01

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.