Malwarebytes Anti-Exploit

Re: Malwarebytes Anti-Exploit 0.09.4.1000

I asked this earlier on post #170 but it still seems like it has not been added to support Currently installed 0.10.0.1000 Beta, unless im mistaken. That is Foxit Phantom PDF Business edition support.

https://www.wilderssecurity.com/showthread.php?t=354641&page=7

The latest FoxitPDF Business Edition registers its service as, Foxit PhantomPDF.exe *32

regards,

 

Re: Malwarebytes Anti-Exploit 0.09.4.1000

Instead we've started implementing the feature to allow users to add any third-party app they wish to MBAE. Should be ready in one or two beta versions.

 

Btw you would better put such release notes in your signature. Like the dev of HitmanPro and HitmanPro.Alert. It's very convenient to see new betas in the sig.

 

Re: Malwarebytes Anti-Exploit 0.09.4.1000

Thats excellent news thank you.

One other thing, will MBAE be incorporated into MBAM at some stage since version 2 will soon be released, or will it be kept as separate products?

If separate/combined, will there be any discounts for existing MBAM pro users?

Looking forward to the final release

Regards,

 

Good suggestion, how's this @Solarlynx?

@TS4H, eventually MBAE or parts thereof will make its way into MBAM, but that's not even in the backlog yet, let alone info on pricing, discounts, etc.

 

Thank you.

 

Changelog is still not updated.

 

I know, neither is the download link at the main website. Give it a few hours.

EDIT: during the install you can see the changelog. Also once installed you can find it in the program files directory, named changelog.txt.

 

No problem, i guess i was just optimistic and excited with the announcement of Malwarebytes purchase of ZeroVulnLabs, the inclusion would be a great benefit to the name and its potential for it to become " not just a secondary scanner " and really promote itself as a total solution first line of defense antimalware

Looking forward to the future of Malwarebytes regards,

 

Not to try to hijack my own thread, but....

<off the record not representing official Malwarebytes position>
On the malware front I've been relying on MSE/WD + MBAM Pro for years for my family and friends without a single problem. The combo is great as it provides an excellent engine for polymorphic viruses and worms with the lowest FP rates in the industry, plus the best detection and disinfection of new zero-day malware, i.e. the best of both worlds.
</off the record>

 

Here's the changelog as displayed within the installer:

Malwarebytes Anti-Exploit 0.10.0.1000

New Features:
• New architecture runs MBAE as a Windows Service.
• New architecture runs MBAE in multi-user environments.
• New architecture prevents non-admin users from stopping protection.
• New architecture prevents non-admin users from managing exclusions.
• New architecture prevents non-admin users from clearing logs.
• New location for logs and auxiliary files under %AllUsersProfile%.
• New installer handles hot-upgrades to new MBAE versions.
• New installer completely uninstalls MBAE program files.
• Improved Start/Stop buttons have been unified into a single toggle button.
• Improved uninjection technique prevents crashes under certain conditions.
• Improved and less intrusive beta expiration messages.
• Improved GUI details.
• Fixed problem with traybar icon sometimes disappearing.
• Fixed problem when double-clicking on Desktop shortcut icon.
• Fixed an injection hook issue.
• Fixed an issue displaying Flash content under Opera12 x64.

 

I opted for the "hot install" of 10.1000 over 10.300... which so far as I read things, is supposed to work.

Upon conclusion of the installation: Despite being set to run automatically, the service did not (automatically) turn itself on. I had to go into Services, to manually start it.

Even then, the program did not run until I went to the Start Menu to manually activate it.

It appears to be working now.

I'll let you know what happens after a reboot...

EDIT: Upon rebooting, everything started automatically, and appears to be working as it should.

 

There was a hot-upgrade bug fixed between the preview .0300 build and the final .1000 build. That's most likely what you experienced. Most people will not experience that as the .0300 was an alpha preview that only a dozen or so people tested.

 

Incompatibility with ROP protection (SimExecFlow) EMET 4.1.
OS Windows XP SP 3:



Firefox,I.E.8,WMP,plugin container.exe........

 

That's correct, that came out during the 0.10 previews. I've added them to the Known Issues & Conflicts list.

 

OK.
The correct new ver. will be out soon ?

 

Pedro,

I thought the SimExecFlow problem --- which we encountered with version 10.200, was ["mysteriously"] fixed in version 10.300. It's [also] working okay for me in the newest 10.1000.

 

Does the program work well if we stop this service ?

 

I don't understand what you mean.

Most of you who reported it never encountered it again, but I still got a couple of PMs mentioning it was still present.

Of course not! The Windows Service is the core of the MBAE program. If you stop it MBAE will not work.

 

Why isn't the new version available on Malwarebytes webpage yet?
Thanks.

 

https://forums.malwarebytes.org/index.php?showtopic=143429

Should be updated in the main page in the next few hours.

 

you worked for panda and relyed on other products only

 

Most started up on PCAV+MBAMFree combo, but after time migrated them to MSE+MBAMPro after complains on slowdowns and an infection from exploit kit.

 

The 0.09.5.1000 not experience this problem.
I stay with this version ?

 

You can if you want to. Another option is to uncheck the SimExecFlow mitigations in EMET so that you can run both together.