Slashdot Mirror
Malwarebytes Released Two Bad Web Protection Updates (csoonline.com)
Malwarebytes had a bad day Saturday, pushing out an update "that gobbled up memory and CPU resources and turned off web protection," reports CSO.
The company's forums lit up with complaints that the software was hogging 90 percent or more of memory and CPU resources. One thread about RAM usage currently is 37-pages long. Aware of the problem, Malwarebytes tweeted that "all hands" were on deck to resolve the issue. Unfortunately, even though a new update package was pushed out in about an hour, it did not fix the problem. Even after rebooting their computers, some users reported that their systems locked up as soon as the Malwarebytes Service process started as it ate large amounts of RAM.
"Two bad updates later, Malwarebytes released a fix," CSO reports, noting the company's blog post with steps to resolve the issue.
Long-time Slashdot reader marquis111 shares a link to an apology from Malwarebytes CEO Marcin Kleczynski, who says that he'll be "personally available" to discuss the problem on both the forums and at his personal email address.
"Two bad updates later, Malwarebytes released a fix," CSO reports, noting the company's blog post with steps to resolve the issue.
Long-time Slashdot reader marquis111 shares a link to an apology from Malwarebytes CEO Marcin Kleczynski, who says that he'll be "personally available" to discuss the problem on both the forums and at his personal email address.
Malwarebytes is closed source software. It could literally be doing anything to your system. You have no control over it, or what it does. So you basically are trusting some corporation.
... in my pants yesterday because it was drive'n me nuts!
So THAT is what killed my laptop!
Everything locked up, I checked MB and the web protection was off, I clicked it to "on" position and it ground to a halt, black screen and no responses. I'm glad to know it wasn't a sneaky trojan doing stuff, just MB shitting the bed.
Malwarebytes is why I'm working today (and part of yesterday).... Trying to fix as many comptuers as we can before all users return Monday morning. The update killed networking on our PCs so fixes could NOT be pushed out remotely.... You just have to kill the client/service then run it to check for updates.
He's promising to be personally available in an online forum and by electronic mail to people whose computers can't connect to the Internet. Meanwhile, the steps for solving the problem are...published on the Internet. He's probably got a couple of buddies in his office doing the "Waldorf and Statler" laugh about it: "Doh-ho-ho-ho!"
Yeah, it's pretty unlikely that anyone would have access to two computers in 2018.
"Tell me doctor, with all of your defenses, are there any provisions for an attack by killer bees?"
ever since version 2 and the loss of the lifetime update model, then further down the crapper with version 3 and the forced trial mode on install and always-on services (even in 'free' mode).
if you want a simple on-demand scanner to supplement your antivirus product, just use adwcleaner. it's better and faster, anyway (until they fuck that up, too); then hitmanpro (free scan mode is good enough) as a double-check (also crazy-fast and very good)
Sensible people try to avoid malware. Yet here are you lot installing it intentionally.
Until they fix it I think I will NOT be reinstalling it.
It slows web browsing so much it's unusable (before the issue)
love is just extroverted narcissism
the timing couldn't have been worse for my household. I dug up my old lifetime keys friday after about 5 years to install it on my childrens playroom computer and my backup pc and staurday both systems were unusable with malwarebytes using 90+% cpu and 50+% HD. I actually uninstalled both when I got home Saturday with the thought 'Wow, Malwarebytes has totally gone to crap, I remember when it used to be good". I had planned to look up and find out what the hell happened to the program today when this article shows up on my feed. Is it worth giving them another chance? I have no idea how common this kindof thing is for them. I was pretty dissapointed.
It became a do everything solution and then it started having problems. Like many bloated security solutions I just became disenchanted with Malwarebytes.
Ah shit! How'd you know my laptop died last year???
It was consuming almost all of the RAM on system with 16GB of RAM. It acted similarly on my wife's PC with 8GB of RAM. After the fix was released and I had applied it to both systems, I discovered that my backup server doesn't even recognize the primary drive. Seems like strangely coincidental timing, but I can't point the finger -- the BIOS can't see the drive.
In any case, it still seems like a good program. It's certainly better than the Symantec Endpoint crap that they put on our systems at work.
Never make a change without a tested rollback plan. The update software should be able to poll the update server and be told to roll back the bad patch. Although it sounds like they failed before they even got that far by not testing the update.
This occurs quite regularly with no acceptable excuse.
Step 1. - Vendor fucks up royally.
Step 2. - Customers complain.
Step 3. - Vendor runs around like a chicken without a head frantically attempting to fix whatever they fucked up almost always with even more lax quality standards than what was necessary to fuck up in the first place.
Step 4. - Customer predictably complains about fix not working or breaking even more shit.
Step 5. GOTO Step 3.
Lets put aside the problem of original fuckup and focus on the inexcusable portion of this. Mistakes / oversights happen.
Step 3 is where you ROLLBACK what you broke. It is NEVER about working overtime to fix what you broke by shipping out new code as soon as it compiles. Failure to plan ahead for this contingency and have a tested working rollback strategy carries predictable consequences. THIS is the failure this company should be apologizing for and the lesson they SHOULD have learned. Yet I'm quite certain it did not even occur to them.
See subject: Recently (again, no 1st) Qihoo360 (removed the false positive), Sophos (removed it before, doing it again, albeit calling my work a "PUA"), McAfee (same as Sophos - it's "all they got"/"best they got" LIBEL), Baidu (in process via email, did it before too & removed it, but did it again too), SentinelOne & Crowdstrike(NEW ones doing "PUP"/"PUA" bs) & TREND (whom I tore a new asshole in recorded phone conversations with their techs, mgt. & SENIOR engineers who ADMITTED they tried to hide a "PUA/PUP" downrating on my work under codes that LOOK LIKE MALWARE (big lie I busted them in) & that their "HEURSTICS" generate false positives (intentional imo - my ware does a better job stopping infectors BEFORE AV IS EVER EVEN NEEDED & they KNOW it), which they admit to).
APK
P.S.=> They did me a FAVOR - how so? They will HAVE to remove it & I am going to LIGHT A FIRE UNDER THEIR ASSES using REVERSE PSYCHOLOGY (doing what they do libeling me, with support from others in Nir Sofer of NIRSOFT undergoing the SAME bs) - I am going to the presses this week with this story (big names like ZDNet & others, someone WILL grab this story of libel & false accusations) & BURN THEM ALIVE for it PUBLICLY (let's see how THEY like their own medicine except I AM TELLING IT HOW IT REALLY IS with fact/truth behind me, not lies & libel) - their stockprice will take a bit of a dip I imagine... apk
Reported on the Malwarebytes forum yesterday: Malwarebytes Web Protection unable to turn on and a massive Memory Leak. Also, CPU use was extremely high, making computers slow. The issue was fixed in 2 hours and 10 minutes, but it cost many people a huge amount of time because it wasn't obvious what was causing the problems.
Recent automatic updates to Malwarebytes software have been destructive in other ways, apparently. The company says Malwarebytes can and should co-exist with other anti-malware software. However, recent updates have caused ZoneAlarm to fail on about 17 computers of which we are aware. Malwarebytes does not provide a software firewall, ZoneAlarm does, so ZoneAlarm is valuable.
Malwarebytes should change its name. "Malware bytes" is what the software protects against. If a company produces a pill that reduces intestinal gas, should the company name be "flatulence"?
from left walk on stage...
Install MBAM, use it, uninstall it. Install it when you feel you need it again.
bug solution: roll back to early release before buggy version.
microphone drop. walk off stage right.
So THAT'S why MB kept locking up my computer the other day? Jesus Christ.
I recently installed MBAM on a Win10 laptop which I had carefully configured to behave.
MBAM enabled the windows update service without asking permission or even notifying me!
Surprise! Forced fall creators update!
I will never use MBAM again. It can no longer be trusted.
They unethically uninstall tools used to hack/crack software that are completely benign. Hack tools are especially useful for situations where the company is being unethical with their activation, such as Microsoft refusing to activate due to a motherboard repair or Adobe refusing to activate all older versions of their software. It's not MalwareBytes's goddamn business if users crack software. If there's a legit threat then that's fine, but they're just giant assholes about software cracking. I hope they go the fuck out of business.
Every computer I touch I rig to be unable to visit their site and run their installers.
You're an absolute idiot.
Please go get raped by a horse to death.
Later chester.
See subject: I'm going to methodically DESTROY imbeciles who tried bs on me using THEIR OWN methods so they see how it feels.
* Carrot brain libelous liars deserve NO better...
APK
P.S.=> It is going to be SUCH a pleasure cutting them into pieces & using their OWN methods (albeit MINE? Are not lies & libel but fact & truth - & therein lies a HUGE difference)... apk
Didn't I ask U show proof of your libel of myself & URAN (ayatollah of U RAN) https://news.slashdot.org/comments.pl?sid=11610309&cid=55977637/ ? Didn't U say u'd give me UR name & address & RAN then too https://news.slashdot.org/comments.pl?sid=11610309&cid=55974051/ ?? Again yes.
* Go away imbecile - it's a trivial exercise DESTROYING "your kind" too (unidentifiable "jealous jowie's" that are do-nothing wannabes dwelling in some ILLUSION that you're 'smart' (yet accomplishing ZERO, lol)).
APK
P.S.=> I pity you actually... apk
The program does everything it promises, it keeps away malware by taking over the cpu and not allowing malware to run.
Genius solution!
I had the problem yesterday. I thought the memory was bad in the laptop. Checked task manager and bingo, Malwarebytes was the culprit. Went and downloaded the latest version and installed and that fixed it.
All retard Alexander Peter Kowalski spews is lies /. "endorsements" which many of the quoted people have stated that they have been taken out of context, misquoted, or have recanted their statements.
Lets now mock APK's work for the garbage it is:
It is as effective as an AV scanner the detects only based on file name
It is easily circumvented
The Chinese didn't copy him yet he offers "proof" that is at best wild speculation and an article he uses doesn't mention him or his work
It is physically impossible for his work to list all malicious hosts
His work reactive only, never proactive
His work is overly complex for being a file aggregator, it has DB functionality and is multi-threaded, as well as a GUI for something that should be a background utility
His work is bloated for being file aggregator, see above.
His work is poorly designed, he admits that when there are updates to TLDs it requires that he create a new version
His work is copied (ported) from another's so he wasn't even smart enough to come up with it himself even if it is all simplistic and obvious
Then there are the
There there are the recommendations of his work that don't actually mention his work by an old AOL radio program or a wanna be Kim Komando
Then there is the recommendation of his work that is a link to it under the Misc. software section of a website with no actual endorsement offered
Face it retard your work cannot be defended
It offers security that might keep a kid sister out but a small child would likely be able to figure out a way around it in short order.
All of retard Alexander Peter Kowalski's comments look like a dog vomited up a box of Alpha-Bits and then crapped out some punctuation on it.
He can't help it that is IQ is below room temperature
And now we have reached the point where retard Alexander Peter Kowalski isn't claiming his work.
I guess he needs to pretend that there is actually some support for himself.
He does like to pretend and at least he isn't pretending his software is saving us from the Terminator or Darth Vader.
Unfortunately he does pretend that his software actually provides security which it doesn't.
See subject: Blocking infector sources here https://yro.slashdot.org/comments.pl?sid=11665155&cid=56021753/ & here https://news.slashdot.org/comments.pl?sid=11664869&cid=56015563/ as it has in the past on 100's of others like them.
* Funniest part is those links "did the job" on you too, easily showing you're a useless troll retard who CLAIMED he wrote 'real security software' & when I ask you to back that up too? You RAN https://yro.slashdot.org/comments.pl?sid=11606243&cid=55924893/
APK
P.S.=> By the way: REAL security pros say hosts is good security here too https://developers.slashdot.org/comments.pl?sid=11549257&cid=55839269/ & you lose as always, lol... apk
It's effective vs. 2 threats recently as it's been vs. 100's past https://yro.slashdot.org/comments.pl?sid=11665155&cid=56021753/ & https://news.slashdot.org/comments.pl?sid=11664869&cid=56015563/ - care to deny it?
Quoted /.ers also put you away easily too https://tech.slashdot.org/comments.pl?sid=11595279&threshold=-1&commentsort=0&mode=thread&pid=55903895/
China DID imitate part of what I do (the only hosts program that does mind you) http://www.theregister.co.uk/2017/04/26/boffins_supercharge_the_hosts_file_to_save_users_plagued_by_dns_outages/ AFTER I did it 1st.
I update as tld's are removed/added. If not hosts is bloated by useless entries (which it removes) OR I miss potential threats (+ avoid useless bloat if bogus tld/gTLD inserted).
APK
P.S.=> My work's better than your hot blowhard do-nothing unidentifiable "ne'er-do-well" troll vaporware, that's certain (lol) & you lose again... apk
See subject: It sure did a job on you making you EAT YOUR WORDS here https://tech.slashdot.org/comments.pl?sid=11669229&cid=56027981/ & here https://tech.slashdot.org/comments.pl?sid=11669229&cid=56028489// today, lol!
I asked you for your proof of your "kiddy diddler" libel of myself & YOU RAN you libelous little lying coward https://news.slashdot.org/comments.pl?sid=11610309&cid=55977637/
Funny how you PROJECT truth about yourself - especially that "nobody likes you", lol (makes sense - nobody likes libelous lying little stalking sickos like you).
APK
P.S.=> The only "legwork" done here today & in the past vs. yourself was MY STOMPING YOUR ASS easily (you help me do it via your utter stupidity, lol)... apk
See subject & prove it (mine is) + my phonebill & # are in MY name. You're a lying libelous stalking sick deluded lunatic obviously.
* Lastly, NO BALLS - Tell you what - next time "you're in the area" meet me face to face so I can correct your issues, permanently, face to face (you chicken dick little libelous liar and stalker lunatic pussy).
Your LIFE is 1 big mistake (but I think you KNOW that about yourself, lol - anyone reading this by this point KNOWS it about you).
APK
P.S.=> My car's in GREAT SHAPE (35k miles after 13++ yrs) & is one hell of a nice sportscar (kids in the neighborhood keep asking to buy it - not until it hit's 20 yr. classic status (they like it as it's in some "GTA" type game they told me))... apk
Poor retarded Alexander Peter Kowalski is always behind the 8 ball playing catch up.
You can't offer any proof that your work is any more effective than an AV scanner the matches off of file names alone so you basically bang on the number of file names it can match.
Fact your work has never and will never prevent an attack.
Fact your work will never stop entire categories of attacks.
Apparently you don't understand that a list of favorites loaded at the beginning of a hosts file for faster processing is super obvious, so much so that others like the Chinese could do it.
But wait you keep offering up that same article from the register that doesn't mention you, or your work as proof, I asked for proof not wild speculation on an obvious feature
Also didn't you originally say that the Chinese copied all your work until I tore you a new one on that and then you changed your tune to they copied one obvious feature?
Considering the large number of people I have seen in the past openly state that you took their comments out of context, mis-quoted them, or have retracted their statements while you argue with them I would consider all others suspect as well.
Besides user testimonials are the hallmark of those late night peddlers of questionable products, so I guess your work is in good company there.
I do find it amusing that you are proud that you have to change your code when TLDs change because it is so poorly written, it speaks volumes about your ability to create easy to maintain code.
You still have never addressed any of the other criticism of your code like why the hell a file aggregator needs DB functionality that your created your self, or why a file aggregator needs to be multi-threaded?
Finally you can't do the actual hard work as others do the real work of identifying the actual threats you just aggregate their work in a bloated overly complex manner with other obvious features that you copied from someone else first.
It really must be hard being as retarded as you are but I'm starting to think you are so retarded you don't even realize you have a disability.
Now go beat off to the newest Trump tweet or article up on InfoWars.
See subject: My post you replied to's links prove my ware worked vs.2 threats this week alone & 100's before in the past.
Yu can't STAND THAT can you?
The Chinese did it LONG after me proving "imitation IS the SINCEREST FORM OF FLATTERY"!
My program's ONLY 1 of its KIND that does (which not only gives you speed but also security vs. DNS down/poisoned or tracking you).
I see quotes of others who outright say they LIKE & USE my work, praising it doing it for you & your VAPORWARE.
You have no testimonials of anything GOOD you do (you're a "ne'er-do-well" NOBODY is why (lol, & you KNOW it)).
Clue: TLD's get REMOVED http://www.theregister.co.uk/2015/03/04/east_timor_was_officially_removed_from_the_internet_yesterday/
APK
P.S.=> IF I don't do it it leaves 1,000's of lines of USELESS BULK in hosts to parse thru + again no other hosts mgt. program is THAT thorough either - mine IS & you projected you are a MASTURBATOR too - RoTfLmAo!... apk
I'm going to continue using the Host File Engine. Your software is well written, functional. The Host File Engine performs exactly as promised by mmell February 16 2017
(APK's work), I've flat out said it's good by BronsCon February 11 2016
his hosts program is actually pretty good by xenotransplant August 10 2015
his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources by alexgieg September 25 2015
I like your host file system by Karmashock September 09 2015
I do use APK's host file on all my systems at home by OrangeTide December 01 2017
I personally use a HOSTS file blocker produced from a genius called APK by 110010001000 October 27 2017
* You've done better libelous little liar?
YOUR VERY OWN "pfSense"? YOU wrote it yourself??
APK
P.S.=> China imitated me http://www.theregister.co.uk/2017/04/26/boffins_supercharge_the_hosts_file_to_save_users_plagued_by_dns_outages/ ... apk