Malwarebytes Anti-Malware's malicious website blocking module

Discussion in 'other anti-malware software' started by justenough, Oct 23, 2012.

Thread Status:
Not open for further replies.
  1. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Only if your browser is active - correct? I have seen no evidence that MBAM Pro IP blocker can stop oubound activity from non-browser processes.
     
  2. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    You are incorrect, I stated the facts earlier:
    Malwarebytes does not do browser based blocking, it does connection based blocking.
     
  3. Barthez

    Barthez Registered Member

    Joined:
    Apr 28, 2010
    Posts:
    113
    Location:
    Poland
    I think that MBAM blocks IP addresses regardless of what program tires to access them. I seen some Team Fortress 2 and Killing Floor servers blocked in the past.

    EDIT - memo to self: type faster in future ;)
     
  4. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,752
    Location:
    Toronto Canada
    Took advantage of the $17.49 US offer in another thread. Realtime protections enabled. Guess now I'll find out for sure now if it will run with Avira Premium with out issue.
     
    Last edited: Nov 1, 2012
  5. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    I did some more research on this and I concur.

    This feature of MBAM Pro however is turned off on my installation. Why? Because anything that is filtering your IP connections has the potential to track you.

    I recently had a very unpleasant surprise with a third party firewall that I found somewhat by accident that was tracking me. At this point, I don't trust any retail available security software when it comes to tracking activity.
     
  6. Mman79

    Mman79 Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    2,016
    Location:
    North America
    You're on the Internet, there is no way no one or nothing can't see where you go. Retail, free, none of that matters as it is how things work that determine privacy concerns. MBAM doesn't care where you go or what you do. They care about keeping malware away from you, period. If you're going to use the Internet, there is no way around a little give and take.
     
  7. Frank the Perv

    Frank the Perv Banned

    Joined:
    Dec 16, 2005
    Posts:
    882
    Location:
    Virginia, USA

    Yep.


    .
     
  8. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    I think it's money well spent. Let us know if you have any problems, I'm particularly curious about slowdowns if any.
     
  9. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,752
    Location:
    Toronto Canada
    I'll give it a week before I do.
     
  10. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    6,039
    Location:
    Parallel Universe
    Just couldn't agree more. :)
     
  11. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Same here. Malwarebytes AM is about the last thing on my computer that I'm going to be worrying about.
     
  12. The GLoW

    The GLoW Registered Member

    Joined:
    Sep 9, 2012
    Posts:
    22
    Location:
    USA
    So well said...deserves to be repeated.

    In the realm of security products, where I feel I am constantly doing research to find worthy products, I have found that MBAM is the one sure deal. I hope they continue to produce with integrity.
     
  13. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,171
    How does this thing work? Is it periodically downloading/updating a local blacklist and sending no target IP Addresses to Malwarebytes? Is it sending every target IP Address you attempt to connect to to Malwarebytes? Is it a hybrid of some sort?
     
  14. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,171
    Thanks for the reply. I'm not sure how to interpret that though. Are those additions and subtractions distributed to the client machine? Does the client machine ever send target IP Addresses to your server for checking?
     
  15. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    Yes through regular updates. The IPs are constantly rechecked on our end to see if the issues have been resolved. We attempt to work with the people directly responsible for the IP to get the issues resolved and when they are the IP block is removed. Some crime friendly hosts never reply to us so the blocks there are perpetual.
     
  16. Baserk

    Baserk Registered Member

    Joined:
    Apr 14, 2008
    Posts:
    1,321
    Location:
    AmstelodamUM
    What are the main countries that harbour those 'bullet-proof' hosts, according to MBAM data, if you don't mind me asking?
     
  17. Mman79

    Mman79 Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    2,016
    Location:
    North America
    Though Nosirrah has the data to back up any thoughts on where they reside, I would say likely sources would be Russia, China, Brazil and the Ukraine to name the "top dogs".
     
  18. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    The usual suspects are indeed where a lot of the trouble comes from.

    Double checking with support this happens when you have a trial expire and then attempt to enable a second trial later.
     
  19. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,963
    Location:
    Somethingshire
  20. kupo

    kupo Registered Member

    Joined:
    Jan 25, 2011
    Posts:
    1,121
    Unplug your router, don't connect to the intrawebzzz, now you are untracked. And have the most private and anonymous setup. :)
     
  21. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    I think we might install a toolbar and charge for removal if we were that kind of company. It is a lot easier to make $ doing what is more or less accepted than it is trying to be sneaky and secretly tracking your movements.
     
  22. Baserk

    Baserk Registered Member

    Joined:
    Apr 14, 2008
    Posts:
    1,321
    Location:
    AmstelodamUM
    Hi nosirrah,

    Kaspersky have released their Q3 threat overview; link.
    In it, a pie diagram link shows the Netherlands to be one the main (bullet-proof) malware hosters/physical locations where websites host malware, alongside Russia, the USA and Germany .
    Does MBAM see this also or do you think these numbers might be (heavily) influenced by the AV market share Kaspersky has in those countries?
     
    Last edited: Nov 5, 2012
  23. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    6,039
    Location:
    Parallel Universe
    Exactly. :thumb:
     
  24. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,741
    Location:
    UK
    I can't answer for MBAM, but the figures Kaspersky are quoting are from what they've seen via their Kaspersky Security Network. Obviously, there must be a fair few KSN users in the Netherlands to gain such insights.
     
  25. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,752
    Location:
    Toronto Canada
    No problems or slowdowns. I don't even notice it's there.:D :cool:
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.