HMP vs MBAM

just use both... but HMP is clearly the better of the 2, but as said, thers no harm in having both.

 

I think they complement each other, both make a great combination for detection and removal of pests.

Malwarebytes allows a very complete analysis of the system, thereby catching virus has not yet active and stored in different places, besides having a very comprehensive database.

The HMP is recommended for daily analysis, which is fast but not as complete as the Malwarebytes, so I think both are a beautiful marriage.

 

When do we have too much? I use MBAM real time, and tried HMP for awhile, but didn't see that I needed it.
I suppose that the argument could be made that if I did the it would have been better to keep HMP. But could not that argument be made for a lot of other applications?

I would not want to be without MBAM to run alongside my AV.

Regards,
Jerry

 

it is a nice combo indeed malware bytes is top notch but hitman pro is a rootkit killer

 

well, I'd say each one is top at something. and assuming you will be runnin' MBAM strictly on-demand (tho you have a Pro license you mentioned you don't need the real-time module), these are my humble comments:

MBAM is best at malware cleanup/removal (eliminates all traces left behind by the malware it detects)
Pros:
1) It's thorough scan detects not only actual malware but hijacked settings/options aswell.
2) Flash scan (only in Pro version) determines quickly if a deep scan is needed based on a targeted analisys.
3) It's shuriken heuristics module is particullarly effective against rogueware.
Cons:
1) It's not portable, meaning you have to install it, update and then run it.
2) It's detection is not aimed to viruses (since it's not an AV product), but more to malware code that usually slips thru classic AV signatures.
3) Scan speeds are slow.
4) You have to update every time you want to get the most recent signatures database.

HMP is best at scanning, detecting and eliminating malware.
Pros:
1) Smart targeted scans result in super-blazing fast scanning times.
2) Portable .exe allows user to avoid installation.
3) Extremely efficient cloud-based technology, does not require "every-time" updates.
4) Combines AV & AM technologies from different (7) vendors.
Cons:
1) Leaves behind many traces.
2) In my experience, it failed once to repair correctly atapi.sys (patched by Alureon) which resulted in a never-ending sequence of BSOD's.
3) Relies heavily on internet connectivity (tho EWS will still be able to scan without it, but you won't get the power of the cloud).

So, I still would recommend using both. Each one has it's own weaknesses and strenghts, and that makes them a superb combo.

 

With HMP being on-demand only why would you not use it?

 

Both are great and in my Toolbox!

TH

 

Indeed agree with you..But I must say with HMP toasting the dlls, exe most of the malware be gone..it might not be the case with the other one..But yes they both compliment each other..after removing everything its always a good idea to scan for leftovers with mbam..But for me I dont believe in cleanup that much..I just rollback

 

I will suggest both. Activate MBAM Pro license, but do not activate HMP Pro license. Use both of them as on-demand scanner (regular quick scan). If any malware slips from your existing security setup, first use MBAM Pro to remove it and then scan with Hitman Pro (free). If necessary, you can then activate your Hitman Pro license to remove the threat.

 

I will repeat what I said earlier: Hitman Pro 3.6 will get remnant scanning which is atleast on par with Malwarebytes, or maybe even better.
So when Hitman Pro 3.6 will be released I will remove Malwarebytes from my system, since it won't serve any goal anymore. That in combination with Malwarebytes' not so really sophisticated scanning method; and Malwarebytes' not having incremental updates yet, although it should have been there by now.

By they way, I am not saying Malwarebytes is a bad product; in contrary, it is a great free program.

 

very true matt

 

I use both HMP Free and MBAM Free.
These two (2) together with Emsisoft Emergency Kit and GMER are my favorite Scanners.

 

HMP bombs out when all the droppers are active with this sample.

Even after using Force Breach it runs to about 12% then disappears.

MBAM needs to renamed to firefox to get a scan going and does a good job in finding/deleting around 130 detections.

 

Where did this myth come from

Hitman Pro DOES scan the registry and it DOES remove registry keys and values.

Hitman Pro relates the registry keys to the detected malware. In order to do so it needs the malware to be still on the system in order to correlate registry keys to the malware. When the actual infection (file) is gone, it will not be able to relate registry keys.

Until we release version 3.6 or 4.0 (which will have a separate remnant cleaner) it is recommended to run Hitman Pro first. If you run a malware cleaner before Hitman Pro, then Hitman will likely not be able to find the registry keys as the file might already be gone.

 

I know the dropper myself and Hitman Pro removes it completely in one single sweep. Though I am curious in why it stops after 12% on your system.
Please PM me if you are willing to let me have a remote look.

 

Did you let the sample run till after the rogue AV showed up which can take several minutes?

 

I just tried your sample and indeed Hitman Pro trips over a certain file. Since it is dropping additional downloaded malware it is a different one that I have seen a few days ago.

But I isolated the problem and it seems to be related to a Windows API call Hitman Pro is using. This API call is causing the Hitman Pro process to terminate.

In plain english, we stumbled upon a bug. The file Hitman is trying to analyze has a deliberately invalid resource section that is causing the Windows API to choke.

Hitman Pro uses some Windows API calls to build up a case against a file (part of the behavioral scan).

Mitigating factor: The problem seems to be related to Windows XP API. Windows 7 has no problem with the same API call.

Anyhow, its a bug and a fix is imminent.

 

Hey Erik, any chance of adding MSE to HMP. Its free so maybe for real time protection.

 

Glad you can get it sorted.

Might be worth running the main sample every coupla days as it changes quite often in what it drops.

 

Hi Whitey,

So pleased you appreciate my highly intellectual and most enlightening posts, I`m sure my SAS pals would include you in their exclusive Fan Club as a most dedicated enthusiast.

John

 

My 2 cents (I work as IT computer repair):

-MBAM was very good let's say for the last couple of years or so.
-I've seen lots of improvement of Hitman these latest months. Right now, it's the first tool I'm using when I have to face a 'malwared' system. It's sooo impressive: task manager fixing, infected windows critical system files replacing, rootkit removal, scareware removal, ...

IMHO MBAM has been knocked out of the first place by Hitman. Not that MBAM is bad of course! But Hitman is sooo much impressive that there's no comparison IMHO. Obviously looking from a cleaning machines workaholic point of view!

 

My daughters computer has Spigot backdoor on it. I have tried MBAM on it but it didn't find it. Will HMP take care of it?

 

Try it out. Hitman will let you test the full version with removal capabilties for 30 days!