MBAM

Discussion in 'other anti-malware software' started by Meriadoc, Jun 19, 2008.

Thread Status:
Not open for further replies.
  1. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Been testing some scanners with malware gleaned recently from all over the web. MBAM had a good result :

    1 f/ps, missed 3 but bagged 192...someone's been busy.

    edit : corrected amount from 188 to 192
     

    Attached Files:

    Last edited: Jun 20, 2008
  2. EliteKiller

    EliteKiller Registered Member

    Joined:
    Jan 18, 2007
    Posts:
    1,138
    Location:
    TX
    I concur. :thumb: Some days I think Bruce is offering 3-5 definition updates per day. I just noticed that Marcin released 1.18 earlier. Overall I have been extremely impressed with MBAM, and it's the first "on-demand" scanner than I run on any hosed system. Their hard work is paying off...... :thumb:
     
  3. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    I don't want another real-time scanner on my system. Therefore please answer two questions...

    Q1- Can MBAM be configured to run on-demand ONLY?

    Q2- If answer to Q1 is "yes", would running MBAM on-demand only be a useful adjunct to my real-time-running antivirus (Avira Premium)?

    Many thanks for your answer(s).
     
  4. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,731
    Location:
    New York City
    The free version of MBAM is on-demand only.
    Yes, I also use MBAM free as a nice complement to Avira Premium.
     
  5. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    I agree.
    MBAM is getting better every day.
    Yesterday I cleaned a computer and SAS found only 3 entries, while MBAM found over 15, including a Vundo variant.

    (@Nick, in case you see this thread: I'll recover the samples this weekend and submit them to SAS)
     
  6. hammerman

    hammerman Registered Member

    Joined:
    Jul 14, 2007
    Posts:
    283
    Location:
    UK
    MBAM continues to impress. There is clearly a lot of work going into this software. The updates come thick and fast and at all hours.

    It detected and cleaned Troj/Bancos-BDO (Sophos) on my fathers PC with no problems. Avast and SAS did not detect this.
     
  7. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    Hi

    I use MBAM free as an on-demand, but I have never seen it find anything.:D
     
  8. Jadda

    Jadda Registered Member

    Joined:
    Jun 5, 2007
    Posts:
    422
    MBAM had a good result, yes. But can you compare it with other antispyware products, to see which found most spyware? And had least FPs?
     
  9. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
  10. JerryM

    JerryM Registered Member

    Joined:
    Aug 31, 2003
    Posts:
    4,221
    Are there any known conflicts with AVs or suites, such as KIS?

    PS I did not see a free one on the site. Does the full version become free with reduced capabilities after a trial?
    Thanks,
    Jerry
     
  11. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Sure.
    _______________________________

    Some questions :

    Are there any differences between the registered and free version apart from the 'Protection Module?'
    Does MBAM scan ALL files and/or known file types?
    Does MBAM scan for tracking cookies?
    I could not find this in the free version but can you ignore System Restore Information and if not will this be implemented in the future?
    Does MBAM scan ADS?..

    - (which leads on to,) Will there be more scanning options in the future?

    and comments :

    MBAM has a,
    Clear flowing layout.
    Nice and clear help file.
    and some nice simple Command Line parameters.:thumb:

    edited 'comments'
     
    Last edited: Jun 20, 2008
  12. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    Free is scan and remove , pay will block malware from running .

    In the pipe for pro is :

    IP blocking
    patched OS file detection and restoration (we will prevent it as well , this is a just in case)

    We have more ideas but these will be in first .

    All files are scanned by one of the 7 ways we look for malware . Most of the rest only do MZ files (file extensions are ignored) . We have an 8th and 9th way to detect malware in the pipe and these will both only target MZ malware files .

    No , not much of a chance of being added either . The vast majority of people we have asked dont want it either . There are plenty of ways to clear them up already and dev time on them would take away from real malware research . I'm just one guy , no way I could add it without taking away from something else .

    Full scan is almost never needed with the way MBAM works with load points , in memory and known malware folders . That being said we are planning to make full scan have opt out options like SR and docs . To give you an idea of how good quick scan is , I have never needed to do a full scan while testing defs to 100% remove an infection . I have the ability to add new places for MBAM to look right in defs , no app update needed .

    We push them into the mud and take their lunch money .

    Anything that people want and makes MBAM better usually finds its way in . Forum support mode is in the pipe where a script can be pasted in and executed . This will be for manual kill/capture . A tool box is also in the pipe and will include fixes for malware damage (many current hijacks we find the the scan will be moved there) and non malware (but common) OS issues like upper/lower filter fix (for disabled optical drives) . We have been asked to add P2P removal abilities and that will happen but have a check box to add it , it will not be part of any regular scan by default . It will also not remove share folders or their contents (unless malicious) . We have been asked to make a corp version but that is a little further off .

    I'm not actually involved with this part of the dev , sorry .

    We have been asked by someone yet to be mentioned (looking to add MBAM to something existing) to do exactly this and the beta is done .
     
  13. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Interesting :) . Must remember to keep MBAM away from my (safe) patched OS :D .
    Good!..and I totally agree.
    :eek: :D
    My comments were compliments, kudos:thumb:

    previous post edited
     
    Last edited: Jun 20, 2008
  14. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    5,828
    Location:
    Last Breath Farm
    What caught my attention is that many security forums specializing in malware removal use Malwarebytes' Anti-Malware... Gladiator, MajorGeeks and BBR forums. They must have chosen MBAM for a reason. I know there are other forums using MBAM as their clean-up tool of choice, I've just named a few. :thumb:
     
  15. JerryM

    JerryM Registered Member

    Joined:
    Aug 31, 2003
    Posts:
    4,221
    Nobody interested in answering my questions in post 10?

    Regards,
    Jerry
     
  16. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA

    LOL , sorry man , completely missed that one .

    MBAM free and pro are the same application . Once you pay the protection is able to be turned on . The free version will scan and remove as well as get app and def updates for free forever .

    The free version has a protection check to see if it can be enabled (to detect conflitcs) but we have not had any reports of major conflicts other than AVG calling MBAM an AV .

    MBAM is designed to be light and do just enough to get the job done .

    MBAM uses great defs combined with creative detection to avoid the bloat and 50 million moving parts that some other applications have and as a result cause conflicts .

    MBAM free does not conflict with any software as it is on demand , you can stack up as much on demand security software as you wish .


    All that being said if you have an *IS then you dont need MBAM pro because you already have something covering the same types of malware .

    I do not like *IS from any vendor because it deviates from creative security application layering that is both better in terms of creating a perfect fit for your system and does not provide a single target for attacking malware to destroy .
     
  17. RubbeR DuckY

    RubbeR DuckY Developer

    Joined:
    Jul 7, 2006
    Posts:
    202
    Jerry,

    We have tested the protection module with multiple anti-viruses and have not found any severe conflicts. MBAM works best with AntiVir in offering both speed and protection.

    There is currently no 'trial' version, we plan to add that soon (once we finish up some important code). However, if for some reason a purchaser is not content, I will refund all of their money.

    Hope that answers your question.
     
  18. PiCo

    PiCo Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    352
    Location:
    Athens, Greece
    You should do sth with Dr.Web, they flag you as a posible backdoor trojan every time a new version comes out.

    Ok they fix the false positive within few hours, but then a new version comes out and they to fix it again and again.. and again.

    There has to be a simplier solution :)
     
  19. JerryM

    JerryM Registered Member

    Joined:
    Aug 31, 2003
    Posts:
    4,221
    Nosirrah and RubbeR DuckY,

    Thanks for the very informative replies. I suspected there was so much going on that my post was overlooked. That is very much OK. I sure cannot talk about the technicalities of any computer subject.

    Nosirrah,
    I have seen your post for awhile now, I think since SAS was introduced, and appreciate your own expertise.:thumb:
    I have used SAS Pro almost from its beginning.

    Many thanks to you both.

    Regards,
    Jerry
     
  20. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Would it be possible to make it a standalone app in that the MBAM Programs Folder can be copied to a usb and updated/run from there.
     
  21. nosirrah

    nosirrah Malware Fighter

    Joined:
    Aug 25, 2006
    Posts:
    561
    Location:
    Cummington MA USA
    The 50million $ request .

    We know everyone wants it but here is the issue . The dev time to make it takes away from making MBAM better for our users .

    It will happen , I just cant see it being put ahead of any of our current projects .
     
  22. RubbeR DuckY

    RubbeR DuckY Developer

    Joined:
    Jul 7, 2006
    Posts:
    202
    The problem with that is Malwarebytes' Anti-Malware uses low level technology (system drivers) and other references (DLL's) that need to be registered. We are slowly attempting to remove these references and make it a bit more portable.

    As for Dr. Web, that is their fault. They ignore ours and their own customers requests to permanently fix the problem. They feel patching it for a few hours and covering their tracks is enough.
     
  23. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    Oops. Sorry. I wasn't clear. I also ran AntiVir free, SAS free, Panda Antirootkit, Blacklight and RootkitBuster and they all come up with nothing.

    I meant MBAM doesn't have a lot of fp's.
     
  24. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    Hi

    What's BBR?:doubt: o_O o_O
     
  25. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    5,828
    Location:
    Last Breath Farm
Loading...
Similar Threads
  1. FanJ
    Replies:
    10
    Views:
    780
  2. NonGeek
    Replies:
    10
    Views:
    1,669
Thread Status:
Not open for further replies.