Tips on Using Malwarebytes “Anti-Malware” Program
Malwarebytes Anti-Malware
The Malwarebytes program known as “Anti-Malware” or “MBAM” for short, does a wonderful job of removing malware. It comes in a free, and “Pro” version. The “Pro” version offers real-time protection – actively working in the background examining files as you open them and checking them for any known malware, and it offers an IP Blocking feature called “IP Protection”, which can prevent you from accessing a known malicious website. The free version offers neither IP Blocking nor real-time protection. It’s not a total solution to malware, but no single product is. It is a tool and should be a part of everyone’s malware toolbox. As good as it is, you will need to dig around to find out how to use it effectively. The built in help is very skimpy. You can visit Malwarebytes.org and search the message forums for more help.
Better in Normal Mode
I’ve found a couple of things which will help get the most out of “Anti-Malware”. First of all, while it will install and run in Safe Mode, it works BETTER in Normal Mode. Don’t ask me why – that’s what the guys at Malwarebytes said and who should know better? There may be times when it’s preferable to run it in Safe Mode, but I’d advise you to follow that up by scanning in Normal Mode as well.
Quick Scan Versus Full Scan
Most times you can select the “Quick Scan” option rather than choose “Full Scan”. The overwhelming majority of infections target a subset of files on your computer, usually operating system files or registry keys. Quick Scan is generally sufficient. If you’ve determined that you are infected with a virus which attaches itself to every single file on your computer, then you must choose “Full Scan”. If you’re unsure, select “Full Scan” and go take an extended break.
When Anti-Malware Won’t Run
Anti-Malware has gotten so good at removing malware that some newer malware programs have been designed to look for it specifically and prevent it from running. One way around this is to rename the Anti-Malware installation program – mbam-setup.exe – to something else. I usually change it to mbm.exe but anything will likely work. If it still fails to load, reboot and go into Safe Mode and try again.
Beware of IP Blocking Feature
If you have the “Pro” version and have the “IP Protection” feature enabled, “Anti-Malware” examines the IP address of the site you are trying to reach and compares it to a list of “bad” IP addresses. If there is a match, the browser is prevented from loading that website. This feature sounds like a great idea until you understand the idea of “shared IP addresses”.
Because the pool of available IP addresses is growing small, Internet Service Providers (ISP’s) are employing a method that allows multiple websites to share one IP address. Through some sort of DNS gymnastics, you are sent to your desired final destination, despite the fact that other websites may have the same IP address as the website you are visiting. And that is where the problem with IP blocking lies.
When one of your IP sharing neighbors is deemed “bad”, perhaps because it’s hosting malware, it’s IP address is added to a blacklist. When “Anti-Malware” blocks that IP address, it blocks every other website that shares that address, even though they may be perfectly safe. How many websites might that be? That depends on the ISP, but I suppose it could be 100 or more. Anti-Malware does have an “Ignore List” in which you can exclude something which is being blocked, but again, it only works with IP addresses, not individual domain names.
You can disable IP Protection at any time by right clicking on the Anti-Malware icon located in the Notification area, at the lower right corner of the Windows Desktop screen and make sure IP Protection is not checked. So, the take away here is that just because Anti-Malware is blocking you from getting to a website, it does not necessarily mean that the website is malicious. You may have to do some investigating on your own to determine whether it is really safe or not.
I suppose if there were a better way to block a bad site, Anti-Malware would use it. Apparently it’s just something we have to deal with. I personally disagree with blocking by IP address. It’s like using a meat cleaver when you need a scalpel.
No comments yet.
1168No trackbacks yet.
Virus Removal Guide
about 1 month ago - No comments
It’s so easy to become infected by a virus, trojan, or other form of malware while surfing the web – but often very difficult to remove them. If you need a free virus removal guide – one that will help the average person remove most viruses, trojans, spyware, ransomware, etc., from your Windows computer – [...]
How to Regain Internet Access
about 2 months ago - No comments
Malware has always played dirty and is getting better at preventing you from removing them. Disabling your access to the Internet — while keeping access open for it’s own purposes — is becoming a common tactic. This move greatly hinders you from obtaining the tools that could help remove the infection. Very clever move! But [...]
Can Viruses Damage My Computer?
about 4 months ago - No comments
Can viruses damage my computer? The quick answer to that is NO! The reason I want to clarify this is because I’ve noticed some disturbing messages on Twitter – enough to make me want to say something about it. Apparently some people think that if their Windows computer or laptop gets a virus, trojan, spyware [...]
Windows Started Unsuccessfully
about 5 months ago - No comments
The follow information is for a specific user with Windows XP, but may be helpful to others.
After starting Windows XP, you receive a message similar to the following…
Windows started unsuccessfully. A recent hardware or software change might have caused this.
You may receive other messages and/or a blue screen with further information about the issue. The [...]
Using Avira Rescue System
about 5 months ago - No comments
The Avira Antivir Rescue System is a downloadable file that can then be burned to a CD or DVD disc. This disc is used to boot up your computer instead of Windows. This allows the removal of some very stubborn types of malware that would not normally be removable because of their ability to manipulate [...]
What is a rootkit and why should I be concerned?
about 5 months ago - No comments
“Rootkits… they are PURE EVIL… NO ONE IS SAFE… LOCK UP YOUR DATA!!!” OK, I admit that’s a little over the top, but hopefully I have your attention, because this is a very serious issue for anyone connected to the Internet that cares about their personal and financial data. What are rootkits? I’m SO [...]
About PC Protection Software
about 6 months ago - No comments
You can never achieve 100% protection against all the computer “nasties”. There are just too many ways your system can be compromised. However, you can achieve reasonable protection and still have a computer which performs well. Here are our current recommendations for computer protection.
Stay Up-to-Date
At the very least, keep whatever you currently have, up-to-date. That [...]
Busy year for Cyber-Criminals
about 6 months ago - No comments
Just how busy were cyber-criminals last year? If the latest Symantec Internet Security Threat Report is any indication, they’ve never been busier. According to Volume XIV of the report, issued in April, attackers released Trojan horses, viruses, and worms (also called “malicious code”) at a record pace in 2008, primarily targeting computer users’ confidential information.
Specifically, [...]
WordPress versions prior to 2.8.4 under attack!
about 6 months ago - No comments
Update now to 2.8.4! The following link may help!
Lorelle on WordPress
Share and Enjoy:
Improving WordPress Security
about 6 months ago - Comments Off
We recently setup a WordPress website and after lots of tweaking, we ended up with something that would serve as a front-end to our ZenDesk Help Desk. WordPress also provides a great way to communicate with everyone. After making sure things were working pretty well, we decided to find ways to improve the security of [...]
